HEX
Server: Apache/2.4.6 (CentOS) mpm-itk/2.4.7-04 mod_fcgid/2.3.9 PHP/5.4.16
System: Linux dvm.vladweb.ru 3.10.0-1160.119.1.el7.x86_64 #1 SMP Tue Jun 4 14:43:51 UTC 2024 x86_64
User: region-gk.ru (1016)
PHP: 7.3.33
Disabled: NONE
$ pwd: /home/temp/autoprokat.vladweb.ru/includes/admin/
Upload Files
File: /home/temp/autoprokat.vladweb.ru/includes/admin/stat_auto.php
<?php
if(isset($_GET['STAT_AUTO'])){
//$sql = "select u.u_id,a.a_id,d.d_id, u.u_fname,u.u_lname,u.u_mname,a.a_firma,a.a_marka,a.a_year from dogovora d,users u,auto a where d.d_u_id = u.u_id and d.d_a_id = a.a_id";
//sql = "select * from dogovora where d_u_id = ".$_GET['d_u_id'];
/*sql = "select * from dogovora where d_a_id = ".$_GET['d_a_id'];
sql = "select * from dogovora where d_start between ".$_GET['d_start']." AND  ".$_GET['d_end'] ;
sql = "select * from dogovora where d_end between ".$_GET['d_start']." AND  ".$_GET['d_end'] ;
sql = "select * from dogovora where (d_start between ".$_GET['d_start']." AND  ".$_GET['d_end'].") AND (d_end between ".$_GET['d_start']." AND  ".$_GET['d_end']." )" ;
sql = "select * from dogovora where d_u_id = ".$_GET['d_u_id'];
sql = "select * from dogovora where d_u_id = ".$_GET['d_u_id'];




sql="SELECT count(*) FROM dogovora WHERE id=";
select * from ()
*/
	if(isset($_GET['a_id']))
			{
//			$sql = "select d_start,d_end,d_price, d_skidka,d_id,u_id, u_fname from dogovora d,users u where d.d_u_id = u.u_id  and d_a_id =".$_GET['a_id']." order by d_start";
			$sql = "select u_fname,'','',d_start,d_end,d_price, d_skidka,d_id,u_id from dogovora d,users u where d.d_u_id = u.u_id  and d_a_id =".$_GET['a_id']." order by d_start DESC";
   			$res=mysql_query($sql) or DIE ("SELECT * FROM users ERROR! ".MYSQL_ERROR());
   		 	$user=array();
			while($rowa=mysql_fetch_array($res))
				{ $user[]=$rowa; };

			$smarty->assign("user", $user);
 			$smarty->assign("admin_main_content_template", "dogovora.tpl");

		} 
//++++++++++++++++++++++++++++++++++++++++SORT
		elseif (isset($_POST['d_endYear'])&&isset($_POST['d_startMonth']))
      {
        $sort_d =" ";
    	$d_start = $_POST['d_startYear']."-".$_POST['d_startMonth']."-".$_POST['d_startDay']    ;
    	 $d_end = $_POST['d_endYear']."-".$_POST['d_endMonth']."-".$_POST['d_endDay']    ;

    	 $sort_d = " and (d_start between '".$d_start."' AND  '".$d_end."') AND (d_end between '".$d_start."' AND  '".$d_end."' )" ;

    	
// $sql = "select a_firma,a_marka,a_year,count(*),sum(d_end-d_start)/1000000,sum(((d_end-d_start)*d_price)/1000000-d_skidka),d_id,a_id from dogovora d,auto a where d.d_a_id = a.a_id ".$sort_d."  group by  a_firma,a_marka,a_year order by  a_firma,a_marka,a_year";

$sql = "select a_firma,a_marka,a_year,count(*),sum(DATEDIFF(d_end,d_start)),sum((DATEDIFF(d_end,d_start)*d_price)-d_skidka),d_id,a_id from dogovora d,auto a where d.d_a_id = a.a_id ".$sort_d."  group by  a_firma,a_marka,a_year order by  a_firma,a_marka,a_year";


   			$res=mysql_query($sql) or DIE ("SELECT * FROM users ERROR! ".MYSQL_ERROR());
   		 	$auto=array();
			while($rowa=mysql_fetch_array($res))
				{ $auto[]=$rowa; };

			$smarty->assign("auto", $auto);
			
			
			
			
 			$smarty->assign("admin_main_content_template", "stat_auto.tpl");
    
      }

//|||||||||||||||||||||||||||||||||||||||||end of sort

	else
			{

			$sql = "select a_firma,a_marka,a_year,count(*),sum(DATEDIFF(d_end,d_start)),sum((DATEDIFF(d_end,d_start)*d_price)-d_skidka),d_id,a_id from dogovora d,auto a where d.d_a_id = a.a_id  group by  a_firma,a_marka,a_year order by  a_firma,a_marka,a_year";
   			$res=mysql_query($sql) or DIE ("SELECT * FROM users ERROR! ".MYSQL_ERROR());
   		 	$auto=array();
			while($rowa=mysql_fetch_array($res))
				{ $auto[]=$rowa; };

			$smarty->assign("auto", $auto);
 			$smarty->assign("admin_main_content_template", "stat_auto.tpl");

 			} 
	}
?>
@ Telegram