File: /home/mckernan/public_html/iJournal/includes/client/expcats.php
<?php
// expense categories
// init database name
$database = DB_PREFIX;
// process request
if ($sid != '')
{
// sid check
require "includes/session/sidck.php";
// init return value
$rv = '<root>' . PHP_EOL;
$rv .= '<cats>' . PHP_EOL;
// fetch database name / open db
$db = '';
if ( isset($_POST['db']) ) $db = $_POST['db'];
if ( isset($_GET['db']) ) $db = $_GET['db'];
if ($db == '') die();
$database .= $db;
require "includes/db.php";
// fetch client info
$query = "SELECT oh_0, oh_1, oh_2, oh_3, oh_4, oh_5, oh_6, oh_7, oh_8,
la_0, la_1, la_2, la_3, la_4, la_5, la_6, la_7,
op_0, op_1, op_2, op_3, op_4, op_5, op_6, op_7, op_8, op_9, op_10,
op_11, op_12, op_13, op_14, op_15, op_16, op_17, op_18, op_19
FROM categories";
if ($result = $db->query($query))
{
if ($db->affected_rows == 1)
{
$row = $result->fetch_assoc();
$rv .= '<oh0>' . $row['oh_0'] . '</oh0>' . PHP_EOL;
$rv .= '<oh1>' . $row['oh_1'] . '</oh1>' . PHP_EOL;
$rv .= '<oh2>' . $row['oh_2'] . '</oh2>' . PHP_EOL;
$rv .= '<oh3>' . $row['oh_3'] . '</oh3>' . PHP_EOL;
$rv .= '<oh4>' . $row['oh_4'] . '</oh4>' . PHP_EOL;
$rv .= '<oh5>' . $row['oh_5'] . '</oh5>' . PHP_EOL;
$rv .= '<oh6>' . $row['oh_6'] . '</oh6>' . PHP_EOL;
$rv .= '<oh7>' . $row['oh_7'] . '</oh7>' . PHP_EOL;
$rv .= '<oh8>' . $row['oh_8'] . '</oh8>' . PHP_EOL;
$rv .= '<la0>' . $row['la_0'] . '</la0>' . PHP_EOL;
$rv .= '<la1>' . $row['la_1'] . '</la1>' . PHP_EOL;
$rv .= '<la2>' . $row['la_2'] . '</la2>' . PHP_EOL;
$rv .= '<la3>' . $row['la_3'] . '</la3>' . PHP_EOL;
$rv .= '<la4>' . $row['la_4'] . '</la4>' . PHP_EOL;
$rv .= '<la5>' . $row['la_5'] . '</la5>' . PHP_EOL;
$rv .= '<la6>' . $row['la_6'] . '</la6>' . PHP_EOL;
$rv .= '<la7>' . $row['la_7'] . '</la7>' . PHP_EOL;
$rv .= '<op0>' . $row['op_0'] . '</op0>' . PHP_EOL;
$rv .= '<op1>' . $row['op_1'] . '</op1>' . PHP_EOL;
$rv .= '<op2>' . $row['op_2'] . '</op2>' . PHP_EOL;
$rv .= '<op3>' . $row['op_3'] . '</op3>' . PHP_EOL;
$rv .= '<op4>' . $row['op_4'] . '</op4>' . PHP_EOL;
$rv .= '<op5>' . $row['op_5'] . '</op5>' . PHP_EOL;
$rv .= '<op6>' . $row['op_6'] . '</op6>' . PHP_EOL;
$rv .= '<op7>' . $row['op_7'] . '</op7>' . PHP_EOL;
$rv .= '<op8>' . $row['op_8'] . '</op8>' . PHP_EOL;
$rv .= '<op9>' . $row['op_9'] . '</op9>' . PHP_EOL;
$rv .= '<op10>' . $row['op_10'] . '</op10>' . PHP_EOL;
$rv .= '<op11>' . $row['op_11'] . '</op11>' . PHP_EOL;
$rv .= '<op12>' . $row['op_12'] . '</op12>' . PHP_EOL;
$rv .= '<op13>' . $row['op_13'] . '</op13>' . PHP_EOL;
$rv .= '<op14>' . $row['op_14'] . '</op14>' . PHP_EOL;
$rv .= '<op15>' . $row['op_15'] . '</op15>' . PHP_EOL;
$rv .= '<op16>' . $row['op_16'] . '</op16>' . PHP_EOL;
$rv .= '<op17>' . $row['op_17'] . '</op17>' . PHP_EOL;
$rv .= '<op18>' . $row['op_18'] . '</op18>' . PHP_EOL;
$rv .= '<op19>' . $row['op_19'] . '</op19>' . PHP_EOL;
}
else
{
$rv .= '<oh0></oh0>' . PHP_EOL;
$rv .= '<oh1></oh1>' . PHP_EOL;
$rv .= '<oh2></oh2>' . PHP_EOL;
$rv .= '<oh3></oh3>' . PHP_EOL;
$rv .= '<oh4></oh4>' . PHP_EOL;
$rv .= '<oh5></oh5>' . PHP_EOL;
$rv .= '<oh6></oh6>' . PHP_EOL;
$rv .= '<oh7></oh7>' . PHP_EOL;
$rv .= '<oh8></oh8>' . PHP_EOL;
$rv .= '<la0></la0>' . PHP_EOL;
$rv .= '<la1></la1>' . PHP_EOL;
$rv .= '<la2></la2>' . PHP_EOL;
$rv .= '<la3></la3>' . PHP_EOL;
$rv .= '<la4></la4>' . PHP_EOL;
$rv .= '<la5></la5>' . PHP_EOL;
$rv .= '<la6></la6>' . PHP_EOL;
$rv .= '<la7></la7>' . PHP_EOL;
$rv .= '<op0></op0>' . PHP_EOL;
$rv .= '<op1></op1>' . PHP_EOL;
$rv .= '<op2></op2>' . PHP_EOL;
$rv .= '<op3></op3>' . PHP_EOL;
$rv .= '<op4></op4>' . PHP_EOL;
$rv .= '<op5></op5>' . PHP_EOL;
$rv .= '<op6></op6>' . PHP_EOL;
$rv .= '<op7></op7>' . PHP_EOL;
$rv .= '<op8></op8>' . PHP_EOL;
$rv .= '<op9></op9>' . PHP_EOL;
$rv .= '<op10></op10>' . PHP_EOL;
$rv .= '<op11></op11>' . PHP_EOL;
$rv .= '<op12></op12>' . PHP_EOL;
$rv .= '<op13></op13>' . PHP_EOL;
$rv .= '<op14></op14>' . PHP_EOL;
$rv .= '<op15></op15>' . PHP_EOL;
$rv .= '<op16></op16>' . PHP_EOL;
$rv .= '<op17></op17>' . PHP_EOL;
$rv .= '<op18></op18>' . PHP_EOL;
$rv .= '<op19></op19>' . PHP_EOL;
}
}
else
{
$rv .= '<oh0></oh0>' . PHP_EOL;
$rv .= '<oh1></oh1>' . PHP_EOL;
$rv .= '<oh2></oh2>' . PHP_EOL;
$rv .= '<oh3></oh3>' . PHP_EOL;
$rv .= '<oh4></oh4>' . PHP_EOL;
$rv .= '<oh5></oh5>' . PHP_EOL;
$rv .= '<oh6></oh6>' . PHP_EOL;
$rv .= '<oh7></oh7>' . PHP_EOL;
$rv .= '<oh8></oh8>' . PHP_EOL;
$rv .= '<la0></la0>' . PHP_EOL;
$rv .= '<la1></la1>' . PHP_EOL;
$rv .= '<la2></la2>' . PHP_EOL;
$rv .= '<la3></la3>' . PHP_EOL;
$rv .= '<la4></la4>' . PHP_EOL;
$rv .= '<la5></la5>' . PHP_EOL;
$rv .= '<la6></la6>' . PHP_EOL;
$rv .= '<la7></la7>' . PHP_EOL;
$rv .= '<op0></op0>' . PHP_EOL;
$rv .= '<op1></op1>' . PHP_EOL;
$rv .= '<op2></op2>' . PHP_EOL;
$rv .= '<op3></op3>' . PHP_EOL;
$rv .= '<op4></op4>' . PHP_EOL;
$rv .= '<op5></op5>' . PHP_EOL;
$rv .= '<op6></op6>' . PHP_EOL;
$rv .= '<op7></op7>' . PHP_EOL;
$rv .= '<op8></op8>' . PHP_EOL;
$rv .= '<op9></op9>' . PHP_EOL;
$rv .= '<op10></op10>' . PHP_EOL;
$rv .= '<op11></op11>' . PHP_EOL;
$rv .= '<op12></op12>' . PHP_EOL;
$rv .= '<op13></op13>' . PHP_EOL;
$rv .= '<op14></op14>' . PHP_EOL;
$rv .= '<op15></op15>' . PHP_EOL;
$rv .= '<op16></op16>' . PHP_EOL;
$rv .= '<op17></op17>' . PHP_EOL;
$rv .= '<op18></op18>' . PHP_EOL;
$rv .= '<op19></op19>' . PHP_EOL;
}
// finish output
$rv .= '</cats>' . PHP_EOL;
$rv .= '</root>' . PHP_EOL;
// return data
echo $rv;
die;
}
else
{
header('Server: ');
header('X-Powered-By: ');
header("HTTP/1.0 404 Not Found");
}
?>