MOON
Server: Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 PHP/5.4.10
System: Linux vps.presagepowered.net 2.6.18-398.el5 #1 SMP Tue Sep 16 20:51:48 EDT 2014 i686
User: mckernan (512)
PHP: 5.4.10
Disabled: NONE
$ pwd: /home/mckernan/public_html/iJournal/includes/fixed/
Upload Files
File: /home/mckernan/public_html/iJournal/includes/fixed/assetlist.php
<?php

// fetch periods / current period
	// init database name
	$database = DB_PREFIX;	
	
	
	// process request
	if ($sid != '')
	{
	    // sid check
		require "includes/session/sidck.php";
        
		// init return value
		$rv = '<root>' . PHP_EOL;
		$rv .= '<assets>' . PHP_EOL;
	
	
		// fetch database name / open db
		$db = '';
		if ( isset($_POST['db']) ) $db = $_POST['db'];
		if ( isset($_GET['db']) ) $db = $_GET['db'];
		
		if ($db == '') die();
		
		$database .= $db;
		
		require "includes/db.php";
		
		// fetch per id
		$per = 0;
		if ( isset($_POST['per']) ) $per = intval($_POST['per']);
		if ( isset($_GET['per']) ) $per = intval($_GET['per']);
		
		if ($per == 0) die();

		// fetch list
		//$query = "SELECT fa_id, fa_date, fa_caption, fa_mos, fa_cost, fa_financed, fa_monthly FROM fixed_assets WHERE fa_per = " . $per;
		$query = "SELECT fa_id, fa_date, fa_caption, fa_mos, fa_cost, fa_financed, fa_monthly FROM fixed_assets 
                  WHERE fa_per IN (SELECT per_id FROM periods WHERE per_yr = (SELECT per_yr FROM periods WHERE per_id = " . $per . ")) 
                  ORDER BY fa_date ASC";
		
		if ($result = $db->query($query))
		{
			if ($db->affected_rows > 0)
			{
				while ($row = $result->fetch_assoc())
				{
					$date = date('M j, Y', strtotime($row['fa_date']));
				
					$rv .= '<asset>' . PHP_EOL;
					$rv .= '<id>' . $row['fa_id'] . '</id>' . PHP_EOL;
					$rv .= '<date>' . $date . '</date>' . PHP_EOL;
					$rv .= '<caption>' . $row['fa_caption'] . '</caption>' . PHP_EOL;
					$rv .= '<mos>' . $row['fa_mos'] . '</mos>' . PHP_EOL;
					$rv .= '<cost>' . $row['fa_cost'] . '</cost>' . PHP_EOL;
					$rv .= '<financed>' . $row['fa_financed'] . '</financed>' . PHP_EOL;
					$rv .= '<monthly>' . $row['fa_monthly'] . '</monthly>' . PHP_EOL;
					$rv .= '</asset>' . PHP_EOL;
				}
			}
		}
		
		
		// finish asset list
		$rv .= '</assets>' . PHP_EOL;
        		
		
		// fetch prior year depr
		$query = 'SELECT yr_depr FROM accounting_year ORDER BY yr_id DESC LIMIT 1';
		
		if ($result = $db->query($query))
		{
			if ($db->affected_rows == 1)
			{
				$row = $result->fetch_assoc();
				
				$rv .= '<prior>' . $row['yr_depr'] . '</prior>' . PHP_EOL;
			}
			else
			{
				$rv .= '<prior>0</prior>' . PHP_EOL;
			}
		}
		else
		{
			$rv .= '<prior>0</prior>' . PHP_EOL;
		}
		
		
		// finish output
		$rv .= '</root>' . PHP_EOL;
				
		
		// return data
		echo $rv;
		
		die;
	}
	else
	{
		header('Server: ');
		header('X-Powered-By: ');
		header("HTTP/1.0 404 Not Found");
	}

?>
@ Telegram