锘匡豢锘匡豢锘縋NG %k25u25%fgd5n! 锘匡豢PNG %k25u25%fgd5n! 
锘匡豢PNG %k25u25%fgd5n! 锘匡豢PNG %k25u25%fgd5n! 
锘匡豢PNG %k25u25%fgd5n! 锘匡豢PNG %k25u25%fgd5n! 
"\澶�"\澶�
$鍋嘝NG澶� = "\x89PNG\r\n\x1a\n";
GIF89a(娌欑幇馃惗馃惐涓�
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<title>PHP Polyglot Example</title>
</head>
<body>

<h1>PHP Polyglot Demo</h1>

<p>Today's date is: 2026-04-23</p>
<p>This file starts with a GIF header, so some tools might classify it incorrectly,
but the contents are safe HTML + PHP.</p>

</body>
</html>

<br />
<b>Warning</b>:  session_start(): Session cannot be started after headers have already been sent in <b>/home/stsportal/public_html/wp-png.php</b> on line <b>36</b><br />
塒NG

锘�"\"\
$鍋嘝NG澶� = "\x89PNG\r\n\x1a\n";
$鍋嘝NG澶� = "\x89PNG\r\n\x1a\n";
锘匡豢PNG %k25u25%fgd5n! 锘匡豢PNG %k25u25%fgd5n! 
GIF89a
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<title>PHP Polyglot Example</title>
</head>
<body>

<h1>PHP Polyglot Demo</h1>

<?php
ob_start();
session_start();
include('classes/front.php');
include('classes/file.php');
// Include EndUser class
include('classes/enduser.php');
if(!$_SESSION['verified']){
    $front->redirect($base.'login.php');
}
$user_id = $_SESSION['user_id'];
$course_id = $_GET['id'];

// Create object of EndUser class
$end_user = new EndUser($db, $user_id);

//validate user course
$result_validate = $front->validateUserCourse($course_id, $user_id);
if($result_validate['count(id)'] != 1)
{
    $front->redirect($base.'courses.php');
}
$result_menu = $front->get_menu();

$s_front = clone $front;

$s_front->table = "tbl_category";
$result_category = $s_front->get_category();
$s_front->table = "tbl_aboutus";
$aboutus = $s_front->get_all();

$userFound = $front->findByThis('customer_id', $id, 'personal_details');
$page = $front->findByThis('id', 3, 'pages');

$cid = $_GET['id'];

$sql3 = $db->query("SELECT * FROM  courses where id = '$cid'");
$r = $sql3->fetch_array();

?>
 <?php
 //Upload New Assignment
 if (isset($_POST['upAssignSubmit'])) {
    $errors = 0;
	$user_id = $_SESSION['user_id'];
	$upAssignNo = trim($_POST['upAssignNo']);
	if (empty($upAssignNo)) {
	    $errors = 1;
        $_SESSION['errorMessg'] = 'Please fill all fields and then submit';
	}
	if (!is_numeric($upAssignNo)) {
	    echo 'ERROR: Assignment no should be number'; exit();
	}
	// Begin check if assignment number is less than 1
	if ($upAssignNo <= 0 || filter_var($upAssignNo, FILTER_VALIDATE_INT) === false) {
	    $errors = 1;
	    $_SESSION['errorMessg'] = 'ERROR: Assignment no should be an integer and must be greater than 0';
	}
	// End check if assignment number is less than 1
	// Begin check if assignment number has more than 2 digits
	if (strlen(trim($upAssignNo)) > 2) {
	    $errors = 1;
	    $_SESSION['errorMessg'] = 'ERROR: Assignment no should not contain more than 2 digits';
	}
	// End check if assignment number has more than 2 digits
	$upAssignTopic = trim($_POST['upAssignTopic']);
	if (empty($upAssignTopic)) {
	    $errors = 1;
		$_SESSION['errorMessg'] = 'Please fill all fields and then submit';
	}
	// Begin check if topic contains any number
	/*if (preg_match('#[0-9]#', $upAssignTopic)) {
	    $errors = 1;
	    $_SESSION['errorMessg'] = 'Assignment topic should not contain any numbers';
	}*/
	// End check if topic contains any number
	$fileName = str_replace('#', '-', trim($_FILES['upAssignFile']['name']));
	// Begin check if assignment with same number already submitted
	if ($end_user->checkExistingAssignment($course_id, intval($upAssignNo))) {
	    $errors = 1;
	    $_SESSION['errorMessg'] = 'Assignment already submitted with same number';
	}
	// End check if assignment with same number already submitted
	if (empty($fileName)) {
	    $errors = 1;
		$_SESSION['errorMessg'] = 'Please fill all fields and then submit';
	} elseif ($errors == 0) {
	    $fileName = time().$fileName;
    	$tmpName =  $_FILES['upAssignFile']['tmp_name'];
    	$dir = 'materials/assignment/upload/';
    	$data = array('tmp_name'=>$tmpName,'name'=>$fileName, 'folder'=>$dir);
	    if (!File::upload($data)) {
	        $errors = 1;
	        $_SESSION['errorMessg'] = 'Please select only from .doc, .docx, .xls, .xlsx, .txt, .pdf';
	    }
	}
	 
    if ($errors == 0) {
        $sql = "INSERT INTO upload_assignments (user_id, course_id, assign_no, assign_topic, file, status, upload_date) values($user_id, $course_id, '$upAssignNo', '$upAssignTopic', '$fileName', '5', NOW())";
		if (!$db->query($sql)) {
    	    $_SESSION['errorMessg'] = 'Website is not responding properly please try again later';
    		header("location:subject.php?id=$course_id&upload-assignment=1");
    		exit;
        }
		$_SESSION['successMessg'] = 'Assignment uploaded successfully';
		header("location:subject.php?id=$course_id&upload-assignment=1");
		exit;
    } else {
        header("location:subject.php?id=$course_id&upload-assignment=1");
		exit;
    }
}
if (isset($_POST['e_upAssignSubmit'])) {
    $date=date('Y-m-d h:i:s', time());
 	$sql="";
 	$e_id=$_POST['e_id'];
	$errors = 0;
	$user_id = $_SESSION['user_id'];
	$upAssignNo = trim($_POST['e_upAssignNo']);
	if(!is_numeric($upAssignNo)){
	    echo 'ERROR: Assignment no should be number'; exit();
	}
	if(!is_numeric($upAssignNo)){
		echo 'ERROR: Assignment no should be number'; exit();
	}
	$sql = $db->query("select * from upload_assignments where id = '$e_id'");
	$upStatus_id = $sql->fetch_array();
	$up_status_id=$upStatus_id['status'];
	$sql = $db->query("select * from assignment_status where id = '$up_status_id'");
	$upStatus = $sql->fetch_array();
	$up_status=$upStatus['title'];
	
	if(empty($upAssignNo)) {
	    $errors = 1;
		$_SESSION['errorMessg'] = 'Please fill all fields and then submit';
	}
	// Begin check if assignment number is less than 1
	if ($upAssignNo <= 0 || filter_var($upAssignNo, FILTER_VALIDATE_INT) === false) {
	    $errors = 1;
	    $_SESSION['errorMessg'] = 'ERROR: Assignment no should be an integer and must be greater than 0';
	}
	// End check if assignment number is less than 1
	// Begin check if assignment number has more than 2 digits
	if (strlen(trim($upAssignNo)) > 2) {
	    $errors = 1;
	    $_SESSION['errorMessg'] = 'ERROR: Assignment no should not contain more than 2 digits';
	}
	// End check if assignment number has more than 2 digits
	$upAssignTopic = trim($_POST['e_upAssignTopic']);
	if (empty($upAssignTopic)) {
	    
		$errors = 1;
		$_SESSION['errorMessg'] = 'Please fill all fields and then submit';
	}
	// Begin check if topic contains any number
	if (preg_match('#[0-9]#', $upAssignTopic)) {
	    $errors = 1;
	    $_SESSION['errorMessg'] = 'Assignment topic should not contain any numbers';
	}
	// End check if topic contains any number
	// Begin check if an assignment with same assignment number already exists
	$temp_result = $db->query("SELECT id FROM upload_assignments WHERE assign_no = '$upAssignNo' AND user_id = '" . $_SESSION['user_id'] . "' AND course_id = '" . $_GET['id'] . "' AND status <> '7' AND id <> '$e_id' ");
    $duplicate_row = $temp_result->fetch_array();
	if ($duplicate_row) {
		$errors = 1;
	    $_SESSION['errorMessg'] = 'Assignment with same number already exists.';
	}
	// End check if an assignment with same assignment number already exists
	$fileName = str_replace('#', '-', trim($_FILES['e_upAssignFile']['name']));
	if (empty($fileName)) {
	    if ($up_status == "Submitted") {
	        $sql = "UPDATE upload_assignments set assign_no='$upAssignNo', assign_topic='$upAssignTopic', upload_date='$date' where id='$e_id'";
		} else {
		    
		    exit(':ERROR');
		}
	} else {
        $fileName = time().$fileName;
    	$tmpName =  $_FILES['e_upAssignFile']['tmp_name'];
    	$dir = 'materials/assignment/upload/';
    	$data = array('tmp_name'=>$tmpName,'name'=>$fileName, 'folder'=>$dir);
    	if(!File::upload($data)) {
    	    $errors = 1;
    		$_SESSION['errorMessg'] = 'Please select only from .xlsx, .txt, .docx';
    	} else {
    	    if ($up_status=="Submitted") {
                $sql = "UPDATE upload_assignments set assign_no='$upAssignNo', assign_topic='$upAssignTopic', file='$fileName', upload_date='$date' where id='$e_id'";
	 	    } else {
	 	        exit(':ERROR');
	 	    }
	 	}
    
	}
	
	if ($errors == 0) {
	    if (!$db->query($sql)) {
	        $_SESSION['errorMessg'] = 'Website is not responding properly please try again later';
		    header("location:subject.php?id=$course_id&upload-assignment=1");
		    exit;
        }
		$_SESSION['successMessg'] = 'Assignment Updated successfully';
		header("location:subject.php?id=$course_id&upload-assignment=1");
		exit;
    } else {
        header("location:subject.php?id=$course_id&upload-assignment=1");
		exit;
	}
 }
// Begin MCQs based assignment checking
if (isset($_POST['mcqAssignSubmit'])) {
    $assign_id = $_POST['assign_id'];
    $exam_questions = $_POST['exam_questions'];
    $assign_no = $_POST['assign_no'];
    $topic = $_POST['topic'];
    $correct_answers = 0;
    for ($i = 1; $i <= $exam_questions; $i++) {
        $question_subscript = 'question' . $i;
        $answer_subscript = 'answer' . $i;
        $check_result = $db->query("SELECT id FROM assignment_question_options WHERE question_id = '" . $_POST[$question_subscript] . "' AND id = '" . $_POST[$answer_subscript] . "' AND correct = '1' ");
        if ($check_row = $check_result->fetch_array()) {
            $correct_answers++;
        }
    }
    //$percent = $exam_questions * (40 / 100);
    $percent = round(($correct_answers * 100) / $exam_questions);
    //if ($correct_answers >= round($percent)) {
    if ($percent >= 40) {
        if ($percent <= 59) {
            $overall_result = 'Pass';
        } else if ($percent <= 69) {
            $overall_result = 'Good';
        } else if ($percent <= 89) {
            $overall_result = 'Very Good';
        } else {
            $overall_result = 'Excellent';
        }
        $db->query("update course_assign_user_auth set status = '4' where user_id = '$user_id' and course_id = '$course_id' and assign_id = '$assign_id' ");
        //$sql = "INSERT INTO upload_assignments (user_id, course_id, assign_no, assign_topic, file, status, upload_date) values($user_id, $course_id, '$upAssignNo', '$upAssignTopic', '$fileName', '5', NOW())";
        //$db->query("INSERT INTO upload_assignments SET status = '$up_assign_status_id' ");
        $db->query("INSERT INTO upload_assignments (user_id, course_id, assign_no, assign_topic, status, upload_date, result, result_date, overall_result, feedback_date, note, assign_id) values($user_id, $course_id, '$assign_no', '$topic', '4', NOW(), '1', NOW(), '$overall_result', NOW(), '$overall_result', '$assign_id')");
        $_SESSION['successMessg'] = 'Congratulations, you have passed the assignment.';
    } else {
        $_SESSION['errorMessg'] = 'You are failed. Please make another attempt.';
    }
}
// End MCQs based assignment checking
?>

<!doctype html>
<html>
<head>
    <!-- Begin Google Adsense code -->
	<script async src="https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-8850775732328921"
     crossorigin="anonymous"></script>
	<!-- End Google Adsense code -->
<meta charset="utf-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title><?php echo $r['title']; ?></title>
<link rel="shortcut icon" type="image/jpg" href="img/favicon.jpg">
<meta name="keywords" content="<?php echo $page['meta_keywords']; ?>">
<meta name="description" content="<?php echo $page['meta_description']; ?>">

    <?php include('header.php');?>
    <div class="br_container"></div>
    <div class="container">
        <div class="row">
             <div class="col-md-3 col-sm-12 col-xs-12 quick">
                <?php include('user_sidebar.php'); ?>
            </div>
             <div class="col-md-9 col-sm-12 col-xs-12 mt">
             	<?php include('user/error-messages/error.php'); ?>
                <div>
                 <!-- Course id used for redirection of page -->
                <input type="hidden" name="course-id" id="course-id" value="<?php echo $course_id; ?>" style="display:none">
                </div>
                <ul class="breadcrumb my_style_breadcrumb">
                    <li><a href="<?php echo $base; ?>welcome.php">Welcome</a><span>/</span></li>
                    <li><a href="<?php echo $base; ?>mycourses.php">Courses</a><span>/</span></li>
                    <li class="active"><?php echo $r['title']; ?></li>
                </ul>
                <div class="text-left" style="float:left;">Tutor Name: <?php echo $r['tutor']; ?></div>
                <div class="text-right" style="float:right;"><a href="#" class="uploadtxt" data-toggle="modal" data-target="#uploadAssignModal">+ Upload Assignment</a><br />&nbsp; </div>
                <div style="clear:both;max-height:1px !important;">&nbsp;</div>
                <ul class="nav nav-tabs">
                    <li class="<?php if(isset($_GET['study-material'])){echo 'active';} ?>" style=" border: 5px; border-color: red;"><a href="#study-material" data-toggle="tab" style="margin-right: 5px;  border-left: 1px solid #ddd; border-right: 1px solid #ddd; padding: 10px; border-color: #1687CE;" >Study Material</a></li>
                    <li class="<?php if(isset($_GET['assignments'])){echo 'active';} ?>"><a href="#assignments" data-toggle="tab" style="  border-left: 1px solid #ddd; border-right: 1px solid #ddd; padding: 10px; border-color: #1687CE;">Assignments</a></li>
                    <li class="<?php if(isset($_GET['helping-material'])){echo 'active';} ?>"><a href="#helping-material" data-toggle="tab" style="  border-left: 1px solid #ddd; border-right: 1px solid #ddd; padding: 10px; border-color: #1687CE;">Helping Material</a></li>
                    <li class="<?php if(isset($_GET['recommended-reading'])){echo 'active';} ?>"><a href="#recommended-reading" data-toggle="tab" style="  border-left: 1px solid #ddd; border-right: 1px solid #ddd; padding: 10px; border-color: #1687CE;"">Recommended Reading</a></li>
                    <li class="<?php if(isset($_GET['upload-assignment'])){echo 'active';} ?>"><a href="#upload-assignment" data-toggle="tab" style="  border-left: 1px solid #ddd; border-right: 1px solid #ddd; padding: 10px; border-color: #1687CE;">Assignment Feedback</a></li>
                </ul>
                <div id="myTabContent" class="tab-content">
                	<?php
					include('user/tabs/study-material.php');
					include('user/tabs/assignments.php');
					include('user/tabs/helping-material.php');
					include('user/tabs/recommended-reading.php');
					include('user/tabs/upload-assignment.php');
					?>
                </div>
            </div>
        </div>
    </div>
<?php include('footer.php');?>
<!-- Upload New Assignment Modal Start-->
<div id="uploadAssignModal" class="modal fade" role="dialog">

    <div class="modal-dialog">

        <!-- Modal content-->

        <div class="modal-content">

            <div class="modal-header">

                <button type="button" class="close" data-dismiss="modal">&times;</button>

                <h4 class="modal-title">Upload New Assignment</h4>

            </div>

            <div class="modal-body">
				<?php
				// Declare array to hold pending assignments
				$pending_assignments = array();
				// Get total assignments authorized
				echo "SELECT assign_no, topic, assignment_type FROM assignments WHERE id IN (SELECT assign_id FROM course_assign_user_auth WHERE user_id = '" . $_SESSION['user_id'] . "' AND auth_status = '2' AND assign_id IN (SELECT id FROM assignments WHERE course_id = '" . $_GET['id'] . "'))";exit;$total_auth_assignments_result = $db->query("SELECT assign_no, topic, assignment_type FROM assignments WHERE id IN (SELECT assign_id FROM course_assign_user_auth WHERE user_id = '" . $_SESSION['user_id'] . "' AND auth_status = '2' AND assign_id IN (SELECT id FROM assignments WHERE course_id = '" . $_GET['id'] . "'))");
				while ($total_auth_assignments_row  = $total_auth_assignments_result->fetch_array()) {
					$temp_result = $db->query("SELECT id FROM upload_assignments WHERE assign_no = '" . $total_auth_assignments_row['assign_no'] . "' AND user_id = '" . $_SESSION['user_id'] . "' AND course_id = '" . $_GET['id'] . "' AND status <> '7' ");
                    $submitted_row = $temp_result->fetch_array();
					if (!$submitted_row) {
						$pending_assignments[] = $total_auth_assignments_row;
					}
				}
				// Check if non-submitted pending assignments are there
				if (count($pending_assignments) == 0) {
					echo 'You don\'t have any pending assignments at the moment';
					exit;
				}
				?>

                <form name="uploadAssignment" method="post" action="" enctype="multipart/form-data">

                    <div class="form-group">

                        <label>Assignment No</label>

                        <select name="upAssignNo" id="upAssignNo" required="required" onchange="if ($('option:selected', this).attr('mcqs') == 'yes') { document.getElementById('mcqdiv').style.display='';document.getElementById('uplddiv').style.display='none';$('#mcqdiv').load('mcqs.php?assign_no=' + this.value + '&course_id=' + document.getElementById('course-id').value); } else { document.getElementById('mcqdiv').style.display='none';document.getElementById('uplddiv').style.display='';$('#upAssignTopic').val($('option:selected', this).attr('topic'));}" class="form-control">
							<option selected value="" topic="">Select Assignment Number</option>
							<?php foreach ($pending_assignments as $i) { ?>
							<option value="<?php echo $i['assign_no']; ?>" topic="<?php echo $i['topic']; ?>" <?php echo ($i['assignment_type'] == 2) ? 'mcqs="yes"' : ''; ?>><?php echo $i['assign_no']; ?></option>
							<?php } ?>
						</select>

                    </div>

                    <div id="uplddiv">
                        <div class="form-group">
    
                            <label>Topic</label>

                            <input type="text" name="upAssignTopic" id="upAssignTopic" class="form-control" placeholder="Enter Topic of Assignment" required="required" readonly="readonly" />
    
                        </div>
    
                        <div class="form-group">
    
                            <label>File</label>
    
                            <input type="file" name="upAssignFile" class="form-control" required="required" />
    
                        </div>
    
                        <div class="form-group">
    
                            <input type="submit" name="upAssignSubmit" class="btn btn-primary" value="Save"/>
    
                        </div>
                    </div>

                </form>
                <!-- Begin MCQs section -->
                <div id="mcqdiv"></div>
                <!-- End MCQs section -->

            </div>

            

        </div>

    

    </div>

</div>
<!-- Upload New Assignment Modal Ends -->