Dre4m Shell
Server IP : 127.0.0.2  /  Your IP : 18.191.141.17
Web Server : Apache/2.4.18 (Ubuntu)
System :
User : www-data ( )
PHP Version : 7.0.33-0ubuntu0.16.04.16
Disable Function : disk_free_space,disk_total_space,diskfreespace,dl,exec,fpaththru,getmyuid,getmypid,highlight_file,ignore_user_abord,leak,listen,link,opcache_get_configuration,opcache_get_status,passthru,pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,php_uname,phpinfo,posix_ctermid,posix_getcwd,posix_getegid,posix_geteuid,posix_getgid,posix_getgrgid,posix_getgrnam,posix_getgroups,posix_getlogin,posix_getpgid,posix_getpgrp,posix_getpid,posix,_getppid,posix_getpwnam,posix_getpwuid,posix_getrlimit,posix_getsid,posix_getuid,posix_isatty,posix_kill,posix_mkfifo,posix_setegid,posix_seteuid,posix_setgid,posix_setpgid,posix_setsid,posix_setuid,posix_times,posix_ttyname,posix_uname,pclose,popen,proc_open,proc_close,proc_get_status,proc_nice,proc_terminate,shell_exec,source,show_source,system,virtual
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /var/www/html/admin/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ HOME SHELL ]     

Current File : /var/www/html/admin/user-new-action.php
<?php
require_once('include/db-config.php');
session_start();
$_SESSION['name']=$name=mysqli_real_escape_string($conn,$_POST['name']);
$_SESSION['login']=$login=mysqli_real_escape_string($conn,$_POST['login']);
$pwd=mysqli_real_escape_string($conn,$_POST['pwd']);
$_SESSION['status']=$status=mysqli_real_escape_string($conn,$_POST['status']);

$date=date("Y-m-d");

$_SESSION['c_home']= $c_home=$_POST['c_home'];
$_SESSION['s_list']=$s_list=$_POST['s_list'];
$_SESSION['e_list']=$e_list=$_POST['e_list'];
$_SESSION['c_land']=$c_land=$_POST['c_land'];
$_SESSION['s_new_spons']=$s_new_spons=$_POST['s_new_spons'];
$_SESSION['e_new_email_message']=$e_new_email_message=$_POST['e_new_email_message'];
$_SESSION['c_shop']=$c_shop=$_POST['c_shop'];
$_SESSION['s_sess_list']=$s_sess_list=$_POST['s_sess_list'];
$_SESSION['e_monthly']=$e_monthly=$_POST['e_monthly'];
$_SESSION['c_seo']=$c_seo=$_POST['c_seo'];
$_SESSION['s_new_sess']=$s_new_sess=$_POST['s_new_sess'];
$_SESSION['e_email']=$e_email=$_POST['e_email'];
$_SESSION['e_new_email']=$e_new_email=$_POST['e_new_email'];
$_SESSION['i_list']=$i_list=$_POST['i_list'];
$_SESSION['f_list']=$f_list=$_POST['f_list'];
$_SESSION['i_export']=$i_export=$_POST['i_export'];
$_SESSION['f_new_file']=$f_new_file=$_POST['f_new_file'];
$_SESSION['r_seminar']=$r_seminar=$_POST['r_seminar'];
$_SESSION['p_list']=$p_list=$_POST['p_list'];
$_SESSION['a_list']=$a_list=$_POST['a_list'];
$_SESSION['u_list']=$u_list=$_POST['u_list'];
$_SESSION['p_new']=$p_new=$_POST['p_new'];
$_SESSION['a_new']=$a_new=$_POST['a_new'];
$_SESSION['u_new']=$u_new=$_POST['u_new'];
$_SESSION['p_shipping']=$p_shipping=$_POST['p_shipping'];
$_SESSION['a_category']=$a_category=$_POST['a_category'];
$_SESSION['p_prdct_qty']=$p_prdct_qty=$_POST['p_prdct_qty'];
$_SESSION['a_relation']=$a_relation=$_POST['a_relation'];
$_SESSION['p_coupon']=$p_coupon=$_POST['p_coupon'];
$_SESSION['p_liscence']=$p_liscence=$_POST['p_liscence'];
$_SESSION['o_change']=$o_change=$_POST['o_change'];
$_SESSION['p_meeting']=$p_meeting=$_POST['p_meeting'];
$_SESSION['o_view']=$o_view=$_POST['o_view'];

$qry=mysqli_num_rows(mysqli_query($conn,"select UserID from maintrainer_useraccounts where UserID='$login'"));
if($qry>0)
{
	$url='location: user-new.php?r=1';
	header($url);
}
else {

$query= "insert into maintrainer_useraccounts (UserName,UserID,UserType,Password,Status,CreatedDate,EditedDate,
		 c_home_page,c_landing_page,s_list,e_list,s_new_spons,e_new_email_message,c_shop,s_sess_list,e_monthly,
		 c_seo,s_new_sess,e_email,e_new_email,i_list,f_list,i_export,f_new_file,r_seminar,p_list,a_list,
		 u_list,p_new,a_new,u_new,p_shipping,a_category,p_prdct_qty,a_relation,p_coupon,p_liscence,o_change,p_meeting,o_view) 
		 values ('$name','$login','2','$pwd','$status','$date','$date','$c_home','$c_land','$s_list','$e_list','$s_new_spons','$e_new_email_message','$c_shop','$s_sess_list',
		 '$e_monthly','$c_seo','$s_new_sess','$e_email','$e_new_email','$i_list','$f_list','$i_export','$f_new_file','$r_seminar','$p_list','$a_list','$u_list','$p_new','$a_new',
		 '$u_new','$p_shipping','$a_category','$p_prdct_qty','$a_relation','$p_coupon','$p_liscence','$o_change','$p_meeting','$o_view')
		";
$result=mysqli_query($conn,$query);
if($result){
$url='location: user-list.php?r=1';
	header($url);
	}
else
{
	echo "Sql Error";
}
}

// $sql= "update maintrainer_useraccounts set c_home_page='$c_home' where ID=3";
// $a=mysqli_query($conn,$sql);
?>

Anon7 - 2022
AnonSec Team