403Webshell
Server IP : 103.234.187.230  /  Your IP : 216.73.216.216
Web Server : Apache
System : Linux lserver42043-ind.megavelocity.net 3.10.0-1160.108.1.el7.x86_64 #1 SMP Thu Jan 25 16:17:31 UTC 2024 x86_64
User : apache ( 48)
PHP Version : 7.4.33
Disable Function : NONE
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /var/www/html/rsdgroup/adminPanel/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /var/www/html/rsdgroup/adminPanel/write_recipeProd.php
<?php
include_once("session.php");
include_once("settings.php");
foreach ($_REQUEST as $key => $value){
	$$key = $value;
}
$Catgory_Description=addslashes($Catgory_Description);
$target_path = "../cat_images/recipe/";
$prefix=time();
$target_path = $target_path . basename($prefix.$_FILES['image']['name']);
if($_REQUEST['mode']=="Edit"){	
    $recipe_key = sanitize_data(@$Category_Name);
	if($_FILES['image']['name']!=""){
		if(move_uploaded_file($_FILES['image']['tmp_name'], $target_path)) {
			chmod($target_path,0777); 
			//echo "The file ". basename( $_FILES['file']['name']). " has been uploaded";
			$upload_image=basename($prefix.$_FILES['image']['name']);				
		}
		$sql	=	"update `tblRecipe` set `Category_Name`='$Category_Name',`recipe_key`='$recipe_key',`Category_Description`='".mysql_real_escape_string($Category_Description)."',`Category_Image`='$upload_image',`Species_Id`='$recipeCate',`Status`='$status',`featured_status`='$featured_status' where `Category_Id`='$id'";
	}
	else{
		$sql	=	"update  `tblRecipe` set `Category_Name`='$Category_Name',`recipe_key`='$recipe_key',`Category_Description`='".mysql_real_escape_string($Category_Description)."',`Species_Id`='$recipeCate',`Status`='$status',`featured_status`='$featured_status' where `Category_Id`='$id'";
	}	
}
else{

    $recipe_key = sanitize_data(@$Category_Name);
	
	if($_FILES['image']['name']!=""){
		if(move_uploaded_file($_FILES['image']['tmp_name'], $target_path)) {
			chmod($target_path,0777); 
			//echo "The file ". basename( $_FILES['file']['name']). " has been uploaded";
			$upload_image=basename($prefix.$_FILES['image']['name']);				
		}		
	}
	$sql	=	"insert into `tblRecipe` (`Category_Name`,`recipe_key`,`Species_Id`,`Category_Image`,`Category_Description`,`Status`,`featured_status`) value ('$Category_Name','$recipe_key','$recipeCate','$upload_image', '".mysql_real_escape_string($Category_Description)."','$status','$featured_status')";
}
$result	=	mysql_query($sql) or die(mysql_error());
?>
<script>
document.location="recipeProd_list.php?page=listRecipeProduct"
</script>

Youez - 2016 - github.com/yon3zu
LinuXploit