403Webshell
Server IP : 127.0.0.1  /  Your IP : 216.73.216.48
Web Server : Apache/2.4.58 (Win64) OpenSSL/3.1.3 PHP/8.2.12
System : Windows NT DESKTOP-3H4FHQJ 10.0 build 19045 (Windows 10) AMD64
User : win 10 ( 0)
PHP Version : 8.2.12
Disable Function : NONE
MySQL : OFF |  cURL : ON |  WGET : OFF |  Perl : OFF |  Python : OFF |  Sudo : OFF |  Pkexec : OFF
Directory :  D:/khalafsite-backup/old/htdocs old/

Upload File :
current_dir [ Writeable] document_root [ Writeable]

 

Command :

[ Back ]     

Current File : D:/khalafsite-backup/old/htdocs old/index.php
<html>

<?php 
session_start();
include('db_con.php'); 
include('function.php');
?>

<?php

if(isset($_SESSION['id']))
{
	$my_id = $_SESSION['id'];
	//$user_email = $_SESSION['email'];
	
	//echo $_SESSION['id'];
//	echo"$user_email";
}

?>


<input id="my_id" style="display:none;" value="<?php echo"$my_id";?>" />



 <?php
$user_ip = getenv('REMOTE_ADDR');
$geo = unserialize(file_get_contents("http://www.geoplugin.net/php.gp?ip=$user_ip"));
$city = $geo["geoplugin_city"];
$region = $geo["geoplugin_regionName"];
$country = $geo["geoplugin_countryName"];
/*echo"$user_ip";
echo "City: ".$city."<br>";
echo "Region: ".$region."<br>";
echo "Country: ".$country."<br>";
/*
geoplugin_request
geoplugin_status
geoplugin_credit
geoplugin_city
geoplugin_region
geoplugin_areaCode
geoplugin_dmaCode
geoplugin_countryCode
geoplugin_countryName
geoplugin_continentCode
geoplugin_latitude
geoplugin_longitude
geoplugin_regionCode
geoplugin_regionName
geoplugin_currencyCode
geoplugin_currencySymbol
geoplugin_currencySymbol_UTF8
geoplugin_currencyConverter
*/
?>

<input type="text" id="country_user" class="helping_id" style="display:none;" value="<?php echo $country;?>"> 
<input type="text" id="region_user" class="helping_id" style="display:none;" value="<?php echo $region;?>">
<input type="text" id="city_user" class="helping_id" style="display:none;" value="<?php echo $city;?>">


<head>
<title>Khala Sons Real Estate</title>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<link rel="icon" href="kvt_con/khalaf_log.jpg" type="image/ico">
<link rel="stylesheet" type="text/css" href="main_css/index.css" />

</head>

<body onLoad="star_auto_machine();" >

<div class="main_home">

<div class="main_log">

<img src="kvt_con/khalaf_log.jpg" width="100%" height="100%" style="border-radius:20px;" />

</div>

<div class="main_home_title">Khalaf sons real estate</div>

<div class="icon_div_right" >

<img onClick="show_search_area();" src="kvt_con/search_icon.png" class="top_right_icons" />
<img src="kvt_con/fb_icon.png" class="top_right_icons" />
<img src="kvt_con/instagram_icon.png" class="top_right_icons" />
<img src="kvt_con/linkedin.png" class="top_right_icons" />


</div>

<img onClick="show_search_area();" src="kvt_con/search_icon.png" class="search_mob_icons" />

<div class="icon_div_right_mob" >


<img id="show_mob_menu_btn" onClick="show_mob_menu();" src="kvt_con/menu.png" class="top_right_mob_menu_icon" />
<img id="close_mob_menu_btn" onClick="close_mob_menu();" src="kvt_con/close_mob_menu.png" class="top_right_mob_menu_icon" style="display:none;" />

<script>

function show_mob_menu()
{
document.getElementById('main_home_left_mob').style.display="block";
document.getElementById('show_mob_menu_btn').style.display="none";
document.getElementById('close_mob_menu_btn').style.display="block";
document.getElementById('search_area').style.display="none";
//alert('woop');
window.scrollTo(0,0);
}

function close_mob_menu()
{
document.getElementById('main_home_left_mob').style.display="none";
document.getElementById('show_mob_menu_btn').style.display="block";
document.getElementById('close_mob_menu_btn').style.display="none";
document.getElementById('share_div_right').style.display="none";
}

function show_mob_share_div()
{
document.getElementById('share_div_right').style.display="block";
document.getElementById('main_home_left_mob').style.display="none";	
}

</script>

</div><!-- end of icon_div_right_mob-->

</div>

<div class="postion_main_home"></div>

<div class="main_share_div_right" >
<div id="share_div_right" class="share_div_right" >

<img src="kvt_con/fb_icon.png" class="top_right_icons" />
<img src="kvt_con/instagram_icon.png" class="top_right_icons" />
<img src="kvt_con/linkedin.png" class="top_right_icons" />


</div>
</div>


<div id="main_home_left" class="main_home_left">

<a href=""><button class="left_home_btn" >Home</button></a>
<!--button class="left_home_btn">Project</button-->
<a href="property"><button class="left_home_btn">Property</button></a>
<!--button onClick="show_upload_cv_div();" class="left_home_btn">Vacancies</button-->
<a href="jobs"><button class="left_home_btn">Jobs</button></a>
<a href="contact"><button class="left_home_btn">Contacts</button></a>
<a href="agent_page"><button class="left_home_btn">Our Agents</button></a>
<a href=""><button class="left_home_btn">About</button></a>
<button onClick="show_mob_share_div();" class="left_home_btn">Share</button>
<?php
if(isset($_SESSION['id']))
{
		$my_id = $_SESSION['id'];
	
	$get_user ="select * from khalaf_admintb where user_id_adm='$my_id' ";
	$run_get_user = mysqli_query($con,$get_user);
	$check_user = mysqli_num_rows($run_get_user);
	if($check_user >0){
?>
<a href="purchase"><button class="left_home_btn">Purchase</button></a>
<a href="extraction.php"><button class="left_home_btn">Extraction</button></a>

<?php } ?>

<a href="myaccount.php"><button class="left_home_btn">Myaccount</button></a>
<a href="log_out.php"><button class="left_home_btn">Log out</button></a>
<?php
}else{?>

<a href="log_in.php"><button class="left_home_btn">Sign in</button></a>
<?php } ?>
</div>



<div  class="main_home_left_mob" >
<div id="main_home_left_mob" style="display:none;" class="sub_home_left_mob" >

<a href="index.php"><button class="left_home_btn" >Home</button></a>
<!--button class="left_home_btn">Project</button-->
<a href="property.php"><button class="left_home_btn">Property</button></a>
<!--button onClick="show_upload_cv_div();" class="left_home_btn">Vacancies</button-->
<a href="jobs.php"><button class="left_home_btn">Jobs</button></a>
<a href="contact.php"><button class="left_home_btn">Contacts</button></a>
<a href="agent_page.php"><button class="left_home_btn">Our Agents</button></a>
<a href=""><button class="left_home_btn">About</button></a>
<button onClick="show_mob_share_div();" class="left_home_btn">Share</button>
<?php
if(isset($_SESSION['id']))
{
		$my_id = $_SESSION['id'];
	
	$get_user ="select * from khalaf_admintb where user_id_adm='$my_id' ";
	$run_get_user = mysqli_query($con,$get_user);
	$check_user = mysqli_num_rows($run_get_user);
	if($check_user >0){
?>
<a href="purchase"><button class="left_home_btn">Purchase</button></a>
<a href="extraction.php"><button class="left_home_btn">Extraction</button></a>

<?php } ?>

<a href="myaccount.php"><button class="left_home_btn">Myaccount</button></a>
<a href="log_out.php"><button class="left_home_btn">Log out</button></a>
<?php
}else{?>

<a href="log_in.php"><button class="left_home_btn">Sign in</button></a>
<?php } ?>
</div>
</div><!-- end of main_home_left_mob-->





<div id="main_banner" class="main_banner">
 <!--img src="main_building_images/<?php //echo"$bd_image"; ?>" width="100%" height="100%" /--> 
<div id="banner_preview" classk="main_banner"></div>
<?php

$disp_building_name ="select * from main_buildingtb ";
$run_building_name = mysqli_query($con,$disp_building_name);
$check_rows = mysqli_num_rows($run_building_name);
while($row_building_name = mysqli_fetch_array($run_building_name))
{

 $building_name = $row_building_name['building_name'];
 $image_id = $row_building_name['id']; 
 $bd_image = $row_building_name['image_url']; 
// $curr_date = $row_building_name['curr_date']; 





?>
<input type="text" id="kvt<?php echo"$image_id"; ?>" value="<?php echo"$bd_image"; ?>" style="display:none;" />



 <?php } ?>	 
  <img  src="main_building_images/<?php echo"$bd_image"; ?>" width="100%" height="100%" id="master_banner_div" style="displayk:none;" /> 	   


<input type="text" id="image_id_row_total" value="<?php echo"$check_rows"; ?>"  style="display:none;" /> 


<!--button style="height:50px;width:50px;position:absolute;top:40%;left:18%;">Back</button-->
<!--button style="height:50px;width:50px;position:absolute;top:40%;right:4%;">Next</button-->
<img src="kvt_con/bk_icon_btn.png" id="back_btn" onClick="back_banner_image();" class="back_banner_image" style="" />
<img src="kvt_con/next_icon_btn.png" id="next_btn" onClick="next_banner_image();" class="next_banner_image" style="" />


<script>

function star_auto_machine()
{
	setInterval('show_main_banner_image()',10000);
}


var wss_i=1;


function next_banner_image()
{
  document.getElementById('banner_preview').innerHTML="";
  
image_row_total =document.getElementById('image_id_row_total').value;

main_total = image_row_total;

pro_id= wss_i++;

if(pro_id >= main_total){wss_i=1;}

new_image_next = 'kvt'+ pro_id;


my_image =document.getElementById(new_image_next).value;
 
	 
	   var  x = document.createElement("IMG");
	   x.style="float:left;width:100%;height:100%;";
       x.setAttribute("src", "main_building_images/"+my_image);

document.getElementById('banner_preview').appendChild(x);
document.getElementById('master_banner_div').style.display="none";

}


function back_banner_image()
{
  document.getElementById('banner_preview').innerHTML="";
image_row_total =document.getElementById('image_id_row_total').value;
main_total = image_row_total;

pro_id= wss_i--;

if(pro_id <= main_total){wss_i = main_total}

new_image_next = 'kvt'+ pro_id;

my_image =document.getElementById(new_image_next).value;
 
	 
	   var  x = document.createElement("IMG");
	   x.style="float:left;width:100%;height:100%;";
       x.setAttribute("src", "main_building_images/"+my_image);

document.getElementById('banner_preview').appendChild(x);
document.getElementById('master_banner_div').style.display="none";

}

function show_main_banner_image()
{
  document.getElementById('banner_preview').innerHTML="";
image_row_total =document.getElementById('image_id_row_total').value;
main_total ='kvt'+image_row_total;

pro_id='kvt'+wss_i++;

if(pro_id >= main_total){wss_i=1;}

my_image =document.getElementById(pro_id).value;
 
	 
	   var  x = document.createElement("IMG");
	   x.style="float:left;width:100%;height:100%;";
       x.setAttribute("src", "main_building_images/"+my_image);

document.getElementById('banner_preview').appendChild(x);
document.getElementById('master_banner_div').style.display="none";

}

</script>

</div>







<div id="search_area" class="search_area" >

<select id="search_description" class="main_select_search">
<option selected >Building Type</option>
<option >Residential</option>
<option >Commercial</option>
<option >Medical Shop</option>
<option >Office</option>
<option >Shop</option>

</select>

<select id="search_location" class="main_select_search">
<option selected disabled >Select Location</option>
<?php option_building_location(); ?>

</select>

<select id="search_furniture" class="main_select_search" style="">
<option selected disabled >Furniture Status</option>
<option>Fully Furnished</option>
<option>Semi Furnished</option>
<option>No Furniture</option>
</select>



<select id="search_bedroom"  class="main_select_search">
<option selected disabled >Select Bedroom</option>
<option>studio</option>
<option>1</option>
<option>2</option>
<option>3</option>
<option>4</option>
<option>5</option>
</select>


<button onClick="start_search();" class="main_search_btn" style="">Filter</button>
<button onClick="close_search_area_btn();" class="hide_search_area_btn" >Hide</button>

</div><!-- end of search_area-->






<div id="content_area" class="content_area">

<!--img src="background_image/DSC_2740.jpg" width="100%" height="100%" style="" classk="main_home_icon" /-->

<?php
  
  $get_advert ="select * from adverttb";
  $run_advert = mysqli_query($con,$get_advert);
  while($row_advert = mysqli_fetch_array($run_advert))
  {
	$post_id = $row_advert['id'];
	$building_name = $row_advert['building_name'];  
	$location = $row_advert['location']; 
	$bedroom = $row_advert['bedroom_no'];
	$bathroom = $row_advert['bathroom_no'];
	$furniture = $row_advert['furniture'];
	$image_url = $row_advert['image_url']; 
	$bd_status = $row_advert['description'];


?>

<div class="single_ad_div" >
<a href="ad_detail.php?ad_detail_id=<?php echo"$post_id";?>" ><img onClick="show_more_advert_images();" src="advert_images/<?php echo"$image_url"; ?>" class="advert_images" /></a>
<div class="single_ad_name" ><?php echo"<span style='float:left;font-size:1.2em;font-weight:bold;color:#1AA0F7;'>$building_name</span>"; ?><?php echo"<span style='float:right;font-size:1em;padding-right:1px;color:#717174;'>$bd_status</span>"; ?></div>


<div class="single_ad_location" >
<img src="kvt_con/location_icon2.png" width="30px" height="30px;" style="float:left;margin-top:5px;" />
<?php echo"$location"; ?>
</div>

<div class="ad_view_div" >

<?php
$get_ad_view ="select * from ad_viewstb where advert_id ='$post_id'";
$run_get_ad_view = mysqli_query($con,$get_ad_view);
$check_ad_view = mysqli_num_rows($run_get_ad_view);

if($check_ad_view >0){
	
	if($check_ad_view <2){echo"$check_ad_view view";}else{echo"$check_ad_view views";}
		
	}

?>


</div>

<div class="single_ad_bedroom" > 
<img src="kvt_con/bedroom_icon.png" width="40px" height="30px;" style="float:left;" />
<span style="float:left;width:25%;height:30px;line-height:40px;color:#33C125;margin-left:1%;backgroundk:orange;"><?php echo"$bedroom"; ?></span>
<img src="kvt_con/bathroom_icon.png" width="40px" height="30px;" style="float:left;margin-left:10px;" />
<span style="float:left;width:25%;height:30px;line-height:40px;color:#33C125;margin-left:1%;backgroundk:blue;"><?php echo"$bathroom"; ?></span>
</div>

<div class="single_furnished" ><?php echo"$furniture"; ?></div>
<!--a href="extraction.php?ad_id=<?php //echo"$post_id";?>" ><button>Add Image</button></a-->

</div>

<?php } ?>


</div><!--end of content_area-->








<script>

function show_search_area()
{

document.getElementById('main_home_left_mob').style.display="none";
document.getElementById('show_mob_menu_btn').style.display="block";
document.getElementById('close_mob_menu_btn').style.display="none";
document.getElementById('share_div_right').style.display="none";

	//main_banner_div_size = document.getElementById('main_banner').offsetWidth;
	//main_banner_div_ = document.getElementById('main_banner').offsetHeight;
	screen_size = screen.width;
	window.scrollTo(0,0);
	//alert(main_banner_div_size);
	
	if(screen_size < 600){
	//alert(screen_size);
	document.getElementById('search_area').style="margin-top:2%;display:block;";

	document.getElementById('main_banner').style.display="none";
	
 }else{
	 document.getElementById('search_area').style.display="block";
	 document.getElementById('main_banner').style.display="block";
	 }
 
 

}

function close_search_area_btn()
{
	document.getElementById('search_area').style.display="none";
	document.getElementById('main_banner').style.display="block";
}



function start_search()
{
	search_description = document.getElementById('search_description').value;	
    search_location = document.getElementById('search_location').value;
    search_furniture = document.getElementById('search_furniture').value;
    search_bedroom = document.getElementById('search_bedroom').value;
    
    xmlhttp = new XMLHttpRequest();
	xmlhttp.open("GET","khalaf_auto.php?search_description="+search_description+"&search_location="+search_location+"&search_furniture="+search_furniture+"&search_bedroom="+search_bedroom+"&status=search_advert_disp",false);
	xmlhttp.send(null);
	
	document.getElementById('search_result_output').innerHTML =xmlhttp.responseText;
	
	document.getElementById('content_area').style.display="none";
	document.getElementById('search_result_div').style.display="block";
	
 	//alert(search_description);

}



</script>





<div id="search_result_div" class="search_result_div" >
<div id="search_result_output"></div>


</div>




<div class="main_remmie">@Khalaf Sons Real Estate</div>

</body>
</html>

Youez - 2016 - github.com/yon3zu
LinuXploit