403Webshell
Server IP : 127.0.0.1  /  Your IP : 216.73.216.48
Web Server : Apache/2.4.58 (Win64) OpenSSL/3.1.3 PHP/8.2.12
System : Windows NT DESKTOP-3H4FHQJ 10.0 build 19045 (Windows 10) AMD64
User : win 10 ( 0)
PHP Version : 8.2.12
Disable Function : NONE
MySQL : OFF |  cURL : ON |  WGET : OFF |  Perl : OFF |  Python : OFF |  Sudo : OFF |  Pkexec : OFF
Directory :  D:/xampp/htdocs-coblaa/Cinevaa/

Upload File :
current_dir [ Writeable] document_root [ Writeable]

 

Command :

[ Back ]     

Current File : D:/xampp/htdocs-coblaa/Cinevaa/admin_temp.php
<?php include('db.php');
session_start();
if (!isset($_SESSION['my_id'])) {
    header("Location: login.php");
    exit();
}
 ?>
<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <link href="https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/css/bootstrap.min.css" rel="stylesheet">
    <title>Admin Control Panel</title>
</head>
<body class="bg-light">
    <div class="container mt-5">
        
        <?php if(isset($_GET['msg'])): ?>
            <div class="alert alert-success alert-dismissible fade show" role="alert">
                <?php echo $_GET['msg']; ?>
                <button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="Close"></button>
            </div>
        <?php endif; ?>

		
		<!--div class="d-flex justify-content-between align-items-center mb-3 bg-white p-3 shadow-sm rounded">
    <div>
        <h3 class="mb-0">Admin Management</h3>
        <small class="text-muted">Logged in as: <strong><?php echo $_SESSION['my_id']; ?></strong></small>
    </div>
    <div>
	<a href="admin_payments" class="btn btn-primary btn-sm">Payment</a>
        <a href="add_admin.php" class="btn btn-primary btn-sm">+ Add New Admin</a>
        <a href="logout.php" class="btn btn-outline-danger btn-sm">Logout</a>
    </div>
</div-->
	
<div class="d-flex justify-content-between align-items-center mb-3 bg-white p-3 shadow-sm rounded">
    <div>
        <h3 class="mb-0">Admin Management</h3>
        <small class="text-muted">Logged in as: <strong><?php echo $_SESSION['my_id']; ?></strong></small>
    </div>
    
    <form action="admin_temp" method="GET" class="d-flex ms-auto me-3">
        <input type="text" name="search" class="form-control form-control-sm me-2" placeholder="Search name or email..." value="<?php echo isset($_GET['search']) ? $_GET['search'] : ''; ?>">
        <button type="submit" class="btn btn-sm btn-outline-secondary">Search</button>
        <?php if(isset($_GET['search'])): ?>
            <a href="admin_temp" class="btn btn-sm btn-link text-decoration-none">Clear</a>
        <?php endif; ?>
    </form>

    <div>
	<a href="admin_stat" class="btn btn-primary btn-sm">Admi Stat</a>
	<a href="admin_movie_dash" class="btn btn-primary btn-sm">Movies</a>
	<a href="admin_payments" class="btn btn-primary btn-sm">Payments</a>
        <a href="add_admin.php" class="btn btn-primary btn-sm">+ Add New Admin</a>
        <a href="logout.php" class="btn btn-outline-danger btn-sm">Logout</a>
    </div>
</div>	
		

        <div class="card shadow-sm">
            <div class="card-body p-0">
                <table class="table table-hover mb-0">
                    <thead class="table-dark">
                        <tr>
                            <th>ID</th>
                            <th>Username</th>
                            <th>Email</th>
                            <th>Role</th>
                            <th class="text-center">Actions</th>
                        </tr>
                    </thead>
                    <tbody>
                        <?php
						// Check if a search term was provided
if (isset($_GET['search']) && !empty($_GET['search'])) {
    $search = mysqli_real_escape_string($con, $_GET['search']);
    // Search in both username and email columns
    $query = "SELECT * FROM admins WHERE username LIKE '%$search%' OR email LIKE '%$search%' ORDER BY id DESC";
} else {
    $query = "SELECT * FROM admins ORDER BY id DESC";
}
$result = mysqli_query($con, $query);
                        
                        if(mysqli_num_rows($result) > 0) {
                            while($row = mysqli_fetch_assoc($result)) {
                                $roleBadge = ($row['role'] == 'superadmin') ? 'bg-primary' : 'bg-info';
                                echo "<tr>

                                        <td>{$row['id']}</td>
                                        <td><strong>{$row['username']}</strong></td>
                                        <td>{$row['user_id']}</td>
                                        <td><span class='badge $roleBadge'>{$row['role']}</span></td>
                                        <td class='text-center'>
                                            <a href='edit.php?id={$row['id']}' class='btn btn-sm btn-warning'>Edit</a>
                                            <a href='delete.php?id={$row['id']}' class='btn btn-sm btn-danger' onclick='return confirm(\"Are you sure?\")'>Delete</a>
                                        </td>
                                      </tr>";
                            }
                        } else {
                            echo "<tr><td colspan='5' class='text-center py-4'>No admins found.</td></tr>";
                        }
                        ?>
						
		
						
						
						
						
                    </tbody>
                </table>
            </div>
        </div>
    </div>

    <script src="https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.bundle.min.js"></script>
</body>
</html>

Youez - 2016 - github.com/yon3zu
LinuXploit