403Webshell
Server IP : 127.0.0.1  /  Your IP : 216.73.216.48
Web Server : Apache/2.4.58 (Win64) OpenSSL/3.1.3 PHP/8.2.12
System : Windows NT DESKTOP-3H4FHQJ 10.0 build 19045 (Windows 10) AMD64
User : win 10 ( 0)
PHP Version : 8.2.12
Disable Function : NONE
MySQL : OFF |  cURL : ON |  WGET : OFF |  Perl : OFF |  Python : OFF |  Sudo : OFF |  Pkexec : OFF
Directory :  D:/xampp/htdocs-coblaa/market/

Upload File :
current_dir [ Writeable] document_root [ Writeable]

 

Command :

[ Back ]     

Current File : D:/xampp/htdocs-coblaa/market/login_org.php
<html>

<?php 
session_start();
include('db.php'); 
//include('function.php');
?>


 <?php
$user_ip = getenv('REMOTE_ADDR');
$geo = unserialize(file_get_contents("http://www.geoplugin.net/php.gp?ip=$user_ip"));
$city = $geo["geoplugin_city"];
$region = $geo["geoplugin_regionName"];
$country = $geo["geoplugin_countryName"];
/*echo"$user_ip";
echo "City: ".$city."<br>";
echo "Region: ".$region."<br>";
echo "Country: ".$country."<br>";
/*
geoplugin_request
geoplugin_status
geoplugin_credit
geoplugin_city
geoplugin_region
geoplugin_areaCode
geoplugin_dmaCode
geoplugin_countryCode
geoplugin_countryName
geoplugin_continentCode
geoplugin_latitude
geoplugin_longitude
geoplugin_regionCode
geoplugin_regionName
geoplugin_currencyCode
geoplugin_currencySymbol
geoplugin_currencySymbol_UTF8
geoplugin_currencyConverter
*/


?>


<head>

<title>online store</title>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<!--link rel="icon" href="kvt_con/khalaf_log.jpg" type="image/ico"-->
<link rel="stylesheet" type="text/css" href="main_css/login.css" />

</head>

<body>

<div class="main_home_area">

<div class="main_home_tile">Cb Market</div>

<div class="sub_home_btn_area">
<a href="http://buyznow.ml"><button class="home_btn">Home</button></a>

<!--a href="upload_ad.php"><button class="home_upload_ad_btn">Upload Ad</button></a-->

</div>

<script>


</script>

</div>
<div class="positioning_div"></div>



<div class="create_new_account_div">

<form method="post" enctype="multipart/form-data" >

<div class="create_acc_title" >Create New Account</div>

<input type="text" id="create_acc_fname" name="create_acc_fname" class="create_acc_input" placeholder="Frist Name" />
<input type="text" id="create_acc_lname" name="create_acc_lname" class="create_acc_input" placeholder="Last Name" />
<input type="text" id="create_acc_email" name="create_acc_email" class="create_acc_input" placeholder="Email" />
<input type="text" id="create_acc_contact" name="create_acc_contact" class="create_acc_input" placeholder="Contact" />
<input type="password" id="create_acc_password" name="create_acc_password" class="create_acc_input" placeholder="Password" />
<input type="password" id="confirm_pass" name="confirm_pass" class="create_acc_input" placeholder="Confirm Password" />

<?php
if(isset($_POST['create_acc_btn']))
{
	$message_out="";
	$fname = $_POST['create_acc_fname'];
	$lname = $_POST['create_acc_lname'];
	$create_acc_email = $_POST['create_acc_email'];
	$create_acc_contact = $_POST['create_acc_contact'];
	$create_acc_password = $_POST['create_acc_password'];
	$confirm_pass = $_POST['confirm_pass'];
	
	if($create_acc_password !== $confirm_pass){$message_out="<span style='color:red;'>Your Password Does Not Match.</span>";}
	else{
		$insert_user ="insert into userstb (first_name,last_name,email,contact,password,country,city,curr_date,curr_time) 
		values ('$fname','$lname','$create_acc_email','$create_acc_contact','$create_acc_password','$country','$city',CURDATE(),CURTIME() )";
		$run_insert_user = mysqli_query($con,$insert_user);
		if(!$run_insert_user){$message_out="<span style='color:red;'>Something Went Wrong,Your Information Has Not Been Saved.</span>";}
	}
	
	
?>

<div id="create_output" class="create_output"><?php echo"$message_out"; ?></div>
<script> document.getElementById('create_output').style.display="block"; </script>
<?php } ?>

<div id="create_output" class="create_output"></div>
<button id="create_acc_btn" name="create_acc_btn" class="create_acc_btn" style="display:none;" >Create Now</button>

</form>

<button id="check_create_acc_btn" onClick="check_create_acc_info();" class="create_acc_btn" style="display:block;" >Next</button>

<script>

function check_create_acc_info()
{	
	create_acc_fname = document.getElementById('create_acc_fname').value;
	create_acc_lname = document.getElementById('create_acc_lname').value;
	create_acc_email = document.getElementById('create_acc_email').value;
	create_acc_contact = document.getElementById('create_acc_contact').value;
	create_acc_password = document.getElementById('create_acc_password').value;
	confirm_pass = document.getElementById('confirm_pass').value;
	
	if(create_acc_fname =="" || create_acc_lname =="" || create_acc_email =="" || create_acc_contact =="" || create_acc_password =="" || confirm_pass =="")
	{
		document.getElementById('create_output').style.display="block";
		document.getElementById('create_output').innerHTML="<span style='color:red;'>Fill All The Spaces</span>";
	}else{
	
	if(create_acc_password !== confirm_pass){
		document.getElementById('create_output').style.display="block";
		document.getElementById('create_output').innerHTML="<span style='color:red;'>Your Password Does Not Match.</span>";
		
	}else{
document.getElementById('create_acc_btn').style.display="block";
document.getElementById('check_create_acc_btn').style.display="none";	
document.getElementById('create_output').style.display="none";
}

}
}
</script>


</div><!--end of create_new_account_div-->








<div class="login_div">

<form method="post" enctype="multipart/form-data" >

<div class="login_acc_title" >Welcome to Login window</div>

<input type="text" name="login_email" class="login_acc_input" placeholder="Enter one of ur name or email to login" />
<input type="password" name="login_password" class="login_acc_input" placeholder="Password" />

<!--div id="login_output" class="login_output"></div-->



<?php
if(isset($_POST['login_acc_btn']))
{
	$email = $_POST['login_email'];
	$password = $_POST['login_password'];
	
	$get_user ="select * from userstb where email='$email' AND password='$password' OR first_name='$email' AND password='$password' OR last_name='$email' AND password='$password' ";
	$run_get_user = mysqli_query($con,$get_user);
	$check_user = mysqli_num_rows($run_get_user);
	if($check_user <1){echo"<div class='login_output'>Check Your Email,Username or Password And Try Again.</div>";
	
	}else{
		
    while($row_get_user = mysqli_fetch_array($run_get_user))
	{
		$user_id = $row_get_user['id'];
		$user_email = $row_get_user['email'];
		$_SESSION['id']=$user_id;
	    $_SESSION['email']=$user_email;
		echo"<script>window.open('craneblue.ml/eam/eam.php', '_self')</script>";
	}
	
	}
}


?>

<button id="login_acc_btn" name="login_acc_btn" class="login_acc_btn" >Login</button>

</form>


</div><!--end of login_div-->





</body>
</html>

Youez - 2016 - github.com/yon3zu
LinuXploit