403Webshell
Server IP : 127.0.0.1  /  Your IP : 216.73.216.48
Web Server : Apache/2.4.58 (Win64) OpenSSL/3.1.3 PHP/8.2.12
System : Windows NT DESKTOP-3H4FHQJ 10.0 build 19045 (Windows 10) AMD64
User : win 10 ( 0)
PHP Version : 8.2.12
Disable Function : NONE
MySQL : OFF |  cURL : ON |  WGET : OFF |  Perl : OFF |  Python : OFF |  Sudo : OFF |  Pkexec : OFF
Directory :  D:/xamppkk/htdocs-coblaa/cb_image/

Upload File :
current_dir [ Writeable] document_root [ Writeable]

 

Command :

[ Back ]     

Current File : D:/xamppkk/htdocs-coblaa/cb_image/studio.php
<html>

<?php 
session_start();
include('db.php'); 

if(isset($_SESSION['my_id']))
{
$my_id = $_SESSION['my_id'];		
}
?>

<div style="display:none;" >
 <?php
$user_ip = getenv('REMOTE_ADDR');
$geo = unserialize(file_get_contents("http://www.geoplugin.net/php.gp?ip=$user_ip"));
$city = $geo["geoplugin_city"];
$region = $geo["geoplugin_regionName"];
$country = $geo["geoplugin_countryName"];
/*echo"$user_ip";
echo "City: ".$city."<br>";
echo "Region: ".$region."<br>";
echo "Country: ".$country."<br>";
/*
geoplugin_request
geoplugin_status
geoplugin_credit
geoplugin_city
geoplugin_region
geoplugin_areaCode
geoplugin_dmaCode
geoplugin_countryCode
geoplugin_countryName
geoplugin_continentCode
geoplugin_latitude
geoplugin_longitude
geoplugin_regionCode
geoplugin_regionName
geoplugin_currencyCode
geoplugin_currencySymbol
geoplugin_currencySymbol_UTF8
geoplugin_currencyConverter
*/


?>
</div>

<head>

<title>crane blue studio</title>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<!--link rel="icon" href="kvt_con/khalaf_log.jpg" type="image/ico"-->
<link rel="stylesheet" type="text/css" href="main_css/studio.css" />

</head>
<input type="text" id="my_id" value="<?php echo"$my_id";?>" style="display:none;" />


<body>

<?php

if(!isset($_SESSION['my_id']))
{
		
echo"<script>window.open('login','_self')</script>";

}else{ //$my_id = $_SESSION['id'];
	 $studio_user ="select * from studio_usertb where my_id='$my_id' ";
	 $run_studio = mysqli_query($con,$studio_user);
	 $check_studio = mysqli_num_rows($run_studio);
	 
	 if($check_studio <1){ ?>
		 
	<a href="index"><button class="main_close_btn" >x</button></a>	 
<div class="create_studio_div">

<div class="studio_title" >Create New Studio </div>

<div class="login_lebal" >Studio Name</div>
<input id="studio_name_input" class="sel_category" />
<div class="login_lebal" >Description</div>
<input id="studio_description" class="sel_category" />
<div id="disp_erorr_output" class="display_output" ></div>

<button onClick="save_new_studio();"  class="studio_create_btn" >Create</button>

</div><!--end of login_div-->	 
		 		 
<?php }else{

	 
	 while($row_studio = mysqli_fetch_array($run_studio))
	 {
		$studio_id = $row_studio['id'];
		$channel_name = $row_studio['channel_name'];
		$image_url = $row_studio['image_url'];
		$channel_description = $row_studio['description'];


 ?>



<div class="main_home">
<a href="logout"  ><button idk="upload_btn" class="st_head_btn" >Logout</button></a>
<a href="upload"  ><button idk="upload_btn" class="st_head_btn" >Upload</button></a>
<a href="index"><button class="st_head_btn">Home</button></a>
</div>


<div class="main_container">
<div class="sub_container">

 <div class="studio_head">
 <div class="st_head_profile"><img src="avatar_image/avatar2.jpg" width="100%" height="100%" /></div>
 <div class="st_name"><?php echo $channel_name;  ?></div>
 <div class="st_description"><?php echo $channel_description;  ?></div>
 

 
 </div>
 
 
  <div class="earn_div">
  <div class="post_total">Ugx<span id="ugx_earnings_output" class="total_post_output"></span></div>
  <div class="post_total">Points <span id="point_count_output" class="total_post_output"></span></div>
  <div class="post_total">Posts <span id="post_count_output" class="total_post_output"></span></div>  
  </div>


<div class="main_content">
<div id="disp_user_post_output"></div>

</div>

</div>


</div>

		 <?php } ?>


<div class="add_category_div" style="display:none;">

<div class="login_acc_title" >Add New Categories </div>

<div class="login_lebal" >Category</div>
<input id="category_input" class="sel_category" />

<div id="new_blog_error_output" class="new_blog_error_output"></div>

<div id="disp_cat_output" class="display_output" ></div>

<button onClick="save_category();"  class="blog_publish_btn" >Add</button>



</div><!--end of login_div-->






<?php } } ?>

<script>
//this code for textarea auto resize
function auto_grow(element)
{ 
document.getElementById('blog_decription').addEventListener("input", function(){
	this.style.height ='inherit';
	var height = this.scrollHeight;
	this.style.height = height+"px";
	
	
} );

}

function auto_grow2(element)
{ 
document.getElementById('blog_details').addEventListener("input", function(){
	this.style.height ='inherit';
	var height = this.scrollHeight;
	this.style.height = height+"px";
	
	
} );

}

/////////////////////////////////////////////////////////////////////////////////

function save_category()
{
	//my_id = document.getElementById('my_id').value;
	my_id =1;
	category_input = document.getElementById('category_input').value;
	
	xmlhttp = new XMLHttpRequest();
   xmlhttp.open("get","auto_page.php?my_id="+my_id+"&&category_input="+category_input+"&&status=insert_category",false);
  xmlhttp.send(null);
  document.getElementById('disp_cat_output').innerHTML =xmlhttp.responseText;
  document.getElementById('category_input').value="";
	
	//alert(my_id);
	
	

}

/////////////////////////////////////////////////////////////////////////////////////////////////////////

function save_new_studio()
{  
	my_id = document.getElementById('my_id').value;
	studio_name = document.getElementById('studio_name_input').value;
	studio_description = document.getElementById('studio_description').value;

	xmlhttp = new XMLHttpRequest();
   xmlhttp.open("get","auto_page.php?my_id="+my_id+"&&studio_name="+studio_name+"&&studio_description="+studio_description+"&&status=insert_new_studio",false);
   xmlhttp.send(null);
   document.getElementById('disp_erorr_output').innerHTML =xmlhttp.responseText;
   
    cur_status = document.getElementById('vicent').value;
	//alert(11);
	if(cur_status =='vicent'){ window.open('studio','_self');}else{alert(3);}
	
	

}

////////////////////////////////////////////////////////////////////////////////////////////////////







function blog_publish()
{
my_id = document.getElementById('my_id').value;
blog_title_input = document.getElementById('blog_title_input').value;
blog_decription = document.getElementById('blog_decription').value;
blog_details = document.getElementById('blog_details').value;
//curr_image = document.getElementById('image_input').value;
curr_image = document.getElementById('image_input').files[0];
blog_video = document.getElementById('blog_video').value;

back_link_url = document.getElementById('back_link_url').value;
back_link_lebal = document.getElementById('back_link_lebal').value;


if(blog_title_input ==""){
document.getElementById('new_blog_error_output').innerHTML="Your Blog Must Have A Title And Description.";	

}else{
	
	
 /* xmlhttp = new XMLHttpRequest();
 // xmlhttp.open("GET","auto_page.php?status=display_new_release",false);
   xmlhttp.open("get","upload_auto_page.php?my_id="+my_id+"&&blog_title_input="+blog_title_input+"&&blog_decription="+blog_decription+"&&blog_details="+blog_details+"&&blog_video="+blog_video+"&&status=insert_blog_post",false);
  xmlhttp.send(null);
  document.getElementById('new_blog_error_output').innerHTML =xmlhttp.responseText;*/

      var formdata = new FormData();
      formdata.append('image_input',curr_image);
	  
	  ajax = new XMLHttpRequest();
	  ajax.addEventListener("load", completeHandler, false);
	  //ajax.open("POST","upload_auto_page.php?status=insert_blog_post");
	  ajax.open("POST","upload_auto_page.php?my_id="+my_id+"&&blog_title_input="+blog_title_input+"&&blog_decription="+blog_decription+"&&blog_details="+blog_details+"&&blog_video="+blog_video+"&&back_link_url="+back_link_url+"&&back_link_lebal="+back_link_lebal+"&&status=insert_blog_post",false);
	  ajax.send(formdata);
	 // document.getElementById('upload_help_div').style.display="block";
	document.getElementById('new_blog_error_output').innerHTML =ajax.responseText;
	  
	  	function completeHandler()
	{

	
	}//alert(88);
}
}

//////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
disp_user_post();
function disp_user_post()
{
	my_id = document.getElementById('my_id').value;
	xmlhpttp = new XMLHttpRequest();
	xmlhpttp.open("GET","auto_page.php?my_id="+my_id+"&&status=disp_user_post",false);
	xmlhpttp.send(null);
	document.getElementById('disp_user_post_output').innerHTML =xmlhpttp.responseText;
	
}

disp_post_count();
function disp_post_count()
{
	my_id = document.getElementById('my_id').value;
	xmlhpttp = new XMLHttpRequest();
	xmlhpttp.open("GET","auto_page.php?my_id="+my_id+"&&status=disp_post_count",false);
	xmlhpttp.send(null);
	document.getElementById('post_count_output').innerHTML =xmlhpttp.responseText;
	
}  

disp_point_count();
function disp_point_count()
{
	my_id = document.getElementById('my_id').value;
	xmlhpttp = new XMLHttpRequest();
	xmlhpttp.open("GET","auto_page.php?my_id="+my_id+"&&status=disp_point_count",false);
	xmlhpttp.send(null);
	document.getElementById('point_count_output').innerHTML =xmlhpttp.responseText;
	
}

disp_ugx_earnings();
function disp_ugx_earnings()
{
	my_id = document.getElementById('my_id').value;
	xmlhpttp = new XMLHttpRequest();
	xmlhpttp.open("GET","auto_page.php?my_id="+my_id+"&&status=disp_ugx_earnings",false);
	xmlhpttp.send(null);
	document.getElementById('ugx_earnings_output').innerHTML =xmlhpttp.responseText;
	
}

</script>


</body>
</html>

Youez - 2016 - github.com/yon3zu
LinuXploit