403Webshell
Server IP : 127.0.0.1  /  Your IP : 216.73.216.48
Web Server : Apache/2.4.58 (Win64) OpenSSL/3.1.3 PHP/8.2.12
System : Windows NT DESKTOP-3H4FHQJ 10.0 build 19045 (Windows 10) AMD64
User : win 10 ( 0)
PHP Version : 8.2.12
Disable Function : NONE
MySQL : OFF |  cURL : ON |  WGET : OFF |  Perl : OFF |  Python : OFF |  Sudo : OFF |  Pkexec : OFF
Directory :  D:/xamppkk/htdocs-coblaa/cranepay/

Upload File :
current_dir [ Writeable] document_root [ Writeable]

 

Command :

[ Back ]     

Current File : D:/xamppkk/htdocs-coblaa/cranepay/extraction.php
<html>

<?php
include('db.php');
session_start();
$mein =2;	
if(isset($_SESSION['id']))
{
$my_id = $_SESSION['id'];		



//////////////////////////////////////////////////////////////////////////////////// 
?>
<input id="my_id" style="display:none;" value="<?php echo"$my_id";?>" />
<head>
<title>CrinePay</title>
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<link rel="stylesheet" type="text/css" href="main_css/extraction.css?v2" />

</head>

<body onclick="get_focused();" stylek="background:red;" >

<div class="home_div">

<button onclick="show_exc_rate();" class="home_btn">Update Rate</button>
<button onclick="show_transaction();" class="home_btn">Trans</button>
<button onclick="play_now2();" class="home_btn">Notify</button>
<button onclick="show_user_list();" class="home_btn">User</button>

</div>

<div class="main_content" >




<div id="trans_history_div" class="trans_history_div" >

<div id="pend_deposit_output"></div>
<div id="pend_withdraw_output" class="transs" ></div>
<div id="singletrans_output" class="transs"></div>


</div>


<?php
if(isset($_GET['extra']))
{ 
     $finish_w_id = $_GET['extra'];

?>

<div class="finish_withdraw " >
<div class="finish_w_title" >Finish  withdrawal</div>
<input type="text" id="f_w_acc_no" placeholder="Enter Acc no" class="finish_w_input" />
<input type="text" id="f_w_amt" placeholder="Amout" class="finish_w_input" />
<input type="text" id="f_w_passcode" placeholder="Passcode" class="finish_w_input" />
<input type="Password" id="f_w_password" placeholder="Password" class="finish_w_input" />
<div id="error_ouput" class="error_ouput" ></div>
<button onclick="finish_w_save();" class="finish_w_save_btn">Save</button>

</div>

<script>
document.getElementById('trans_history_div').style.display="none";
</script>
<?php } ?>

<?php
if(isset($_GET['extra2']))
{ 
     $finish_s_id = $_GET['extra2'];

?>

<div class="finish_withdraw " >
<div class="finish_w_title" >Finish  Send</div>
<input type="text" id="receiver_mobile" placeholder="Enter receiver no" class="finish_w_input" />
<input type="text" id="send_trans_id" placeholder="Trans id" class="finish_w_input" />

<input type="Password" id="f_s_password" placeholder="Password" class="finish_w_input" />
<div id="error_ouput" class="error_ouput" ></div>
<button onclick="finish_send_on_mm_save();" class="finish_w_save_btn">Enter</button>
<input id="post_id" value="<?php echo $finish_s_id ?>" style="display:none;"  />
</div>
<script>
document.getElementById('trans_history_div').style.display="none";
</script>

<?php } ?>

<?php
if(isset($_GET['extra3']))
{ 
     $deposit_id = $_GET['extra3'];

?>

<div class="finish_withdraw " >
<div class="finish_w_title" >Finish  Deposit</div>
<input type="text" id="deposit_trans_id" placeholder="Enter Trans id" class="finish_w_input" />

<input type="Password" id="f_d_password" placeholder="Password" class="finish_w_input" />
<div id="error_ouput" class="error_ouput" ></div>
<button onclick="deposit_save();" class="finish_w_save_btn">Finish</button>
<input id="deposit_id" value="<?php echo $deposit_id ?>"  />
</div>

<script>
document.getElementById('trans_history_div').style.display="none";
</script>

<?php } ?>

<?php
if(isset($_GET['extra4']))
{ 
     $finish_ex_id = $_GET['extra4'];

?>
<input id="exc_id" value="<?php echo $finish_ex_id; ?>"/>
<div class="finish_withdraw " >
<div class="finish_w_title" >Finish  Exchange</div>
<input type="text" id="f_ex_acc_no" placeholder="Enter Acc no" class="finish_w_input" />
<input type="number" id="f_ex_amt" placeholder="Amout" class="finish_w_input" />
<input type="text" id="f_ex_benefit_id" placeholder="Benefit id" class="finish_w_input" />
<input type="Password" id="f_ex_password" placeholder="Password" class="finish_w_input" />
<div id="error_ouput" class="error_ouput" ></div>
<button onclick="finish_ex_save();" class="finish_w_save_btn">Save</button>

</div>

<script>
document.getElementById('trans_history_div').style.display="none";
</script>
<?php } ?>


<div id="exchange_div" class="exchange_div" >

<div class="exc_single_div" >
 <img src="main_icon/bhd_f.png" class="flag_img" />
 <span class="flag_lebal">BHD</span>
 <input type="number" id="base_currency" onkeyup="calculate_rate();" class="exchange_input" value="1" />
</div>
<div class="exc_lebal2" >To</div>
<div class="exc_single_div" >
 <img src="main_icon/ug_f.png" class="flag_img" />
 <span class="flag_lebal">UGX</span>
 <!--input class="exchange_input" /-->

  <input type="number" id="second_currency" onkeyup="calculate_rate();" class="exchange_input" value="9652.21" />
</div>

<button id="exc_next_btn" onclick="Update_exhange_rate();" class="exc_next_btn">Update</button>

</div>






<div id="notif_text_output" class=""></div>


<div id="user_list_div" class="user_list_div">
<span class="user_list_title">User List</span>
<?php
	$check_bank_info ="select * from banktb ";
	$run_check_bank_info = mysqli_query($con,$check_bank_info);
	while($row_check_bank_info = mysqli_fetch_array($run_check_bank_info))
	{
		$userfname = $row_check_bank_info['fname'];
	$account_no = $row_check_bank_info['account_no'];
	$total_amount = $row_check_bank_info['acc_amount'];

?>
<div id="" class="">
<span class="user_list_lebal"><?php echo $userfname;  ?></span>
<span class="user_list_lebal2"><?php echo $account_no;  ?></span>
<span class="user_list_lebal2"><?php echo $total_amount;  ?></span>

</div>
	<?php  }   ?>
</div>



<script>

function play_now2()
{
	document.getElementById('uou').value=1;
}
let src='not_ton/drum.mp3';
function play_now()
{
let audio = new Audio(src);
audio.play();
}
/*
setInterval(function() {
	song = document.getElementById('uou').value;
if(song ==1){
	play_now(); //alert(11);
	document.getElementById('uou').value=1;
}
	}, 30000);*/

setInterval(function() {show_notif_text();}, 10000);
function show_notif_text()
{
	xmlhttp = new XMLHttpRequest();
	xmlhttp.open("GET","autopage2.php?status=show_notif_text",false);
	xmlhttp.send(null);
	document.getElementById('notif_text_output').innerHTML =xmlhttp.responseText;	
	incoming_notif = document.getElementById('incoming_notif').value;
	if(incoming_notif ==1){
	play_now(); //alert(11); 

}

}



st=1;
function show_transaction()
{
	if(st ==1){
	document.getElementById('singletrans_output').style.display="block";
	document.getElementById('pend_withdraw_output').style.display="block";
	document.getElementById('exchange_div').style.display="none";
	display_trans();
	display_pend_trans();
	st=0;
	}else{
		document.getElementById('singletrans_output').style.display="none";
		document.getElementById('pend_withdraw_output').style.display="none";
		st=1;
	}
}


function display_trans()
{
	my_id = document.getElementById('my_id').value;
	xmlhttp = new XMLHttpRequest();
	xmlhttp.open("GET","autopage2.php?my_id="+my_id+"&&status=display_trans",false);
	xmlhttp.send(null);
	document.getElementById('singletrans_output').innerHTML =xmlhttp.responseText;	
	
}

function display_pend_trans()
{
	my_id = document.getElementById('my_id').value;
	xmlhttp = new XMLHttpRequest();
	xmlhttp.open("GET","autopage2.php?my_id="+my_id+"&&status=display_pend_trans",false);
	xmlhttp.send(null);
	document.getElementById('pend_withdraw_output').innerHTML =xmlhttp.responseText;	
//alert(34);	
}






function finish_w_save()
{
	my_id = document.getElementById('my_id').value;
	f_w_acc_no = document.getElementById('f_w_acc_no').value;
	f_w_amt = document.getElementById('f_w_amt').value;
	f_w_passcode = document.getElementById('f_w_passcode').value;
	f_w_password = document.getElementById('f_w_password').value;
	
	if(f_w_acc_no=="" || f_w_amt=="" || f_w_passcode=="" || f_w_password==""){
		document.getElementById('error_ouput').innerHTML ="Fill all the fields";
		document.getElementById('error_ouput').style ="color:red;";
	}else{
	
	
	xmlhttp = new XMLHttpRequest();
	xmlhttp.open("GET","autopage.php?my_id="+my_id+"&&f_w_acc_no="+f_w_acc_no+"&&f_w_amt="+f_w_amt+"&&f_w_passcode="+f_w_passcode+"&&f_w_password="+f_w_password+"&&status=finish_w_save",false);
	xmlhttp.send(null);
	document.getElementById('error_ouput').innerHTML =xmlhttp.responseText;
	
	document.getElementById('f_w_passcode').value="";
	document.getElementById('f_w_password').value="";
}

}

function finish_send_on_mm_save()
{
	my_id = document.getElementById('my_id').value;
	receiver_mobile_no = document.getElementById('receiver_mobile').value;
	send_trans_id = document.getElementById('send_trans_id').value;
	f_s_password = document.getElementById('f_s_password').value;
	post_id = document.getElementById('post_id').value;
	
		if(receiver_mobile_no=="" || f_s_password=="" || send_trans_id==""){
			document.getElementById('error_ouput').innerHTML ="Fill all the fields";
			document.getElementById('error_ouput').style ="color:red;";
	}else{
		trans_leng = send_trans_id.length;
		if(trans_leng !==11){
		document.getElementById('error_ouput').innerHTML ="Check the trans id";
		document.getElementById('error_ouput').style ="color:red;";
		}else{
			
	xmlhttp = new XMLHttpRequest();
	xmlhttp.open("GET","autopage.php?my_id="+my_id+"&&receiver_mobile_no="+receiver_mobile_no+"&&f_s_password="+f_s_password+"&&send_trans_id="+send_trans_id+"&&post_id="+post_id+"&&status=finish_s_save",false);
	xmlhttp.send(null);
	document.getElementById('error_ouput').innerHTML =xmlhttp.responseText;
	document.getElementById('f_s_password').value="";
	document.getElementById('receiver_mobile').value="";
	document.getElementById('send_trans_id').value="";
			
		}
		
	
	
	}

}

function deposit_save()
{
	my_id = document.getElementById('my_id').value;
	deposit_trans_id = document.getElementById('deposit_trans_id').value;
	f_d_password = document.getElementById('f_d_password').value;
	deposit_id = document.getElementById('deposit_id').value;
	
	if(deposit_trans_id=="" || f_d_password==""){
	document.getElementById('error_ouput').innerHTML ="Fill all the fields";
	document.getElementById('error_ouput').style="color:red;";
	}else{
	xmlhttp = new XMLHttpRequest();
	xmlhttp.open("GET","autopage.php?my_id="+my_id+"&&deposit_trans_id="+deposit_trans_id+"&&f_d_password="+f_d_password+"&&deposit_id="+deposit_id+"&&status=finish_d_save",false);
	xmlhttp.send(null);
	document.getElementById('error_ouput').innerHTML =xmlhttp.responseText;	
	
	document.getElementById('deposit_trans_id').value="";
	document.getElementById('f_d_password').value="";
		
	}
	
}

function finish_ex_save()
{
	my_id = document.getElementById('my_id').value;
	finish_ex_id = document.getElementById('exc_id').value;
	f_ex_acc_no = document.getElementById('f_ex_acc_no').value;
	f_ex_amt = document.getElementById('f_ex_amt').value;
	f_ex_benefit_id = document.getElementById('f_ex_benefit_id').value;
	f_ex_password = document.getElementById('f_ex_password').value;

	if(f_ex_acc_no=="" || f_ex_amt=="" || f_ex_password=="" || f_ex_benefit_id==""){
	document.getElementById('error_ouput').innerHTML ="Fill all the fields";
	document.getElementById('error_ouput').style="color:red;";
	}else{
		
	benf_id_leng = f_ex_benefit_id.length;
	if(benf_id_leng !==29){
	document.getElementById('error_ouput').innerHTML ="Check the trans id";
	document.getElementById('error_ouput').style ="color:red;";
	}else{
		
	xmlhttp = new XMLHttpRequest();
	xmlhttp.open("GET","autopage2.php?my_id="+my_id+"&&finish_ex_id="+finish_ex_id+"&&f_ex_acc_no="+f_ex_acc_no+"&&f_ex_amt="+f_ex_amt+"&&f_ex_benefit_id="+f_ex_benefit_id+"&&f_ex_password="+f_ex_password+"&&status=finish_exc_save",false);
	xmlhttp.send(null);
	document.getElementById('error_ouput').innerHTML =xmlhttp.responseText;	

	}
	}
}
var exc_status =0;
function show_exc_rate()
{
	if(exc_status ==0){
	document.getElementById('exchange_div').style.display="block";
	document.getElementById('singletrans_output').style.display="none";
	document.getElementById('pend_withdraw_output').style.display="none";	
	exc_status=1;
	}else{
	document.getElementById('exchange_div').style.display="none";
	exc_status=0;		
	}
}
function Update_exhange_rate()
{
	my_id = document.getElementById('my_id').value;
	base_currency = document.getElementById('base_currency').value;
	second_currency = document.getElementById('second_currency').value;
	
	if(base_currency !=="" || second_currency !=="" ){
	
	xmlhttp = new XMLHttpRequest();
	xmlhttp.open("GET","autopage2.php?my_id="+my_id+"&&base_currency="+base_currency+"&&second_currency="+second_currency+"&&status=Update_exhange_rate",false);
	xmlhttp.send(null);

    document.getElementById('base_currency').value="";
	document.getElementById('second_currency').value="";
	
	}
}


main_content
var sul_status =0;
function show_user_list()
{
	if(sul_status ==0){
	document.getElementById('user_list_div').style.display="block";
	document.getElementById('singletrans_output').style.display="none";
	document.getElementById('pend_withdraw_output').style.display="none";	
	sul_status=1;
	}else{
	document.getElementById('user_list_div').style.display="none";
	sul_status=0;		
	}
}


</script>


<?php   } ?>
<body>
</html>

Youez - 2016 - github.com/yon3zu
LinuXploit