403Webshell
Server IP : 127.0.0.1  /  Your IP : 216.73.216.48
Web Server : Apache/2.4.58 (Win64) OpenSSL/3.1.3 PHP/8.2.12
System : Windows NT DESKTOP-3H4FHQJ 10.0 build 19045 (Windows 10) AMD64
User : win 10 ( 0)
PHP Version : 8.2.12
Disable Function : NONE
MySQL : OFF |  cURL : ON |  WGET : OFF |  Perl : OFF |  Python : OFF |  Sudo : OFF |  Pkexec : OFF
Directory :  D:/xamppkk/htdocs-coblaa/social/

Upload File :
current_dir [ Writeable] document_root [ Writeable]

 

Command :

[ Back ]     

Current File : D:/xamppkk/htdocs-coblaa/social/studio_er.php
<html>

<?php
include('db.php');
session_start();
?>

<head>
<title>craneblue social</title>
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<link rel="stylesheet" type="text/css" href="main_css/studio.css" />
</head>


<body >

<?php

if(!isset($_SESSION['id']))
{
	echo"You Are Not Logined.";

}else{	$my_id = $_SESSION['id'];

?>

<input type="text" id="my_id" value="<?php echo"$my_id";?>" style="display:none;" />

<?php
$user_ip = getenv('REMOTE_ADDR');
$geo = unserialize(file_get_contents("http://www.geoplugin.net/php.gp?ip=$user_ip"));
$city = $geo["geoplugin_city"];
$country = $geo["geoplugin_countryName"];
//echo" mmm $user_ip";

?>
<input type="text" id="user_ip" value="<?php echo"$user_ip";?>" style="display:none;" />
<input type="text" id="user_city" value="<?php echo"$city";?>" style="display:none;" />
<input type="text" id="user_country" value="<?php echo"$country";?>" style="display:none;" />

<div class="home_header_area" >

<div class="home_main_title" >Craneblue</div>



<!--a href="upload_kvt.php" ><button >Upload</button></a-->

<div class="menu_area_helping_div">

<img onClick="show_menu_area();" id="main_menu_icon_mob" src="main_icons/menu_icon.png" class="main_menu_icon_mob" />
<img onClick="close_menu_area();" id="cancel_menu_icon" src="main_icons/cancel_menu_icon.png" class="cancel_menu_icon" />

</div>

</div>

<div class="home_header_postion"></div>

<div class="home_pc_div" >
<div class="home_pc_div_title">Controls</div>

<!--div idk="home_mob_div" class="home_pc_div"-->

<a href="social" ><button class="home_btn_pc" >Home</button></a>
<a href="studio" ><button class="home_btn_pc" >Studio</button></a>
<a href="settings.php?general=general" ><button onClickk="show_general_area();" class="home_btn_pc" >General</button></a>

<?php
 include('main_db.php');
 $disp_user_profle ="select * from cb_userstb where id='$my_id'";
 $run_user_profle = mysqli_query($con,$disp_user_profle);
 while($row_user_profile = mysqli_fetch_array($run_user_profle)){
	 $profile_image = $row_user_profile['profile_image'];
if($profile_image !=='avatar2.jpg'){
?>

<button onClick="show_edit_profile_area();" class="home_btn_pc" >Edit Profilek</button>

<?php }else{ ?>

<button onClick="show_upload_profile_area();" class="home_btn_pc" >Upload Profilek</button>

 <?php } } ?>

<?php
 include('db.php');
 $disp_user_banner ="select * from user_bannertb where my_id='$my_id'";
 $run_user_banner = mysqli_query($con,$disp_user_banner);
 $check_user_banner = mysqli_num_rows($run_user_banner);
 if($check_user_banner >0){
 ?>
<button onClick="show_edit_banner_area();" class="home_btn_pc" >Edit banner</button>
<?php }else{ ?>
<button onClick="show_upload_banner_area();" class="home_btn_pc" >Upload banner</button>
<?php } ?>

<!--a href="upload_kvt.php" ><button class="home_btn_pc" >Terms</button></a>
<button onClickk="show_post_area();" class="home_btn_pc" >Support</button-->
<button onClick="show_more_btn();" class="home_btn_pc" >Settings</button>
<a href="settings.php?change_pass=pass" ><button id="change_pass_btn" onClickk="show_members_area();" class="home_btn_pc" style="display:none;" >Change Password</button></a>
<a href="settings.php?general=general" ><button id="change_email_btn" class="home_btn_pc" style="display:none;" >Change Email</button></a>


<?php

if(isset($_SESSION['id']))
{
		$my_id = $_SESSION['id'];
		//$user_email = $_SESSION['email'];
		//$user_name= $_SESSION['name'];
//echo"$my_id";
?>
<a href="logout.php" ><button class="home_btn_pc" >Logout</button></a>

<?php }else{ ?>
<a href="login.php" ><button class="home_btn_pc" >Login</button></a>
<?php } ?>

<!--/div-->


</div>


<div class="home_mob_div_helping"  >

<div id="home_mob_div" class="home_mob_div">

<div class="home_pc_div_title">Controls</div>

<a href="social" ><button class="home_btn_pc" >Home</button></a>
<a href="settings.php?general=general" ><button onClickk="show_general_area();" class="home_btn_pc" >General</button></a>

<?php
 
 $disp_user_profle ="select * from userstb where id='$my_id'";
 $run_user_profle = mysqli_query($con,$disp_user_profle);
 while($row_user_profile = mysqli_fetch_array($run_user_profle)){
	 $profile_image = $row_user_profile['profile_image'];
if($profile_image !=='avatar2.jpg'){
?>

<a href="settings.php?edit_profile=profile"><button onClickk="show_edit_profile_area();" class="home_btn_pc" >Edit Profile</button></a>

<?php }else{ ?>

<a href="settings.php?upload_profile=upprofile"><button onClickk="show_upload_profile_area();" class="home_btn_pc" >Upload Profile</button></a>

 <?php } } ?>

<?php
 
 $disp_user_banner ="select * from user_bannertb where my_id='$my_id'";
 $run_user_banner = mysqli_query($con,$disp_user_banner);
 $check_user_banner = mysqli_num_rows($run_user_banner);
 if($check_user_banner >0){
 ?>
<a href="settings.php?edit_banner=edbanner"><button onClickk="show_edit_banner_area();" class="home_btn_pc" >Edit banner</button></a>
<?php }else{ ?>
<a href="settings.php?upload_banner=upbanner"><button onClickk="show_upload_banner_area();" class="home_btn_pc" >Upload banner</button></a>
<?php } ?>

<!--button onClick="show_post_input_div();" class="home_btn_pc" >Upload Profile</button>
<a href="members.php"><button onClickk="show_members_area();" class="home_btn_pc" >Change Password</button></a>
<a href="upload_kvt.php" ><button class="home_btn_pc" >Change Email</button></a-->

<!--a href="upload_kvt.php" ><button class="home_btn_pc" >Terms</button></a>
<button onClickk="show_post_area();" class="home_btn_pc" >Support</button-->

<button onClick="show_more_btn_mob();" class="home_btn_pc" >Settings</button>
<a href="settings.php?change_pass=pass" ><button id="change_pass_btn_mob" onClickk="show_members_area();" class="home_btn_pc" style="display:none;" >Change Password</button></a>
<a href="upload_kvt.php" ><button id="change_email_btn_mob" class="home_btn_pc" style="display:none;" >Change Email</button></a>


<?php

if(isset($_SESSION['id']))
{
		$my_id = $_SESSION['id'];
		//$user_email = $_SESSION['email'];
		//$user_name= $_SESSION['name'];
//echo"$my_id";
?>
<a href="logout.php" ><button class="home_btn_pc" >Logout</button></a>

<?php }else{ ?>
<a href="login.php" ><button class="home_btn_pc" >Login</button></a>
<?php } ?>

</div>


</div>


<?php 
if(isset($_GET['test']))
{
echo"True Son of her mother";
	exit();
	
}



 ?>




<div id="account_div" class="account_div" >
<div class="account_banner" >
<?php
 
 $disp_user_banner ="select * from user_bannertb where my_id='$my_id'";
 $run_user_banner = mysqli_query($con,$disp_user_banner);
 while($row_user_banner = mysqli_fetch_array($run_user_banner))
 {
	 $banner_url = $row_user_banner['banner_url'];
	 $banner_type = $row_user_banner['type_file'];
?>

<img src="user_banner_images/<?php echo"$banner_url";echo".$banner_type"; ?>" width="100%" height="100%" />

 <?php } ?>
</div>

<?php
 include('main_db.php');
 $disp_user_profle ="select * from cb_userstb where id='$my_id'";
 $run_user_profle = mysqli_query($con,$disp_user_profle);
 while($row_user_profile = mysqli_fetch_array($run_user_profle))
 {
	 $profile_img = $row_user_profile['profile_image'];
	 $user_fname = $row_user_profile['fname'];
	 $user_lname = $row_user_profile['lname'];
	 
	 if($profile_img !=='avatar2.jpg'){

?>

<div id="" class="account_profile"><img src="../user_profile/<?php echo"$profile_img";?>" width="90%" height="90%" style="margin-left:5%;margin-top:5%;" /></div>

 <?php }else{ ?>
<div id="" class="account_profile"><img src="avatar_image/avatar2.jpg" width="90%" height="90%" style="margin-left:5%;margin-top:5%;" /></div>
 
 <?php } } ?>
 
<div id="" class="account_user_name"><?php echo"$user_fname"; echo" "; echo"$user_lname";?></div>


</div><!--end of account_div-->



<div id='shell_profile_div' class="shell_main_div" stylek="display:block;" >

<button onClick="close_shell_main_div__profile();" class="close_shell_main_div">X</button>

<div class="upload_banner" >

<div class="upload_banner_title" >Upload Profile Image</div>

<form method="post" enctype="multipart/form-data" >
<input type="file" onchange="upload_profile_now();" id="input_file_profile" style="display:none;" />
</form>

<button onClick='document.getElementById("input_file_profile").click();' class="select_banner_btn" >Select Profile Image</button>
<div id="upload_profile_erorr_output" ></div>

</div>

</div>




<div id='shell_main_div_edit_profile' class="shell_main_div" stylek="display:block;" >

<button onClick="close_shell_main_div_edit_profile();" class="close_shell_main_div">X</button>

<div class="upload_banner" >

<div class="upload_banner_title" >Edit Profile Image</div>

<form method="post" enctype="multipart/form-data" >
<input type="file" onchange="edit_profile_now();" id="edit_file_profile" style="display:none;" />
</form>

<button onClick='document.getElementById("edit_file_profile").click();' class="select_banner_btn" >Select Profile Image</button>
<div id="upload_profile_erorr_output" ></div>

</div>

</div>





<div id='shell_main_div_banner' class="shell_main_div" stylek="display:block;" >

<button onClick="close_shell_main_div_banner();" class="close_shell_main_div">X</button>

<div class="upload_banner" >

<div class="upload_banner_title" >Upload Banner Image</div>

<form method="post" enctype="multipart/form-data" >
<input type="file" onchange="upload_banner_now();" id="input_file_banner" style="display:none;" />
</form>

<button onClick='document.getElementById("input_file_banner").click();' class="select_banner_btn" >Select Banner Image</button>
<div id="upload_banner_erorr_output" ></div>

</div>

</div>





<div id='shell_banner_div_edit' class="shell_main_div" >

<button onClick="close_shell_banner_div_edit();" class="close_shell_main_div">X</button>

<div class="upload_banner" >

<div class="upload_banner_title" >Change Banner Image</div>

<form method="post" enctype="multipart/form-data" >
<input type="file" onchange="edit_banner_now();" id="input_file_banner_edit" style="display:none;" />
</form>

<button onClick='document.getElementById("input_file_banner_edit").click();' class="select_banner_btn" >Select Banner Image</button>
<div id="update_banner_erorr_output" ></div>

</div>

</div>





<div class="my_post_div" >

<div id="my_post_out_kvt" ></div>

</div>




<script>

function show_menu_area()
{
document.getElementById('home_mob_div').style.display="block";
document.getElementById('main_menu_icon_mob').style.display="none";	
document.getElementById('cancel_menu_icon').style.display="block";

}

function close_menu_area()
{
document.getElementById('home_mob_div').style.display="none";
document.getElementById('main_menu_icon_mob').style.display="block";
document.getElementById('cancel_menu_icon').style.display="none";	
}

function show_more_btn()
{
document.getElementById('change_pass_btn').style="display:block;color:#000";	
document.getElementById('change_email_btn').style="display:block;color:#000";	
}

function show_more_btn_mob()
{
document.getElementById('change_pass_btn_mob').style="display:block;color:#000";	
document.getElementById('change_email_btn_mob').style="display:block;color:#000";	
}


/////////////////////////////////////////////////////////////////////////////////////////////////

 disp_my_post();
function disp_my_post()
{alert(7867);

  my_id = document.getElementById('my_id').value;

  xmlhttp = new XMLHttpRequest();
  xmlhttp.open("GET","auto_page.php?my_id="+my_id+"&&status=display_my_post",false);
  xmlhttp.send(null);

document.getElementById('my_post_out_kvt').innerHTML=xmlhttp.responseText;

}

/////////////////////////////////////////////////////////////////////////////////////////////

function show_reply_area_level_one(sralo)
{
	comment_reply_div ="comment_reply_div"+sralo;
	document.getElementById(comment_reply_div).style.display="block";
}

function hide_reply_area_level_one(hralo)
{
	comment_reply_div ="comment_reply_div"+hralo;
	document.getElementById(comment_reply_div).style.display="none";
	
}

////////////////////////////////////////////////////////////////////////////////////////


function load_packages(lp)
{
	 var current_video =lp;
	 
 	 video_playing = current_video;    
	 

}


// var vid_playing = document.getElementById('playing_video');playing_video
 //var vid_duration_lebal = document.getElementById('video_duration_lebal');
 //var vid_current_lebal = document.getElementById('video_current_lebal');
 
 function stop_prevous_vid()
 {
	 come_on = video_playing;
	
	 var playing_vid = 'playing_video'+video_playing;
	 var play_now = 'play_now'+video_playing;
	 var pause_now ='pause_now'+video_playing;
	 var seek_value_div = 'seek_value_div'+video_playing;
	 var volume_seek_value ='volume_seek_value'+video_playing;

	 var vid_playing = document.getElementById(playing_vid);
	 vid_playing.pause();
	 
	 document.getElementById(pause_now).style.display="none";
     document.getElementById(play_now).style.display="block";
	 document.getElementById(seek_value_div).style.display="none";
	 document.getElementById(volume_seek_value).style.display="none";

 }

function start_playing(sp)
{
     var playing_vid = 'playing_video'+video_playing;
	 var play_now = 'play_now'+video_playing;
	 var pause_now ='pause_now'+video_playing;
	 var seekbar_out ='seekbar_out'+video_playing;
	 var seekbar_in ='seekbar_in'+video_playing;
	 var seekbar_value ='seekbar_value'+video_playing;
	 var video_current_lebal ='video_current_lebal'+video_playing;
	 var video_duration_lebal ='video_duration_lebal'+video_playing;
	 var seek_value_div = 'seek_value_div'+video_playing;
	 var volume_seek_value ='volume_seek_value'+video_playing;

	var vid_playing = document.getElementById(playing_vid);
	var vid_duration_lebal = document.getElementById(video_duration_lebal);
    var vid_current_lebal = document.getElementById(video_current_lebal);

	vid_playing.play();

	document.getElementById(play_now).style.display="none";
	document.getElementById(pause_now).style.display="block";
	document.getElementById(seek_value_div).style.display="block";
	document.getElementById(volume_seek_value).style.display="block";

  // alert('video_playing');
	
	//setTimeout(function(){ hide_controls(); }, 3000);
	
	seekbar = document.getElementById(seekbar_out); //style.width;
	//seekbar_curr = document.getElementById(seekbar_value).innerHTML;
	//alert(seekbar_curr);
	vid_playing.addEventListener('timeupdate', function(){

	vid_duration = vid_playing.duration;
	vid_curr_duration = vid_playing.currentTime;
	
	vid_dur_percentage = (vid_curr_duration / vid_duration * 100);
	document.getElementById(seekbar_in).style.width = vid_dur_percentage+"%";
	
	var min_cur = Math.floor(vid_curr_duration /60);
	var sec_cur = Math.floor(vid_curr_duration - min_cur * 60);
	vid_current_lebal.innerHTML = min_cur+":"+sec_cur;
		
	var min_dur = Math.floor(vid_duration /60);
	var sec_dur = Math.floor(vid_duration - min_dur * 60);
	vid_duration_lebal.innerHTML = min_dur+":"+sec_dur;
	
	
	
	});
	

	ongoing_vid =vid_playing;

}
function curr_seek_value(csv)
{   seek_value =csv;
    var playing_vid = 'playing_video'+video_playing;
    var seekbar_in ='seekbar_in'+video_playing;
    var playing_vid = document.getElementById(playing_vid);
    vid_curr_duration = playing_vid.currentTime;
    vid_dur_percentage = (vid_curr_duration / vid_duration * 100);
	playing_vid.currentTime = playing_vid.duration * seek_value / 100;
	document.getElementById(seekbar_in).style.width = vid_dur_percentage+"%";
	
}

function pause_playing(pp)
{
	 var playing_vid = 'playing_video'+video_playing;
	 var play_now = 'play_now'+video_playing;
	 var pause_now ='pause_now'+video_playing;

     var vid_playing = document.getElementById(playing_vid);
	
	vid_playing.pause();
	document.getElementById(pause_now).style.display="none";
	document.getElementById(play_now).style.display="block";
	//alert(video_playing);
}

function mute_playing()
{
	 var playing_vid = 'playing_video'+video_playing;
	 var play_now = 'play_now'+video_playing;
	 var pause_now ='pause_now'+video_playing;
	 var unmute_now = 'unmute_now'+video_playing;
	 var mute_now ='mute_now'+video_playing;	 

     var vid_playing = document.getElementById(playing_vid);
	vid_playing.muted=true;
	document.getElementById(unmute_now).style.display="block";
	document.getElementById(mute_now).style.display="none";
}

function unmute_playing()
{
	var playing_vid = 'playing_video'+video_playing;
	 var unmute_now = 'unmute_now'+video_playing;
	 var mute_now ='mute_now'+video_playing;
	 

     var vid_playing = document.getElementById(playing_vid);
	 
	vid_playing.muted=false;
	document.getElementById(unmute_now).style.display="none";
	document.getElementById(mute_now).style.display="block";
}

function curr_volume_value(cvv)
{
	volume_value =cvv;
	
	var playing_vid = 'playing_video'+video_playing; 
	var volume_seekbar_in ='volume_seekbar_in'+video_playing;

     var vid_playing = document.getElementById(playing_vid);
	
	vid_playing.volume = volume_value;
	//document.getElementById('volume_seekbar_in').style.width=volume_value;
	
	volume_percentage = (volume_value / 1 * 100);
	document.getElementById(volume_seekbar_in).style.width = volume_percentage+"%";
	
	//alert(volume_percentage);
}

function go_full_screen(){
	
	 var playing_vid = 'playing_video'+video_playing; 
     var vid_playing = document.getElementById(playing_vid);
	 
	if(vid_playing.requestFullScreen){
		vid_playing.requestFullScreen();
	} else if(vid_playing.webkitRequestFullScreen){
		vid_playing.webkitRequestFullScreen();
	} else if(vid_playing.mozRequestFullScreen){
		vid_playing.mozRequestFullScreen();
}

}

function show_controls(sc)
{
    control_div ='control_div'+sc;
	document.getElementById(control_div).style.display="block";
	setTimeout(function(){ hide_controls(); }, 5000);
}
function hide_controls()
{
	document.getElementById(control_div).style.display="none";
}


///////////////////////////////////////////////////////////////////////////////////



function show_upload_profile_area()
{
	document.getElementById('shell_profile_div').style.display="block";
}


function upload_profile_now()
{

    my_id = document.getElementById('my_id').value;
	new_file = document.getElementById('input_file_profile').files[0];
	file_name = new_file.name;
	file_type = new_file.type;
	file_size = new_file.size;

	if(file_type !=='image/jpeg'){
		

	document.getElementById('upload_banner_erorr_output').innerHTML="File Format Not Supported";
	
	}else{

	var formdata = new FormData();
	formdata.append('input_file_profile',new_file);
	
	ajax = new XMLHttpRequest();
	ajax.addEventListener("load", completeHandler, false);
	ajax.open("POST","auto_page.php?my_id="+my_id+"&&status=upload_profile_insert");

	ajax.send(formdata);
	
	document.getElementById('input_file_profile').value="";

	
	//document.getElementById('file_uploading_progress').style.display="block";	

	function completeHandler()
	{
	
	document.getElementById('shell_profile_div').style.display="none";
	window.open('studio.php','_self');
	}	
	}
}

function close_shell_main_div__profile()
{
	document.getElementById('shell_profile_div').style.display="none";
	//alert(34);
}


function show_edit_profile_area()
{
	document.getElementById('shell_main_div_edit_profile').style.display="block";
}
function edit_profile_now()
{

    my_id = document.getElementById('my_id').value;
	new_file = document.getElementById('edit_file_profile').files[0];
	file_name = new_file.name;
	file_type = new_file.type;
	file_size = new_file.size;

	if(file_type !=='image/jpeg'){
		

	document.getElementById('upload_banner_erorr_output').innerHTML="File Format Not Supported";
	
	}else{

	var formdata = new FormData();
	formdata.append('edit_file_profile',new_file);
	
	ajax = new XMLHttpRequest();
	ajax.addEventListener("load", completeHandler, false);
	ajax.open("POST","auto_page.php?my_id="+my_id+"&&status=update_profile_edit");

	ajax.send(formdata);
	
	document.getElementById('edit_file_profile').value="";

	
	//document.getElementById('file_uploading_progress').style.display="block";	

	function completeHandler()
	{
	
	document.getElementById('shell_main_div_edit_profile').style.display="none";
	window.open('studio.php','_self');
	}	
	}
}

function close_shell_main_div_edit_profile()
{
	document.getElementById('shell_main_div_edit_profile').style.display="none";
	//alert(34);
}






function show_upload_banner_area()
{
	document.getElementById('shell_main_div_banner').style.display="block";
}
function upload_banner_now()
{

    my_id = document.getElementById('my_id').value;
	new_file = document.getElementById('input_file_banner').files[0];
	file_name = new_file.name;
	file_type = new_file.type;
	file_size = new_file.size;

	if(file_type !=='image/jpeg'){
		

	document.getElementById('upload_banner_erorr_output').innerHTML="File Format Not Supported";
	
	}else{

	var formdata = new FormData();
	formdata.append('input_file_banner',new_file);
	
	ajax = new XMLHttpRequest();
	ajax.addEventListener("load", completeHandler, false);
	ajax.open("POST","auto_page.php?my_id="+my_id+"&&status=upload_banner_insert");

	ajax.send(formdata);
	
	document.getElementById('input_file_banner').value="";

	
	//document.getElementById('file_uploading_progress').style.display="block";	

	function completeHandler()
	{
	
	document.getElementById('shell_main_div_banner').style.display="none";
	window.open('studio.php','_self');
	}	
	}
}


function close_shell_main_div_banner()
{
	document.getElementById('shell_main_div_banner').style.display="none";
}




function show_edit_banner_area()
{
	document.getElementById('shell_banner_div_edit').style.display="block";
}
function edit_banner_now()
{

    my_id = document.getElementById('my_id').value;
	new_file = document.getElementById('input_file_banner_edit').files[0];
	file_name = new_file.name;
	file_type = new_file.type;
	file_size = new_file.size;

	if(file_type !=='image/jpeg'){
		

	document.getElementById('update_banner_erorr_output').innerHTML="File Format Not Supported";
	
	}else{

	var formdata = new FormData();
	formdata.append('input_file_banner_edit',new_file);
	
	ajax = new XMLHttpRequest();
	ajax.addEventListener("load", completeHandler, false);
	ajax.open("POST","auto_page.php?my_id="+my_id+"&&status=update_banner_edit");

	ajax.send(formdata);
	
	document.getElementById('input_file_banner_edit').value="";

	
	//document.getElementById('file_uploading_progress').style.display="block";	

	function completeHandler()
	{

	document.getElementById('shell_banner_div_edit').style.display="none";
	window.open('studio.php','_self');
	}	
	}
}

function close_shell_banner_div_edit()
{
	document.getElementById('shell_banner_div_edit').style.display="none";
	//alert(34);
}




</script>


<?php } ?>

</body>


</html>

Youez - 2016 - github.com/yon3zu
LinuXploit