403Webshell
Server IP : 127.0.0.1  /  Your IP : 216.73.216.48
Web Server : Apache/2.4.58 (Win64) OpenSSL/3.1.3 PHP/8.2.12
System : Windows NT DESKTOP-3H4FHQJ 10.0 build 19045 (Windows 10) AMD64
User : win 10 ( 0)
PHP Version : 8.2.12
Disable Function : NONE
MySQL : OFF |  cURL : ON |  WGET : OFF |  Perl : OFF |  Python : OFF |  Sudo : OFF |  Pkexec : OFF
Directory :  D:/xamppkk/htdocs-khalafsons/

Upload File :
current_dir [ Writeable] document_root [ Writeable]

 

Command :

[ Back ]     

Current File : D:/xamppkk/htdocs-khalafsons/index.php
<!DOCTYPE html>
<html lang="en">

<html>


<head>
	 
<title>best real estate in bahrain</title>
<link rel="icon" type="image/jpg" href="http://khalafsons.com/kvt_con/khalaf_log.jpg" />

<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<link rel="stylesheet" type="text/css" href="main_css/index.css" />
<meta name="google-site-verification" content="nEoKUyYekjcLgAbbeNAIONnDC0jy0rsF5sXYTq8-YBA" /><!-- console code   -->

</head>

<?php 
session_start();
include('db_con.php'); 
include('function.php');
?>

<?php

if(isset($_SESSION['id']))
{
	$my_id = $_SESSION['id'];
   // $my_cpr = $_SESSION['user_cpr'];

}

?>

<input id="my_id" style="display:none;" value="<?php echo"$my_id";?>" />
<input id="my_cpr" style="display:none;" value="<?php echo"$my_cpr";?>" />


 <?php
$user_ip = getenv('REMOTE_ADDR');
$geo = unserialize(file_get_contents("http://www.geoplugin.net/php.gp?ip=$user_ip"));
$city = $geo["geoplugin_city"];
$region = $geo["geoplugin_regionName"];
$country = $geo["geoplugin_countryName"];
/*echo"$user_ip";
echo "City: ".$city."<br>";
echo "Region: ".$region."<br>";
echo "Country: ".$country."<br>";
/*
geoplugin_request
geoplugin_status
geoplugin_credit
geoplugin_city
geoplugin_region
geoplugin_areaCode
geoplugin_dmaCode
geoplugin_countryCode
geoplugin_countryName
geoplugin_continentCode
geoplugin_latitude
geoplugin_longitude
geoplugin_regionCode
geoplugin_regionName
geoplugin_currencyCode
geoplugin_currencySymbol
geoplugin_currencySymbol_UTF8
geoplugin_currencyConverter
*/
?>

<input type="text" id="country_user" class="helping_id" style="display:none;" value="<?php echo $country;?>"> 
<input type="text" id="region_user" class="helping_id" style="display:none;" value="<?php echo $region;?>">
<input type="text" id="city_user" class="helping_id" style="display:none;" value="<?php echo $city;?>">

<body  >

<div class="main_home">

<div class="main_log_div">

<img src="kvt_con/khalaf_log.jpg" class="main_log_img" />
<h1 class="main_home_title">Khalaf Sons Real Estate</h1>
</div>


<div class="icon_div_right" >

<a href=""><button class="left_home_btn" >Home</button></a>
<a href="rent"><button class="left_home_btn">Rent</button></a>
<a href="http://www.khalafsons.com/khalafmaint/maint"><button class="left_home_btn">Maint</button></a>
<a href="contact"><button class="left_home_btn">Contacts</button></a>
<!--a href="agent_page"><button class="left_home_btn">Agents</button></a-->

<img src="kvt_con/down-arrow.JPG" onClick="show_more_option();" class="top_right_icons" />

</div>


<div class="icon_div_right_mob" >


<img id="show_mob_menu_btn" onClick="show_mob_menu();" src="kvt_con/menu.png" class="top_right_mob_menu_icon" />
<img id="close_mob_menu_btn" onClick="close_mob_menu();" src="kvt_con/close_mob_menu.png" class="top_right_mob_menu_icon" style="display:none;" />



<script>

function show_mob_menu()
{
document.getElementById('main_home_left_mob').style.display="block";
document.getElementById('show_mob_menu_btn').style.display="none";
document.getElementById('close_mob_menu_btn').style.display="block";
//document.getElementById('search_area').style.display="none";
//alert('woop');
window.scrollTo(0,0);
}

function close_mob_menu()
{
document.getElementById('main_home_left_mob').style.display="none";
document.getElementById('show_mob_menu_btn').style.display="block";
document.getElementById('close_mob_menu_btn').style.display="none";
document.getElementById('share_div_right').style.display="none";
}

function show_mob_share_div()
{
document.getElementById('share_div_right').style.display="block";
document.getElementById('main_home_left_mob').style.display="none";	
}

</script>

</div><!-- end of icon_div_right_mob-->

</div> 

<div class="postion_main_home"></div>

<div class="main_home_option_help" >
<div id="main_home_option" class="main_home_option">

<a href="property"><button class="left_home_option_btn">Property</button></a>
<a href="projects"><button class="left_home_option_btn">Projects</button></a>

<?php
if(isset($_SESSION['user_cpr']))
{
	$my_cpr = $_SESSION['user_cpr'];
	$disp_maint_emp ="select * from mainttb where employee_cpr='$my_cpr' AND permission_status != 'No Access' ";
	$run_disp_maint_emp = mysqli_query($con,$disp_maint_emp);
    $check_user_cpr = mysqli_num_rows($run_disp_maint_emp);	
	if($check_user_cpr >0){
	?>
	<!--a href="maintenance.php"><button class="left_home_option_btn">Maintenance</button></a-->
	<?php
	}
	}
	
?>

<?php
if(isset($_SESSION['id']))
{
		$my_id = $_SESSION['id'];
	
	$get_user ="select * from khalaf_admintb where user_id_adm='$my_id' ";
	$run_get_user = mysqli_query($con,$get_user);
	$check_user = mysqli_num_rows($run_get_user);
	if($check_user >0){
?>
<!--a href="admins.php"><button class="left_home_option_btn">Admin</button></a>
<a href="purchase"><button class="left_home_option_btn">Purchase</button></a>
<a href="extraction.php"><button class="left_home_option_btn">Extraction</button></a-->

<?php } ?>
<!--a href="myaccount.php"><button class="left_home_option_btn">Myaccount</button></a-->
<a href="log_out.php"><button class="left_home_option_btn">Log out</button></a>
<?php
}else{?>
<a href="log_in.php"><button class="left_home_option_btn">Sign in</button></a>
<?php } ?>
<a href="terms"><button class="left_home_option_btn">Terms of use</button></a>
<a href="kh_privacy"><button class="left_home_option_btn">Privacy policy</button></a>



</div>
</div>


<div id="main_home_left" class="main_home_left" style="display:none;" >

<a href=""><button class="left_home_btn" >Home</button></a>
<!--button class="left_home_btn">Project</button-->
<a href="property"><button class="left_home_btn">Property</button></a>
<!--a href="jobs"><button class="left_home_btn">Jobs</button></a-->
<a href="http://www.khalafsons.com/khalafmaint/maint"><button class="left_home_btn">Maintenance</button></a>
<a href="contact"><button class="left_home_btn">Contacts</button></a>
<!--a href="agent_page"><button class="left_home_btn">Our Agents</button></a-->
<a href="projects"><button class="left_home_btn">Projects</button></a>

<?php
if(isset($_SESSION['user_cpr']))
{
	$my_cpr = $_SESSION['user_cpr'];
	$disp_maint_emp ="select * from mainttb where employee_cpr='$my_cpr' AND permission_status != 'No Access' ";
	$run_disp_maint_emp = mysqli_query($con,$disp_maint_emp);
    $check_user_cpr = mysqli_num_rows($run_disp_maint_emp);	
	if($check_user_cpr >0){
	?>
	<a href="maintenance.php"><button class="left_home_btn">Maintenance</button></a>
	<?php
	}
	}
	
?>

<?php
if(isset($_SESSION['id']))
{
		$my_id = $_SESSION['id'];
	
	$get_user ="select * from khalaf_admintb where user_id_adm='$my_id' ";
	$run_get_user = mysqli_query($con,$get_user);
	$check_user = mysqli_num_rows($run_get_user);
	if($check_user >0){
?>
<!--a href="admins.php"><button class="left_home_btn">Admin</button></a>
<a href="purchase"><button class="left_home_btn">Purchase</button></a>
<a href="extraction.php"><button class="left_home_btn">Extraction</button></a-->


<?php } ?>

<!--a href="myaccount.php"><button class="left_home_btn">Myaccount</button></a-->
<a href="log_out.php"><button class="left_home_btn">Log out</button></a>
<?php
}else{?>

<a href="log_in.php"><button class="left_home_btn">Sign in</button></a>
<?php } ?>
<a href="kh_privacy"><button class="left_home_btn">Privacy policy</button></a>
<a href="terms"><button class="left_home_btn">Terms of use</button></a>

</div>



<div  class="main_home_left_mob" >
<div id="main_home_left_mob" style="display:none;" class="sub_home_left_mob" >



<a href="index"><button class="left_home_btn" >Home</button></a>
<a href="rent"><button class="left_home_btn">Rent</button></a>
<a href="property"><button class="left_home_btn">Property</button></a>
<!--a href="jobs"><button class="left_home_btn">Jobs</button></a-->
<a href="http://www.khalafsons.com/khalafmaint/maint"><button class="left_home_btn">Maint</button></a>
<a href="contact"><button class="left_home_btn">Contacts</button></a>
<!--a href="agent_page"><button class="left_home_btn">Our Agents</button></a-->
<a href="projects"><button class="left_home_btn">Projects</button></a>
<a href="kh_privacy"><button class="left_home_btn">Privacy policy</button></a>
<a href="terms"><button class="left_home_btn">Terms of use</button></a>

<?php
if(isset($_SESSION['user_cpr']))
{
	$my_cpr = $_SESSION['user_cpr'];
	$disp_maint_emp ="select * from mainttb where employee_cpr='$my_cpr' AND permission_status != 'No Access' ";
	$run_disp_maint_emp = mysqli_query($con,$disp_maint_emp);
    $check_user_cpr = mysqli_num_rows($run_disp_maint_emp);	
	if($check_user_cpr >0){
	?>
	<!--a href="maintenance.php"><button class="left_home_btn">Maintenance</button></a-->
	<?php
	}
	}
	
?>


<?php
if(isset($_SESSION['id']))
{
		$my_id = $_SESSION['id'];
	
	$get_user ="select * from khalaf_admintb where user_id_adm='$my_id' ";
	$run_get_user = mysqli_query($con,$get_user);
	$check_user = mysqli_num_rows($run_get_user);
	if($check_user >0){
?>
<!--a href="admins.php"><button class="left_home_btn">Admin</button></a>
<a href="purchase"><button class="left_home_btn">Purchase</button></a>
<a href="extraction.php"><button class="left_home_btn">Extraction</button></a-->


<?php } ?>

<!--a href="myaccount.php"><button class="left_home_btn">Myaccount</button></a-->
<a href="log_out.php"><button class="left_home_btn">Log out</button></a>
<?php
}else{?>

<a href="log_in.php"><button class="left_home_btn">Sign in</button></a>
<?php } ?>


</div>
</div><!-- end of main_home_left_mob-->


<div id="promotion_banner" class="promotion_banner" style="display:none;" >

<div class="promotion_title" style="">BASIC PROTECTIVE MEASURES AGAINST THE NEW CORONA VIRUS</div>
<div class="promotion_details" style="">Stay home if you can. </div>
<div class="promotion_details" style="">Maintain social distancing. </div>
<div class="promotion_details" style="">Wash your hands With soap frequently. </div>

</div><!-- end of promotion_banner-->




<div class="moving_banner_div" style="display:none;" >
<div id="flavoursContainer"  class="sub_moving_div" >
<input id="cal_width" value="" style="display:none;"/>
<?php

  $get_advert ="select * from adverttb ORDER BY RAND() limit 10";
  $run_advert = mysqli_query($con,$get_advert);
  while($row_advert = mysqli_fetch_array($run_advert))
  {
	$post_id = $row_advert['id'];
	$building_name = $row_advert['building_name'];  
	$location = $row_advert['location']; 
	$bedroom = $row_advert['bedroom_no'];
	$bathroom = $row_advert['bathroom_no'];
	$furniture = $row_advert['furniture'];
	$image_url = $row_advert['image_url']; 
	$bd_status = $row_advert['description'];

?>

<a href="ad_detail.php?ad_detail_id=<?php echo"$post_id";?>" ><div  class="single_moving_banner_div" >
  <img  src="advert_images/<?php echo"$image_url"; ?>" class="moving_img" /> 
<div class="moving_banner_location" ><?php echo"$building_name - $location"; ?></div>
</div></a>


 <?php } ?>	 
</div>
</div>

<script>
const flavoursContainer = document.getElementById('flavoursContainer');
const flavoursScrollWidth = flavoursContainer.scrollWidth;
      document.getElementById('cal_width').value=0;

      window.addEventListener('load', () => {
	  self.setInterval(() => {
	  if(flavoursContainer.scrollLeft !== flavoursScrollWidth){
	  flavoursContainer.scrollTo(flavoursContainer.scrollLeft + 1,0);
      memo = flavoursContainer.scrollLeft;
      setTimeout(() => { 
      cal_w = document.getElementById('cal_width').value=memo;
       },30);
	  if(memo == cal_w ){flavoursContainer.scrollLeft =0; }
	   }
	   }, 15);
})

 var active_click =1;
function show_more_option()
{
	if(active_click ==1){
	document.getElementById('main_home_option').style.display="block";
    active_click =2;
	}else{
	document.getElementById('main_home_option').style.display="none";
    active_click =1	
	}
}



</script>




<div class="container_div">


<div class="block_img_text_two_left" >

<!--img src="kvt_con/khalaf_log.jpg" class="block_left_image" /-->
<img src="promotion_images/ptx2.jpg" class="block_left_image" />
<div class="networking_text" >
<span style="color:#000;font-weight:bold;font-size:1.5em;">Patrex</span> the giant Building in Hoora Road no.1802, Building no.35 Kingdom of Bahrain developed to suite your comfortability, It consists of 1,2,3,4 Bedroom apartments with Steam room, Sauna room, Pool Table game room, with large swimming pool, fast internet connection separate line not shared and large parking area for the tenants. 
</div>


</div>

<div class="block_img_text_two_right" >
<img src="promotion_images/lx3_3.jpg" class="block_right_image" />

<div class="networking_text" >
<span style="color:#000;font-weight:bold;font-size:1.5em;">Panorama Tower</span> Building with Modern apartments in Hoora Road no.318, Building no.189 Bahrain with Large swimming pool and well-equipped gym. So when we talk about sleeping like a king, we mean sleeping in the well designed and cleaning apartment with all necessary facilities.
</div>
</div>

<div class="video_title">Recommended videos</div>

<div class="video_container" >

<video class="ad_video" style="background:#000;" controls>
  <source src="advert_vid/tik_vid1.mp4" type="video/mp4">
  <source src="advert_vid/tik_vid1.ogg" type="video/ogg">
Your browser does not support the video tag.
</video>

<video class="ad_video" style="background:#000;" controls>
  <source src="advert_vid/tik_vid4.mp4" type="video/mp4">
  <source src="advert_vid/tik_vid4.ogg" type="video/ogg">
Your browser does not support the video tag.
</video>

<video class="ad_video" style="background:#000;" controls>
  <source src="advert_vid/tik_vid5.mp4" type="video/mp4">
  <source src="advert_vid/tik_vid5.ogg" type="video/ogg">
Your browser does not support the video tag.
</video>

</div>


<div class="video_title" classk="feat_title">Facilities and Amenities</div>

<div class="block_img_text_two_left_feat" >

<img src="promotion_images/bt_gym.jpg" class="facilit_img" />
<img src="promotion_images/DSC_2932.jpg" class="facilit_img" />
<img src="promotion_images/bt_pol.jpg" class="facilit_img" />
</div>



</div>

<!--div class="video_title">Featured Properties</div>
<div class="featured_ad_div" >
<div id="flavoursContainer"  class="sub_moving_div" >
<input id="cal_width" value="" style="display:none;"/>
<?php

  $get_advert ="select * from adverttb ORDER BY RAND() limit 10";
  $run_advert = mysqli_query($con,$get_advert);
  while($row_advert = mysqli_fetch_array($run_advert))
  {
	$post_id = $row_advert['id'];
	$building_name = $row_advert['building_name'];  
	$location = $row_advert['location']; 
	$bedroom = $row_advert['bedroom_no'];
	$bathroom = $row_advert['bathroom_no'];
	$furniture = $row_advert['furniture'];
	$image_url = $row_advert['image_url']; 
	$bd_status = $row_advert['description'];

?>

<a href="ad_detail.php?ad_detail_id=<?php echo"$post_id";?>" ><div  class="single_moving_banner_div" >
  <img  src="advert_images/<?php echo"$image_url"; ?>" class="moving_img" /> 
<div class="moving_banner_location" ><?php echo"$building_name - $location"; ?></div>
</div></a>


 <?php } ?>	 
</div>
</div>

<div class="featured_ad_div" >
<div id="flavoursContainer"  class="sub_moving_div" >
<input id="cal_width" value="" style="display:none;"/>
<?php

  $get_advert ="select * from adverttb ORDER BY RAND() limit 10";
  $run_advert = mysqli_query($con,$get_advert);
  while($row_advert = mysqli_fetch_array($run_advert))
  {
	$post_id = $row_advert['id'];
	$building_name = $row_advert['building_name'];  
	$location = $row_advert['location']; 
	$bedroom = $row_advert['bedroom_no'];
	$bathroom = $row_advert['bathroom_no'];
	$furniture = $row_advert['furniture'];
	$image_url = $row_advert['image_url']; 
	$bd_status = $row_advert['description'];

?>

<a href="ad_detail.php?ad_detail_id=<?php echo"$post_id";?>" ><div  class="single_moving_banner_div" >
  <img  src="advert_images/<?php echo"$image_url"; ?>" class="moving_img" /> 
<div class="moving_banner_location" ><?php echo"$building_name - $location"; ?></div>
</div></a>


 <?php } ?>	 
</div>
</div>



<div  class="featured_ad_div_mob" >
<input id="cal_width" value="" style="display:none;"/>
<?php

  $get_advert ="select * from adverttb ORDER BY RAND() limit 10";
  $run_advert = mysqli_query($con,$get_advert);
  while($row_advert = mysqli_fetch_array($run_advert))
  {
	$post_id = $row_advert['id'];
	$building_name = $row_advert['building_name'];  
	$location = $row_advert['location']; 
	$bedroom = $row_advert['bedroom_no'];
	$bathroom = $row_advert['bathroom_no'];
	$furniture = $row_advert['furniture'];
	$image_url = $row_advert['image_url']; 
	$bd_status = $row_advert['description'];

?>

<a href="ad_detail.php?ad_detail_id=<?php echo"$post_id";?>" >
<div  class="single_ad_div" >
  <img  src="advert_images/<?php echo"$image_url"; ?>" class="moving_img_mob" /> 
<div class="moving_banner_location" ><?php echo"$building_name - $location"; ?></div>
</div></a>


 <?php } ?>	 
</div>


<div id="bk_div" class="zoomed_div" ></div>

<div class="container_div">
<div class="video_title" classk="feat_title">Celebrations </div>

<div class="block_img_text_two_left_feat" >

<img src="promotion_images/bk.jpg" class="facilit_img" />
<img src="promotion_images/bk2_1.jpg" class="facilit_img" />
<img id="img_bk3" onClick="zoom_img();" src="promotion_images/bk1_2.jpg" class="facilit_img" />
</div>
<div class="img_cover" ></div>
</div-->


<script>

function show_search_area()
{

document.getElementById('main_home_left_mob').style.display="none";
document.getElementById('show_mob_menu_btn').style.display="block";
document.getElementById('close_mob_menu_btn').style.display="none";
document.getElementById('share_div_right').style.display="none";

	screen_size = screen.width;
	window.scrollTo(0,0);
	
	if(screen_size < 600){
	document.getElementById('search_area').style="margin-top:2%;display:block;";

	document.getElementById('main_banner').style.display="none";
	
 }else{
	 document.getElementById('search_area').style.display="block";
	 document.getElementById('main_banner').style.display="block";
	 }
 
 

}

function close_search_area_btn()
{
	document.getElementById('search_area').style.display="none";
	document.getElementById('main_banner').style.display="block";
}



function start_search()
{
	search_description = document.getElementById('search_description').value;	
    search_location = document.getElementById('search_location').value;
    search_furniture = document.getElementById('search_furniture').value;
    search_bedroom = document.getElementById('search_bedroom').value;
    
    xmlhttp = new XMLHttpRequest();
	xmlhttp.open("GET","khalaf_auto.php?search_description="+search_description+"&search_location="+search_location+"&search_furniture="+search_furniture+"&search_bedroom="+search_bedroom+"&status=search_advert_disp",false);
	xmlhttp.send(null);
	
	document.getElementById('search_result_output').innerHTML =xmlhttp.responseText;
	
	document.getElementById('content_area').style.display="none";
	document.getElementById('search_result_div').style.display="block";
	
 	//alert(search_description);

}

function zoom_img()
{
	img_bk_pth = "promotion_images/";
	cur_img_tag = document.createElement('IMG');
	cur_img_tag.setAttribute("src", img_bk_pth+"bk1_2.jpg");
	cur_img_tag.setAttribute("style", "max-width:100vh;max-height:100vh;");

	document.getElementById("bk_div").appendChild(cur_img_tag);
	document.getElementById('bk_div').style="display:block;display:flex;justify-content:center;align-items:center;";

}


</script>





<div id="search_result_div" class="search_result_div" >
<div id="search_result_output"></div>


</div>




<div class="main_footer">@Khalaf Sons Real Estate 2023<a href="http://craneblue.com/developer/website.php"><img src="http://craneblue.com/developer/main_logo/dzlogo.png" class="main_dz" /></a></div>


</body>
</html>

Youez - 2016 - github.com/yon3zu
LinuXploit