Linux dpw.dpwebtech.com 3.10.0-1160.88.1.el7.x86_64 #1 SMP Tue Mar 7 15:41:52 UTC 2023 x86_64
Apache
: 192.232.243.69 | : 3.137.216.116
54 Domain
7.3.33
dpclient
www.github.com/MadExploits
Terminal
AUTO ROOT
Adminer
Backdoor Destroyer
Linux Exploit
Lock Shell
Lock File
Create User
CREATE RDP
PHP Mailer
BACKCONNECT
UNLOCK SHELL
HASH IDENTIFIER
CPANEL RESET
CREATE WP USER
README
+ Create Folder
+ Create File
/
home /
dpclient /
public_html /
CMS-NEW /
php /
[ HOME SHELL ]
Name
Size
Permission
Action
index.php
11.71
KB
-rw-r--r--
Delete
Unzip
Zip
${this.title}
Close
Code Editor : index.php
<?php include'../include/dbconnect.php'; date_default_timezone_set('Asia/Kolkata'); $date = date('d-m-Y H:i:s'); $date1 = date('d-m-Y'); $caseno = base64_decode($_POST['caseno']); if($caseno=='1') { $sql = mysqli_query($conn,"SELECT * FROM user_details WHERE email='".mysqli_escape_string($conn,trim($_POST['email']))."'"); if(mysqli_num_rows($sql)>0) { $data = array('code' =>'2' ,'msg'=>'Email already exists.' ); } else { $res = mysqli_query($conn,"INSERT INTO user_details SET name='".mysqli_escape_string($conn,trim($_POST['username']))."', email='".mysqli_escape_string($conn,trim($_POST['email']))."', mobile='".mysqli_escape_string($conn,trim($_POST['mobile']))."', company_name='".mysqli_escape_string($conn,trim($_POST['company_name']))."', password='".mysqli_escape_string($conn,trim(md5($_POST['password'])))."', create_at='".mysqli_escape_string($conn,$date1)."', update_at='".mysqli_escape_string($conn,$date1)."'"); if($res) { $data = array('code' =>'1' ,'msg'=>'Account created successfully.' ); } else { $data = array('code' =>'2' ,'msg'=>'Somting is wrong. Please try again.' ); } } echo json_encode($data); } if($caseno=='2') { $sql = mysqli_query($conn,"SELECT * FROM user_details WHERE email='".mysqli_escape_string($conn,trim($_POST['user_mail']))."' AND password='".mysqli_escape_string($conn,trim(md5($_POST['uspsd'])))."'"); if(mysqli_num_rows($sql)>0) { $res1 = mysqli_fetch_array($sql); if($res1['status']=='1') { session_start(); $_SESSION['user']=$res1['id']; $data = array('code' =>'1' ,'msg'=>'Login successfully.' ); } else { $data = array('code' =>'2' ,'msg'=>'Your account has been disabled. Please contact your system administrator.' ); } } else { $data = array('code' =>'2' ,'msg'=>'The username or password is incorrect.' ); } echo json_encode($data); } if($caseno=='3') { if($_FILES['files']["name"][0] !='') { $ext = pathinfo($_FILES['files']['name'], PATHINFO_EXTENSION); $filename = 'user'.$_POST['user_id'].time().'.'.$ext; $tempname=$_FILES['files']['tmp_name']; $sql1 = mysqli_query($conn,"update user_details set name= '".mysqli_escape_string($conn,trim($_POST['usr_name']))."', company_name='".mysqli_escape_string($conn,trim($_POST['company_name']))."', image='$filename ' where id='".$_POST['user_id']."'"); if($sql1) { move_uploaded_file($tempname,'../assets/images/user/'.$filename); $data = array('code' =>'1' ,'msg'=>'Profile updated Successfully.' ); } else { $data = array('code' =>'2' ,'msg'=>'Somting is wrong. Please try again..' ); } } else { $sql1 = mysqli_query($conn,"update user_details set name= '".mysqli_escape_string($conn,trim($_POST['usr_name']))."',company_name='".mysqli_escape_string($conn,trim($_POST['company_name']))."' where id='".$_POST['user_id']."'"); if($sql1) { $data = array('code' =>'1' ,'msg'=>'Profile updated Successfully.' ); } else { $data = array('code' =>'2' ,'msg'=>'Somting is wrong. Please try again..' ); } } echo json_encode($data); } if($caseno=='4') { $old_pass = $_POST['old_psd']; $new_pass = $_POST['new_psd']; $con_pass = $_POST['conf_psd']; $res = mysqli_fetch_array(mysqli_query($conn,"SELECT * FROM user_details WHERE id='".mysqli_escape_string($conn,trim($_POST['user_id']))."'")); if($new_pass !=$con_pass) { $data = array('code' =>'2' ,'msg'=>'Confirm password did not match. Please try again.' ); } else if(md5($_POST['old_psd']) !=$res['password']) { $data = array('code' =>'2' ,'msg'=>'Old password did not match. Please try again.' ); } else { $sql = mysqli_query($conn,"update user_details set password='".mysqli_escape_string($conn,trim(md5($_POST['new_psd'])))."'"); if($sql) { $data = array('code' =>'1' ,'msg'=>'Password changed Successfully.' ); } else { $data = array('code' =>'2' ,'msg'=>'Somting is wrong. Please try again' ); } } echo json_encode($data); } if($caseno=='5') { $table = $_POST['table']; $id = $_POST['link']; if($_POST['status']=='1') { mysqli_query($conn,"update user_details set status='0' where id='".$id."'"); echo '<button type="button" class="btn btn-outline-danger mb-1 mb-md-0 chng_st" data-id="'.$id.'" data-idd="0">DeAcivate User</button>'; } else { $sql = mysqli_query($conn,"update user_details set status='1' where id='".$id."'"); echo '<button type="button" class="btn btn-outline-success mb-1 mb-md-0 chng_st" data-id="'.$id.'" data-idd="1" >Acivate User</button>'; } } if($caseno=='6') { $sql = mysqli_query($conn,"select * from service_category where category_name='".$_POST['category_name']."'"); if(mysqli_num_rows($sql)>0) { $data = array('code' =>'2' ,'msg'=>'Category name already exists.' ); } else { $res = mysqli_query($conn,"INSERT INTO service_category set category_name='".mysqli_escape_string($conn,trim($_POST['category_name']))."', created_at='".mysqli_escape_string($conn,trim($date1))."'"); if($res) { $data = array('code' =>'3' ,'msg'=>'Category added Successfully.' ); } else { $data = array('code' =>'2' ,'msg'=>'Somting is wrong. Please try again' ); } } echo json_encode($data); } if($caseno=='7') { $res = mysqli_query($conn,"UPDATE service_category set category_name='".mysqli_escape_string($conn,trim($_POST['category_name']))."' WHERE id='".$_POST['uid']."'"); if($res) { $data = array('code' =>'3' ,'msg'=>'Category updated Successfully.' ); } else { $data = array('code' =>'2' ,'msg'=>'Somting is wrong. Please try again' ); } echo json_encode($data); } if($caseno=='8') { $table = $_POST['table']; $id = $_POST['link']; if($_POST['status']=='1') { mysqli_query($conn,"update service_category set status='0' where id='".$id."'"); echo '<button type="button" class="btn btn-outline-danger mb-1 mb-md-0 chng_st" data-id="'.$id.'" data-idd="0">DeAcivate</button>'; } else { $sql = mysqli_query($conn,"update service_category set status='1' where id='".$id."'"); echo '<button type="button" class="btn btn-outline-success mb-1 mb-md-0 chng_st" data-id="'.$id.'" data-idd="1" >Acivate</button>'; } } if($caseno=='9') { $table = $_POST['table']; $res=mysqli_query($conn,"DELETE FROM $table WHERE id='".$_POST['id']."'"); if($res) { echo '1'; } else { echo '0'; } } if($caseno=='10') { $sql = mysqli_query($conn,"select * from assign_list where user_id='".$_POST['user_id']."' AND category_id='".$_POST['category_id']."'"); if(mysqli_num_rows($sql)>0) { $data = array('code' =>'2' ,'msg'=>'This service already assigned.' ); } else { $res = mysqli_query($conn,"INSERT INTO assign_list set user_id='".mysqli_escape_string($conn,trim($_POST['user_id']))."', category_id='".mysqli_escape_string($conn,trim($_POST['category_id']))."', created_at='".mysqli_escape_string($conn,trim($date1))."'"); if($res) { $data = array('code' =>'4' ,'msg'=>'Srevice assign Successfully.' ); } else { $data = array('code' =>'2' ,'msg'=>'Somting is wrong. Please try again' ); } } echo json_encode($data); } if($caseno=='11') { $res = mysqli_query($conn,"UPDATE assign_list set user_id='".mysqli_escape_string($conn,trim($_POST['user_id']))."', category_id='".mysqli_escape_string($conn,trim($_POST['category_id']))."' WHERE id='".$_POST['uid']."'"); if($res) { $data = array('code' =>'4' ,'msg'=>'Srevice assign updated Successfully.' ); } else { $data = array('code' =>'2' ,'msg'=>'Somting is wrong. Please try again.' ); } echo json_encode($data); } if($caseno=='12') { $table = $_POST['table']; $id = $_POST['link']; if($_POST['status']=='1') { mysqli_query($conn,"update assign_list set status='0' where id='".$id."'"); echo '<button type="button" class="btn btn-outline-danger mb-1 mb-md-0 chng_st" data-id="'.$id.'" data-idd="0">DeAcivate</button>'; } else { $sql = mysqli_query($conn,"update assign_list set status='1' where id='".$id."'"); echo '<button type="button" class="btn btn-outline-success mb-1 mb-md-0 chng_st" data-id="'.$id.'" data-idd="1" >Acivate</button>'; } } if($caseno=='13') { $table = $_POST['table']; $id = $_POST['id']; $res=mysqli_query($conn,"select $table.*,service_category.category_name from $table left join service_category on service_category.id=$table.category_id where $table.status='1' and $table.user_id=$id order by category_name asc"); if(mysqli_num_rows($res)>0) { $op = '<option value="">Select Services</option>'; while($res1=mysqli_fetch_array($res)) { $op .= '<option value="'.$res1['id'].'" '.($_POST['e_sr']==$res1['id']?"selected":"").'>'.$res1['category_name'].'</option>'; } echo $op; } else { echo '<option value="">No service</option>'; } } if($caseno=='14') { $res=mysqli_query($conn,"SELECT * FROM keyword_ranking where user_id='".$_POST['user_id']."' AND service_id='".$_POST['service_id']."' AND months_value='".$_POST['months_value']."' AND keywods='".$_POST['keywods']."'"); if(mysqli_num_rows($res)>0) { $data = array('code' =>'2' ,'msg'=>'This months ranking already exists.' ); } else { $qry = mysqli_query($conn,"INSERT INTO keyword_ranking SET user_id='".mysqli_escape_string($conn,trim($_POST['user_id']))."', service_id='".mysqli_escape_string($conn,trim($_POST['service_id']))."', months_value='".mysqli_escape_string($conn,trim($_POST['months_value']))."', keywods='".mysqli_escape_string($conn,trim($_POST['keywods']))."', 1_week='".mysqli_escape_string($conn,trim($_POST['1_week']))."', 2_week='".mysqli_escape_string($conn,trim($_POST['2_week']))."', 3_week='".mysqli_escape_string($conn,trim($_POST['3_week']))."', 4_week='".mysqli_escape_string($conn,trim($_POST['4_week']))."', created_at='".mysqli_escape_string($conn,trim($date1))."', update_at='".mysqli_escape_string($conn,trim($date1))."'"); if($qry) { $data = array('code' =>'5' ,'msg'=>'Keywords Ranking Added Successfully.' ); } else { $data = array('code' =>'2' ,'msg'=>'Somting is wrong. Please try again.' ); } } echo json_encode($data); } if($caseno=='15') { $qry = mysqli_query($conn,"UPDATE keyword_ranking SET user_id='".mysqli_escape_string($conn,trim($_POST['user_id']))."', service_id='".mysqli_escape_string($conn,trim($_POST['service_id']))."', keywods='".mysqli_escape_string($conn,trim($_POST['keywods']))."', 1_week='".mysqli_escape_string($conn,trim($_POST['1_week']))."', 2_week='".mysqli_escape_string($conn,trim($_POST['2_week']))."', 3_week='".mysqli_escape_string($conn,trim($_POST['3_week']))."', 4_week='".mysqli_escape_string($conn,trim($_POST['4_week']))."', update_at='".mysqli_escape_string($conn,trim($date1))."' WHERE id='".$_POST['upid']."'"); if($qry) { $data = array('code' =>'6' ,'msg'=>'Keywords Updated Successfully.' ); } else { $data = array('code' =>'2' ,'msg'=>'Somting is wrong. Please try again.' ); } echo json_encode($data); } ?>
Close
