CasperSecurity

Current Path : /var/www/uim.org.in/admin/
Upload File :
Current File : /var/www/uim.org.in/admin/edit.php

<?php
include("../includes/connection.php");

$chmessage=$_POST['chmessage'];
$prinmessage=$_POST['prinmessage'];
$trustmessage=$_POST['trustmessage'];
$stage=$_REQUEST['stage'];
$idupd=$_REQUEST['idupd'];
$dates = date("Y-m-d H:i:s");


if ($_FILES['chphoto']['name'] != "") {


    $imgname11 = $_FILES['chphoto']['name'];
    $extension=end(explode('.', $imgname11));
    $realname=$imgname11.''.$dates.'.'.$extension;

    $path2 = "../images/";
    $imgtype = pathinfo($realname,PATHINFOEXTENSION);
    $maxsize = 2097152;
    $tempname = $_FILES['chphoto']['tmp_name'];
    $photoUpload = move_uploaded_file($tempname,$path2.$realname);


      /*  $path2 = "../images/";

        $s1 = rand();

        $realname = removeSpchar($_FILES['chphoto']['name']);

        $realname = $s1 . "_" . $realname;

        $dest = $path2 . "/" . $realname;

       copy($_FILES['chphoto']['tmp_name'], $dest);

        $bannerimage = trim($realname);*/







}
if ($_FILES['prphoto']['name'] != "") {




        /*$path21 = "../images/";

        $s11 = rand();

        $realname1 = removeSpchar($_FILES['prphoto']['name']);

        $realname1 = $s11 . "_" . $realname1;

        $dest1 = $path21 . "/" . $realname1;

        copy($_FILES['prphoto']['tmp_name'], $dest1);

        $bannerimage1 = trim($realname1);*/



    $imgname21 = $_FILES['prphoto']['name'];
    $extension2=end(explode('.', $imgname21));
    $realname1=$imgname21.''.$dates.'.'.$extension2;

    $path21 = "../images/";
    $imgtype2 = pathinfo($realname1,PATHINFOEXTENSION);
    $maxsize2 = 2097152;
    $tempname2 = $_FILES['prphoto']['tmp_name'];
    $photoUpload2 = move_uploaded_file($tempname2,$path21.$realname1);



}

if ($_FILES['trphoto']['name'] != "") {





        /*$path22 = "../images/";

        $s12 = rand();

        $realname2 = removeSpchar($_FILES['trphoto']['name']);

        $realname2 = $s12 . "_" . $realname2;

        $dest2 = $path22 . "/" . $realname2;

        copy($_FILES['trphoto']['tmp_name'], $dest2);

        $bannerimage2 = trim($realname2);*/


    $imgname31 = $_FILES['trphoto']['name'];
    $extension3=end(explode('.', $imgname31));
    $realname2=$imgname31.''.$dates.'.'.$extension3;

    $path22 = "../images/";
    $imgtype3 = pathinfo($realname1,PATHINFOEXTENSION);
    $maxsize3 = 2097152;
    $tempname3 = $_FILES['trphoto']['tmp_name'];
    $photoUpload3 = move_uploaded_file($tempname3,$path22.$realname2);




}

if ($_FILES['chphoto']['name'] != "") {
    $sql = "UPDATE aboutus_message_photo SET chairman_photo='$realname', chairman_detail='$chmessage', principal_detail='$prinmessage',trustee_detail='$trustmessage'
 WHERE aboutus_message_photo_id = '$idupd'";
}elseif ($_FILES['prphoto']['name'] != ""){
    $sql = "UPDATE aboutus_message_photo SET chairman_detail='$chmessage', principal_photo='$realname1',principal_detail='$prinmessage',trustee_detail='$trustmessage'
 WHERE aboutus_message_photo_id = '$idupd'";
}elseif ($_FILES['trphoto']['name'] != ""){
    $sql = "UPDATE aboutus_message_photo SET  chairman_detail='$chmessage', principal_detail='$prinmessage',trustee_photo='$realname2',trustee_detail='$trustmessage'
 WHERE aboutus_message_photo_id = '$idupd'";
}else{
    $sql = "UPDATE aboutus_message_photo SET  chairman_detail='$chmessage', principal_detail='$prinmessage',trustee_detail='$trustmessage'
 WHERE aboutus_message_photo_id = '$idupd'";
}

$result3 = db_query($sql);
$msg = "Successful.";

setcookie("msg", $msg, time() + 3);
header('location:mng_msgphoto.php');
Hacker Blog, Shell İndir, Sql İnjection, XSS Attacks, LFI Attacks, Social Hacking, Exploit Bot, Proxy Tools, Web Shell, PHP Shell, Alfa Shell İndir, Hacking Training Set, DDoS Script, Denial Of Service, Botnet, RFI Attacks, Encryption
Telegram @BIBIL_0DAY