Server IP : 108.163.255.210 / Your IP : 18.222.118.236 Web Server : Apache System : Linux blossom.urlnameserver.com 3.10.0-1160.80.1.el7.x86_64 #1 SMP Tue Nov 8 15:48:59 UTC 2022 x86_64 User : ( 1172) PHP Version : 7.2.34 Disable Function : eval,escapeshellarg,proc_close,proc_get_status,proc_nice,proc_open,symlink,system,pcntl_exec,getrusage,chown,chgp,closelog,openlog,syslog,define_syslog_variables,php_ini_loaded_file,getservbyname,getservbyport,posix_getgid,posix_getgrgid,proc_terminate,pfsockopen,apache_child_terminate,posix_mkfifo,posix_setpgid,posix_setuid,hypot,pg_host,pos,posix_access,posix_getcwd,posix_getservbyname,myshellexec,getpid,posix_getsid,posix_isatty,posix_kill,posix_mknod,posix_setgid,posix_setsid,posix_setuid,posix_times,posix_uname,ps_fill,posix_getpwuid,global,ini_restore,zip_open,zip_read,rar_open,bzopen,bzread,bzwrite,apache_get_modules,apache_get_version,phpversionphpinfo,php_ini_scanned_files,get_current_user,disk_total_space,diskfreespace,leak,imap_list,hypo,filedump,safe_mode,getmygid,apache_getenv,apache_setenv,bzread,bzwrite,bzopen,phpini,higlight_file,dos_conv,get_cwd,er_log,cmd,e_name,vdir,get_dir,only_read,ftok,ftpexec,posix_getpwnam,mysql_list_dbs,disk_free_space,session_save_path,confirm_phpdoc_compiled,zip_entry_rea,php_u,psockopen,crack_opendict,crack_getlastmessage,crack_closedict,crack_check,fpassthru,posix_get_last_error,posix_getlogin,posix_getgroups,posix_strerror,posix_getrlimit,posix_getpgrp,posix_getgrnam,pos,dl MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : ON Directory : /home/unilinki/public_html/payroll/admin/ |
Upload File : |
<?php session_start(); include("../include/db.php"); $uid=md5(uniqid(rand())); if($_POST["login"]=='login') { $name=$_POST["user_name"]; $pass=$_POST["Password"]; $sql1="select * from admin where username='$name'"; $res1=mysql_query($sql1) or die("Query not executed".mysql_error()); $tot1=mysql_num_rows($res1); $sql2="select * from employee where id='$name'"; $res2=mysql_query($sql2) or die("Query not executed".mysql_error()); $tot2=mysql_num_rows($res2); if($tot1 !="0") { $pwd=mysql_result($res1,0,'password'); $admin_email=mysql_result($res1,0,'useremail'); $admin_image=mysql_result($res1,0,'userimage'); $admin_id=mysql_result($res1,0,'admin_id'); $first_name=mysql_result($res1,0,'first_name'); $last_name=mysql_result($res1,0,'last_name'); $role_id=mysql_result($res1,0,'roleid'); $branch=mysql_result($res1,0,'branch'); $login_counter=mysql_result($res1,0,'login_counter'); if(strcmp($pass,$pwd)=="0") { $_SESSION['first_name']=$first_name." ".$last_name; $_SESSION['admin_id']=$admin_id; $_SESSION['adminuser']=$name; $_SESSION['admin_email']=$admin_email; $_SESSION['role_id']=$role_id; $_SESSION['branch']=$branch; $_SESSION['login_counter']=$login_counter; ?> <script language="javascript"> location.href="dashboard.php?uid=<?php echo $uid?>"; </script> <?php }else{ ?> <script language="javascript"> location.href="login.php?uid=<?php echo $uid?>&message=invalidpassword"; </script> <?php } } elseif($tot2 !="0") { $pwd=mysql_result($res2,0,'password'); $admin_email=mysql_result($res2,0,'emailid'); $admin_id=mysql_result($res2,0,'id'); $first_name=mysql_result($res2,0,'name'); $branch=mysql_result($res2,0,'company'); $login_counter1=mysql_result($res2,0,'login_counter'); if(strcmp($pass,$pwd)=="0") { $_SESSION['first_name']=$first_name; $_SESSION['admin_id']=$admin_id; $_SESSION['id']=$name; $_SESSION['adminuser']=$name; //$_SESSION['admin_email']=$admin_email; $_SESSION['role_id']="emp"; $_SESSION['branch']=$branch; $_SESSION['login_counter']=$login_counter1; ?> <script language="javascript"> location.href="salary_slip.php?uid=<?php echo $uid?>"; </script> <?php }else{ ?> <script language="javascript"> location.href="login.php?uid=<?php echo $uid?>&message=invalidpassword"; </script> <?php } } else { ?> <script language="javascript"> location.href="login.php?uid=<?php echo $uid?>&message=norecord"; </script> <?php } } ?>