|
Server : Apache/2 System : Linux vps.phamthanh.local 3.10.0-1160.102.1.el7.x86_64 #1 SMP Tue Oct 17 15:42:21 UTC 2023 x86_64 User : benhviencoc7 ( 1008) PHP Version : 5.6.40 Disable Function : exec,system,passthru,shell_exec,proc_close,proc_open,dl,popen,show_source,posix_kill,posix_mkfifo,posix_getpwuid,posix_setpgid,posix_setsid,posix_setuid,posix_setgid,posix_seteuid,posix_setegid,posix_uname Directory : /home/benhviencoc7/domains/benhviendkkvcampha.vn/private_html/adminvn/ |
Upload File : |
<?php
/*----------------------------------------*\
| Copyright © C-ILY |
| Phone: 0983.998.994 |
| Y!m: notepad.html |
| Email: truongpv87@gmail.com |
\*----------------------------------------*/
define('CILY',true);
include('../#includes/config.php');
if(check_log() == true && check_level() >= 4) {
if($_GET['type'] == 'add' && strlen($_POST['title']) >=3 && strlen($_POST['content']) >= 3){
@mysql_query("INSERT INTO cily_posts (post_name, post_name_ascii, post_quote, post_content, post_type, post_time, post_user) VALUES ('".$_POST['title']."', '".ascii($_POST['title'])."', '".addsla($_POST['quote'])."', '".addsla($_POST['content'])."', 2, ".time().", ".$_SESSION['user']['id'].")");
header('Location: index.php?m=10&sm=5');
}
elseif($_GET['type'] == 'edit'){
@mysql_query("UPDATE cily_posts SET post_name = '".addsla($_POST['title'])."', post_quote = '".addsla($_POST['quote'])."', post_content = '".addsla($_POST['content'])."' WHERE id = ".$_POST['id']);
header('Location: index.php?m=10&sm=5');
}
elseif($_GET['type'] == 'del' && $_POST['action'] == 1 && $_POST['id']){
$total = count($_POST['id']);
for($i=0; $i<$total; $i++) {
@mysql_query("DELETE FROM cily_posts WHERE id = ".$_POST['id'][$i]);
}
header('Location: index.php?m=10&sm=5');
}
elseif($_GET['type'] == 'show'){
$getid = $_GET['id'];
$getoc = $_GET['oc'];
@mysql_query("UPDATE cily_posts SET post_show = '".$getoc."' WHERE id = ".$getid);
header('Location: index.php?m=10&sm=5');
}
else header('Location: index.php?m=10&sm=5');
}
else echo "Hacking attempt";
?>