UnknownSec Bypass
403
:
/
var
/
www
/
html
/
adminpnl
/ [
drwxr-xr-x
]
Menu
Upload
Mass depes
Mass delete
Terminal
Info server
About
name :
save_user.php
<?php include "../config.php"; $usertype=mysqli_real_escape_string($conn,$_POST['usertype']); $canteen=mysqli_real_escape_string($conn,$_POST['canteen']); $username=mysqli_real_escape_string($conn,$_POST['username']); $password=mysqli_real_escape_string($conn,$_POST['password']); $mobileno=mysqli_real_escape_string($conn,$_POST['mobileno']); $isdeleted=0; $active=1; $creationdatetime=date("Y-m-d"); $modificationdatetime=date("Y-m-d"); $sql = "SELECT username FROM userdetailstb WHERE username = '{$username}' and usertype='{$usertype}' and isdeleted=0 and active=1"; $result = mysqli_query($conn,$sql) or die("Query Failed."); if(mysqli_num_rows($result) > 0){ echo '<script>alert("User name already exist.")</script>'; }else{ $sql1 = "INSERT INTO userdetailstb (usertype,username,psw,mobileno,isdeleted,active,creationdatetime,modificationdatetime,canteenname) VALUES('{$usertype}','{$username}','{$password}','{$mobileno}',{$isdeleted},{$active},'{$creationdatetime}','{$modificationdatetime}','{$canteen}')"; if(mysqli_query($conn,$sql1)) { header("Location: {$hostname}/adminpnl/user.php"); } } ?>
Copyright © 2025 - UnknownSec