UnknownSec Bypass
403
:
/
var
/
www
/
html
/
adminpnl
/ [
drwxr-xr-x
]
Menu
Upload
Mass depes
Mass delete
Terminal
Info server
About
name :
slot_save.php
<?php require_once "../config.php"; require_once "../conclass.php"; session_start(); $adminid= $_SESSION["adminuserid"]; $title = isset($_POST['title']) ? $_POST['title'] : ""; $start = isset($_POST['start']) ? $_POST['start'] : ""; $seatdatestring = isset($_POST['end']) ? $_POST['end'] : ""; $canteenname= isset($_POST['canteenname']) ? $_POST['canteenname'] : ""; $seatdateArray = array(); $seatdateArray=explode('-',$start); $seatdateformat = intval($seatdateArray[0])."-".intval($seatdateArray[1])."-".intval($seatdateArray[2]); $seatdateformatymd = intval($seatdateArray[2])."-".intval($seatdateArray[1])."-".intval($seatdateArray[0]); $creationdatetime = date("y-m-d"); $query = "select count(0) as count from mastertb where holidaydate= '".$seatdateformat."' and canteenname='".$canteenname."' and identifier=1"; $msg=0; $result = mysqli_query($conn, $query); while($row = mysqli_fetch_array($result)) { $data["count"] = $row["count"]; } if($data["count"]==0) { $sqldelete="Delete from mastertb where canteenname='".$canteenname."' and seatdate='".$seatdateformat."' and identifier='".$gAlotSeatIdentifier."'"; $resultdel = mysqli_query($conn, $sqldelete); $sqlInsert = "insert into mastertb(noofseats,seatdate,seatdate1,identifier,isdeleted,creationdatetime,canteenname,userdetailid) values ('".$title."','".$seatdateformat."','".$seatdateformatymd ."','2','0','".$creationdatetime ."','".$canteenname."','".$adminid."')"; $result = mysqli_query($conn, $sqlInsert); if($result==true) $msg=1; if (! $result) { $result = mysqli_error($conn); } } else { $msg=2; } echo json_encode($msg); ?>
Copyright © 2025 - UnknownSec