jpsagrisolution.com - UnknownSec 403

UnknownSec Bypass 403

: /var/www/stsupport/asfolder/ [ drwxrwxr-x ]
name : saregdetails.php
 <?php
header('Content-Type: application/json');
header('Access-Control-Allow-Origin:*');

/*$data=json_decode(file_get_contents("php://input"),true);
$productcode=$data["pcode"];
$softwarename=$data["sname"];
$softwareversion=$data["sversion"];*/
 $licensedto=isset($_GET['lto']) ? $_GET['lto']:die();
 $authority=isset($_GET['autho']) ? $_GET['autho']:die();
 $station=isset($_GET['sta']) ? $_GET['sta']:die();

  $softwarename=isset($_GET['sname']) ? $_GET['sname']:die();
$softwareversion=isset($_GET['sversion']) ? $_GET['sversion']:die();
$productcode=isset($_GET['pcode']) ? $_GET['pcode']:die();
 $installationdate=isset($_GET['installdate']) ? $_GET['installdate']:die();
 $fromdate=isset($_GET['fromdate']) ? $_GET['fromdate']:die();
 $noofregistrations=isset($_GET['noofregistra']) ? $_GET['noofregistra']:die();
 $address1=isset($_GET['address1']) ? $_GET['address1']:die();
 $address2=isset($_GET['address2']) ? $_GET['address2']:die();
 $address3=isset($_GET['address3']) ? $_GET['address3']:die();
 $address4=isset($_GET['address4']) ? $_GET['address4']:die();
 $state=isset($_GET['state']) ? $_GET['state']:die();
 $district=isset($_GET['district']) ? $_GET['district']:die();
 $telno=isset($_GET['telno']) ? $_GET['telno']:die();
 $email=isset($_GET['email']) ? $_GET['email']:die();
 $mobile=isset($_GET['mobile']) ? $_GET['mobile']:die();
 $contactpersonname=isset($_GET['contactpname']) ? $_GET['contactpname']:die();
 $contactpersonmobileno=isset($_GET['contactpmobile']) ? $_GET['contactpmobile']:die();
 $activeuser=isset($_GET['activeuser']) ? $_GET['activeuser']:die();
 $licensestatus=isset($_GET['licensestatus']) ? $_GET['licensestatus']:die();
 $neworupdate =isset($_GET['neworupdate']) ? $_GET['neworupdate']:die();
 $creationdatetime =isset($_GET['creationdatetime']) ? $_GET['creationdatetime']:die();
 $createdbyuserid  =isset($_GET['createdbyuserid']) ? $_GET['createdbyuserid']:die();
 $computername  =isset($_GET['computername']) ? $_GET['computername']:die();
 $tempregistrationkey  =isset($_GET['tempregistrationkey']) ? $_GET['tempregistrationkey']:die();
 $tempregistrationdate   =isset($_GET['tempregistrationdate']) ? $_GET['tempregistrationdate']:die();
 $permanentregistrationdate    =isset($_GET['permanentregistrationdate']) ? $_GET['permanentregistrationdate']:die();
 $todate   =isset($_GET['todate']) ? $_GET['todate']:die();
 $licenseuniqueid =isset($_GET['licenseuniqueid']) ? $_GET['licenseuniqueid']:die();
  $ipdddres =isset($_GET['ipdddres']) ? $_GET['ipdddres']:die();
  $hddno =isset($_GET['hddno']) ? $_GET['hddno']:die();
  $curdate =isset($_GET['curdate']) ? $_GET['curdate']:die();
   $pertodate =isset($_GET['pertodate']) ? $_GET['pertodate']:die();
   
include "../config.php";

$status=0;
$sql="insert into license (LicensedTo, Authority, Station, SoftwareName, Version, ProductCode, InstallationDate, FromDate,
                           NoOfRegistrations, Address1, Address2, Address3, Address4, State, District, TelNo, Email, Mobile,
                          ContactPersonName, ContactPersonMobileNo, ActiveUser, LicenseStatus, NewOrUpdate, CreationDateTime, CreatedByUserID,
                            ComputerName, TempRegistrationKey, TempRegistrationDate, PermanentRegistrationDate, ToDate, LicenseUniqueID, IPAddress)
                            values('{$licensedto}','{$authority}','{$station}','{$softwarename}','{$softwareversion}','{$productcode}',
                            '{$installationdate}','{$fromdate}','{$noofregistrations}','{$address1}','{$address2}','{$address3}','{$address4}',
                            '{$state}','{$district}','{$telno}','{$email}','{$mobile}','{$contactpersonname}','{$contactpersonmobileno}',
                            '{$activeuser}','{$licensestatus}','{$neworupdate}','{$creationdatetime}','{$createdbyuserid}','{$computername}',
                            '{$tempregistrationkey}','{$tempregistrationdate}','{$permanentregistrationdate}','{$todate}','{$licenseuniqueid}','{$ipdddres}')";


if(mysqli_query($conn, $sql))
{
      $sql="select * from licensepermission where productcode='{$productcode}' and licenseuniqueid='{$licenseuniqueid}' ";
       $result= mysqli_query($conn, $sql);
       
       if(mysqli_num_rows($result)==0)
       {
          $sql="insert into licensepermission (ProductCode, HDDNo, FromDate, ToDate, EntryDate, Remark, PaymentStatus, LicenseUniqueID)
                 values('{$productcode}','{$hddno}','{$curdate}','{$pertodate}','{$curdate}','','','{$licenseuniqueid}')";
            mysqli_query($conn, $sql);
       }
       
       $sql="update productdetails set nooflicensesregistered = nooflicensesregistered + 1 where productcode='{$productcode}'";
              mysqli_query($conn, $sql);
              $status=1;
}
else
{
   $status=0;

}




echo json_encode($status);

?>