OverLord Shell
<?php require_once("db/conn.php");
include("sql_ing.php");
session_start();
if (trim($_SESSION['captchaa'])!=trim($_POST['captcha'])){
echo "The captcha code does not match!";// Captcha verification is incorrect.
}else
{
$fname = filter_var(addslashes($_POST['fname']), FILTER_SANITIZE_STRING);
$lname = filter_var(addslashes($_POST['lname']), FILTER_SANITIZE_STRING);
$phone = filter_var(addslashes($_POST['phone']), FILTER_SANITIZE_NUMBER_INT);
$email = filter_var(addslashes($_POST['email']), FILTER_SANITIZE_STRING);
$comment = filter_var(addslashes($_POST['comment']), FILTER_SANITIZE_STRING);
$short_description = $_POST['comment'];
//$fname=$_POST['fname'];
//$lname=$_POST['lname'];
//$phone=$_POST['phone'];
//$email=$_POST['email'];
//$comment=$_POST['comment'];
$short_description=$_POST['short_description'];
$pic = $_POST['pic'];
$target = "upload/";
$target = $target . basename( $_FILES['photo']['name']);
//print_r($_FILES);
$pic = ($_FILES['photo']['name']);
//var_dump(move_uploaded_file($_FILES['photo']['tmp_name'], $target));
if (move_uploaded_file($_FILES['photo']['tmp_name'], $target)) {
echo "The file ". basename( $_FILES['uploadedfile']['name']). " has been uploaded, and your information has been added to the directory";
} else {
echo "Sorry, there was a problem uploading your file.";
}
//var_dump($_POST);exit;
$addq="INSERT INTO mc_send_career (fname,lname,phone,email,photo,comment,short_description,createdon) VALUES ('".no_injection(addslashes($fname))."','".no_injection(addslashes($lname))."',".no_injection(addslashes($phone)).",'".no_injection(addslashes($email))."','".no_injection(addslashes($pic))."','".no_injection(addslashes($comment))."','".no_injection(addslashes($short_description))."','".date('Y-m-d H:i:s')."')";
$addr=$connection->query($addq);
if($addr){
$to = 'sagar@maccia.org.in,support@ultraliant.com';
// $to = 'support@ultraliant.com';
$subject = 'New Career enquiry for MACCIA';
$message="<table align=\"center\" style=\"border:0px solid #456;border-radius:3px; width:70%; cellpadding:0; cellspacing:0;\">
<tr style=\"\"><td style=\"text-align:center; padding:15px; font-weight:bold; font-size:20px;\"> New Career Details </td></tr>
<tr>
<td>
<table cellpadding=\"6\" style=\"width:100%; cellpadding:0; cellspacing:1; border:1px solid #BEC0CC; border-radius:3px 3px 0px 0px; padding-bottom:15px;\">
<tbody>
<tr style=\"padding-bottom:10px;\">
<td style=\" border-color:#BEC0CC; width:20%; font-weight:bold;\">
Name:
</td>
<td>
".$fname."
</td>
</tr>
<tr>
<td style=\"width:10%; font-weight:bold;\">
Message:
</td>
<td style=\" width:100%;\">
<p>".$comment."</p>
</td>
</tr>
<tr>
<td style=\" width:20%; font-weight:bold;\">
Email:
</td>
<td style=\" width:30%;\">
".$email."
</td>
</tr>
<tr>
<td style=\" width:20%; font-weight:bold;\">
Mobile:
</td>
<td style=\" width:30%;\">
".$phone."
</td>
</tr>
</tbody>
</table>
</td>
</tr>
<tr>
<td colspan=\"2\" style=\" width:20%; font-weight:bold;\">
This is auto generated email, Please do not reply!
</td>
</tr>
</table>";
$emailxy="no-reply@maccia.org.in";
$headers = 'From: '.$emailxy. "\r\n". 'Reply-To:sagar@maccia.org.in'. "\r\n" . 'MIME-Version: 1.0' . "\r\n" . 'Content-type: text/html; charset=iso-8859-1' . "\r\n" . 'X-Mailer: PHP/' . phpversion();
mail($to, $subject, $message, $headers);
//echo "successfully Sent...";
header("location:careers.php?msg=Thank you for filling out your information! Form Submitted");
}else{
echo "ERROR: Could not able to execute $addr.";
}
}
?>
xRyukZ - Copyright 2k19