shell bypass 403
<!doctype html>
<html class="fixed">
<?php require('inv_header.php'); ?>
<!-- Specific Page Vendor CSS -->
<link rel="stylesheet" href="assets/vendor/pnotify/pnotify.custom.css" />
<!-- Theme CSS -->
<link rel="stylesheet" href="assets/stylesheets/theme.css" />
<!-- Skin CSS -->
<link rel="stylesheet" href="assets/stylesheets/skins/default.css" />
<!-- Theme Custom CSS -->
<link rel="stylesheet" href="assets/stylesheets/theme-custom.css">
<!-- Head Libs -->
<script src="assets/vendor/modernizr/modernizr.js"></script>
<style media="screen">
.color{
overflow: hidden;
width: 40px;
height: 40px;
border: solid 2px #ddd;
border-radius: 40px;
}
/* set model center */
.modal {
text-align: center;
padding: 0!important;
}
.modal:before {
content: '';
display: inline-block;
height: 100%;
vertical-align: middle;
margin-right: -4px;
}
.modal-dialog {
display: inline-block;
text-align: left;
vertical-align: middle;
}
</style>
<body>
<section class="body">
<?php $active = 2; ?>
<?php $subactive = 3; ?>
<?php require('inv_nav.php'); ?>
<?php require('inv_manu.php'); ?>
<section role="main" class="content-body">
<header class="page-header">
<h2>สินค้า</h2>
<div class="right-wrapper pull-right">
<ol class="breadcrumbs">
<li>
<a href="index.php">
<i class="fa fa-home"></i>
</a>
</li>
<li><span>สีของสินค้า</span></li>
</ol>
<a class="sidebar-right-toggle" data-open="sidebar-right"><i class="fa fa-chevron-left"></i></a>
</div>
</header>
<!-- start: page -->
<section class="panel">
<header class="panel-heading">
<div class="panel-actions">
<button type="submit" class="btn btn-default" style="border-radius:0px" data-toggle="modal" onclick="edit_color()" data-target="#modalBootstrap">ADD COLOR</button>
</div>
<h2 class="panel-title">สีของสินค้า</h2>
</header>
<div class="panel-body">
<table class="table table-condensed mb-none">
<thead>
<tr>
<th style="width:10%">#</th>
<th style="width:30%">สีของสินค้า</th>
<th style="width:40%">ชื่อสี</th>
<th>ACTION</th>
</tr>
</thead>
<tbody>
<?php $i=1;
$product = "SELECT * FROM `tb_type_color` ORDER BY `tb_type_color`.`id_col` ASC";
$objproduct = mysqli_query($myConn,$product);
while( $resultproduct = mysqli_fetch_array($objproduct)){
?>
<tr>
<td><?php echo $i; ?></td>
<td><input type="color" style="width: 100%;" value="<?php echo $resultproduct['color']; ?>" disabled></td>
<td><?php echo $resultproduct['name_color']; ?></td>
<td>
<div class="btn-group">
<button type="button" class="btn btn-default" data-toggle="modal" onclick="edit_color(<?php echo $resultproduct['id_col'] ?>)" data-target="#modalBootstrap">
<i class="fa fa-pencil" title="Editor" ></i> Editor</button>
<button type="button" class="btn btn-default" onclick="delete_type(<?php echo $resultproduct['id_col'] ?>)">
<i class="fa fa-trash-o" title="Delte"></i> Delte</button>
</div>
</td>
</tr>
<?php $i++; } ?>
</tbody>
</table>
</div>
</section>
<!-- Modal Animation -->
<!-- end: page -->
</section>
</section>
<div class="modal fade" id="modalBootstrap" tabindex="-1" role="dialog" aria-labelledby="myModalLabel" aria-hidden="true">
<div class="modal-dialog">
<div class="modal-content">
<div class="modal-header">
<button type="button" class="close" data-dismiss="modal"><span aria-hidden="true">×</span><span class="sr-only">Close</span></button>
<h4 class="modal-title" id="myModalLabel">แก้ไขสีสินค้า?</h4>
</div>
<div id="modal_color"></div>
</div>
</div>
</div>
<?php require('inv_footer.php'); ?>
<!-- Examples -->
<script src="assets/javascripts/ui-elements/examples.modals.js"></script>
<!-- Specific Page Vendor -->
<script src="assets/vendor/pnotify/pnotify.custom.js"></script>
<!-- Theme Base, Components and Settings -->
<script src="assets/javascripts/theme.js"></script>
<!-- Theme Custom -->
<script src="assets/javascripts/theme.custom.js"></script>
<!-- Theme Initialization Files -->
<script src="assets/javascripts/theme.init.js"></script>
<script type="text/javascript">
function delete_type(id) {
console.log(id);
swal({
title: "คุณต้องการลบสีสินค้านี้ หรือไม่?",
text: "Item(s) will be removed from type color!",
buttons: true,
dangerMode: true,
})
.then((willDelete) => {
if (willDelete) {
$.ajax({
url: 'sql/sql_delete_color.php',
type: "POST",
datatype: "json",
data : {id:id},
ContentType:"application/json",
success: function(response){
console.log(response);
var x = jQuery.parseJSON(response);
if(x.flag == true){
swal(
'Your imaginary file has been deleted!!',
'',
'success'
)
window.setTimeout('location.reload()', 1000); //Reloads after 2000 seconds
}else{
swal(
'error',
'',
'error'
)
}
},error: function(err){
alert(err);
}
});
}
});
}
</script>
</body>
</html>