shell bypass 403
<?php session_start(); ?>
<!doctype html>
<html class="fixed">
<?php require('inv_header.php'); ?>
<style media="screen">
.color{
overflow: hidden;
width: 40px;
height: 40px;
border: solid 2px #ddd;
border-radius: 40px;
}
</style>
<body>
<section class="body">
<?php $active = 8; ?>
<?php $subactive = 0; ?>
<?php require('inv_nav.php'); ?>
<?php require('inv_manu.php'); ?>
<section role="main" class="content-body">
<header class="page-header">
<h2>สมาชิกเว็บไซต์</h2>
<div class="right-wrapper pull-right">
<ol class="breadcrumbs">
<li>
<a href="index.php">
<i class="fa fa-home"></i>
</a>
</li>
<li><span>สมาชิกเว็บไซต์</span></li>
</ol>
<a class="sidebar-right-toggle" data-open="sidebar-right"><i class="fa fa-chevron-left"></i></a>
</div>
</header>
<!-- start: page -->
<section class="panel">
<header class="panel-heading">
<div class="panel-actions">
</div>
<h2 class="panel-title">Rows with Details</h2>
</header>
<div class="panel-body">
<!-- <table class="table table-bordered table-striped mb-none" id="datatable-details"> -->
<table class="table table-bordered table-striped mb-none" id="datatable-default">
<thead>
<tr>
<th style="width: 12%;">สมาชิกสมัครจาก</th>
<th>อีเมล์</th>
<th>ชื่อ - นามสกุล</th>
<th style="width: 15%;">วันที่ทำการลงทะเบียน</th>
<th style="width: 15%;" class="center">ACTIONS</th>
</tr>
</thead>
<tbody>
<?php
$SQL = "SELECT * FROM `tb_member` ORDER BY `tb_member`.`id_member` DESC";
$objSQL = mysqli_query($myConn,$SQL);
while( $result = mysqli_fetch_array($objSQL)){
$name = $result['fname'];
$name .= (!empty($result['lname'])) ? ' '.$result['lname'] : '' ;
$members = ($result['for_register']=='Facebook') ? "สมัครสมาชิกด้วย <b>facebook</b>" : "สมัครสมาชิกด้วย <b>E-mail</b>" ;
?>
<tr class="gradeX">
<td><?php echo $members; ?></td>
<td><?php echo $result['email']; ?></td>
<td><?php echo $name; ?></td>
<td><?php echo DatesThai($result['create']); ?></td>
<td>
<a href="form_cart.php?id=<?php echo $result['id_member'] ?>" target="_blank">
<i style="font-size: 2em;" class="fa fa-shopping-cart" aria-hidden="true" data-toggle="tooltip" data-placement="top" data-original-title="ตะกร้าสินค้า"></i>
</a>
<a href="form_like.php?member=<?php echo $result['id_member'] ?>" target="_blank">
<i style="font-size: 2em;" class="fa fa-heart" aria-hidden="true" data-toggle="tooltip" data-placement="top" data-original-title="รายการโปรด"></i>
</a>
<a href="form_order.php?id=<?php echo $result['id_member'] ?>" target="_blank">
<i style="font-size: 2em;" class="fa fa-file" aria-hidden="true" data-toggle="tooltip" data-placement="top" data-original-title="ประวัติการสั่งซื้อ"></i>
</a>
</td>
</tr>
<?php $i++; } ?>
</tbody>
</table>
</div>
</section>
<!-- end: page -->
</section>
</section>
<?php require('inv_footer.php'); ?>
<script type="text/javascript">
function delete_member(id) {
console.log(id);
swal({
title: "คุณต้องการลบสมาชิกคนนี้ หรือไม่?",
text: "Item(s) will be removed from Member!",
buttons: true,
dangerMode: true,
})
.then((willDelete) => {
if (willDelete) {
$.ajax({
url: 'sql/sql_delete_member.php',
type: "POST",
datatype: "json",
data : {id:id},
ContentType:"application/json",
success: function(response){
console.log(response);
var x = jQuery.parseJSON(response);
if(x.flag == true){
swal(
'Your imaginary file has been deleted!!',
'',
'success'
)
window.setTimeout('location.reload()', 1000); //Reloads after 2000 seconds
}else{
swal(
'error',
'',
'error'
)
}
},error: function(err){
alert(err);
}
});
}
});
}
</script>
</body>
</html>