?
GR0V Shell
GR0V shell
Linux in-mum-web921.main-hosting.eu 4.18.0-553.34.1.lve.el8.x86_64 #1 SMP Thu Jan 9 16:30:32 UTC 2025 x86_64
<div class="content-wrapper">
<!-- Content Header (Page header) -->
<section class="content-header">
<h1>
<i class="fa fa-user-plus"></i> Add User
<small> Add/Edit User</small>
</h1>
<ol class="breadcrumb">
<li><a href="#"><i class="fa fa-dashboard"></i> Home</a></li>
<li class="active">Add User</li>
</ol>
</section>
<!-- Main content -->
<section class="content">
<!-- Small boxes (Stat box) -->
<div class="row">
<div class="col-xs-12">
<?php
if(isset($_POST['submit'])){
$date = time();
$first_name = mysqli_real_escape_string($con,$_POST['first-name']);
$last_name = mysqli_real_escape_string($con,$_POST['last-name']);
$user_name = mysqli_real_escape_string($con,strtolower($_POST['username']));
$username_trim = preg_replace('/\s+/','',$user_name);
$email = mysqli_real_escape_string($con,strtolower($_POST['email']));
$password = mysqli_real_escape_string($con,$_POST['password']);
$role = $_POST['role'];
$image = $_FILES['image']['name'];
$image_tmp = $_FILES['image']['tmp_name'];
$check_query = "select * from users where username='$user_name' or email='$email'";
$check_run = mysqli_query($con, $check_query);
$salt_query ="select * from users order by id desc limit 1";
$salt_run = mysqli_query($con, $salt_query);
$salt_row = mysqli_fetch_array($salt_run);
$salt = $salt_row['salt'];
$password = crypt($password, $salt);
if(empty($first_name) or empty($last_name) or empty($user_name) or empty($email) or empty($password)){
$error = "All (*) fields are required";
}
else if($user_name!=$username_trim){
$error="Dont Use Space in username";
}
else if(mysqli_num_rows($check_run)>0){
$error="Username or Email already exist";
}
else{
$insert_query = "INSERT INTO `iancon`.`users` (`id`, `date`, `first_name`, `last_name`, `username`, `email`, `image`, `password`, `role`) VALUES (NULL, '$date', '$first_name', '$last_name', '$user_name', '$email', '$image', '$password', '$role')";
if(mysqli_query($con, $insert_query)){
$msg = "User has been added";
move_uploaded_file($image_tmp, "img/$image");
$image_check = "select * from users order by id desc limit 1";
$image_run = mysqli_query($con, $image_check);
$image_row = mysqli_fetch_array($image_run);
$check_image = $image_row['image'];
$first_name = "";
$last_name = "";
$email = "";
$user_name = "";
}
else{
$error = "User has not been added";
}
}
}
?>
<div class="col-md-8">
<div class="box box-info">
<div class="box-header with-border">
<h3 class="box-title">Add User Form</h3>
</div>
<!-- /.box-header -->
<!-- form start -->
<form class="form-horizontal" method="post" enctype="multipart/form-data">
<div class="box-body">
<div class="form-group">
<label for="firstname" class="col-sm-2 control-label">First Name*</label>
<?php
if(isset($error)){
echo "<span class='pull-right' style='color:red;'>$error</span>";
}
else{
echo "<span class='pull-right' style='color:green;'>$msg</span>";
}
?>
<div class="col-sm-10">
<input name="first-name" type="text" class="form-control" value="<?php if(isset($first_name)){echo $first_name;} ?>" id="firstname" placeholder="First Name">
</div>
</div>
<div class="form-group">
<label for="lastname" class="col-sm-2 control-label">Last Name*</label>
<div class="col-sm-10">
<input name="last-name" type="text" class="form-control" value="<?php if(isset($last_name)){echo $last_name;} ?>" id="lastname" placeholder="Last Name">
</div>
</div>
<div class="form-group">
<label for="username" class="col-sm-2 control-label">User Name*</label>
<div class="col-sm-10">
<input name="username" type="text" class="form-control" value="<?php if(isset($user_name)){echo $user_name;} ?>" id="username" placeholder="User Name">
</div>
</div>
<div class="form-group">
<label for="inputEmail3" class="col-sm-2 control-label">Email*</label>
<div class="col-sm-10">
<input name="email" type="email" class="form-control" value="<?php if(isset($email)){echo $email;} ?>" id="inputEmail3" placeholder="Email">
</div>
</div>
<div class="form-group">
<label for="uploadimage" class="col-sm-2 control-label">Upload/Image</label>
<div class="col-sm-10">
<input name="image" type="file" class="form-control" id="uploadimage">
</div>
</div>
<div class="form-group">
<label for="inputPassword3" class="col-sm-2 control-label">Password*</label>
<div class="col-sm-10">
<input name="password" type="password" class="form-control" id="inputPassword3" placeholder="******">
</div>
</div>
<div class="form-group">
<label for="role" class="col-sm-2 control-label">Role*</label>
<div class="col-sm-10">
<select name="role" class="form-control" id="role">
<option value="admin">Admin</option>
<option value="author">Author</option>
</select>
</div>
</div>
</div>
<!-- /.box-body -->
<div class="box-footer">
<input type="submit" class="btn btn-info pull-right" value="Sign In" name="submit">
</div>
<!-- /.box-footer -->
</form>
</div>
</div>
<div class="col-md-4">
<?php
if(isset($check_image)){
echo "<img src='img/$check_image' width='100%'>";
}
?>
</div>
<!-- /.box -->
</div>
</div>
<!-- /.row -->
<!-- Main row -->
<!-- /.row (main row) -->
</section>
<!-- /.content -->
</div>
T1KUS90T