One Hat Cyber Team

Your IP : 172.69.130.199
Server IP : 188.114.96.4
Server : Linux thuru 6.5.11-4-pve #1 SMP PREEMPT_DYNAMIC PMX 6.5.11-4 (2023-11-20T10:19Z) x86_64
Server Software : Apache/2.4.51 (Unix) OpenSSL/1.0.2k-fips
PHP Version : 7.3.33
Buat File | Buat Folder
Dir : ~/home/thuruk/public_html/App/New/
View File Name : CreateNewTree.php

<?php
   
        include("connections.php"); //database connection

        $target_dir = "Images/Plant";

    	$session = mysqli_real_escape_string($connect,$_POST['session_id']);

    	$description =isset($_POST['description'])? mysqli_real_escape_string($connect,$_POST['description']):"";

    	$location = isset($_POST['location'])?mysqli_real_escape_string($connect,$_POST['location']):"";

    	//$description = mysqli_real_escape_string($connect,$_POST['description']);
    	//$location = mysqli_real_escape_string($connect,$_POST['location']);
    	
    	$user_id = mysqli_real_escape_string($connect,$_POST['user_id']);

    	$plant_name =isset($_POST['plant_name'])?  mysqli_real_escape_string($connect,$_POST['plant_name']):"";
    	
        $lat = isset($_POST['lat'])? mysqli_real_escape_string($connect,$_POST['lat']):"";

        $qr_code =isset($_POST['qr_code'])? mysqli_real_escape_string($connect,$_POST['qr_code']):"";

    	$long =isset($_POST['long'])? mysqli_real_escape_string($connect,$_POST['long']):"";

	    $height = isset($_POST['height'])?mysqli_real_escape_string($connect,$_POST['height']):"";

         $url="";

      if(isset($_FILES["file"])){
          //directory to upload file
        
          $filename = $_FILES["file"]["name"]; 
          //name of file
          //$_FILES["file"]["size"] get the size of file
          //you can validate here extension and size to upload file.

          $savefile = "$target_dir/$filename";
          
         $url = "https://thurukepakaru.com/App/New/".$savefile;

          if(move_uploaded_file($_FILES["file"]["tmp_name"], $savefile)) {
              $return["error"] = false;
              //upload successful
          }else{
              $return["error"] = true;
              $return["msg"] =  "Error during saving file.";
          }
      }


		/*if(isset($_POST['image'])){
          
            $image = $_POST['image'];
            $name =$target_dir."/".$_POST['imagename'];
            $realImage = base64_decode($image);
            $imageUrl =$name;
            file_put_contents($name,$realImage);
            $url = "https://thurukepakaru.com/App/New/".$name;
          
        }*/

			else{
          
          $url="";
          
        }


      
        $date=date('y-m-d');

         

		$userId = 1;
		$json;
		if($session!="5f0e6bfbafe255ds003434349") {
			$json['status'] = 400;
			$json['msg'] = 'Session Expired';
		} else {
			$rsData = array();
		
         
          $query="INSERT INTO `newuser_plants`(`user_plant_id`,`user_id`, `plant_name`, `plant_description`,`created_date`,`plant_image`,
		   `location`,`height`,`lat`,`lng`,`created_type`,`rating`,`status`) VALUES ('$qr_code','$user_id','$plant_name','$description','$date','$url','$location','$height','$lat','$long','user','','activate')";	
          
          $rs = mysqli_query($connect,$query) or die(mysqli_error($connect));
 
		
		   if($rs){
			    $rsData['result'] = "success";
			}else{
			    $rsData['result'] = "fail";
			}
			$json['status'] = 200;
			$json['msg'] = $url;
			$json['data'] = $rsData;
		}

		
		echo json_encode($json);


?>