File manager

File manager - Edit - /home/newsbmcs.com/public_html/static/img/logo/install.php.tar

Back
home/newsbmcs.com/public_html/play1/install.php��0000644��00000020157�15027226557�0015621 0��ustar�00��<?php session_start(); if(file_exists("connect.php")){ header('Location: /'); return; } define( 'ABSPATH', dirname( __FILE__ ) . '/' ); include 'includes/commons.php'; // Fix "plugins" folder if not exist if(!file_exists("content/plugins")){ mkdir('content/plugins', 0755, true); } ?> <!DOCTYPE html> <html> <head> <meta charset="utf-8"> <title>Setup</title> <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no" /> <link rel="stylesheet" type="text/css" href="../vendor/bootstrap5/css/bootstrap.min.css" /> <link rel="stylesheet" type="text/css" href="admin/style/admin.css"> </head> <body class="install-body"> <div class="install-container"> <div class="install-form"> <div class="container"> <?php if(!file_exists('db/tables.sql')){ // tables.sql is missing or already deleted by the CMS show_alert('tables.sql file is missing!', 'danger'); ?> <p>How to solve this?</p> <p>Copy "db/tables.sql" from the CMS package, then put it inside "db" folder on your server.</p> <?php } else { if(isset($_POST['db_name'])){ function create_tables($conn){ // Read the SQL file $query = file_get_contents("db/tables.sql"); if ($query === false) { throw new Exception('Failed to read SQL file'); } // Execute the query using exec() to run multiple statements $conn->exec($query); } function _insert_to_setting($conn, $name, $type, $category, $label, $tooltip, $value){ $sql = "SELECT id FROM settings WHERE name = :name"; $st = $conn->prepare($sql); $st->bindValue('name', $name, PDO::PARAM_STR); $st->execute(); $row = $st->fetch(PDO::FETCH_ASSOC); if(!$row){ // Data is not exist $sql = "INSERT INTO settings (name, type, category, label, tooltip, value, description) VALUES (:name, :type, :category, :label, :tooltip, :value, '')"; $st = $conn->prepare($sql); $st->bindValue('name', $name, PDO::PARAM_STR); $st->bindValue('type', $type, PDO::PARAM_STR); $st->bindValue('category', $category, PDO::PARAM_STR); $st->bindValue('label', $label, PDO::PARAM_STR); $st->bindValue('tooltip', $tooltip, PDO::PARAM_STR); $st->bindValue('value', $value, PDO::PARAM_STR); $st->execute(); } } $db_name = preg_replace('~[^A-Za-z0-9?-_-.]~','', $_POST['db_name']); $db_host = preg_replace('~[^A-Za-z0-9?-_/\-.]~','', $_POST['db_host']); $db_user = preg_replace('~[^A-Za-z0-9?-_-.]~','', $_POST['db_user']); $db_password = str_replace(' ','',$_POST['db_password']); if($db_name != $_POST['db_name'] \|\| $db_host != $_POST['db_host'] \|\| $db_user != $_POST['db_user'] \|\| $db_password != $_POST['db_password']){ echo '<div class="alert alert-danger" role="alert">Error. Unsupported characters detected.</div>'; echo '<p><a href="install.php">Try Again</a></p>'; } else { try { $conn = new PDO("mysql:host=".$db_host.";dbname=".$db_name, $db_user, $db_password); $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION); create_tables($conn); $json = json_decode(file_get_contents('db/settings.json'), true); foreach ($json as $item) { _insert_to_setting($conn, $item['name'], $item['type'], $item['category'], $item['label'], $item['tooltip'], $item['value']); } $_SESSION['db_name'] = $db_name; $_SESSION['db_host'] = $db_host; $_SESSION['db_user'] = $db_user; $_SESSION['db_password'] = $db_password; ?> <div class="alert alert-success" role="alert">Database connected successfully</div> <form action="install.php" method="POST"> <div class="mb-3"> <label for="admin_user">Admin username:</label> <input type="text" id="admin_user" name="admin_user" class="form-control" value="" required> </div> <div class="mb-3"> <label for="admin_password">Admin password:</label> <input type="text" minlength="6" id="admin_password" name="admin_password" class="form-control" value="" autocomplete="off" required> </div> <button type="submit" class="btn btn-primary btn-md">Submit</button> </form> <?php } catch(PDOException $e) { echo '<div class="alert alert-danger" role="alert">Failed. Can\'t connect to database: ' . $e->getMessage() . '</div>'; echo '<p><a href="install.php">Try Again</a></p>'; }; $conn = null; } } elseif(isset($_POST['admin_user'])){ $admin_user_ori = $_POST['admin_user']; $admin_user = preg_replace('~[^A-Za-z0-9-_]~','', $_POST['admin_user']); if($admin_user == $admin_user_ori){ $admin_password = password_hash($_POST['admin_password'], PASSWORD_DEFAULT); $filecontent = file_get_contents('connect-sample.php'); $filecontent = str_replace('db_name', $_SESSION['db_name'], $filecontent); $filecontent = str_replace('db_host', $_SESSION['db_host'], $filecontent); $filecontent = str_replace('db_user', $_SESSION['db_user'], $filecontent); $filecontent = str_replace('db_password', $_SESSION['db_password'], $filecontent); file_put_contents("connect.php", $filecontent); //Insert new admin users $conn = new PDO("mysql:host=".$_SESSION['db_host'].";dbname=".$_SESSION['db_name'], $_SESSION['db_user'], $_SESSION['db_password']); $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION); $sql = 'INSERT INTO users ( username, password, role, join_date, birth_date ) VALUES ( :username, :password, :role, :join_date, :birth_date )'; $st = $conn->prepare ( $sql ); $st->bindValue( ":username", $admin_user, PDO::PARAM_STR ); $st->bindValue( ":password", $admin_password, PDO::PARAM_STR ); $st->bindValue( ":role", 'admin', PDO::PARAM_STR ); $st->bindValue( ":join_date", date('Y-m-d'), PDO::PARAM_STR ); $st->bindValue( ":birth_date", date('Y-m-d'), PDO::PARAM_STR ); $st->execute(); // if(is_https()){ $sql = "UPDATE settings SET value = :value WHERE name = :name LIMIT 1"; $st = $conn->prepare($sql); $st->bindValue(":name", 'use_https', PDO::PARAM_STR); $st->bindValue(":value", 1, PDO::PARAM_STR); $st->execute(); } $conn = null; session_unset(); // Double check if(file_exists('cloudarcade.zip')){ unlink('cloudarcade.zip'); } if(file_exists('unpack.php')){ unlink('unpack.php'); } if(file_exists('db/tables.sql')){ unlink('db/tables.sql'); } // ?> <div class="alert alert-success" role="alert">Setup completed!</div> <div class="back-to-site text-center"><a href="admin.php">Login</a></div> <?php } else { echo '<div class="alert alert-danger" role="alert">Error. Unsupported characters detected.</div>'; echo '<p><a href="install.php">Try Again</a></p>'; } } else { ?> <form action="install.php" method="POST"> <div class="mb-3"> <label for="db_name">Database name:</label> <input type="text" class="form-control" id="db_name" name="db_name" value="" required> </div> <div class="mb-3"> <label for="db_user">Database user:</label> <input type="text" class="form-control" id="db_user" name="db_user" value="" required> </div> <div class="mb-3"> <label for="db_host">Database host:</label> <input type="text" class="form-control" id="db_host" name="db_host" value="" required> </div> <div class="mb-3"> <label for="db_password">Database password:</label> <input type="text" class="form-control" id="db_password" name="db_password" value="" autocomplete="off"> </div> <button type="submit" class="btn btn-primary btn-md">Submit</button> </form> <?php } } ?> </div> </div> </div> </body> </html>��

| ver. 1.4 | Github | . | PHP 8.2.28 | Generation time: 0.02 | proxy | phpinfo | Settings