Gecko [ midwest-tb.com ]

Name	Size	Permission
assets	[ DIR ]	drwxr-xr-x
functions	[ DIR ]	drwxr-xr-x
img	[ DIR ]	drwxr-xr-x
includes	[ DIR ]	drwxr-xr-x
.htaccess	4.65 KB	-rw-r--r--
01admin.zip	112.24 KB	-rw-r--r--
add_user.php	11.21 KB	-rw-r--r--
banner.php	1.41 KB	-rw-r--r--
db.php	30 B	-rw-r--r--
delete.php	357 B	-rw-r--r--
delete_banner.php	736 B	-rw-r--r--
delete_post.php	960 B	-rw-r--r--
delete_user.php	991 B	-rw-r--r--
edit_banner.php	3.38 KB	-rw-r--r--
edit_post.php	11.55 KB	-rw-r--r--
edit_post2.php	5.62 KB	-rw-r--r--
edit_user.php	13.09 KB	-rw-r--r--
editsettings.php	2.61 KB	-rw-r--r--
error_log	54.03 KB	-rw-r--r--
function_users.php	6.8 KB	-rw-r--r--
functions.php	10.92 KB	-rw-r--r--
home.php	6.62 KB	-rw-r--r--
index.php	56 B	-rw-r--r--
insert_banners.php	3.07 KB	-rw-r--r--
insert_post.php	9.63 KB	-rw-r--r--
login.php	1.57 KB	-rw-r--r--
login_admin.php	3.11 KB	-rw-r--r--
logout.php	164 B	-rw-r--r--
member.php	17.64 KB	-rw-r--r--
payment_setting.php	2.97 KB	-rw-r--r--
picupload.php	2.12 KB	-rw-r--r--
post.php	2.02 KB	-rw-r--r--
posts.php	2.94 KB	-rw-r--r--
print_shipment.php	1.91 KB	-rw-r--r--
register_admin.php	8.45 KB	-rw-r--r--
remove_amount.php	1.01 KB	-rw-r--r--
searchmembers.php	2.94 KB	-rw-r--r--
send_email.php	5.02 KB	-rw-r--r--
testimony.php	3.15 KB	-rw-r--r--
upload_files.php	2.59 KB	-rw-r--r--
user_error.php	188 B	-rw-r--r--
user_withdrawal.php	4.99 KB	-rw-r--r--
view_admin.php	2.84 KB	-rw-r--r--
view_banners.php	2.4 KB	-rw-r--r--
view_posts.php	2.85 KB	-rw-r--r--
view_referrals_bonus.php	2.83 KB	-rw-r--r--
view_users.php	4.78 KB	-rw-r--r--
viewconversation.php	5.37 KB	-rw-r--r--
viewmessage.php	2.4 KB	-rw-r--r--
viewmessages.php	4.24 KB	-rw-r--r--
website_setting.php	3.09 KB	-rw-r--r--

Code Editor : add_user.php

<?php include("includes/header.php");
      include("includes/navbar.php");

$referrer = $_SESSION['sess_referrer'];
?>
  <div class="row">
        <div class="col-12">
            <div class="card">
                <div class="card-header">
                    <h4 class="card-title">Add User </h4>
                   </div>  
<?php
if (isset($_POST["submit"])){
    $username = strtolower($_POST ['username']);
    $password = $_POST ['password'];
    $password2 = $_POST ['password2'];
    $fullname = $_POST ['fullname'];
    $phone_number = $_POST ['phone_number'];
    $secret_question = $_POST ['secret_question'];
    $secret_answer = $_POST ['secret_answer'];
    $ethereum = $_POST ['ethereum'];
    $dodgecoin = $_POST ['dodgecoin'];
    $perfect_money = $_POST ['perfect_money'];
    $bitcoin = $_POST ['bitcoin'];
    $litecoin = $_POST ['litecoin'];
    $referrer_plan = $_POST ['referrer_plan'];

$location = $_POST ['location'];
    $city = $_POST ['city'];

$email = $_POST ['email'];
$needle= '@'; $email_check = strpos($email, $needle);

$referrer = mysql_escape_string($_POST ['referrer']);

$username = mysql_escape_string($username);
    $password = mysql_escape_string($password);
    $password2 = mysql_escape_string($password2);
    $fullname = mysql_escape_string($fullname);
    $phone_number = mysql_escape_string($phone_number);
    $secret_question = mysql_escape_string($secret_question);
    $secret_answer = mysql_escape_string($secret_answer);
    $ethereum = mysql_escape_string($ethereum);
    $dodgecoin = mysql_escape_string($dodgecoin);
    $perfect_money = mysql_escape_string($perfect_money);
    $bitcoin = mysql_escape_string($bitcoin);
    $email = mysql_escape_string($email);
    $referrer_plan = mysql_escape_string($referrer_plan);
    $location = mysql_escape_string($location);
    $city = mysql_escape_string($city);

if($username ==""){

echo '<script>alert("Please, fill in all your details ")</script>';
                 $err = '<div class="alert center orange" role="alert">
            Please, fill in all your details 
                </div>';
}

elseif($password!=$password2){

echo '<script>alert("Passwords dont match ")</script>';
                $err = '<div class="alert center orange" role="alert">
                Passwords dont match 
                </div>';
}
elseif(count(explode(' ', $username)) > 1){

echo '<script>alert("Your username should only contain letters and numbers but not spaces ")</script>';
        $err = '<div class="alert center orange" role="alert">
                 Your username should only contain letters and numbers but not spaces 
                </div>';
}

elseif (preg_match('/[\'^£$%&*().}{@#~?><>,|=+¬-]/', $username)){

echo '<script>alert("Your username should not contain special character")</script>';
            $err = '<div class="alert center orange" role="alert">
                    Your username should not contain special characters 
                </div>';
}

elseif ($email_check === FALSE){

echo '<script>alert(" Email address already exist!")</script>';
                $err = '<div class="alert center orange" role="alert">
                    Your Email address is invalid
                </div>';
}

else{

$query =mysqli_query($con,"SELECT id FROM users WHERE username='$username' ");
$numrows=mysqli_num_rows($query);
if($numrows!=0){
         echo '<script>alert(" username already exist!")</script>';
                $err = '<div class="alert center orange" role="alert">
                    Username already exists!
                </div>';
}

if ($numrows==0 && $numrows2==0 && $numrows4==0)
{

$login_date = date('D, d-M-Y'); $login_time = date('h:ia'); $login_activity=5;
$sql2 ="INSERT into last_login(owner, login_date, login_time, login_activity, registered_date) 
VALUES ('$username', '$login_date', '$login_time', '$login_activity', '$login_date')";
$run2 = mysqli_query($con,$sql2);

/*
INSERT INTO `bank_demo`.`users` (`id`, `username`, `password`, `fullname`, `gender`, `location`, `phone_number`, `role`, `active`, `balance`, `referrer`, `account_type`, `date_of_birth`, `occupation`, `next_of_kin`, `photo`, `country`, `state_of_residence`, `email`, `city_of_residence`, `contact_address`, `city_of_residence`) VALUES (NULL, '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '');
*/

//Pasword has Algorithm
$pwd = $password;
$password = password_hash($password, PASSWORD_DEFAULT, ['cost' =>10]);

$photo = "photo.png";
$gender = $_POST ['gender'];

$referrer = mysql_escape_string($_POST ['referrer']);

$query =mysqli_query($con,"SELECT id FROM users LIMIT 0,1");
 while ($row =mysqli_fetch_assoc($query)){
$last_id = $row ['id'];
}
//$add =rand (19999999999, 9999999999);
//$account_number = $last_id.$add;
 $sql="INSERT INTO users(username, password, pwd, fullname, phone_number, location, secret_question, secret_answer, perfect_money, ethereum, photo , email, bitcoin, litecoin, dodgecoin, balance, referrer, referrer_plan, city)
     VALUES ('$username','$password', '$pwd', '$fullname', '$phone_number', '$location',  '$secret_question', '$secret_answer', '$perfect_money', '$ethereum', '$photo' , '$email', '$bitcoin', '$litecoin',  '$dodgecoin', '0.00', '$referrer' , '$referrer_plan' , '$city' )";
$result = mysqli_query($con,$sql);

if($mail=="Yes"){
$domain_name="www.swift-xpc.com";
 $site_name ="Swiftxpress Delivery";
 $site_name2 ="Your Financial status is in good hands";
    $webmail="support@swift-xpc.com";
     $call="";
   $site_address ="";

include("functions/mailer.php");
$mail = new PHPMailer;

$mail->From = $webmail;
$mail->FromName = $site_name;

//To address and name
$mail->addAddress($email);

//Send HTML or Plain Text email
$mail->isHTML(true);

$mail->Subject = "Welcome to ".$site_name;
$mail->Body = "<b>Hello, ".$fullname."<br/>
We are delighted you joined Swiftxpress Delivery.
<br/>Your Financial status is in good hands.<br/>

Your login information:<br/>
Account Number:".$account_number."<br/>
Username:".$username."<hr/>
Account Type:".$account_type."<br/><br/>

Please login here: ".$domain_name.".<br/>
Contact us immediately if you did not authorize this registration. Thank you!<br/>";
if(!$mail->send()) 
{   // echo "Mailer Error: " . $mail->ErrorInfo;
} 
else {}

}

if($result){
    //echo "Account Successfully created";
    $user = $username;
    $_SESSION['sess_user'] = $user;
$_COOKIE['sess_user'] = $user;
setcookie("sess_user", $user, time()+3600000);
//echo $_COOKIE['sess_user'];

echo '<script>alert("Account was created successfully")</script>';
    ?>
<script type="text/javascript">
            window.location.href = "view_users"
        </script>
<?php
}

else {
         echo '<script>alert("An Error occured!!")</script>';
    echo "An Error occured!!";
}

} 
}
}

?>
<head>
<title> Create Account </title>
</head>

<div class="form-group">
                                <label for="">YOUR USERNAME:</label>
                                <input type="text" name="username" class="form-control" placeholder="Username" value="<?php echo $username?>" required>
                            </div>

<div class="form-group">
                                <label for="">DEFINE PASSWORD:</label>
                                <input type="password" name="password" class="form-control" value="<?php echo $password?>"  />
                            </div>

<div class="form-group">
                                <label for="">RETYPE PASSWORD:</label>
                                <input  type="password" name="password2" class="form-control" placeholder="Repeat password" />
                            </div>
                            
<div class="form-group">
                                <label for="">YOUR FULL NAME:</label>
                                <input type="text" name="fullname" class="form-control" value="<?php echo $fullname?>" />
                            </div>

<div class="form-group">
                                <label for="">YOUR E-MAIL ADDRESS:</label>
                                <input type="email" name="email" class="form-control" value="<?php echo $email?>" />
                            </div>

<div class="form-group">
   <label for="">PHONE NUMBER:</label>
 <input type="text" name="phone_number" value="<?php echo $phone_number?>"  class="form-control" placeholder=""  />
 </div>

<label for=""> COUNTRY:</label><br/>
                                <select name ="location"  class="form-control">
                                    <option value="">Select Country</option>
                                   <?php include("functions/list_location.php");?>
                                   </select>
</div><br/>

<div class="form-group">
                                <label for="">SECRET QUESTION:</label>
                                <input type="text" name="secret_question" class="form-control" value="<?php echo $secret_question?>"  />
                            </div>
<div class="form-group">
                                <label for="">SECRET ANSWER:</label>
                               <input type="text" name="secret_answer" class="form-control" value="<?php echo $secret_answer?>"  />
                            </div>

<?php// if($referrer!=""){?>
<div class="form-group">
                                <label for="">REFERRER USERNAME: (optional)</label>
                               <input type="text" name="referrer" class="form-control" value="<?php echo $referrer?>"  />
                            </div>
   <?php//0 }?>

<div class="col-md-12">
<button type="submit" class="btn btn-success" value="Register" name="submit">Create Account<span></span></button>
</div>
</div>
</form>
</div>
</div>
</div>

<?php
include("includes/footer.php");

${this.title}

Code Editor : add_user.php