[
MAINHACK
]
Mail Test
BC
Config Scan
HOME
Create...
New File
New Folder
Viewing / Editing File: placed1.php
<?php include('header.php'); $tot=$_SESSION['total']; $show=new Oops($db); ?> <div class="col-md-9"> <div class="mail"> <h3>Place Your Order</h3> <div class="agileinfo_mail_grids" style="border:1px solid #ccc; padding:2em;"> <?php /*if(isset($_POST['sub'])){ $status=$_POST['pay_status']=="COD"?'PLACED':'PENDING'; $order_id=$_POST['order_id']; if($_POST['pay_status']=='COD'){ unset($_SESSION["cart_item"]); } $allowed = ["address","pay_status"]; $params = []; $setStr = ""; foreach ($allowed as $key) { if (isset($_POST[$key]) && $key != "uid") { $setStr .= "`$key` = :$key,"; $params[$key] = htmlspecialchars(strip_tags($_POST[$key])); } } $setStr = rtrim($setStr, ","); $setStr .= ",`status` = :status"; $params['order_id']=$order_id; $params['status'] =$status; $show->table ='place_order'; $show->cols =$setStr; $show->id_name ='order_id'; print_r($setStr); $show->params =$params; print_r($params); if($show->update_all()){ /*echo "<script>alert('Redirecting to Payment....'); window.location.href='place_online_order.php?id=$order_id';</script>"; echo "Your order has been placed thank you";} } */ if(isset($_POST['sub'])){ $status=$_POST['pay_status']=="COD"?'PLACED':'PENDING'; $order_id=$_POST['order_id']; if($_POST['pay_status']=='COD'){ unset($_SESSION["cart_item"]); $my_mail="support@yadass.com"; $email_subject = "Order Details"; $em='<html><head><meta http-equiv="Content-Type" content="text/html; charset=utf-8">'; $email_content1=" <html><head> <style> h2{ color:#000; font-size:26px; } #b{ width:500px; font-size:15px; } th{ background-color:#fff; } body, td, input, textarea, select { font-family:'Podkova', serif; margin: 0; } </style> </head> <body> <table style='border: 40px solid #2bae1c;' width='800px'> <tr><td style='text-align:justify;'> <h3>Welcome to Yadass.com,</h3></td></tr> <tr><td style='text-align:justify;padding:12px;font-size:18px;'><br>Hi Admin,<br><br> You have got a order from :<br><br> Name : ".$_SESSION['login_user']."<br> Email : ".$_SESSION['username']."<br> Phone1 : ".htmlentities(strip_tags($_POST['phon']))."<br> Address : ".htmlentities(strip_tags($_POST['address']))."<br> BILL :<a href='http://yadass.com/bill_final.php?user=".$_SESSION['login_id']."&order=".$order_id."'>Print</a> <br> <br><br><br><br> Thanks & Regards,<br> Yadass,<br> Web : https://yadass.com<br> Email :support@yadass.com<br> Phone :1234567890 <br> <br> </td></tr> </tr> </table> </body></html>"; $email_content=" <html><head> <style> h2{ color:#000; font-size:26px; } #b{ width:500px; font-size:15px; } th{ background-color:#fff; } body, td, input, textarea, select { font-family:'Podkova', serif; margin: 0; } </style> </head> <body> <table style='border: 40px solid #2bae1c;' width='800px'> <tr><td style='text-align:justify;'> <h3>Welcome to Yadass </h3></td></tr> <tr><td style='text-align:justify;padding:12px;font-size:18px;'><br>Hi ".$_SESSION['login_user'].",<br><br> Your Details of the order purchased :<br><br> BILL :<a href='http://yadass.com/bill_final.php?user=".$_SESSION['login_id']."&order=".$order_id."'>Print</a> <br> <br><br><br><br> Thanks & Regards,<br> Yadass,<br> Web : https://yadass.com<br> Email :support@yadass.com<br> Phone :1234567890 <br> <br> </td></tr> </tr> </table> </body></html>"; $headers = 'MIME-Version: 1.0' . "\r\n"; $headers .= 'Content-type: text/html; charset=iso-8859-1' . "\r\n"; if(@mail($my_mail,$email_subject,$email_content1,$headers) && @mail($_SESSION['username'],$email_subject,$email_content,$headers)) { // echo "<script>alert('Message sent!')</script>"; // echo "<script>window.location.href='bill.php'</script>"; } else { // echo "<script>alert('Message not sent!')</script>"; } } $allowed = ["phon","address","pay_status","city_state","other"]; $params = []; $setStr = ""; foreach ($allowed as $key) { if (isset($_POST[$key]) && $key != "uid") { $setStr .= "`$key` = :$key,"; $params[$key] = htmlspecialchars(strip_tags($_POST[$key])); } } $setStr = rtrim($setStr, ","); $setStr .= ",`status` = :status"; $params['order_id']=$order_id; $params['status'] =$status; $show->table ='place_order'; $show->cols =$setStr; $show->id_name ='order_id'; //print_r($setStr); $show->params =$params; if($_POST['other']==1){ $data=array( 'order_id'=>htmlentities(strip_tags($_POST['order_id'])), 'name'=>htmlentities(strip_tags($_POST['name'])), 'phone'=>htmlentities(strip_tags($_POST['phon'])), 'address'=>htmlentities(strip_tags($_POST['address'])), 'city'=>htmlentities(strip_tags($_POST['city_state'])), ); $r=$show->insert('other_address',$data); } if($show->update_all()){ echo "<script>alert('Redirecting to Payment....'); window.location.href='place_online_order.php?id=$order_id';</script>"; echo "Your order has been placed thank you";} } ?> <div class="clearfix"> </div> </div> </div> </div> </div> <?php include('footer.php'); ?>
Save Changes
Cancel / Back
Close ×
Server Info
Hostname: server05.hostinghome.co.in
Server IP: 192.168.74.40
PHP Version: 7.4.33
Server Software: Apache
System: Linux server05.hostinghome.co.in 3.10.0-962.3.2.lve1.5.81.el7.x86_64 #1 SMP Wed May 31 10:36:47 UTC 2023 x86_64
HDD Total: 1.95 TB
HDD Free: 677.72 GB
Domains on IP: N/A (Requires external lookup)
System Features
Safe Mode:
Off
disable_functions:
None
allow_url_fopen:
On
allow_url_include:
Off
magic_quotes_gpc:
Off
register_globals:
Off
open_basedir:
None
cURL:
Enabled
ZipArchive:
Disabled
MySQLi:
Enabled
PDO:
Enabled
wget:
Yes
curl (cmd):
Yes
perl:
Yes
python:
Yes
gcc:
Yes
pkexec:
No
git:
Yes
User Info
Username: itsweb
User ID (UID): 1619
Group ID (GID): 1621
Script Owner UID: 1619
Current Dir Owner: 1619