АEсЙєнОLwebshll2019

Current Path : /home/webyoo/www/backup/allback/docteur-site/cv/sym/a/hanessiim/site/admin/

Current File : /home/webyoo/www/backup/allback/docteur-site/cv/sym/a/hanessiim/site/admin/insert_new_truma.php

<?php
include_once "start.php";
$id=$_POST['id_truma'];
$id_user=$_POST['id_user'];
$amount=$_POST['amount'];

$nb = 0;
$mess = "";
if($id!=""){
	$query = mysqli_query($link,"UPDATE syna_trumots SET id_user = '".$id_user."', amount = '".$amount."' WHERE id = '".$id."'");
	$row = mysqli_fetch_array($query, MYSQLI_ASSOC);
	$mess = "";
}else{
	if($id_user!=""){
		// $sqlclient = mysqli_query($link,"SELECT * FROM syna_trumots where id = '".$id."'");
		// $nb = mysqli_num_rows($sqlclient);
		// if($nb == 0){
		$query = mysqli_query($link,"INSERT INTO syna_trumots SET id_user = '".$id_user."', amount = '".$amount."', date_payment = NOW(), status = 1");
		$row = mysqli_fetch_array($query, MYSQLI_ASSOC);

		$query = mysqli_query($link,"SELECT SUM(amount) as somme FROM syna_trumots where id_user = '".$id_user."' AND status = 1");
		$row = mysqli_fetch_array($query, MYSQLI_ASSOC);
		$query = mysqli_query($link,"UPDATE syna_users SET balance = '".$row['somme']."' WHERE id = '".$id_user."'");

		$mess = "";
		// }else{
		// 	$mess = "This truma already exits!";
		// }
	}
}
echo $mess;
?>

web shell, Coded By 2019