interiorvisions.co.th

upload mass deface mass delete console info server

name : del_direc.php

<?php
include('../config/config.php');


$q = $_POST['q'];
$sql = "SELECT * FROM directors WHERE d_id = ".$q." ";
$res = $conn->query($sql);
while($row = $res->fetch_assoc()){
    $image = $row['d_image'];
    @unlink("../".$image);
}

$sql = "DELETE FROM directors WHERE d_id = ".$q." ";
$res = $conn->query($sql);
if($res === TRUE){
  
    echo 1;
}else{
    echo 0;
}

?>

UnknownSec Shell