HEX
Server: LiteSpeed
System: Linux server137.web-hosting.com 4.18.0-513.18.1.lve.el8.x86_64 #1 SMP Thu Feb 22 12:55:50 UTC 2024 x86_64
User: bibuzptr (1123)
PHP: 7.4.33
Disabled: NONE
$ pwd: /home/bibuzptr/elearning.bibu-edu.us/old 20th oct/openuni/app/
Upload Files
File: /home/bibuzptr/elearning.bibu-edu.us/old 20th oct/openuni/app/signup-lecturer.php
<?php
session_start();
include_once('../includes/db_connect.php');
include_once "../includes/swiftmailer/swift_required.php";
//header("Content-Type:application/json");
$now = date('Y-m-d H:i:s');
$today = date('Y-m-d');
// if(isset($_SESSION["@BMTECH#ADM"])){
//  $email = $_SESSION["@BMTECH#ADM"];
//  $chkuser = mysqli_query($con,"SELECT * FROM users WHERE email='$email'");
//   while($row = mysqli_fetch_assoc($chkuser)){
//   $uid = $row["id"];
//   }


/*<======User Management=========>*/
if(isset($_POST["yname"])){
    extract($_POST);
 $fname = trim(mysqli_real_escape_string($con, $_POST["yname"]));
 $email = trim(mysqli_real_escape_string($con, $_POST["email"]));
 $pass = trim(mysqli_real_escape_string($con, $_POST["pass"]));
 $pwd = hash("sha256",md5($pass));
 
 //profile pic
 $target_dir = "../lecturer-images/";
   $target_file = $target_dir . basename($_FILES["ppic"]["name"]);
   $file = basename($_FILES["ppic"]["name"]);
   move_uploaded_file($_FILES["ppic"]["tmp_name"], $target_file);
   
   //nationalid
   $nationalid = basename($_FILES["nationalid"]["name"]);
   move_uploaded_file($_FILES["nationalid"]["tmp_name"], $target_dir . basename($_FILES["nationalid"]["name"]));
   
   //academic
   $academic = basename($_FILES["academic"]["name"]);
   move_uploaded_file($_FILES["academic"]["tmp_name"], $target_dir . basename($_FILES["academic"]["name"]));
   
   //licenses
   $licenses = basename($_FILES["licenses"]["name"]);
   move_uploaded_file($_FILES["licenses"]["tmp_name"], $target_dir . basename($_FILES["licenses"]["name"]));

  if(mysqli_num_rows(mysqli_query($con,"SELECT * FROM lecturers WHERE email='$email'")) < 1){
  if(mysqli_query($con,"INSERT INTO lecturers(fullname,email,phone,password,profilepic,nationalid,country,campus,academic,licenses,experiences,courses) VALUES('$fname','$email','$phone','$pwd','$file','$nationalid','$country','$campus','$academic','$licenses','$experiences','$courses')")){
   $link = "https://www.softmas.co.ke/openuni/staff-login";
   $notif = mysqli_fetch_assoc(mysqli_query($con,"SELECT * FROM notification_templates WHERE id='8'"));
//   $mail->Subject = $notif["subject"];
//   $mail->Body = str_replace(array("{name}","{account}","{email}","{password}","{link}"),array($fname,"1",$email,$pass,$link),$notif["body"]);
//   $mail->AddAddress($email,$fname);
//   if($mail->Send()){
    //send email
$transport = Swift_SmtpTransport::newInstance('softmas.co.ke', 465, "ssl")
->setUsername('notifications@softmas.co.ke')
->setPassword('notif2019!');

$mailer = Swift_Mailer::newInstance($transport);
$message = Swift_Message::newInstance($notif["subject"])
->setFrom(array('notifications@softmas.co.ke' => 'Breakthrough Open University'))
->setTo(array($email => $fname))
->setContentType('text/html; charset=utf-8')
->setBody(str_replace(array("{name}","{account}","{email}","{password}","{link}"),array($fname,"1",$email,$pass,$link),$notif["body"]));
$numSent = $mailer->send($message);

//notify admin
$notif2 = mysqli_fetch_assoc(mysqli_query($con,"SELECT * FROM notification_templates WHERE id='10'"));
$transport = Swift_SmtpTransport::newInstance('softmas.co.ke', 465, "ssl")
->setUsername('notifications@softmas.co.ke')
->setPassword('notif2019!');

$mailer = Swift_Mailer::newInstance($transport);
$message = Swift_Message::newInstance($notif2["subject"])
->setFrom(array('notifications@softmas.co.ke' => 'Breakthrough Open University'))
->setTo(array('patnju4@gmail.com' => 'Admin'))
->setContentType('text/html; charset=utf-8')
->setBody(str_replace(array("{name}"),array($fname),$notif2["body"]));
$numSent = $mailer->send($message);
    echo "success"; //json_encode(array('status' => 200,'message' => "SUCCESS"));
 //   }
   }
  else{
   echo "invalid";// json_encode(array('status' => 300,'message' => 'ERROR'));
   }
  }
  else{
   echo json_encode(array('status' => 401,'message' => 'EXIST'));
   }

  }

/*<=======Delete User=========>*/
if(isset($_POST["deluser"])){
  $id = trim(mysqli_real_escape_string($con, $_POST["deluser"]));
  if(mysqli_query($con,"DELETE FROM users WHERE id = '$id'")){
    echo json_encode(array('status' => 200,'message' => 'SUCCESS'));
  }
  else{
    echo json_encode(array('status' => 300,'message' => 'ERROR'));
   }
  }
//}
?>
@ Telegram