www.dev2.delv-in.com - UnknownSec 403

upload mass deface mass delete console info server
name : openTime.php
 <?php
/*
	Delvin Dev Open Time
*/
include('ini.php');
$Template = new Template;
$Open_Time = new Open_Time;

date_default_timezone_set($_SESSION['timeZone']);

    if ($_POST['f_startTS'] > $_POST['f_endTS']){
        $Template->set_alert("ERROR: Please select a 'From' date that comes before the 'Until' date", "error");
    }

//======== Update Database
$error = FALSE;

if ($_POST['submitBut'] == 'Save'){
    
    if ($_POST['userID'] == '' || $_POST['date'] == '' || $_POST['otCatID'] <= 0 || $_POST['minutes'] == ''){
        $error = TRUE;
        $Template->set_alert('ERROR: Some required form data is missing', 'error');

    } else if (strtotime($_POST['date']) > strtotime('now')){
        $error = TRUE;
        $Template->set_alert('ERROR: You have specified a date in the future. This is not permitted.', 'error');

    } else {

        if (intval($_POST['hours']) > 0){
            $minutes = (intval($_POST['hours']) * 60) + intval($_POST['minutes']);
        } else {
            $minutes = intval($_POST['minutes']);
        }

        $Open_Time->add_mod($_POST['openTimeID'], $_POST['userID'], strtotime($_POST['date'].", 12:00 PM"), htmlspecialchars($_POST['reason']), $minutes, $_POST['otCatID'], $_SESSION['LID']);
    }

} else if ($_POST['submitBut'] == 'Confirm Delete'){

    if ($Open_Time->delete($_POST['openTimeID'])){
        $Template->set_alert('Open Time log entry #' . $_POST['openTimeID'] . " was deleted.", "success");
    } else {
        $Template->set_alert('ERROR: Open Time log entry #' . $_POST['openTimeID'] . " was not deleted.", "error");
    }
}



include('includes/private_header.php');

if (!isset($_POST['submitBut'])){ $_POST['submitBut'] = ''; }


    // DISPLAY ALERTS
	echo $Template->get_alerts();

        if ($_SESSION['LID'] > 0){
            // user is logged in

            // ======== Set Views =========

            if (($_POST['submitBut'] == 'Save' && $error == TRUE) || $_POST['submitBut'] == 'Edit' || $_POST['submitBut'] == 'New'){

                $Template->load('views/v_openTime_edit.php', 'Open Time');

            } else if ($_POST['submitBut'] == 'Delete'){

                $Template->load('views/v_openTime_del.php', 'Open Time');

            } else if ($_POST['submitBut'] == 'Get Open Time Report'){

                $Template->load('views/v_report_openTime.php');

            } else {

                $Template->load('views/v_openTime.php', 'Open Time');

            }

        } else {
            include('views/v_sess_exp.php');
        }

include('includes/private_footer.php');
?>
UnknownSec Shell
