OXIESEC PANEL
- Current Dir:
/
/
var
/
www
/
cream
/
pages
Server IP: 139.59.38.164
Upload:
Create Dir:
Name
Size
Modified
Perms
📁
..
-
06/17/2025 10:17:24 AM
rwxrwxr-x
📁
assets
-
02/24/2025 12:08:19 PM
rwxr-xr-x
📄
landingPage.php
1.73 KB
05/19/2025 10:07:13 AM
rw-r--r--
📁
process
-
05/19/2025 10:07:13 AM
rwxr-xr-x
📄
script.js
15.81 KB
02/24/2025 12:21:07 PM
rw-r--r--
📄
style.css
11.12 KB
02/24/2025 12:21:07 PM
rw-r--r--
Editing: landingPage.php
Close
<?php include '../assets/php/db_config.php'; // Get ID from URL parameter $id = isset($_GET['id']) ? intval($_GET['id']) : 0; if ($id > 0) { // Prepare SQL query using prepared statement to prevent SQL injection $stmt = $creamdb->prepare("SELECT * FROM user_landing_page WHERE id = ?"); $stmt->bind_param("i", $id); $stmt->execute(); $result = $stmt->get_result(); if ($result->num_rows > 0) { $row = $result->fetch_assoc(); // Get the HTML file path - use server file system path instead of URL $htmlFile = $_SERVER['DOCUMENT_ROOT'] . "/CreatePage/pages/" . basename($row['url']); // For debugging // echo "<h1>" . htmlspecialchars($row['title']) . "</h1>"; // echo "<p>User ID: " . htmlspecialchars($row['user_id']) . "</p>"; // echo "<p>Email: " . htmlspecialchars($row['action_email']) . "</p>"; // echo "Checking file: " . $htmlFile . "<br>"; // Check if file exists and is a file if (file_exists($htmlFile) && is_file($htmlFile)) { // Include the HTML content include($htmlFile); ?> <input type="hidden" id="pageId" name="pageId" value="<?= $id ?>"> <input type="hidden" id="actionEmail" name="actionEmail" value="<?= $row['action_email'] ?>"> <input type="hidden" id="pageTitle" name="pageTitle" value="<?= $row['title'] ?>"> <? } else { echo "<p>Error: Content file not found. Looking for file at: " . $htmlFile . "</p>"; } } else { echo "<p>No record found with this ID.</p>"; } $stmt->close(); } else { echo "<p>Invalid ID parameter.</p>"; } // Close database connection $creamdb->close();