OXIESEC PANEL
- Current Dir:
/
/
var
/
www
/
cream
/
sendy
/
includes
/
segments
Server IP: 139.59.38.164
Upload:
Create Dir:
Name
Size
Modified
Perms
📁
..
-
05/27/2025 10:27:13 AM
rwxr-xr-x
📄
delete.php
469 bytes
05/19/2025 10:07:15 AM
rw-r--r--
📄
export-csv.php
3.17 KB
05/19/2025 10:07:15 AM
rw-r--r--
📄
main.php
4.57 KB
05/19/2025 10:07:15 AM
rw-r--r--
📄
save.php
2.66 KB
05/19/2025 10:07:15 AM
rw-r--r--
📄
segmentate.php
14.72 KB
05/19/2025 10:07:15 AM
rw-r--r--
Editing: save.php
Close
<?php include('../functions.php');?> <?php include('../login/auth.php');?> <?php //------------------------------------------------------// // INIT // //------------------------------------------------------// $seg_name = isset($_POST['seg_name']) ? mysqli_real_escape_string($mysqli, $_POST['seg_name']) : ''; $app = is_numeric($_POST['app']) ? $_POST['app'] : exit; $lid = is_numeric($_POST['lid']) ? $_POST['lid'] : exit; $edit = isset($_POST['edit']) ? mysqli_real_escape_string($mysqli, $_POST['edit']) : ''; $sid = isset($_POST['sid']) ? $_POST['sid'] : 0; if($sid!=0) if($edit && !is_numeric($sid)) exit; $group_json = isset($_POST['group_json']) ? $_POST['group_json'] : ''; $conditions_array = json_decode($group_json); date_default_timezone_set(get_app_info('timezone')); //------------------------------------------------------// // FUNCTIONS // //------------------------------------------------------// if($edit) { //Delete all conditions from this segment and update seg name $q = 'DELETE FROM seg_cons WHERE seg_id = '.$sid; $q2 = 'UPDATE seg SET name = "'.$seg_name.'" WHERE id = '.$sid; mysqli_query($mysqli, $q); mysqli_query($mysqli, $q2); } else { //Insert segmentation name into database $q = 'INSERT INTO seg (name, app, list) VALUES ("'.$seg_name.'", '.$app.', '.$lid.')'; $r = mysqli_query($mysqli, $q); if ($r) $sid = mysqli_insert_id($mysqli); else echo 'cannot-insert-name-into-segment'; } $i = 1; foreach ($conditions_array as $and_group) { $first = true; foreach($and_group as $or_group) { $field = mysqli_real_escape_string($mysqli, $or_group[0]); $comparison = mysqli_real_escape_string($mysqli, $or_group[1]); $val = mysqli_real_escape_string($mysqli, $or_group[2]); $operator = $first ? '' : 'OR'; //Check if value is a date if(strtotime($val) && strlen($val)==15) { $val = strtotime($val); } else if($comparison=='BETWEEN') { $btw_array = explode(' AND ', $val); $start_date = strtotime($btw_array[0]); $end_date = strtotime($btw_array[1]); $val = $start_date.' AND '.$end_date; } //Insert into 'seg_cons' table $q = 'INSERT INTO seg_cons (seg_id, group_id, operator, field, comparison, val) VALUES ('.$sid.', '.$i.', "'.$operator.'", "'.$field.'", "'.$comparison.'", "'.$val.'")'; $r = mysqli_query($mysqli, $q); if (!$r) { error_log("[Can't INSERT row in seg_cons table]".mysqli_error($mysqli).': in '.__FILE__.' on line '.__LINE__); echo 'cannot-save-conditions'; exit; } $first = false; } $i++; } echo $sid; ?>