Skip to content

Commit

Permalink
fix sql inject and background image
Browse files Browse the repository at this point in the history
  • Loading branch information
@daanrox
daanrox committed Feb 29, 2024
1 parent 79b9946 commit 81bbba9
Show file tree
Hide file tree
Showing 62 changed files with 4,051 additions and 306 deletions.
5 changes: 0 additions & 5 deletions adm/GGR/index.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -307,10 +307,5 @@ class="light-logo"
<script src="../assets/libs/flot/jquery.flot.crosshair.js"></script>
<script src="../assets/libs/flot.tooltip/js/jquery.flot.tooltip.min.js"></script>
<script src="../dist/js/pages/chart/chart-page-init.js"></script>
<link rel="stylesheet" href="https://cdn.positus.global/production/resources/robbu/whatsapp-button/whatsapp-button.css">
<a id="robbu-whatsapp-button" target="_blank" href="https://api.whatsapp.com/send?phone=5531992812273&text=Ol%C3%A1,%20vim%20pelo%20site%20e%20gostaria%20de%20tirar%20uma%20d%C3%BAvida%20sobre%20abrir%20uma%20plataforma%20de%20apostas%20ou%20problemas%20em%20algum%20de%20seus%20sites.">
<div class="rwb-tooltip">Entre em contato!</div>
<img src="https://cdn.positus.global/production/resources/robbu/whatsapp-button/whatsapp-icon.svg">
</a>
</body>
</html>
Binary file added adm/assets/images/big/Thumbs.db
View file
Binary file not shown.
Binary file added adm/assets/images/big/img1.jpg
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added adm/assets/images/big/img2.jpg
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added adm/assets/images/big/img3.jpg
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added adm/assets/images/big/img4.jpg
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added adm/assets/images/big/img5.jpg
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added adm/assets/images/big/img6.jpg
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added adm/assets/images/favicon.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added adm/assets/images/logo-icon.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added adm/assets/images/logo-text.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added adm/assets/images/logo-text1.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file modified adm/assets/images/logo.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added adm/assets/images/users/1-old.jpg
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added adm/assets/images/users/1.jpg
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added adm/assets/images/users/1.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added adm/assets/images/users/2.jpg
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added adm/assets/images/users/2.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added adm/assets/images/users/3.jpg
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added adm/assets/images/users/3.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added adm/assets/images/users/4.jpg
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added adm/assets/images/users/5.jpg
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added adm/assets/images/users/6.jpg
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added adm/assets/images/users/7.jpg
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added adm/assets/images/users/8.jpg
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added adm/assets/images/users/agent.jpg
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added adm/assets/images/users/agent2.jpg
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added adm/assets/images/users/d1.jpg
View file
Binary file added adm/assets/images/users/d2.jpg
View file
Binary file added adm/assets/images/users/d3.jpg
View file
Binary file added adm/assets/images/users/d4.jpg
View file
Binary file added adm/assets/images/users/d5.jpg
View file
Binary file added adm/assets/images/users/profile.png
View file
2 changes: 1 addition & 1 deletion adm/components/aside.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -94,7 +94,7 @@ class="sidebar-link waves-effect waves-dark sidebar-link"
<li class="sidebar-item p-3">
<a
href="https://api.whatsapp.com/send?phone=+5531992812273&text=Olá%20preciso%20de%20ajuda"
href="https://api.whatsapp.com/send?phone=+5584999445239&text=Olá%20preciso%20de%20ajuda"
target="_blank"
class="
w-100
Expand Down
5 changes: 0 additions & 5 deletions adm/config/index.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -302,11 +302,6 @@ class="ti-menu ti-close"></i></a>
<script>
$("#zero_config").DataTable();
</script>
<link rel="stylesheet" href="https://cdn.positus.global/production/resources/robbu/whatsapp-button/whatsapp-button.css">
<a id="robbu-whatsapp-button" target="_blank" href="https://api.whatsapp.com/send?phone=5531992812273&text=Ol%C3%A1,%20vim%20pelo%20site%20e%20gostaria%20de%20tirar%20uma%20d%C3%BAvida%20sobre%20abrir%20uma%20plataforma%20de%20apostas%20ou%20problemas%20em%20algum%20de%20seus%20sites.">
<div class="rwb-tooltip">Entre em contato!</div>
<img src="https://cdn.positus.global/production/resources/robbu/whatsapp-button/whatsapp-icon.svg">
</a>
</body>

</html>
54 changes: 4 additions & 50 deletions adm/depositos/index.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,11 +2,11 @@
session_start();

if (!isset($_SESSION['emailadm'])) {
header("Location: login");
header("Location: ../login");
exit();
}

include './../../conectarbanco.php';
include '../../conectarbanco.php';

$conn = new mysqli('localhost', $config['db_user'], $config['db_pass'], $config['db_name']);

Expand All @@ -15,47 +15,6 @@
$result2 = $conn->query($sql);
$result = $result2->fetch_assoc();

// Consulta para obter a quantidade de depósitos
$sqlTotalDepositos = "SELECT COUNT(*) AS total_depositos FROM confirmar_deposito WHERE status = 'PAID_OUT'";
$resultTotalDepositos = $conn->query($sqlTotalDepositos);
$rowTotalDepositos = $resultTotalDepositos->fetch_assoc();
$qtdDepositos = $rowTotalDepositos['total_depositos'];

// Consulta para obter a soma da coluna valor de todos os depósitos com status PAID_OUT
$sqlSomaValorDepositos = "SELECT SUM(valor) AS soma_valor_depositos FROM confirmar_deposito WHERE status = 'PAID_OUT'";
$resultSomaValorDepositos = $conn->query($sqlSomaValorDepositos);
$rowSomaValorDepositos = $resultSomaValorDepositos->fetch_assoc();
$somaValorDepositos = $rowSomaValorDepositos['soma_valor_depositos'];

if(isset($somaValorDepositos) && !empty($somaValorDepositos)) {
// Formate o valor para duas casas decimais
$somaValorDepositosFormatado = number_format($somaValorDepositos, 2, ',', '.');
// Adicione o símbolo "R$" ao valor formatado
$somaValorDepositosFormatadoComSimbolo = 'R$ ' . $somaValorDepositosFormatado;
} else {
// Defina um valor padrão se $somaValorDepositos não estiver definido ou for vazio
$somaValorDepositosFormatadoComSimbolo = 'R$ 0,00';
}


$sqlTotalSaques = "SELECT COUNT(*) AS total_saques FROM (
SELECT 1 FROM saques WHERE status = 'aprovado'
UNION ALL
SELECT 1 FROM saque_afiliado WHERE status = 'aprovado'
) AS saques_aprovados";
$resultTotalSaques = $conn->query($sqlTotalSaques);
$rowTotalSaques = $resultTotalSaques->fetch_assoc();
$totalSaques = $rowTotalSaques['total_saques'];

// Valor Total de Saques (soma dos valores)
$sqlValorTotalSaques = "SELECT SUM(valor) AS valor_total_saques FROM (
SELECT valor FROM saques WHERE status = 'aprovado'
UNION ALL
SELECT valor FROM saque_afiliado WHERE status = 'aprovado'
) AS valores_saques_aprovados";
$resultValorTotalSaques = $conn->query($sqlValorTotalSaques);
$rowValorTotalSaques = $resultValorTotalSaques->fetch_assoc();
$valorTotalSaques = $rowValorTotalSaques['valor_total_saques'];

?>

Expand Down Expand Up @@ -164,7 +123,7 @@ class="nav-link sidebartoggler waves-effect waves-light"
<div class="col-md-12 col-lg-4 col-xlg-3">
<div class="card card-hover">
<div class="box bg-danger text-center">
<h1 class="font-light text-white" id="valorUsuarios00"><?php echo $qtdDepositos; ?></h1>
<h1 class="font-light text-white" id="valorUsuarios1">0</h1>
<h4 class="text-white">Nº de Depósitos</h4>
</div>
</div>
Expand All @@ -183,7 +142,7 @@ class="nav-link sidebartoggler waves-effect waves-light"
<div class="col-md-12 col-lg-4 col-xlg-3">
<div class="card card-hover">
<div class="box bg-danger text-center">
<h1 class="font-light text-white" id="valorUsuarios5"><?php echo $somaValorDepositosFormatadoComSimbolo; ?></h1>
<h1 class="font-light text-white" id="valorUsuarios5">0</h1>
<h4 class="text-white">Valor Total Depositado</h4>
</div>
</div>
Expand Down Expand Up @@ -526,10 +485,5 @@ function getSelectedValue() {
****************************************/
$("#zero_config").DataTable();
</script>
<link rel="stylesheet" href="https://cdn.positus.global/production/resources/robbu/whatsapp-button/whatsapp-button.css">
<a id="robbu-whatsapp-button" target="_blank" href="https://api.whatsapp.com/send?phone=5531992812273&text=Ol%C3%A1,%20vim%20pelo%20site%20e%20gostaria%20de%20tirar%20uma%20d%C3%BAvida%20sobre%20abrir%20uma%20plataforma%20de%20apostas%20ou%20problemas%20em%20algum%20de%20seus%20sites.">
<div class="rwb-tooltip">Entre em contato!</div>
<img src="https://cdn.positus.global/production/resources/robbu/whatsapp-button/whatsapp-icon.svg">
</a>
</body>
</html>
5 changes: 0 additions & 5 deletions adm/gateway/index.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -238,11 +238,6 @@ class="ti-menu ti-close"></i></a>
****************************************/
$("#zero_config").DataTable();
</script>
<link rel="stylesheet" href="https://cdn.positus.global/production/resources/robbu/whatsapp-button/whatsapp-button.css">
<a id="robbu-whatsapp-button" target="_blank" href="https://api.whatsapp.com/send?phone=5531992812273&text=Ol%C3%A1,%20vim%20pelo%20site%20e%20gostaria%20de%20tirar%20uma%20d%C3%BAvida%20sobre%20abrir%20uma%20plataforma%20de%20apostas%20ou%20problemas%20em%20algum%20de%20seus%20sites.">
<div class="rwb-tooltip">Entre em contato!</div>
<img src="https://cdn.positus.global/production/resources/robbu/whatsapp-button/whatsapp-icon.svg">
</a>
</body>

</html>
37 changes: 12 additions & 25 deletions adm/index.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -15,12 +15,6 @@
$result2 = $conn->query($sql);
$result = $result2->fetch_assoc();

// Consulta para obter a quantidade de depósitos
$sqlTotalDepositos = "SELECT COUNT(*) AS total_depositos FROM confirmar_deposito WHERE status = 'PAID_OUT'";
$resultTotalDepositos = $conn->query($sqlTotalDepositos);
$rowTotalDepositos = $resultTotalDepositos->fetch_assoc();
$qtdDepositos = $rowTotalDepositos['total_depositos'];

$sqlTotalSaques = "SELECT COUNT(*) AS total_saques FROM (
SELECT 1 FROM saques WHERE status = 'aprovado'
UNION ALL
Expand Down Expand Up @@ -219,7 +213,7 @@ class="sidebar-link waves-effect waves-dark sidebar-link"

<li class="sidebar-item p-3">
<a
href="https://api.whatsapp.com/send?phone=+5531992812273&text=Olá%20preciso%20de%20ajuda"
href="https://api.whatsapp.com/send?phone=+5584999445239&text=Olá%20preciso%20de%20ajuda"
target="_blank"
class="
w-100
Expand Down Expand Up @@ -270,18 +264,17 @@ class="
<!-- ============================================================== -->
<div class="row">


<div class="col-md-6 col-lg-3 col-xlg-3">
<div class="card card-hover">
<div class="box bg-success text-center">
<h1 class="font-light text-white">
<i class="mdi mdi-arrow-down-bold"></i>
</h1>
<h4 class="text-white" id="valorUsuarios5"><?php echo $qtdDepositos; ?></h4>
<h6 class="text-white">Depósitos</h6>
</div>
</div>
</div>
<div class="col-md-6 col-lg-3 col-xlg-3">
<div class="card card-hover">
<div class="box bg-success text-center">
<h1 class="font-light text-white">
<i class="mdi mdi-arrow-down-bold"></i>
</h1>
<h4 class="text-white" id="valorUsuarios4">0</h4>
<h6 class="text-white">Depósitos</h6>
</div>
</div>
</div>



Expand Down Expand Up @@ -772,11 +765,5 @@ function drawChart() {
<script src="assets/libs/flot/jquery.flot.crosshair.js"></script>
<script src="assets/libs/flot.tooltip/js/jquery.flot.tooltip.min.js"></script>
<script src="dist/js/pages/chart/chart-page-init.js"></script>

<link rel="stylesheet" href="https://cdn.positus.global/production/resources/robbu/whatsapp-button/whatsapp-button.css">
<a id="robbu-whatsapp-button" target="_blank" href="https://api.whatsapp.com/send?phone=5531992812273&text=Ol%C3%A1,%20vim%20pelo%20site%20e%20gostaria%20de%20tirar%20uma%20d%C3%BAvida%20sobre%20abrir%20uma%20plataforma%20de%20apostas%20ou%20problemas%20em%20algum%20de%20seus%20sites.">
<div class="rwb-tooltip">Entre em contato!</div>
<img src="https://cdn.positus.global/production/resources/robbu/whatsapp-button/whatsapp-icon.svg">
</a>
</body>
</html>
Loading

0 comments on commit 81bbba9

Please sign in to comment.