* Sunda Cyber Army 2k17 *
Indonesia Defacer ~

© | FaceBook | Youtube | ©
?? | HackersId | DefacerId | ??
?? | Website | ??
?? | Tools | ??

Path : /home/dent/public_html/home/000~ROOT~000/proc/self/root/proc/self/cwd/0903/

File Upload :

Current File : /home/dent/public_html/home/000~ROOT~000/proc/self/root/proc/self/cwd/0903/results.php

Results<hr>

<?php

echo "form information:<br>";

echo "|" . $_REQUEST["genre"] . "|";


/*
 *   Step 1: Create a connection to a database. Wait, check if the connection is good/bad.
 *   Step 2: WRite some SQL to submit to/run on the database
 *   Step 3: Submit SQL and store results in a variable. WAIT. Check for errors.
 *   Step 4: Output/parse the results.
 *
 *
 */

$host = 'webdev.iyaclasses.com';
$userid="yourusername";
$userpw = "yourpw";
$dbname = "dent_dvd";

include "pdloginvariables.php";

$dbconnection = new mysqli (
    $host,
    $userid,
    $userpwS,
    $dbname
);

if($dbconnection->connect_errno) {
    echo "db connection error:" . $dbconnection->connect_error;
    exit();
} else {
    echo "DB connection SUCCCESS!";
}

$sql = "SELECT * FROM movieView WHERE genre='" . $_REQUEST["genre"] . "'";

$sql = "SELECT * FROM movieView WHERE genre LIKE '" . $_REQUEST["genre"] . "%'";

echo "<hr>";
echo $sql;
echo "<hr>";

echo $coolvariable;

$results = $dbconnection->query($sql);

if(!$results) {
    echo "<hr>";
    echo "SQL ERROR: " . $dbconnection->error;
    echo "<br>SQL:" . $sql;
    echo "<hr>";
    exit();
} else {
    echo "all good.. lets move on to results!";
}

echo "<hr><br>";

echo "Received  " . $results->num_rows . " records.";

while($currentrow = $results->fetch_assoc()) {
    echo "Title:" . $currentrow["title"];
    echo "(Rated " . $currentrow["rating"] . ")";
    echo "<br>";
}

echo "<hr>End of records";