JEMBOT MAWOT Bypass Shell
<script>
pkgenre = null;
</script>
<?php
include_once '../../../php/dao/include_dao.php';
$genre = new Genre();
$genre->pkGenre = '';
$nomBtt = "Ajouter";
if (isset($_POST['genre']) && $_POST['genre'] != 'nouveau') {
$genre = DAOFactory::getGenreDAO()->load($_POST['genre']);
$nomBtt = "Modifier";
?>
<script>
pkgenre = <?php echo $genre->pkGenre; ?>;</script>
<?php
}
?>
<table class="tableauContenu">
<tr>
<td>Genre</td>
<td><input id="genre" name="genre" value="<?php echo $genre->genre; ?>"/></td>
</tr>
<tr>
<td></td>
<td></td>
</tr>
<tr>
<td colspan="2"><button id="buttonSbm"><?php echo $nomBtt; ?></button> <button id="buttonDel">Supprimer</button></td>
</tr>
</table>
<script>
$("#buttonSbm").button();
$("#buttonDel").button();
$("#buttonSbm").click(function () {
target = '';
if (pkgenre == null) {
execAjax(
'php/genre/data.php', '#genres', {
op: 'add',
genre: $("#genre").val()
}
);
} else {
target = '#menuObj_' + pkgenre;
execAjax(
'php/genre/data.php', target, {
op: 'mod',
pkgenre: '<?php echo $genre->pkGenre; ?>',
genre: $("#genre").val()
}
);
}
});
$("#buttonDel").click(function () {
if (pkgenre != null) {
execAjax(
'php/genre/data.php', '#genres', {
op: 'del',
pkgenre: '<?php echo $genre->pkGenre; ?>',
}
);
}
});
</script>
xxxxx1.0, XXX xxxx