MOON
Server: Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 PHP/5.4.10
System: Linux vps.presagepowered.net 2.6.18-398.el5 #1 SMP Tue Sep 16 20:51:48 EDT 2014 i686
User: mckernan (512)
PHP: 5.4.10
Disabled: NONE
$ pwd: /home/mckernan/public_html/iJournal/includes/client/
Upload Files
File: /home/mckernan/public_html/iJournal/includes/client/info.php
<?php

// open client
	// init database name
	$database = DB_PREFIX;	
	
		
	// process request
	if ($sid != '')
	{
		// sid check
		require "includes/session/sidck.php";
		
		
		// init return value
		$rv = '<root>' . PHP_EOL;
		$rv .= '<client>' . PHP_EOL;
	
	
		// fetch database name / open db
		$db = '';
		if ( isset($_POST['db']) ) $db = $_POST['db'];
		if ( isset($_GET['db']) ) $db = $_GET['db'];
		
		if ($db == '') die();
		
		$database .= $db;
		
		require "includes/db.php";
		
		
		// fetch client info
		$query = "SELECT * FROM client";
		
		if ($result = $db->query($query))
		{
			if ($db->affected_rows == 1)
			{
				$row = $result->fetch_assoc();
			
				$rv .= '<sort>' . $row['cli_sortname'] . '</sort>' . PHP_EOL;
				$rv .= '<mailname1>' . $row['cli_mailname1'] . '</mailname1>' . PHP_EOL;
				$rv .= '<mailname2>' . $row['cli_mailname2'] . '</mailname2>' . PHP_EOL;
				$rv .= '<str1>' . $row['cli_str1'] . '</str1>' . PHP_EOL;
				$rv .= '<str2>' . $row['cli_str2'] . '</str2>' . PHP_EOL;
				$rv .= '<city>' . $row['cli_city'] . '</city>' . PHP_EOL;
				$rv .= '<state>' . $row['cli_state'] . '</state>' . PHP_EOL;
				$rv .= '<zipc>' . $row['cli_zipc'] . '</zipc>' . PHP_EOL;
				$rv .= '<salute>' . $row['cli_salute'] . '</salute>' . PHP_EOL;
				$rv .= '<org>' . $row['cli_type'] . '</org>' . PHP_EOL;
				$rv .= '<fye>' . $row['cli_fye'] . '</fye>' . PHP_EOL;
				$rv .= '<freq>' . $row['cli_freq'] . '</freq>' . PHP_EOL;
			}
			else
			{
				$rv .= '<sort></sort>' . PHP_EOL;
				$rv .= '<mailname1></mailname1>' . PHP_EOL;
				$rv .= '<mailname2></mailname2>' . PHP_EOL;
				$rv .= '<str1></str1>' . PHP_EOL;
				$rv .= '<str2></str2>' . PHP_EOL;
				$rv .= '<city></city>' . PHP_EOL;
				$rv .= '<state></state>' . PHP_EOL;
				$rv .= '<zipc></zipc>' . PHP_EOL;
				$rv .= '<salute></salute>' . PHP_EOL;
				$rv .= '<org><org>' . PHP_EOL;
				$rv .= '<fye></fye>' . PHP_EOL;
				$rv .= '<freq></freq>' . PHP_EOL;
			}
		}
		else
		{
			$rv .= '<sort></sort>' . PHP_EOL;
			$rv .= '<mailname1></mailname1>' . PHP_EOL;
			$rv .= '<mailname2></mailname2>' . PHP_EOL;
			$rv .= '<str1></str1>' . PHP_EOL;
			$rv .= '<str2></str2>' . PHP_EOL;
			$rv .= '<city></city>' . PHP_EOL;
			$rv .= '<state></state>' . PHP_EOL;
			$rv .= '<zipc></zipc>' . PHP_EOL;
			$rv .= '<salute></salute>' . PHP_EOL;
			$rv .= '<org><org>' . PHP_EOL;
			$rv .= '<fye></fye>' . PHP_EOL;
			$rv .= '<freq></freq>' . PHP_EOL;
		}
		
		
		// finish output
		$rv .= '</client>' . PHP_EOL;
		$rv .= '</root>' . PHP_EOL;
				
		
		// return data
		echo $rv;
		
		die;
	}
	else
	{
		header('Server: ');
		header('X-Powered-By: ');
		header("HTTP/1.0 404 Not Found");
	}

?>
@ Telegram