Uname:Linux ip-11-115-0-196 6.8.0-1039-aws #41~22.04.1-Ubuntu SMP Thu Sep 11 10:54:48 UTC 2025 x86_64

403WebShell
403Webshell
Server IP : 13.126.101.145  /  Your IP : 216.73.217.37
Web Server : Apache/2.4.52 (Ubuntu)
System : Linux ip-11-115-0-196 6.8.0-1039-aws #41~22.04.1-Ubuntu SMP Thu Sep 11 10:54:48 UTC 2025 x86_64
User : www-data ( 33)
PHP Version : 8.3.17
Disable Function : NONE
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : OFF  |  Sudo : ON  |  Pkexec : ON
Directory :  /var/www/html/rentals_updated/wp-content/plugins/importwpusers/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /var/www/html/rentals_updated/wp-content/plugins/importwpusers/import.php
<div class="wrap">
<?php

if (isset($_FILES["file"]['name'])) {
	global $wpdb;
	
    $fileName = $_FILES["file"]["tmp_name"];
    
    if ($_FILES["file"]["size"] > 0) {
        
        $file = fopen($fileName, "r");
        $counter = 0;
		
        while (($column = fgetcsv($file, 10000, ",")) !== FALSE) {
			
			$counter++;
			if($counter != 1){
				$sap_customer_id = $column[0];
				$country_id = $column[1];
				$username = $column[2];
				$city_id = $column[3];
				$user_state = $column[4];
				$user_pincode = $column[5];
				$user_region_id = $column[6];
				$user_street = $column[7];
				$user_phone = $column[8];
				$user_email = $column[9];
				$billing_state = $column[10];
				$pwd = 123456789;
				$uname = explode(" ",$username);
				$nickname = $uname[0];
				$userlogin = strtolower($nickname);
				if($user_email === ''){
					$email = $sap_customer_id.'@gmail.com';
				}else{
					$email = $user_email;
				}
				if ( email_exists( $email ) ) {
					echo "Email Id ".$email." is already exists";
				}else{
					$userData = array(
						'user_login'    =>  $userlogin.''.$sap_customer_id,
						'user_pass'     =>  md5($pwd),
						'user_nicename'    =>  $username,
						'user_email'    =>  $email,
						'user_registered' => date('Y-m-d H:i:s'),
						'display_name'  =>  $username
						);
					$result = $wpdb->insert('wp_users', $userData); 
					$users = $wpdb->insert_id;	
					add_user_meta( $users, 'first_name', $username );
					add_user_meta( $users, 'last_name', '' );
					add_user_meta( $users, 'description', '' );
					add_user_meta( $users, 'rich_editing', 'true' );
					add_user_meta( $users, 'syntax_highlighting', 'true' );
					add_user_meta( $users, 'comment_shortcuts', 'false' );
					add_user_meta( $users, 'admin_color', 'fresh' );
					add_user_meta( $users, 'use_ssl', '0' );
					add_user_meta( $users, 'show_admin_bar_front', 'true' );
					add_user_meta( $users, 'wp_user_level', '0' );
					add_user_meta( $users, 'last_update', time() );				     
					add_user_meta( $users, 'user_type', 2 ); // existing customers
					add_user_meta( $users, 'sap_customer_id', $sap_customer_id );
					add_user_meta( $users, 'contract_id', '' );
					add_user_meta( $users, 'user_verified', '0' );
					add_user_meta( $users, 'gstin', '' );
					add_user_meta( $users, 'user_option', '' );
					add_user_meta( $users, 'user_otp', '' );
					add_user_meta( $users, 'user_otp_verified', 0 ); // defaultly 0->Valid, 1->Expired,2->verified
					add_user_meta( $users, 'location', '');
					add_user_meta( $users, 'product_name', '');
					add_user_meta( $users, 'remarks', '');
					add_user_meta( $users, 'country_id', $country_id);
					add_user_meta( $users, 'city_id', $city_id);
					add_user_meta( $users, 'user_pincode', $user_pincode);
					add_user_meta( $users, 'user_region_id', $user_region_id);
					add_user_meta( $users, 'user_street', $user_street);
					add_user_meta( $users, 'user_state', $user_state );
					add_user_meta( $users, 'user_phone', $user_phone);
					add_user_meta( $users, 'gmmco_existing_customer', 2); //2->existing customer, 1-> new customer
					add_user_meta( $users, 'billing_first_name', $username );
					add_user_meta( $users, 'billing_last_name', '' );
					add_user_meta( $users, 'billing_email', $email );
					add_user_meta( $users, 'billing_address_1', $user_street );
					add_user_meta( $users, 'billing_address_2', '' );
					add_user_meta( $users, 'billing_city', $city_id );
					add_user_meta( $users, 'billing_postcode', $user_pincode );
					add_user_meta( $users, 'billing_phone', $user_phone );
					add_user_meta( $users, 'billing_state', $billing_state );
					add_user_meta( $users, 'billing_country', $country_id );
					$my_user = new WP_User( $users );
					$my_user->set_role( "customer" );
				}
			}
		}
	}
}
?>
	<h2><?php echo esc_html__('Import Users', 'wp-admin'); ?></h2>
	<div class="jumbotron mt-3 text-center">
			<h1>Upload</h1>
			<form action = '' method="post" enctype="multipart/form-data" name="frmCSVImport" id="frmCSVImport">
			  
			  <div class="col align-self-center text-center ">
				<input type="file" name="file" id="file" style="margin-left:130px"  />
			</div>
			<br/><br/>
				<input type="submit" class="btn btn-sm btn-success text-white" id="submit" name="import" />
			
				 <div id="labelError" value = "<?php echo $message ?? ""; ?>" style="color:red;font-size:14px"></div>
			</form>
			
			
		</div>
</div>
<script type="text/javascript">

    $("#frmCSVImport").on("submit", function () {
		console.log("in here");
		$("#submit").prop("disabled",true);
		
	    $("#labelError").attr("class", "");
        $("#labelError").html("");

        var fileType = ".csv";

        var regex = new RegExp("([a-zA-Z0-9\s_\\.\-:])+(" + fileType + ")$");

        if (!regex.test($("#file").val().toLowerCase())) {
        	    $("#labelError").addClass("error");
        	    $("#labelError").addClass("display-block");

            $("#labelError").html("Invalid File. Upload : <b>" + fileType + "</b> Files.");
			$("#submit").prop("disabled",false);
            return false;
        }

        return true;

    });

</script>

Youez - 2016 - github.com/yon3zu
LinuXploit