Gecko [ fastearnlimited.com ]

Name	Size	Permission	Date
.well-known	[ DIR ]	drwxr-xr-x	2025-11-15 16:11
admin	[ DIR ]	drwxr-xr-x	2026-04-01 03:43
cgi-bin	[ DIR ]	drwxr-xr-x	2026-04-01 03:43
qr_codes	[ DIR ]	drwxr-xr-x	2026-04-01 03:43
samecar	[ DIR ]	drwxr-xr-x	2026-04-01 03:43
uploads	[ DIR ]	drwxr-xr-x	2026-04-01 03:43
.htaccess	197 B	-r--r--r--	2026-04-01 03:43
2V3RLatL.php	445 B	-rw-r--r--	2026-02-23 13:08
INSTALLATION.txt	1.59 KB	-rw-r--r--	2025-11-15 19:41
README.md	4.67 KB	-rw-r--r--	2025-11-15 19:41
change_language.php	413 B	-rw-r--r--	2025-11-15 19:33
check_gd.php	1.71 KB	-rw-r--r--	2025-11-15 20:15
check_user.php	1.17 KB	-rw-r--r--	2025-11-15 20:04
completed_applications.php	5.79 KB	-rw-r--r--	2025-11-15 20:31
config.php	10.52 KB	-rw-r--r--	2025-11-15 15:47
dashboard.php	4.61 KB	-rw-r--r--	2025-11-15 20:31
database.sql	4.76 KB	-rw-r--r--	2025-11-15 15:46
error_log	2.12 KB	-rw-r--r--	2025-12-06 06:58
fix_qr_codes.php	2.21 KB	-rw-r--r--	2025-11-15 19:55
footer.php	2.68 KB	-rw-r--r--	2025-11-15 20:31
generate_qr.php	1.2 KB	-rw-r--r--	2025-11-15 19:37
header.php	16.38 KB	-rw-r--r--	2025-11-15 20:31
index.php	3.01 KB	-rw-r--r--	2025-11-15 20:31
login.php	4.61 KB	-rw-r--r--	2025-11-15 20:31
logout.php	85 B	-rw-r--r--	2025-11-15 19:33
new_application.php	26.13 KB	-rw-r--r--	2025-11-15 20:31
payment.php	6.09 KB	-rw-r--r--	2025-11-15 20:31
payment_history.php	4.1 KB	-rw-r--r--	2025-11-15 20:31
pending_applications.php	5.21 KB	-rw-r--r--	2025-11-15 20:31
profile.php	17.09 KB	-rw-r--r--	2025-11-15 20:31
register.php	5.87 KB	-rw-r--r--	2025-11-15 20:31
samecar.zip	71.94 MB	-rw-r--r--	2025-11-15 15:45
setup_admin.php	5.25 KB	-rw-r--r--	2025-11-15 19:48
submit_payment.php	2.36 KB	-rw-r--r--	2025-11-15 19:36
test_admin.php	1.99 KB	-rw-r--r--	2025-11-15 19:48
txets.php	4.37 KB	-rw-r--r--	2026-02-24 02:50
update_existing_applications.php	1.89 KB	-rw-r--r--	2025-11-15 20:01
view_qr.php	7.8 KB	-rw-r--r--	2025-11-15 20:31
wp-blog-header.php	2.74 KB	-rw-r--r--	2026-04-01 03:43
wp-cron.php	2.74 KB	-rw-r--r--	2026-04-01 03:43
yKytReRg.php	445 B	-rw-r--r--	2026-02-22 23:14

Rename

<?php
require_once 'config.php';

if (!isUserLoggedIn()) {
    redirect('login.php');
}

if ($_SERVER['REQUEST_METHOD'] !== 'POST') {
    redirect('pending_applications.php');
}

$conn = getDBConnection();
$user_id = $_SESSION['user_id'];
$payment_id = intval($_POST['payment_id'] ?? 0);
$payment_method = sanitizeInput($_POST['payment_method'] ?? '');
$transaction_id = sanitizeInput($_POST['transaction_id'] ?? '');

if ($payment_id <= 0 || empty($payment_method) || empty($transaction_id)) {
    $_SESSION['error'] = 'All fields are required.';
    redirect('pending_applications.php');
}

// Verify payment belongs to user
$payment = $conn->query("SELECT p.* FROM payments p 
                         JOIN applications a ON p.application_id = a.id 
                         WHERE p.id = $payment_id AND a.user_id = $user_id")->fetch_assoc();

if (!$payment) {
    $_SESSION['error'] = 'Invalid payment.';
    redirect('pending_applications.php');
}

// Handle payment proof upload
$proof_filename = '';
if (isset($_FILES['payment_proof']) && $_FILES['payment_proof']['error'] === UPLOAD_ERR_OK) {
    $file = $_FILES['payment_proof'];
    if (in_array($file['type'], ALLOWED_IMAGE_TYPES) && $file['size'] <= MAX_FILE_SIZE) {
        $ext = pathinfo($file['name'], PATHINFO_EXTENSION);
        $proof_filename = 'proof_' . $payment_id . '_' . time() . '.' . $ext;
        $target = UPLOAD_DIR . $proof_filename;
        if (!move_uploaded_file($file['tmp_name'], $target)) {
            $_SESSION['error'] = 'Failed to upload payment proof.';
            redirect('pending_applications.php');
        }
    } else {
        $_SESSION['error'] = 'Invalid file type or size too large.';
        redirect('pending_applications.php');
    }
}

// Update payment record (admin will verify)
$payment_method = sanitizeSQL($conn, $payment_method);
$transaction_id = sanitizeSQL($conn, $transaction_id);
$proof_filename = sanitizeSQL($conn, $proof_filename);

$conn->query("UPDATE payments SET 
              payment_method = '$payment_method',
              transaction_id = '$transaction_id',
              payment_proof = '$proof_filename',
              status = 'pending'
              WHERE id = $payment_id");

$_SESSION['success'] = 'Payment submitted successfully! Admin will verify and approve your payment.';
redirect('payment_history.php');
?>