shell bypass 403
<x-admin.header />
<x-admin.sidebar />
<style>
.input-field .img-upload-btn
{
margin: 10px;
}
td.col-img
{
display: flex;
}
td.col-img h6
{
position: relative;
margin: 10px 0px 0px 10px !important;
}
</style>
<main>
<div class="main-content">
<div class="row">
<div class="col-lg-12 col-12">
<form id="EditPostForm">
@csrf
<div class="login-form form-content">
<h4>Edit Post</h4>
<input type="hidden" name="EditPostId" value="{{ $edit->post_id }}">
<div class="input-field">
<label for="">Post Category</label>
<div class="input-field">
<select name="EditParentCat" class="form-control custom-input" id="EditParentCat">
<option value="">Select</option>
@foreach($categories as $cate)
<option value="{{ $cate->category_id }}" {{ $edit->postcategory_id == $cate->category_id ? 'selected': '' }} >{{ $cate->category_title }}</option>
@endforeach
</select>
</div>
</div>
<div class="input-field">
<label for="">Post Heading</label>
<div class="input-field">
<input class="custom-input" type="text" name="EditPostHeading" value="{{ $edit->post_heading }}">
</div>
</div>
<div class="input-field">
<label for="">Post Sub Heading</label>
<div class="input-field">
<input class="custom-input" type="text" name="EditPostSubHeading" value="{{ $edit->post_sub_heading }}">
</div>
</div>
<div class="input-field">
<label for="">Post Short Description</label>
<div class="input-field">
<textarea class="custom-input ckeditor" type="text" name="EditPostDesc" id="EditPostDesc">{{ $edit->post_short_descruption }}</textarea>
</div>
</div><br>
<div class="input-field">
<label for="">Post Long Description</label>
<div class="input-field">
<textarea class="custom-input ckeditor" type="text" name="EditPostLongDesc" id="EditPostLongDesc">{{ $edit->post_long_descruption }}</textarea>
</div>
</div>
<br>
<div class="input-field">
<label>Previous Thumbnail</label>
<div class="img-upload-wrapper">
<img src="{{ asset('storage/images/'.$edit->post_thumbnail) }}" style="margin: 0; max-height: 200px; max-width: 200px; object-fit: contain;">
<input type="hidden" name="PrevThumbImage" id="PrevThumbImage" value="{{ $edit->post_thumbnail }}">
</div>
</div>
<div class="custom-checkbox">
<label for="">Remove Thumbnail</label>
<input type="checkbox" id="RemoveThumbImg" name="RemoveThumbImg">
<span class="checkmark"></span>
</div>
<div class="input-field">
<label>Change Thumbnail</label>
<div class="img-upload-wrapper">
<input class="img-upload" type="file" name="EditPostThumb" id="EditPostThumb" accept="image/png, image/jpeg">
</div>
<div class="btn-wrapper">
<label class="btn img-upload-btn" for="EditPostThumb">Select
Image</label>
</div>
</div>
<div class="input-field">
<label>Previous Post Image</label>
<div class="img-upload-wrapper">
<img src="{{ asset('storage/images/'.$edit->post_image) }}" style="margin: 0; max-height: 200px; max-width: 200px; object-fit: contain;">
<input type="hidden" name="PrevPostImage" id="PrevPostImage" value="{{ $edit->post_image }}">
</div>
</div>
<div class="custom-checkbox">
<label for="">Remove Post Image</label>
<input type="checkbox" id="RemovePostImg" name="RemovePostImg">
<span class="checkmark"></span>
</div>
<div class="input-field">
<label>Change Post Image</label>
<div class="img-upload-wrapper">
<input class="img-upload" type="file" name="EditPostImg" id="EditPostImg" accept="image/png, image/jpeg">
</div>
<div class="btn-wrapper">
<label class="btn img-upload-btn" for="EditPostImg">Select
Image</label>
</div>
</div>
<!-- <div class="input-field">
<label>Service Icon Image</label>
<div class="img-upload-wrapper">
<input class="img-upload" type="file" name="serviceIconImg" id="serviceIconImg" accept="image/png, image/jpeg">
</div>
<div class="btn-wrapper">
<label class="btn img-upload-btn" for="serviceIconImg">Select
Image</label>
</div>
</div>
<div class="input-field">
<label>Service Video</label>
<div class="img-upload-wrapper">
<input class="img-upload" type="file" name="serviceVideo" id="serviceVideo">
</div>
<div class="btn-wrapper">
<label class="btn img-upload-btn" for="serviceVideo">Select
Video</label>
</div>
</div> -->
<div class="input-field">
<label for="">Change Post Status</label>
<div class="custom-switch checked">
<input checked type="checkbox" name="EditPostStatus" id="EditPostStatus">
<span class="circle"></span>
<span class="no"><i class="fa-light fa-xmark"></i></span>
<span class="yes"><i class="fa-light fa-check"></i></span>
</div>
</div>
<!-- <h6>* Required Fields</h6> -->
<div class="form-footer">
<button type="submit">Update Post</button>
</div>
</div>
</form>
</div>
</div>
</div>
<!-- Insert Service -->
<script>
$(document).ready(function(){
$("#EditPostForm").on('submit', function(e){
e.preventDefault();
for ( instance in CKEDITOR.instances )
CKEDITOR.instances[instance].updateElement();
var data = new FormData(this);
$.ajaxSetup({
headers: {
'X-CSRF-TOKEN': $('meta[name="csrf-token"]').attr('content')
}
});
$.ajax({
url: "{{ url('/update_post') }}",
method: "POST",
data: data,
datatype: "json",
cache: false,
contentType: false,
processData: false,
success:function(data)
{
if($.isEmptyObject(data.error))
{
toastr.success(data.success,"Updated",{timeOut: 1500});
document.getElementById('EditPostForm').reset();
CKEDITOR.instances.EditPostDesc.setData("");
CKEDITOR.instances.EditPostLongDesc.setData("");
window.location = "{{ url('post') }}"
}
else if(data.error.EditPostHeading)
{
toastr.error(data.error.EditPostHeading,"Error",{timeOut: 1500});
return false;
}
else if(data.error.EditPostThumb)
{
toastr.error(data.error.EditPostThumb,"Error",{timeOut: 1500});
return false;
}
else if(data.error.EditPostThumb[1])
{
toastr.error(data.error.EditPostThumb[1],"Error",{timeOut: 1500});
return false;
}
else if(data.error.EditPostImg)
{
toastr.error(data.error.EditPostImg,"Error",{timeOut: 1500});
return false;
}
else if(data.error.EditPostImg[1])
{
toastr.error(data.error.EditPostImg[1],"Error",{timeOut: 1500});
return false;
}
},
error:function()
{
toastr.error("SomeThing Went Wrong...","Error");
return false;
},
});
});
});
</script>
<!-- Insert Service Ends Here -->
<x-admin.footer />