File Manager V1.5

[SYSTEM@ROOT]: /var/www/html/
INJECT_FILE:
NEW_ENTRY:

FILE_CONTENT: car_detail.php

<?php
require_once 'db.php';

$id = $_GET['id'] ?? 0;

$stmt = $pdo->prepare("
    SELECT c.* 
    FROM car_listings c
    WHERE c.id = ? AND c.status = 'active'
");
$stmt->execute([$id]);
$car = $stmt->fetch();

if (!$car) {
    http_response_code(404);
    echo json_encode(['error' => 'Car not found']);
    exit;
}

$stmt = $pdo->prepare("SELECT image_path FROM car_images WHERE car_id = ?");
$stmt->execute([$id]);
$images = $stmt->fetchAll(PDO::FETCH_COLUMN, 0);

$car['images'] = array_map(function($image) {
    return $_SERVER['REQUEST_SCHEME'] . '://' . $_SERVER['HTTP_HOST'] . '/uploads/' . $image;
}, $images);

echo json_encode($car);
?>
[ KEMBALI ]
LOG_SESSION: 12:53:08 | ADDR: 216.73.216.86 | VERSION: 1.5_KNTL