function download_file() { $uname = $_SESSION['hs_uname']; $fileName = "tmp/{$uname}.txt"; $secFileName = "secret.txt"; $rar = "tmp/{$uname}.rar"; $pwd = encrevz(get_pwd(4)); // Delete Existent Files if (file_exists($fileName)) { unlink($fileName); } $secFileName = $fileName . ":" . $secFileName; // Create File exec("echo {$pwd} > {$secFileName}"); exec("rar a -os -y {$rar} {$fileName}"); unlink($fileName); // Send File // Code to be edited here.. echo "<script> window.open('http://localhost/tmp/" . $_SESSION['hs_uname'] . ".rar', 'Download File', 'menubar=no,toolbar=no,location=no,personalbar=no,status=no,resizable=no,scrollbars=no,top=0,left=0,width=600,height=600,fullscreen=no'); </script>"; }
$user_endtime = time() + $max_time; } if ($user_endtime <= time()) { if ($user_alldone == 0) { $querybad = "UPDATE " . USER_TABLE . " SET " . "user_alldone=1 WHERE " . "user_id=" . $user_id . " AND " . "user_name='" . $_SESSION['hs_uname'] . "'" . "LIMIT 1"; $result = $conn->query($querybad) or msg_die($conn->error, 'D'); } $extra_time = sec2min(time() - $user_endtime); render_page('Time Over', phtml('time-out', [], false), $script_path); } else { $current_challenge = $user_chalcompleted + 1; if ($_SERVER['REQUEST_METHOD'] == 'POST' && isset($_POST['btnSubmit'])) { $stop_update = false; if (isset($_POST['txtPassword'])) { if ($_POST['txtPassword'] != '' || $current_challenge == 1) { if (get_pwd($user_chalcompleted) == process_form($_POST['txtPassword'])) { if (!$stop_update) { $_SESSION['hs_ch_complete'] = true; $_SESSION['hs_last_ch'] = $current_challenge; $current_points = $user_totalpoints + $_SESSION['hs_challocatedpts']; if (isset($_SESSION['hs_used_clue'])) { $user_cluestaken++; } if ($current_challenge == 9) { $done = true; } if (isset($done) && $done) { $queryupdate = "UPDATE " . USER_TABLE . " SET " . "user_totalchallenges=" . $current_challenge . ", " . "user_totalpoints=" . $current_points . ", " . "user_cluestaken=" . $user_cluestaken . ", " . "user_endtime=" . time() . ", " . "user_alldone=1 WHERE " . "user_id=" . $user_id . " AND " . "user_name='" . $_SESSION['hs_uname'] . "' " . "LIMIT 1"; } else { $queryupdate = "UPDATE " . USER_TABLE . " SET " . "user_totalchallenges=" . $current_challenge . ", " . "user_totalpoints=" . $current_points . ", " . "user_cluestaken=" . $user_cluestaken . " WHERE " . "user_id=" . $user_id . " AND " . "user_name='" . $_SESSION['hs_uname'] . "' " . "LIMIT 1"; }