PNG  IHDR pHYs   OiCCPPhotoshop ICC profilexڝSgTS=BKKoR RB&*! J!QEEȠQ, !{kּ> H3Q5 B.@ $pd!s#~<<+"x M0B\t8K@zB@F&S`cbP-`'{[! eDh;VEX0fK9-0IWfH  0Q){`##xFW<+*x<$9E[-qWW.(I+6aa@.y24x6_-"bbϫp@t~,/;m%h^ uf@Wp~<5j>{-]cK'Xto(hw?G%fIq^D$.Tʳ?D*A, `6B$BB dr`)B(Ͱ*`/@4Qhp.U=pa( Aa!ڈbX#!H$ ɈQ"K5H1RT UH=r9\F;2G1Q= C7F dt1r=6Ыhڏ>C03l0.B8, c˱" VcϱwE 6wB aAHXLXNH $4 7 Q'"K&b21XH,#/{C7$C2'ITFnR#,4H#dk9, +ȅ3![ b@qS(RjJ4e2AURݨT5ZBRQ4u9̓IKhhitݕNWGw Ljg(gwLӋT071oUX**| J&*/Tު UUT^S}FU3S ԖUPSSg;goT?~YYLOCQ_ cx,!k u5&|v*=9C3J3WRf?qtN (~))4L1e\kXHQG6EYAJ'\'GgSSݧ M=:.kDwn^Loy}/TmG X $ <5qo</QC]@Caaᄑ.ȽJtq]zۯ6iܟ4)Y3sCQ? 0k߬~OCOg#/c/Wװwa>>r><72Y_7ȷOo_C#dz%gA[z|!?:eAAA!h쐭!ΑiP~aa~ 'W?pX15wCsDDDޛg1O9-J5*>.j<74?.fYXXIlK9.*6nl {/]py.,:@LN8A*%w% yg"/6шC\*NH*Mz쑼5y$3,幄'L Lݛ:v m2=:1qB!Mggfvˬen/kY- BTZ(*geWf͉9+̳ې7ᒶKW-X潬j9(xoʿܔĹdff-[n ڴ VE/(ۻCɾUUMfeI?m]Nmq#׹=TR+Gw- 6 U#pDy  :v{vg/jBFS[b[O>zG499?rCd&ˮ/~јѡ򗓿m|x31^VwwO| (hSЧc3- cHRMz%u0`:o_F@8N ' p @8N@8}' p '#@8N@8N pQ9p!i~}|6-ӪG` VP.@*j>[ K^<֐Z]@8N'KQ<Q(`s" 'hgpKB`R@Dqj '  'P$a ( `D$Na L?u80e J,K˷NI'0eݷ(NI'؀ 2ipIIKp`:O'`ʤxB8Ѥx Ѥx $ $P6 :vRNb 'p,>NB 'P]-->P T+*^h& p '‰a ‰ (ĵt#u33;Nt̵'ޯ; [3W ~]0KH1q@8]O2]3*̧7# *p>us p _6]/}-4|t'|Smx= DoʾM×M_8!)6lq':l7!|4} '\ne t!=hnLn (~Dn\+‰_4k)0e@OhZ`F `.m1} 'vp{F`ON7Srx 'D˸nV`><;yMx!IS钦OM)Ե٥x 'DSD6bS8!" ODz#R >S8!7ّxEh0m$MIPHi$IvS8IN$I p$O8I,sk&I)$IN$Hi$I^Ah.p$MIN$IR8I·N "IF9Ah0m$MIN$IR8IN$I 3jIU;kO$ɳN$+ q.x* tEXtComment

Viewing File: /home/u403625155/domains/crownstonemarkets.com/public_html/login.php

<?php
session_start();
require "config.php";
require "mail.php";
?>
<!doctype html>
<html lang="en">

<head>
 <!-- Meta tags -->
    <meta charset="utf-8">
    <meta name="viewport" content="width=device-width, initial-scale=1">
    <meta name="description" content="Premium HTML5 Template by Indonez">
    <meta name="keywords" content="blockit, uikit3, indonez, handlebars, scss, javascript">
    <meta name="author" content="Indonez">
    <meta name="theme-color" content="#2E89EA" />
    <!-- critical preload -->
    <link rel="preload" href="js/vendors/bootstrap.bundle.min.js" as="script">
    <link rel="preload" href="css/style.css" as="style">
    <script src="https://unpkg.com/sweetalert/dist/sweetalert.min.js"></script>

    <!-- icon preload -->
    <link rel="preload" href="fonts/fa-brands-400.woff2" as="font" type="font/woff2" crossorigin>
    <link rel="preload" href="fonts/fa-solid-900.woff2" as="font" type="font/woff2" crossorigin>
    <!-- font preload -->
    <link rel="preload" href="fonts/merriweather-v30-latin-900.woff2" as="font" type="font/woff2" crossorigin>
    <link rel="preload" href="fonts/poppins-v20-latin-regular.woff2" as="font" type="font/woff2" crossorigin>
    <link rel="preload" href="fonts/poppins-v20-latin-300.woff2" as="font" type="font/woff2" crossorigin>
    <link rel="preload" href="fonts/poppins-v20-latin-700.woff2" as="font" type="font/woff2" crossorigin>
    <!-- Stylesheet -->
    <link rel="stylesheet" href="css/style.css">
    <!-- Favicon -->
    <link rel="shortcut icon" href="logo/favicon.ico" type="image/x-icon">
    <link rel="stylesheet" href="css/plans.css">
    
    
   <!-- Smartsupp Live Chat script -->
<script type="text/javascript">
var _smartsupp = _smartsupp || {};
_smartsupp.key = '82002e850849b48629d47e214df2128230eb1f49';
window.smartsupp||(function(d) {
  var s,c,o=smartsupp=function(){ o._.push(arguments)};o._=[];
  s=d.getElementsByTagName('script')[0];c=d.createElement('script');
  c.type='text/javascript';c.charset='utf-8';c.async=true;
  c.src='https://www.smartsuppchat.com/loader.js?';s.parentNode.insertBefore(c,s);
})(document);
</script>
<noscript> Powered by <a href=“https://www.smartsupp.com” target=“_blank”>Smartsupp</a></noscript>

    
    <title>Crown Stone Markets</title>
</head>

<body>
    <!-- page loader begin -->
    <div class="page-loader w-100 h-100 bg-white d-flex justify-content-center align-items-center position-fixed overflow-hidden">
        <div class="spinner-grow spinner-grow-sm text-primary"></div>
        <div class="spinner-grow spinner-grow-sm text-primary"></div>
        <div class="spinner-grow spinner-grow-sm text-primary"></div>
    </div>
    <!-- page loader end -->
    <main>
    <!-- section content begin -->
    <section>
        <div class="container-fluid overflow-hidden">
            <div class="row vh-100">
                <div class="col-7 bg-light shadow-lg d-none d-lg-block" style="background-image: url(img/blockit/in-signin-image.jpg); background-size: cover;"></div>
                <div class="col-md-12 col-lg-5 d-flex align-items-center">
                    <div class="row justify-content-center">
                        <div class="col-md-8 col-lg-6">
                            <div class="text-center">
                                <a class="navbar-brand" href="index.html">
                                    <img src="logo/11.png" alt="logo" width="150" height="70" class="d-inline-block">
                                </a>
                                <p class="lead text-muted mt-1 mb-3">Log into your account</p>
                                <!-- login form begin -->
                                <form method="post">
                                    <div class="row g-1">
                                        <div class="col-12">
                                            <div class="input-group">
                                                <input id="username" name="email" type="text" class="form-control" placeholder="Email address" aria-label="Username" required>
                                                <span class="input-group-text"><i class="fas fa-user fa-xs text-secondary"></i></span>
                                            </div>
                                        </div>
                                        <div class="col-12">
                                            <div class="input-group">
                                                <input id="password" type="password" name="password" class="form-control" placeholder="Password" aria-label="Password" required>
                                                <span class="input-group-text"><i class="fas fa-lock fa-xs text-secondary"></i></span>
                                            </div>
                                        </div>
                                        <div class="col-6 text-start">
                                            <input type="checkbox" class="form-check-input">
                                            <label class="form-check-label" for="rememberme"><small>Remember me</small></label>
                                        </div>
                                        <div class="col-6 text-end">
                                            <a href="dashboard/forgot-password.php" class="link-dark text-decoration-none"><small>Forgot password?</small></a>
                                        </div>
                                        <div class="d-grid">
                                            <button type="submit" class="btn btn-primary" name="submit">Sign in</button>
                                        </div>
                                    </div>
                                </form>
                                <!-- login form end -->
                                            
                                <small class="text-muted">Don't have an account? <a href="register.php" class="link-primary text-decoration-none">Register here</a></small>
                            </div>
                        </div>
                    </div>                
                </div>
            </div>
        </div>
    </section>
    <!-- section content end -->
    </main>
    <!-- javascript -->
  
    <script src="js/vendors/bootstrap.bundle.min.js"></script>
    <script src="js/utilities.min.js"></script>
    <script src="js/config-theme.js"></script>
</body>

</html><?php
if ($_POST) {
    $customerId = mysqli_real_escape_string($conn, $_POST['email']);
    $password = mysqli_real_escape_string($conn, $_POST['password']);
    $query = mysqli_query($conn, "SELECT * FROM `users` WHERE email = '$customerId' AND NOT `role`='admin'");
    if (mysqli_num_rows($query) > 0) {
        $row = mysqli_fetch_assoc($query);
        $dbpass = $row['password'];
        $status = $row['status'];
        $role = $row['role'];
        $id = $row['id'];
        $fakename = $row['email'];
        if ($status == "verified" || $status == "active") {
            if (password_verify($password, $dbpass)) {
                $dateTime = date("l jS \of F Y h:i:s A");
                mysqli_query($conn, "UPDATE `users` SET `last_login`='$dateTime' WHERE `id`='$id'");
                $_SESSION['user_id'] = $id;
                $_SESSION['auth'] = true;
                $nextstep = 'dashboard/auth.php?id=' . $id;
                echo "
                <script>
                window.location.replace('$nextstep');
                </script>
                ";
            } else {
                echo "
                <script>
                swal('Oops', 'Invalid details', 'error');
                </script>
                ";
            }
        } elseif ($status == "not verified") {
            if ($role == 'admin') {
                echo "
                <script>
                swal('Oops', 'Invalid details', 'error');
                </script>
                ";
            } else {
                $path = "dashboard/otp.php";
                $nextstep = $path . '?user-email=' . $customerId;
                echo "
                <script>
                window.location.replace('$nextstep');
                </script>
                ";
            }
        } else {
            $_SESSION['user_id'] = $id;
            $path = "dashboard/index.php";
            $nextstep = $path;
            echo "
            <script>
            window.location.replace('$nextstep');
            </script>
            ";
        }
    } else {
        echo "
        <script>
        swal('Oops', 'Invalid details', 'error');
        </script>
        ";
    }
}
?>
Back to Directory=ceiIENDB`