SMM Script Security & Theme Fixes

We are seeking an experienced PHP developer to harden and fix our existing SMM agency script running via cPanel. A full technical audit will be provided. Scope of Work - Enable full dynamic support for 8 themes in `app/views/` and fix admin theme switching logic (currently only 4 active) - Fix broken CAPTCHA validation in `signup.php` - Secure `app/hidden/bridge.php` against LFI with token-based protection - Harden session security in `app/init.php` - Replace raw SQL queries with PDO prepared statements in: - `tickets.php` - `subscriptions.php` - `appearance.php` - Fix logo upload issue in `admin/controller/appearance.php` (path handling + mkdir) - Fix UI/layout inconsistencies across themes Requirements - Strong PHP + PDO experience - Knowledge of web security (SQLi, LFI, session security) - Experience working in cPanel / legacy systems - Clean, safe, production-ready fixes Deliverables - Fully fixed and secured script - Working 8-theme system in admin panel - Brief summary of implemented fixes Audit report provided after selection