403WebShell

403Webshell

Server IP : 51.89.169.208 / Your IP : 3.148.107.92
Web Server : Apache
System : Linux ns3209505.ip-198-244-202.eu 4.18.0-553.27.1.el8_10.x86_64 #1 SMP Tue Nov 5 04:50:16 EST 2024 x86_64
User : yellowleaf ( 1019)
PHP Version : 7.4.33
Disable Function : exec,passthru,shell_exec,system
MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : ON
Directory : /home/yellowleaf/public_html/members/script/

Upload File :

[ Back ]

Current File : /home/yellowleaf/public_html/members/script/BACKUP_transfer_ads.php

<?php
$path  = $_SERVER['DOCUMENT_ROOT'];
include_once $path.'/connect_db.php';
session_start();

if (isset($_COOKIE["yl_user"])) {
	$useremail = $_COOKIE["yl_user"];

    if (isset($_POST["domain"]) && $_POST["domain"] != '') {
        $url_given = $_POST["domain"];


        $message = [
            "error" => "",
	        "success" => "",
        ];
        
        $ads_que_sql = $connect->query("SELECT * FROM ads WHERE url ='{$url_given}'");

        if($ads_que_sql->num_rows > 0){

            $row_listing = $ads_que_sql->fetch_array(MYSQLI_ASSOC);

            $adid = $row_listing['adid'];

            /** set text file path */
            // $filedata = "./yellowleaf.txt";

            /** cURL setup for get content from url */
            $url = "$url_given/yellowleaf.txt";
            $curl = curl_init();
            curl_setopt($curl, CURLOPT_URL, $url);
            curl_setopt($curl, CURLOPT_RETURNTRANSFER, true);
            curl_setopt($curl, CURLOPT_HEADER, false);
            $filedata = curl_exec($curl);
            curl_close($curl);
            // $filedata = strval($filedata);

            echo $filedata;
            die('here');
            

            /** check file exist or not */
            // if( file_exists($filedata) && ($fp = fopen($filedata, "rb"))!==false ){
            if( $filedata != '' ){

                // scrap email from file
                // $email = fgets($fp);
                // fclose($fp);

                $email = $filedata;

                $check_email = preg_match("/([a-z0-9_\.\-])+\@(([a-z0-9\-])+\.)+([a-z0-9]{2,4})+/i", $email);
 
                /** check this is valid email or not */
                if($check_email){

                    if($email == $useremail){ // check email with user and file's email

                        $member_que_sql = $connect->query("SELECT * FROM members WHERE ename ='{$email}'");

                        $row_member = $member_que_sql->fetch_array(MYSQLI_ASSOC);

                        /** get member id and email */
                        $memberid = $row_member['memberid'];

                        $result = $connect->query("UPDATE `ads` SET `memberid` = '$memberid' WHERE `adid` = '$adid'");

                        if ($result) {
                            $message["success"] = "Advert transfer successfull.";
                            echo json_encode($message);
                        } else {
                            $message["error"] = "Advert transfer failed.";
                            echo json_encode($message);
                        }

                        

                    } else{
                        $message["error"] = "Email does not match with this user.";
                        echo json_encode($message);
                    }

                }else{
                    $message["error"] = "File does not contain a valid email.";
                    echo json_encode($message);
                    
                }
        
            }else{
                $message["error"] = "File not found.";
                echo json_encode($message);
            }
            
            
        } else{
            $message["error"] = "Advert not found ";
            echo json_encode($message);
        }
    } else{
        $message["error"] = "Please fill the domain field.";
        echo json_encode($message);
    }
}

Youez - 2016 - github.com/yon3zu
LinuXploit