-
✘✘✘ WIBUHAX0R1337 ✘✘✘
-
✘
PATCH :
/
var
/
www
/
clients
/
client4
/
web4
/
web
/
ris
/
mods
/
Upload File:
files >> /var/www/clients/client4/web4/web/ris/mods/login_act.php
<?php $g_db->pk = "id"; $do = $g_util->getParam('do', ''); $pwd = $g_util->getParam('pwd', ''); $user = $g_util->getParam('user', ''); $keygen = $g_util->getParam('keygen', ''); $err = ''; if ($do == 'login') { if ($keygen != '') { $sql = "SELECT id FROM admin_key WHERE MD5(gen_key)='".md5($keygen)."' AND used=0 "; $key_id = $g_db->getValue($sql); if ($key_id < 1) { $err = 'err_key'; }else{ $sql = "UPDATE admin_key SET used=1 WHERE id='".$key_id."' " ; $g_db->query($sql); } }else{ $err = 'err_key'; } if ($err == 'err_key') { $url = "admin.php"; $g_util->forwardPage($url); exit(); } } $url = "admin.php?mod="; switch ($do) { case "login"; $binds['user'] = $user; $binds['pwd'] = $pwd; $binds['login_date'] = date("Y-m-d H:i:s"); $binds['login_ip'] = $_SERVER['REMOTE_ADDR']; $binds['login_sid'] = session_id(); $binds['login_agent'] = $_SERVER['HTTP_USER_AGENT']; $sql = "SELECT * FROM admin WHERE MD5(user)='".md5($user)."' AND MD5(pwd)='".md5($pwd)."' AND activated=1 "; // echo $sql; $row = $g_db->getObject($sql); // print_r($row); if ($row->id > 0) { //session_register(ss_ris_id); //session_register(ss_ris_name); //session_register(ss_ris_admin); $_SESSION['ss_ris_id'] = $row->id; $_SESSION['ss_ris_name'] = $row->name; $_SESSION['ss_ris_admin'] = $row->admin; $binds['admin_id'] = $row->id; $binds['status'] = 'OK'; $url .= "researcher_lst"; } $g_db->insertData('admin_login', $binds); break; case "logout"; if ($_SESSION['ss_ris_admin']==1) { $sql = "UPDATE admin_login SET logout_date=NOW() WHERE admin_id='".$_SESSION['ss_ris_id']."' AND login_sid='".session_id()."' "; }else{ $sql = "UPDATE admin_login SET logout_date=NOW() WHERE user_id='".$_SESSION['ss_ris_id']."' AND login_sid='".session_id()."' "; } $g_db->query($sql); $_SESSION['ss_ris_id'] = ''; $_SESSION['ss_ris_name'] = ''; $_SESSION['ss_ris_admin'] = ''; $url = "admin.php"; break; } $g_util->forwardPage($url); ?>
2022 - 2023 Copyright By Lutfifakee || Padang Blackhat ♥