Linux ip-172-26-7-228 5.4.0-1103-aws #111~18.04.1-Ubuntu SMP Tue May 23 20:04:10 UTC 2023 x86_64
Apache
: 172.26.7.228 | : 18.217.156.67
Cant Read [ /etc/named.conf ]
5.6.40-24+ubuntu18.04.1+deb.sury.org+1
www-data
Terminal
AUTO ROOT
Adminer
Backdoor Destroyer
Linux Exploit
Lock Shell
Lock File
Create User
CREATE RDP
PHP Mailer
BACKCONNECT
HASH IDENTIFIER
README
+ Create Folder
+ Create File
/
var /
www /
student /
gfgcg /
[ HOME SHELL ]
Name
Size
Permission
Action
Paytm
[ DIR ]
drwxr-xr-x
axis
[ DIR ]
drwxr-xr-x
css
[ DIR ]
drwxr-xr-x
easy_zip
[ DIR ]
drwxr-xr-x
hdfc
[ DIR ]
drwxr-xr-x
img
[ DIR ]
drwxr-xr-x
jquery-ui-1.9
[ DIR ]
drwxr-xr-x
js
[ DIR ]
drwxr-xr-x
lib
[ DIR ]
drwxr-xr-x
libs
[ DIR ]
drwxr-xr-x
links
[ DIR ]
drwxr-xr-x
razorpay
[ DIR ]
drwxr-xr-x
src
[ DIR ]
drwxr-xr-x
tarka_pdf
[ DIR ]
drwxr-xr-x
tcpdf
[ DIR ]
drwxr-xr-x
CHECK_TxnStatuss.php
1.3
KB
-rwxr-xr-x
app.php
416
B
-rwxr-xr-x
axis_response.php
4.22
KB
-rwxr-xr-x
candidate_list.html
4.78
KB
-rwxr-xr-x
cconfig.php
1.38
KB
-rwxr-xr-x
cconfig_old.php
1.32
KB
-rwxr-xr-x
config_paytm.php
1.44
KB
-rwxr-xr-x
cronjob_sendsms.php
2.5
KB
-rwxr-xr-x
index.php
4.13
KB
-rwxr-xr-x
payment_gate_way_responce.php
6.59
KB
-rwxr-xr-x
payment_gateway.php
8.41
KB
-rwxr-xr-x
pgResponse.php
10.73
KB
-rwxr-xr-x
sendsmsapi.php
760
B
-rwxr-xr-x
student.php
4.19
KB
-rwxr-xr-x
subjectDetails.php
1.14
KB
-rwxr-xr-x
verify.php
10.88
KB
-rwxr-xr-x
Delete
Unzip
Zip
${this.title}
Close
Code Editor : payment_gateway.php
<?php // header('X-Frame-Options: GOFORIT'); // Merchant key here as provided by Payu for testing $MERCHANT_KEY = "cGav4aIt"; // Merchant key here as provided by Payu actual //$MERCHANT_KEY = "ERtIJd"; // Merchant Salt as provided by Payu for testing $SALT = "WRiGtM7ODD"; // Merchant Salt as provided by Payu //$SALT = "6nUQgBjF"; //for test mode //$PAYU_BASE_URL = "https://test.payu.in"; //for LIVE mode $PAYU_BASE_URL = "https://secure.payu.in"; require_once(dirname(__FILE__)."/cconfig.php"); ini_set("display_errors","On"); error_reporting(E_ALL ^ E_NOTICE); session_start(); require_once("cconfig.php"); $aobj_context=CConfig::CreateNewDbContext(); $app_no=$_REQUEST['productinfo']; $get_data="SELECT ac.FTOTALFEE,s.FREGNO,s.FNAME,s.FEMAIL,s.FCONTACT_NO FROM appcandsum ac INNER JOIN student s ON s.FREGNO=ac.FREGNO WHERE ac.APPNO='{$app_no}'"; $lobj_get_data = $aobj_context->mobj_db->getRow($get_data); if(empty($lobj_get_data['FTOTALFEE'])) { echo "<span style='color:red;line-height: 168px; margin: 30%;;font-size:22px;'>Total Paying Amount is zero.Please select once again</span>";die(); } $regno = $lobj_get_data['FREGNO']; $servername = "72.167.46.92"; $username = "commonexamuser"; $password = "commonexam124"; $databse = 'commonexam'; $conn = new mysqli($servername,$username,$password,$databse); if(!$conn) { die("Connection failed: " . mysqli_connect_error()); } $query = "select fmobileno,femail from masuser where fregno = '{$regno}' and funivcode = '017'"; $result = mysqli_query($conn,$query); $row = mysqli_fetch_assoc($result); //var_dump($row);die(); $_REQUEST['amount']=$lobj_get_data['FTOTALFEE']; $_REQUEST['firstname']=$lobj_get_data['FNAME']; $_REQUEST['email']=$row['femail']; $_REQUEST['phone']=$row['fmobileno']; $action = ''; $posted = array(); if(!empty($_REQUEST)) { //print_r($_POST); foreach($_REQUEST as $key => $value) { $posted[$key] = $value; } } $path = (@$_SERVER["HTTPS"] == "on") ? "https://" : "http://"; $path .=$_SERVER["SERVER_NAME"]. dirname($_SERVER["PHP_SELF"]); $retutn_url=$path."/payment_gate_way_responce.php"; $formError = 0; if(empty($posted['txnid'])) { // Generate random transaction id $txnid = substr(hash('sha256', mt_rand() . microtime()), 0, 20); } else { $txnid = $posted['txnid']; } $posted['surl']=$retutn_url; $posted['furl']=$retutn_url; $posted['key']=$MERCHANT_KEY; $posted['txnid']=$txnid; $posted['service_provider']="payu_paisa"; $hash = ''; // Hash Sequence $hashSequence = "key|txnid|amount|productinfo|firstname|email|udf1|udf2|udf3|udf4|udf5|udf6|udf7|udf8|udf9|udf10"; if(empty($posted['hash']) && sizeof($posted) > 0) { if( empty($posted['key']) || empty($posted['txnid']) || empty($posted['amount']) || empty($posted['firstname']) // || empty($posted['email']) //|| empty($posted['phone']) || empty($posted['productinfo']) || empty($posted['surl']) || empty($posted['furl']) || empty($posted['service_provider']) ) { $formError = 0; } else { //$posted['productinfo'] = json_encode(json_decode('[{"name":"tutionfee","description":"","value":"500","isRequired":"false"},{"name":"developmentfee","description":"monthly tution fee","value":"1500","isRequired":"false"}]')); $hashVarsSeq = explode('|', $hashSequence); $hash_string = ''; foreach($hashVarsSeq as $hash_var) { $hash_string .= isset($posted[$hash_var]) ? $posted[$hash_var] : ''; $hash_string .= '|'; } $hash_string .= $SALT; $hash = strtolower(hash('sha512', $hash_string)); $action = $PAYU_BASE_URL . '/_payment'; } } elseif(!empty($posted['hash'])) { $hash = $posted['hash']; $action = $PAYU_BASE_URL . '/_payment'; } // var_dump($action);die(); ?> <html> <head> <script> var hash = '<?php echo $hash ?>'; function submitPayuForm() { if(hash == '') { return; } var payuForm = document.forms.payuForm; payuForm.submit(); } </script> </head> <body onload="submitPayuForm()"> <br/> <?php if($formError) { ?> <span style="color:red">Please fill all mandatory fields.</span> <br/> <br/> <?php } ?> <h1 style='color:red;margin:0 auto;text-align:center;'>Please wait, we are redirecting to Payment Gateway</h1> <form style='display:none;' action="<?php echo $action; ?>" method="post" name="payuForm"> <input type="hidden" name="key" value="<?php echo $MERCHANT_KEY ?>" /> <input type="hidden" name="hash" value="<?php echo $hash ?>"/> <input type="hidden" name="txnid" value="<?php echo $txnid ?>" /> <table> <tr> <td><b>Mandatory Parameters</b></td> </tr> <tr> <td>Amount: </td> <td><input name="amount" value="<?php echo (empty($posted['amount'])) ? '' : $posted['amount'] ?>" /></td> <td>First Name: </td> <td><input name="firstname" id="firstname" value="<?php echo (empty($posted['firstname'])) ? '' : $posted['firstname']; ?>" /></td> </tr> <tr> <td>Email: </td> <td><input name="email" id="email" value="<?php echo (empty($posted['email'])) ? '' : $posted['email']; ?>" /></td> <td>Phone: </td> <td><input name="phone" value="<?php echo (empty($posted['phone'])) ? '' : $posted['phone']; ?>" /></td> </tr> <tr> <td>Product Info: </td> <td colspan="3"><textarea name="productinfo"><?php echo (empty($posted['productinfo'])) ? '' : $posted['productinfo'] ?></textarea></td> </tr> <tr> <td>Success URI: </td> <td colspan="3"><input name="surl" value="<?php echo (empty($posted['surl'])) ? '' : $posted['surl'] ?>" size="64" /></td> </tr> <tr> <td>Failure URI: </td> <td colspan="3"><input name="furl" value="<?php echo (empty($posted['furl'])) ? '' : $posted['furl'] ?>" size="64" /></td> </tr> <tr> <td colspan="3"><input type="hidden" name="service_provider" value="payu_paisa" size="64" /></td> </tr> <tr> <td><b>Optional Parameters</b></td> </tr> <tr> <td>Last Name: </td> <td><input name="lastname" id="lastname" value="<?php echo (empty($posted['lastname'])) ? '' : $posted['lastname']; ?>" /></td> <td>Cancel URI: </td> <td><input name="curl" value="" /></td> </tr> <tr> <td>Address1: </td> <td><input name="address1" value="<?php echo (empty($posted['address1'])) ? '' : $posted['address1']; ?>" /></td> <td>Address2: </td> <td><input name="address2" value="<?php echo (empty($posted['address2'])) ? '' : $posted['address2']; ?>" /></td> </tr> <tr> <td>City: </td> <td><input name="city" value="<?php echo (empty($posted['city'])) ? '' : $posted['city']; ?>" /></td> <td>State: </td> <td><input name="state" value="<?php echo (empty($posted['state'])) ? '' : $posted['state']; ?>" /></td> </tr> <tr> <td>Country: </td> <td><input name="country" value="<?php echo (empty($posted['country'])) ? '' : $posted['country']; ?>" /></td> <td>Zipcode: </td> <td><input name="zipcode" value="<?php echo (empty($posted['zipcode'])) ? '' : $posted['zipcode']; ?>" /></td> </tr> <tr> <td>UDF1: </td> <td><input name="udf1" value="<?php echo (empty($posted['udf1'])) ? '' : $posted['udf1']; ?>" /></td> <td>UDF2: </td> <td><input name="udf2" value="<?php echo (empty($posted['udf2'])) ? '' : $posted['udf2']; ?>" /></td> </tr> <tr> <td>UDF3: </td> <td><input name="udf3" value="<?php echo (empty($posted['udf3'])) ? '' : $posted['udf3']; ?>" /></td> <td>UDF4: </td> <td><input name="udf4" value="<?php echo (empty($posted['udf4'])) ? '' : $posted['udf4']; ?>" /></td> </tr> <tr> <td>UDF5: </td> <td><input name="udf5" value="<?php echo (empty($posted['udf5'])) ? '' : $posted['udf5']; ?>" /></td> <td>PG: </td> <td><input name="pg" value="<?php echo (empty($posted['pg'])) ? '' : $posted['pg']; ?>" /></td> </tr> <tr> <?php if(!$hash) { ?> <td colspan="4"><input type="submit" value="Submit" /></td> <?php } ?> </tr> </table> </form> </body> </html>
Close