| Server IP : 192.169.170.185 / Your IP : 216.73.216.97 Web Server : Apache System : Linux p3plmcpnl495852.prod.phx3.secureserver.net 4.18.0-553.52.1.lve.el8.x86_64 #1 SMP Wed May 21 15:31:29 UTC 2025 x86_64 User : akhilnew ( 1712764) PHP Version : 5.6.40 Disable Function : NONE MySQL : ON | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : OFF | Pkexec : OFF Directory : /home/akhilnew/public_html/ |
Upload File : |
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>Please wait...</title>
</head>
<body style="margin: 0;padding: 0;box-sizing: border-box;display: flex;align-items: center;justify-content: center;flex-direction: column;row-gap: 20px;height: 100vh;">
<?php
$txnid = isset($_GET['txnid']) ? filter_var($_GET['txnid'], FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_HIGH) : '';
$token = isset($_GET['token']) ? filter_var($_GET['token'], FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_HIGH) : '';
$gateway = isset($_GET['gateway']) ? filter_var($_GET['gateway'], FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_HIGH) : '';
if ($txnid && $token && $gateway) {
$mysqli = new mysqli('localhost', 'akiniktransactions', '.3[HO07+LWo{', 'akiniktransactions');
$stmt = $mysqli->prepare("SELECT COUNT(*), name, email, phone, address, country, currency, amount FROM transactions WHERE (txnid = ? AND token = ?)");
$stmt->bind_param('ss', $txnid, $token);
$stmt->execute();
$stmt->store_result();
$stmt->bind_result($count, $name, $email, $phone, $address, $country, $currency, $amount);
$stmt->fetch();
$stmt->close();
if ($count == 1) {
$surl = 'https://www.akinik.com/paymentcallback/' . $txnid . '/' . $token . '/success';
$furl = 'https://www.akinik.com/paymentcallback/' . $txnid . '/' . $token . '/failed';
if ($gateway === 'payumoney') {
$posted = array('key' => 'EPAfC8', 'txnid' => $txnid, 'amount' => $amount, 'productinfo' => 'Transaction', 'firstname' => $name, 'email' => $email, 'phone' => $phone);
$salt = '2eQBk83X';
$hash = '';
$hash_sequence = 'key|txnid|amount|productinfo|firstname|email|udf1|udf2|udf3|udf4|udf5|udf6|udf7|udf8|udf9|udf10';
if (sizeof($posted) > 0) {
$hash_vars_seq = explode('|', $hash_sequence);
$hash_string = '';
foreach ($hash_vars_seq as $hash_var) {
$hash_string .= isset($posted[$hash_var]) ? $posted[$hash_var] : '';
$hash_string .= '|';
}
$hash_string .= $salt;
$hash = strtolower(hash('sha512', $hash_string));
}
echo <<<EOJ
<form action="https://secure.payu.in/_payment" method="post" name="redirect">
<input type="hidden" name="key" value="EPAfC8" />
<input type="hidden" name="txnid" value="{$txnid}" />
<input type="hidden" name="amount" value="{$amount}" />
<input type="hidden" name="productinfo" value="Transaction" />
<input type="hidden" name="firstname" value="{$name}" />
<input type="hidden" name="email" value="{$email}" />
<input type="hidden" name="phone" value="{$phone}" />
<input type="hidden" name="surl" value="{$surl}" />
<input type="hidden" name="furl" value="{$furl}" />
<input type="hidden" name="hash" value="{$hash}" />
<input type="hidden" name="service_provider" value="payu_paisa" />
<input type="submit" value="Click Here" style="display:none" />
</form>
<img src="https://www.akinik.com/images/paymentloading.gif" alt="Loading" width="48" />
<b>Please don't refresh or press back button.</b>
<script>document.redirect.submit()</script>
EOJ;
} elseif ($gateway === 'paypal') {
echo <<<EOJ
<form action="https://www.paypal.com/cgi-bin/webscr" method="post" name="redirect">
<input type="hidden" name="business" value="jpbr.delhi@gmail.com">
<input type="hidden" name="cmd" value="_xclick">
<input type="hidden" name="item_name" value="Transaction">
<input type="hidden" name="item_number" value="{$txnid}">
<input type="hidden" name="amount" value="{$amount}">
<input type="hidden" name="currency_code" value="USD">
<input type="hidden" name="notify_url" value="https://www.akinik.com/transactions/listener/paypal">
<input type="hidden" name="cancel_return" value="{$furl}">
<input type="hidden" name="return" value="{$surl}">
<input type="submit" value="Click Here" style="display:none" />
</form>
<img src="https://www.akinik.com/images/paymentloading.gif" alt="Loading" width="48" />
<b>Please don't refresh or press back button.</b>
<script>document.redirect.submit()</script>
EOJ;
} elseif ($gateway === 'twocheckout') {
echo <<<EOJ
<form action="https://www.2checkout.com/checkout/purchase" method="post" name="redirect">
<input type="hidden" name="sid" value="202288172" />
<input type="hidden" name="mode" value="2CO" />
<input type="hidden" name="li_0_type" value="product" />
<input type="hidden" name="li_0_name" value="Transaction" />
<input type="hidden" name="li_0_price" value="{$amount}" />
<input type="hidden" name="li_0_tangible" value="N" />
<input type="hidden" name="li_0_product_id" value="{$txnid}" />
<input type="hidden" name="card_holder_name" value="{$name}" />
<input type="hidden" name="currency_code" value="USD" />
<input type="hidden" name="ship_country" value="{$country}" />
<input type="hidden" name="ship_name" value="{$name}" />
<input type="hidden" name="ship_street_address" value="" />
<input type="hidden" name="ship_city" value="" />
<input type="hidden" name="ship_state" value="" />
<input type="hidden" name="ship_zip" value="" />
<input type="hidden" name="email" value="{$email}" />
<input type="hidden" name="phone" value="{$phone}" />
<input type="hidden" name="x_receipt_link_url" value="{$surl}" />
<input type="submit" value="Click Here" style="display:none" />
</form>
<img src="https://www.akinik.com/images/paymentloading.gif" alt="Loading" width="48" />
<b>Please don't refresh or press back button.</b>
<script>document.redirect.submit()</script>
EOJ;
} elseif ($gateway === 'icici') {
date_default_timezone_set('Asia/Kolkata');
$datetime = date("Y:m:d-H:i:s");
echo <<<EOJ
<form action="https://www4.ipg-online.com/connect/gateway/processing" method="post" name="redirect" id="iciciform">
<input type="hidden" name="hash_algorithm" value="HMACSHA256" />
<input type="hidden" name="checkoutoption" value="combinedpage" />
<input type="hidden" name="language" value="en_US" />
<input type="hidden" name="hashExtended" value="" />
<input type="hidden" name="storename" value="3396068424" />
<input type="hidden" name="timezone" value="Asia/Kolkata" />
<input type="hidden" name="txndatetime" value="{$datetime}" />
<input type="hidden" name="txntype" value="sale" />
<input type="hidden" name="chargetotal" value="{$amount}" />
<input type="hidden" name="currency" value="840" />
<input type="hidden" name="customerid" value="{$txnid}" readonly />
<input type="hidden" name="email" value="{$email}" readonly />
<input type="hidden" name="authenticateTransaction" value="true" />
<input type="hidden" name="responseFailURL" value="{$furl}" />
<input type="hidden" name="responseSuccessURL" value="{$surl}" />
<input type="hidden" name="transactionNotificationURL" value="https://www.akinik.com/transactions/listener/icici" />
<input type="submit" value="Click Here" style="display:none" />
</form>
EOJ;
?>
<img src="https://www.akinik.com/images/paymentloading.gif" alt="Loading" width="48" />
<b>Please don't refresh or press back button.</b>
<script src="https://code.jquery.com/jquery-3.5.1.min.js"></script>
<script src="https://cdnjs.cloudflare.com/ajax/libs/crypto-js/4.0.0/crypto-js.min.js"></script>
<script src="https://cdnjs.cloudflare.com/ajax/libs/moment.js/2.29.1/moment.min.js"></script>
<script src="https://cdnjs.cloudflare.com/ajax/libs/moment-timezone/0.5.33/moment-timezone-with-data-10-year-range.min.js"></script>
<script>
var paymentForm = $("#iciciform");
var paymentParameters = paymentForm.serializeArray().filter(function(item) {
return item.value !== "";
}).reduce(function(obj, item) {
obj[item.name] = item.value;
return obj;
}, {});
const sharedSecret = "whq5A>yk@1HR";
var messageSignatureContent = [];
const ignoreSignatureParameteres = ["hashExtended"];
Object.keys(paymentParameters).filter(key => !ignoreSignatureParameteres.includes(key)).sort().forEach(function(key, index) {
messageSignatureContent.push(paymentParameters[key]);
});
const messageSignature = CryptoJS.HmacSHA256(messageSignatureContent.join("|"), sharedSecret);
const messageSignatureBase64 = CryptoJS.enc.Base64.stringify(messageSignature);
$("input[name='hashExtended']").val(messageSignatureBase64);
document.redirect.submit();
</script>
<?php
} else {
header('Location:https://www.akinik.com'); exit();
}
} else {
header('Location:https://www.akinik.com'); exit();
}
} else {
header('Location:https://www.akinik.com'); exit();
}
?>
</body>
</html>