403Webshell
Server IP : 192.169.170.185  /  Your IP : 216.73.216.97
Web Server : Apache
System : Linux p3plmcpnl495852.prod.phx3.secureserver.net 4.18.0-553.52.1.lve.el8.x86_64 #1 SMP Wed May 21 15:31:29 UTC 2025 x86_64
User : akhilnew ( 1712764)
PHP Version : 5.6.40
Disable Function : NONE
MySQL : ON  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : OFF  |  Pkexec : OFF
Directory :  /home/akhilnew/www/inc/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /home/akhilnew/www/inc/call-for-book-chapters.php
<?php
if ($decryptedfocus === '[GET_ENQUIRY]'):
	if (! isset($_POST['zipcode']) or $_POST['zipcode'] !== '' or strlen($_POST['zipcode']) > 0):
		die(output('You are not authorized user.'));
	endif;

	$name = filter_input(INPUT_POST, 'name', FILTER_SANITIZE_STRING);
	$name = trim($mysqli->real_escape_string($name));
	$name = stripslashes(stripcslashes($name));

	$email = filter_input(INPUT_POST, 'email', FILTER_SANITIZE_EMAIL);
	$email = trim($mysqli->real_escape_string($email));

	$country = filter_input(INPUT_POST, 'country', FILTER_SANITIZE_STRING);
	$country = trim($mysqli->real_escape_string($country));

	$phonecode = filter_input(INPUT_POST, 'phonecode', FILTER_SANITIZE_STRING);
	$phonecode = trim($mysqli->real_escape_string($phonecode));

	$phone = filter_input(INPUT_POST, 'phone', FILTER_SANITIZE_STRING);
	$phone = trim($mysqli->real_escape_string($phone));

	$message = filter_input(INPUT_POST, 'message', FILTER_SANITIZE_STRING);
	$message = trim($mysqli->real_escape_string($message));
	$message = str_replace(['\r\n', '\n'], PHP_EOL, $message);
	$message = stripslashes(stripcslashes($message));

	$skycolor = filter_input(INPUT_POST, 'skycolor', FILTER_SANITIZE_STRING);

	if (empty($name)):
		die(output('Please enter your full name.'));
	elseif (empty($email)):
		die(output('Please enter your email ID.'));
	elseif (filter_var($email, FILTER_VALIDATE_EMAIL) == false):
		die(output('Please enter a valid email ID.'));
	elseif (empty($country)):
		die(output('Please select your country.'));
	elseif (empty($phonecode) && strlen($phonecode) == 0):
		die(output('Please select your country.'));
	elseif (empty($phone) && strlen($phone) == 0):
		die(output('Please enter your phone number.'));
	elseif (empty($message)):
		die(output('Please enter your message.'));
	elseif(empty($skycolor)):
		die(output('Please select anti spam question.'));
	elseif($skycolor !== 'blue'):
		die(output('You are not authorized user.'));
	else:
		$recaptcha_response = filter_input(INPUT_POST, 'recaptcha_response', FILTER_SANITIZE_STRING);
		$recaptcha = file_get_contents('https://www.google.com/recaptcha/api/siteverify?secret=6LdSR1gpAAAAAL4iIvRdlkBTj9Ti7NyjVkm4-Ta3&response=' . $recaptcha_response);
		$recaptcha = json_decode($recaptcha);

		if ($recaptcha->success != true || $recaptcha->score < 0.5 || $recaptcha->action != 'contact') {
			die(output('Robot verification failed.'));
		}

		$phoneWithCode = $phonecode . '-' . $phone;
		$creation = date('Y-m-d H:i:s');
		$ua = $_SERVER['HTTP_USER_AGENT'];
		$stmt = $mysqli->prepare("INSERT INTO enquiry(name, email, phone, message, creation, user_agent) VALUES(?, ?, ?, ?, ?, ?)") or die(output('An error occurred. Please contact ' . $websitename . '.'));
		$stmt->bind_param('ssssss', $name, $email, $phoneWithCode, $message, $creation, $ua);
		$stmt->execute();
		$lastid = $stmt->insert_id;
		$stmt->close();

		$message  = nl2br(html_entity_decode($message));
		$lastid   = str_pad($lastid, 8, 0, STR_PAD_LEFT);
		$date 	  = date('d/m/Y');

		$wsubject = 'Enquiry received for call for book chapters. UID: #' . $lastid;
		$wmessage = <<<EOJ
		<table border="0" cellpadding="0" cellspacing="0" style="float:left;width:500px;background:#fff">
			<tr>
				<td align="left" valign="middle" style="background:#1b2e72;border-bottom:3px solid #f6cc00;padding:12px 15px;color:#98afdb;font-size:17px;text-transform:uppercase">
					{$name}
				</td>
				<td align="right" valign="middle" style="background:#1b2e72;border-bottom:3px solid #f6cc00;padding:12px 15px;color:#98afdb;font-size:17px;text-transform:uppercase">
					ID: {$lastid}
				</td>
			</tr>
			<tr>
				<td align="left" valign="middle" colspan="2" style="background:#fff;border:1px solid #ddd;border-top:none;padding:12px 15px;color:#000;font-size:12px">
					<p style="float:left;width:100%;margin:0 0 5px">Hi {$websitename}</p>
					<p style="float:left;width:100%;margin:0 0 10px">You have received an enquiry from {$name} on {$date}.</p>
					<p style="float:left;width:100%;margin:0 0 10px"><b>DETAILS:</b></p>
					<p style="float:left;width:100%;margin:0 0 10px"><b>NAME:</b> {$name}</p>
					<p style="float:left;width:100%;margin:0 0 10px"><b>E-MAIL:</b> {$email}</p>
					<p style="float:left;width:100%;margin:0 0 10px"><b>PHONE:</b> {$phone}</p>
					<p style="float:left;width:100%;margin:0 0 10px"><b>MESSAGE:</b> {$message}</p>
				</td>
			</tr>
		</table>
EOJ;

		$csubject = 'Enquiry Received by ' . $name . '. UID: #' . $lastid;
		$cmessage = <<<EOJ
		<table border="0" cellpadding="0" cellspacing="0" style="float:left;width:500px;background:#fff">
			<tr>
				<td align="left" valign="middle" style="background:#1b2e72;border-bottom:3px solid #f6cc00;padding:12px 15px;color:#98afdb;font-size:17px;text-transform:uppercase">
					{$name}
				</td>
				<td align="right" valign="middle" style="background:#1b2e72;border-bottom:3px solid #f6cc00;padding:12px 15px;color:#98afdb;font-size:17px;text-transform:uppercase">
					ID: {$lastid}
				</td>
			</tr>
			<tr>
				<td align="left" valign="middle" colspan="2" style="background:#fff;border:1px solid #ddd;border-top:none;padding:12px 15px;color:#000;font-size:12px">
					<p style="float:left;width:100%;margin:0 0 5px">Hello {$name}</p>
					<p style="float:left;width:100%;margin:0 0 10px">Thank you for contacting the {$websitename}.</p>
					<p style="float:left;width:100%;margin:0 0 25px">
						We have received your message and shall reply to you within 24 hours. If you don&apos;t get any reply, please email us at <b>{$websiteemail}</b>.
					</p>
					<p style="float:left;width:100%;margin:0 0 3px">Kind Regards,</p>
					<p style="float:left;width:100%;margin:0 0 3px">Akhil Gupta</p>
					<p style="float:left;width:100%;margin:0 0 3px">Manager</p>
					<p style="float:left;width:100%;margin:0 0 3px">{$websitename}</p>
					<p style="float:left;width:100%;margin:0 0 30px">{$baseurl}</p>
					<p style="float:left;width:100%;margin:0">
						<img src="{$imageurl}tree.png" alt="Tree" style="float:left" />
						<b style="float:left;margin:13px 0 0 10px;color:#009933">Please consider the environment before you print this email.</b>
					</p>
				</td>
			</tr>
		</table>
EOJ;

		$sm->SendMail($websiteemail, '', '', $wsubject, $wmessage, $fromname, $fromemail, $name, $email);
		$sm->SendMail($email, '', '', $csubject, $cmessage, $fromname, $fromemail, $replyname, $replyemail);

		die(output(array('text' => 'Thank you, Your enquiry has been submitted!', 'stat' => true)));
	endif;
else:
	die(output('Access Denied!'));
endif;

Youez - 2016 - github.com/yon3zu
LinuXploit