403WebShell

403Webshell

Server IP : 172.64.80.1 / Your IP : 172.69.58.211
Web Server : Apache
System : Linux mail.federalpolyede.edu.ng 5.10.0-32-amd64 #1 SMP Debian 5.10.223-1 (2024-08-10) x86_64
User : federalpolyede.edu.ng_idh35skikv ( 10000)
PHP Version : 7.4.33
Disable Function : opcache_get_status
MySQL : OFF | cURL : ON | WGET : OFF | Perl : OFF | Python : OFF | Sudo : OFF | Pkexec : OFF
Directory : /var/www/vhosts/federalpolyede.edu.ng/httpdocs/ace_entranceForm/

Upload File :

[ Back ]

Current File : /var/www/vhosts/federalpolyede.edu.ng/httpdocs/ace_entranceForm/remitaListeningUrl.php

<?php
require 'remita_constants.php';
$json = file_get_contents('php://input');
$arr=json_decode($json,true);

	try {
		if($arr!=null)
			{
				foreach($arr as $key => $value)
					{
						$rrr= $value['rrr'];	
					
						
							
						//Confirm transaction Status to be sure it is coming from Remita
						$response =  remita_transaction_details($rrr);
						
							//exit($response['orderId']);
						$response_code = $response['status'];
						$response_reason = $response['message'];
						$orderId = $response['orderId'];
						$transactiondate = $value['transactiondate'];
						$bankCode = $value['bank'];
						$channnel= $value['channnel'];
						$branchCode= $value['branch'];
						$datesent=$value['dateSent'];
						$daterequested=$value['dateRequested'];
						

						 require_once('../connect.php');
require('../filetoU/logFile.php');
$logD='PaymentViaOtherMedium. OrderID: '.$orderId.' status: '.$response_reason;
logDetail($rrr,$logD);

						if($response_code == '01' || $response_code == '00')
							{
		mysql_query("UPDATE `fedpoly`.`remitaorderform` SET `transDate` = '$transactiondate',`transStatus` = '$response_code',`transDetail` =' $response_reason',`transApproved` = 'True',`bankCode` = '$bankCode',`channnel` = '$channnel',`remitaRRR` = '$rrr',`branchCode` = '$branchCode',
`datesent` = '$datesent', `daterequested` = '$daterequested' WHERE `remitaorderform`.`orderID` ='$orderId' and `tranApproved`='False'");
					 	
							//Payment Successful, You can Update Status to Paid here on Database;
							}else
							{
								mysql_query("UPDATE `fedpoly`.`remitaorderform` SET `transDate` = '$transactiondate',`transStatus` = '$response_code',`transDetail` =' $response_reason',`transApproved` = 'False',`bankCode` = '$bankCode',`remitaRRR` = '$rrr',`channnel` = '$channnel',`branchCode` = '$branchCode',`datesent` = '$datesent', `daterequested` = '$daterequested' WHERE `remitaorderform`.`orderID` ='$orderId'");
					 
								}
					}
				exit('OK');
			}
		
		}
		catch (Exception $e) {
			exit('Not OK');
		}
function remita_transaction_details($rrr){
	$mert =  MERCHANTID;
	$api_key = APIKEY;
	$mode = "Live";
	$hash_string = $rrr . $api_key . $mert;
	$hash = hash('sha512', $hash_string);
	if( $mode == 'Test' ){
		$query_url = 'http://www.remitademo.net/remita/ecomm';
		}
	else if( $mode == 'Live' ){
		$query_url = 'https://login.remita.net/remita/ecomm';
		}
	$url 	= $query_url . '/' . $mert  . '/' . $rrr . '/' . $hash . '/' . 'status.reg';
	$result = file_get_contents($url);
    $response = json_decode($result, true);
    return $response;
}
?>

Youez - 2016 - github.com/yon3zu
LinuXploit