One Hat Cyber Team

Your IP : 172.69.130.199

Server IP : 188.114.96.3

Server : Linux thuru 6.5.11-4-pve #1 SMP PREEMPT_DYNAMIC PMX 6.5.11-4 (2023-11-20T10:19Z) x86_64

Server Software : Apache/2.4.51 (Unix) OpenSSL/1.0.2k-fips

PHP Version : 7.3.33

Buat File | Buat Folder

Dir : ~/home/thuruk/public_html/App/New/users/

Edit File: userValidation.php

<?php
   
        include("../connections.php"); //database connection

$session = mysqli_real_escape_string($connect,$_POST['session_id']);
		$mobile_number = mysqli_real_escape_string($connect,$_POST['mobile_number']);
        $type =  mysqli_real_escape_string($connect,$_POST['type']);

$json;

if($session!="5f0e6bfbafe255ds003434349") {
			$json['status'] = 400;
			$json['msg'] = 'Session Expired';
		} else {
			$rsData = array();
		
		   $query="SELECT * FROM `users` WHERE user_id='$mobile_number'";	
		   $rs = mysqli_query($connect,$query) or die(mysqli_error($connect));
    	
    		if($type =="password"){
    		  
    		  if(mysqli_num_rows($rs) == 1){
    		      
    		       
		   //Following qQUery Will Send Otp to User
		   
		      $otp_number = str_pad(mt_rand(0, 9999), 4, '0', STR_PAD_LEFT);
                
              $mobile_numbe1 ='94'.$mobile_number;
                 
              $message =$otp_number;
        
             //following query will send sms to user
              $curl1 = curl_init();
              
 //             curl_setopt($curl1, CURLOPT_URL,'https://richcommunication.dialog.lk/api/sms/inline/send?q=994c2a181323d6d&destination='.$mobile_numbe1.'&message='.$message.'&from=Test');
                
                 curl_setopt($curl1, CURLOPT_URL,'https://richcommunication.dialog.lk/api/sms/inline/send?q=068484db4b14388&destination='.$mobile_numbe1.'&message='.$message.'&from=ThuruKep');

curl_setopt($curl1, CURLOPT_FAILONERROR, true);
              curl_setopt($curl1, CURLOPT_FOLLOWLOCATION, true);
              curl_setopt($curl1, CURLOPT_RETURNTRANSFER, true);
           
              $output1 = curl_exec($curl1);
              
        
          	  $otp_query="INSERT INTO `user_otp`( `user_id`, `otp_number`,`status`) VALUES ('$mobile_number','$otp_number','pending')";
            
              mysqli_query($connect,$otp_query) or die(mysqli_error($connect));

}  
    		    
    		    
    		}
		   if($rs){
			   
			   	foreach($rs as $k => $v){
					$rsData[$k]['user_id'] = $v['user_id'];
					$rsData[$k]['name'] = $v['name'];
					$rsData[$k]['city'] =  $v['city'];
					$rsData[$k]['password'] = $v['password'];
					$rsData[$k]['status'] =  $v['status'];
				}
			}
			$json['status'] = 200;
			$json['msg'] = 'Success';
			$json['data'] = $rsData;
		}

echo json_encode($json);
		
		mysqli_close($connect);

?>