uawdijnntqw1x1x1
IP : 216.73.216.93
Hostname : panel.codeskitter.com
Kernel : Linux panel.codeskitter.com 6.8.0-100-generic #100-Ubuntu SMP PREEMPT_DYNAMIC Tue Jan 13 16:40:06 UTC 2026 x86_64
Disable Function : apache_child_terminate, apache_note, apache_setenv, define_syslog_variables, dl, link, opcache_get_status, openlog, pcntl_exec, pcntl_fork, pcntl_setpriority, popen, posix_getpwuid, posix_kill, posix_mkfifo, posix_setpgid, posix_setsid, posix_setuid
OS : Linux
PATH:
/
home
/
users
/
unlimited
/
www
/
facebook.codeskitter.site
/
xhr
/
yoomoney.php
/
/
<?php if ($f == "yoomoney") { if ($s == 'create') { if (!empty($_GET['amount']) && is_numeric($_GET['amount']) && $_GET['amount'] > 0) { $amount = Wo_Secure($_GET['amount']); $order_id = uniqid(); $receiver = $wo['config']['yoomoney_wallet_id']; $successURL = $wo['config']['site_url'] . "/requests.php?f=yoomoney&s=success&amount=".$amount; if (!empty($wo["config"]['currency_array']) && in_array('RUB', $wo["config"]['currency_array']) && 'RUB' != $wo['config']['currency'] && !empty($wo['config']['exchange']) && !empty($wo['config']['exchange']['RUB'])) { $amount = (($_GET['amount'] * $wo['config']['exchange']['RUB'])); } $form = '<form id="yoomoney_form" method="POST" action="https://yoomoney.ru/quickpay/confirm.xml"> <input type="hidden" name="receiver" value="'.$receiver.'"> <input type="hidden" name="quickpay-form" value="donate"> <input type="hidden" name="targets" value="transaction '.$order_id.'"> <input type="hidden" name="paymentType" value="PC"> <input type="hidden" name="sum" value="'.$amount.'" data-type="number"> <input type="hidden" name="successURL" value="'.$successURL.'"> <input type="hidden" name="label" value="'.$wo['user']['user_id'].'"> </form>'; $data['status'] = 200; $data['html'] = $form; } else{ $data['status'] = 400; $data['error'] = $wo['lang']['invalid_amount_value']; } header("Content-type: application/json"); echo json_encode($data); exit(); } elseif ($s == 'success') { $hash = sha1($_POST['notification_type'].'&'. $_POST['operation_id'].'&'. $_POST['amount'].'&'. $_POST['currency'].'&'. $_POST['datetime'].'&'. $_POST['sender'].'&'. $_POST['codepro'].'&'. $wo['config']['yoomoney_notifications_secret'].'&'. $_POST['label']); $_POST['codepro'] = (is_string($_POST['codepro']) && strtolower($_POST['codepro']) == 'true' ? true : false); if ($_POST['sha1_hash'] != $hash || $_POST['codepro'] == true) { header("Location: " . Wo_SeoLink('index.php?link1=wallet')); exit(); } else{ //$_POST['label'] = 1; if (!empty($_POST['label'])) { $user = $db->where('user_id',Wo_Secure($_POST['label']))->getOne(T_USERS); if (!empty($user)) { $amount = Wo_Secure($_GET['amount']); $db->where('user_id', $user->user_id)->update(T_USERS, array( 'wallet' => $db->inc($amount) )); cache($user->user_id, 'users', 'delete'); $create_payment_log = mysqli_query($sqlConnect, "INSERT INTO " . T_PAYMENT_TRANSACTIONS . " (`userid`, `kind`, `amount`, `notes`) VALUES ('" . $user->user_id . "', 'WALLET', '" . $amount . "', 'yoomoney')"); $_SESSION['replenished_amount'] = $amount; if (!empty($_COOKIE['redirect_page'])) { $redirect_page = preg_replace('/on[^<>=]+=[^<>]*/m', '', $_COOKIE['redirect_page']); $redirect_page = preg_replace('/\((.*?)\)/m', '', $redirect_page); header("Location: " . $redirect_page); } else{ header("Location: " . Wo_SeoLink('index.php?link1=wallet')); } exit(); } } header("Location: " . Wo_SeoLink('index.php?link1=wallet')); exit(); } } }
/home/users/unlimited/www/facebook.codeskitter.site/xhr/yoomoney.php