UnknownSec Bypass
403
:
/
home
/
growthpharma
/
public_html
/
Master@Growth
/ [
drwxr-xr-x
]
Menu
Upload
Mass depes
Mass delete
Terminal
Info server
About
name :
forgotpassword.php
<?php include_once("config.php"); if(isset($_POST['email']) && ($_POST['email']!='')) { $email=$_POST['email']; $admininfo=mysql_fetch_array(mysql_query("select * from admininfo where email='$email' and userid='".$_POST['userid']."'and status='Active'")); if(!$admininfo) { $_SESSION['mode1']="Email Id Or User ID Does Not exists."; echo "<script> location.href='forgotpassword.php' </script>"; exit; } $userid=$admininfo['userid']; $password=base64_decode(strrev($admininfo['password'])); $message =" <html> <table border=\"0\" cellpadding=\"1\" width=\"700\" cellspacing=\"1\"> <tr><td colspan=\"3\">Dear ".mysql_real_escape_string(ucfirst($admininfo['name'])).",</td></tr> <tr> <td colspan=\"3\" height=\"15\" ></td> </tr> <tr><td colspan=\"3\">Your login details are as below :</td></tr> <tr> <td colspan=\"3\" height=\"5\"></td> </tr> <tr><td width=\"90\">User ID:</td><td width=\"10\">:</td><td width=\"600\"> ".$userid."</td></tr> <tr> <td colspan=\"3\"> </td> </tr> <tr><td width=\"90\">Password:</td><td width=\"10\">:</td><td width=\"600\"> ".$password."</td></tr> <tr> <td colspan=\"3\"> </td> </tr> <tr> <td colspan=\"3\">Note : Please note this is system generated mail. Please do not reply. </td> </tr> <tr> <td colspan=\"3\"> </td> </tr> <tr><td colspan=\"3\">Regards,<br> VMISM Group Team</td></tr> </table> </html>"; $from = "admin"; $to = $email; $subject ="Your Admin Details"; $headers = "From: $from"; $headers = "MIME-Version: 1.0\r\n"; $headers .= "Content-type: text/html; charset=iso-8859-1\r\n"; $headers .= "From:$from\r\n"; // echo $message; if(@mail ("$to", "$subject", "$message", "$headers")) { $_SESSION['mode']="Your Admin Details Has Been Sent To Your Email ID."; echo "<script> location.href='index.php' </script>"; exit(); } else { $_SESSION['mode1']="Problem Occur While Sending Email.Please Try Again Later."; echo "<script> location.href='forgotpassword.php' </script>"; exit(); } } ?> <!doctype html> <!-- paulirish.com/2008/conditional-stylesheets-vs-css-hacks-answer-neither/ --> <!--[if lt IE 7]> <html class="no-js ie6 oldie" lang="en"> <![endif]--> <!--[if IE 7]> <html class="no-js ie7 oldie" lang="en"> <![endif]--> <!--[if IE 8]> <html class="no-js ie8 oldie" lang="en"> <![endif]--> <!--[if gt IE 8]><!--> <html class="no-js" lang="en"> <!--<![endif]--> <head> <meta charset="utf-8"> <!-- DNS prefetch --> <link rel=dns-prefetch href="//fonts.googleapis.com"> <!-- Use the .htaccess and remove these lines to avoid edge case issues. More info: h5bp.com/b/378 --> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1"> <title>Login ::ANK INFOTECH </title> <meta name="description" content=""> <meta name="author" content=""> <!-- Mobile viewport optimized: j.mp/bplateviewport --> <meta name="viewport" content="width=device-width,initial-scale=1"> <!-- Place favicon.ico and apple-touch-icon.png in the root directory: mathiasbynens.be/notes/touch-icons --> <!-- CSS: implied media=all --> <!-- CSS concatenated and minified via ant build script--> <link rel="stylesheet" href="css/style.css"> <!-- Generic style (Boilerplate) --> <link rel="stylesheet" href="css/960.fluid.css"> <!-- 960.gs Grid System --> <link rel="stylesheet" href="css/main.css"> <!-- Complete Layout and main styles --> <link rel="stylesheet" href="css/buttons.css"> <!-- Buttons, optional --> <link rel="stylesheet" href="css/lists.css"> <!-- Lists, optional --> <link rel="stylesheet" href="css/icons.css"> <!-- Icons, optional --> <link rel="stylesheet" href="css/notifications.css"> <!-- Notifications, optional --> <link rel="stylesheet" href="css/typography.css"> <!-- Typography --> <link rel="stylesheet" href="css/forms.css"> <!-- Forms, optional --> <link rel="stylesheet" href="css/tables.css"> <!-- Tables, optional --> <link rel="stylesheet" href="css/charts.css"> <!-- Charts, optional --> <link rel="stylesheet" href="css/jquery-ui-1.8.15.custom.css"> <!-- jQuery UI, optional --> <!-- end CSS--> <!-- Fonts --> <link href="//fonts.googleapis.com/css?family=PT+Sans" rel="stylesheet" type="text/css"> <!-- end Fonts--> <!-- More ideas for your <head> here: h5bp.com/d/head-Tips --> <!-- All JavaScript at the bottom, except for Modernizr / Respond. Modernizr enables HTML5 elements & feature detects; Respond is a polyfill for min/max-width CSS3 Media Queries For optimal performance, use a custom Modernizr build: www.modernizr.com/download/ --> <script src="js/libs/modernizr-2.0.6.min.js"></script> <script type="text/javascript"> function validate() { var status=0; if(document.getElementById("userid").value==''){ document.getElementById("userid_error").style.display="block"; document.getElementById("userid_error").innerHTML="Required"; status=1; } if(document.getElementById("userid").value!=''){ document.getElementById("userid_error").style.display="none"; document.getElementById("userid_error").innerHTML=""; } var position=document.getElementById("email").value; if(position=='') { document.getElementById("emailerror").style.display="block"; document.getElementById("emailerror").innerHTML="Required"; status=1; } else { document.getElementById("emailerror").style.display="none"; document.getElementById("emailerror").innerHTML=""; } if(status==1) { return false; } } function checkmail() { //var field = form.email; // email field var str = document.frm.email.value; // email string var reg1 = /(@.*@)|(\.\.)|(@\.)|(\.@)|(^\.)/; // not valid var reg2 = /^.+\@(\[?)[a-zA-Z0-9\-\.]+\.([a-zA-Z]{2,3}|[0-9]{1,3})(\]?)$/; // valid if(document.frm.email.value!="") { if (!reg1.test(str) && reg2.test(str)) { // if syntax is valid //alert("Thank your for your feedback."); // this is optional //return true; document.getElementById("emailerror").innerHTML=""; } else { // this is also optional document.frm.email.value=""; document.frm.email.focus(); document.getElementById("emailerror").innerHTML="Invalid Email-ID"; return false; } } } </script> <script type="text/javascript"> function formReset() { document.getElementById("frm").reset(); } </script> </head> <body class="special-page"> <!-- Begin of #container --> <div id="container"> <!-- Begin of LoginBox-section --> <section id="login-box"> <?php if(isset($_SESSION['mode1']) && ($_SESSION['mode1']!='')) { ?> <div class="alert error"> <?php echo $_SESSION['mode1']; unset ($_SESSION['mode1']); ?> </div> <?php } ?> <?php if(isset($_SESSION['mode']) && ($_SESSION['mode']!='')) { ?> <div class="alert success"> <span class="hide">x</span> <?php echo $_SESSION['mode']; unset ($_SESSION['mode']); ?> </div> <?php } ?> <div class="block-border"> <div class="block-header"> <h1>Forgot Password</h1> </div> <form name="frm" id="frm" class="block-content form" action="" method="post" onSubmit="return validate()"> <input type="hidden" name="mode" id="mode" value="check" /> <p class="inline-small-label"> <label for="username">User Id</label> <input type="text" name="userid" id="userid" value="" > <span style="padding-left:0px;" id="userid_error" class="myerror"></span> </p> <p class="inline-small-label"> <label for="username">Email Id</label> <input type="text" name="email" id="email" value="" onChange="return checkmail()"> <span style="padding-left:0px;" id="emailerror" class="myerror"></span> </p> <!--<p> <label><input type="checkbox" name="keep_logged" /> Auto-login in future.</label> </p>--> <div class="clear"></div> <!-- Begin of #block-actions--> <div class="block-actions"> <ul class="actions-left"> <li><a class="button" name="recover_password" href="index.php">Login Here</a></li> <li class="divider-vertical"></li> <li><a class="button red" id="reset-login" onClick="formReset();">Reset</a></li> </ul> <ul class="actions-right"> <li><input type="submit" class="button" value="Send Password"></li> </ul> </div> <!--! end of #block-actions --> </form> </div> </section> <!--! end of #login-box --> </div> <!--! end of #container --> <!-- JavaScript at the bottom for fast page loading --> <!-- Grab Google CDN's jQuery, with a protocol relative URL; fall back to local if offline --> <script src="//ajax.googleapis.com/ajax/libs/jquery/1.6.2/jquery.min.js"></script> <script>window.jQuery || document.write('<script src="js/libs/jquery-1.6.2.min.js"><\/script>')</script> <!-- scripts concatenated and minified via ant build script--> <script defer src="js/plugins.js"></script> <!-- lightweight wrapper for consolelog, optional --> <script defer src="js/mylibs/jquery.notifications.js"></script> <!-- Notifications --> <script defer src="js/mylibs/jquery.uniform.min.js"></script> <!-- Uniform (Look & Feel from forms) --> <script defer src="js/mylibs/jquery.validate.min.js"></script> <!-- Validation from forms --> <script defer src="js/mylibs/jquery.tipsy.js"></script> <!-- Tooltips --> <script defer src="js/common.js"></script> <!-- Generic functions --> <script defer src="js/script.js"></script> <!-- Generic scripts --> <script type="text/javascript"> $().ready(function() { /* * Validate the form when it is submitted */ var validatelogin = $("#login-form").validate({ invalidHandler: function(form, validator) { var errors = validator.numberOfInvalids(); if (errors) { var message = errors == 1 ? 'You missed 1 field. It has been highlighted.' : 'You missed ' + errors + ' fields. They have been highlighted.'; $('#login-form').removeAlertBoxes(); $('#login-form').alertBox(message, {type: 'error'}); } else { $('#login-form').removeAlertBoxes(); } } }); jQuery("#reset-login").click(function() { validatelogin.resetForm(); }); }); </script> <!-- end scripts--> <!-- Prompt IE 6 users to install Chrome Frame. Remove this if you want to support IE 6. chromium.org/developers/how-tos/chrome-frame-getting-started --> <!--[if lt IE 7 ]> <script src="//ajax.googleapis.com/ajax/libs/chrome-frame/1.0.3/CFInstall.min.js"></script> <script>window.attachEvent('onload',function(){CFInstall.check({mode:'overlay'})})</script> <![endif]--> </body> </html>
Copyright © 2024 - UnknownSec