shell bypass 403
<?php
error_reporting(E_ALL);
print_r($_REQUEST);
echo "nag<br>
";
define("FROM_NAME",'Chakmak Blog');
define("FROM_EMAIL",'[email protected]');
define("TO_EMAIL",'[email protected]');
echo "nag1<br>
";
define("TO_CC",$_POST['email']);
echo "nag2<br>
";
define('SUBJECT','Chakmak Blog Subscription Form');
echo "nag3<br>
";
if($_REQUEST['f_name']!="")
{
echo "nag4<br>
";
$name= $_POST['f_name'];
$subscription = $_POST['member'];
$address = $_POST['add'];
$city = $_POST['city'];
$zip= $_POST['pcode'];
$state = $_POST['state'];
$email = $_POST['email'];
$contact = $_POST['p_number'];
echo "nag5<br>
";
include('class.phpmailer.php');
echo "nag6<br>
";
// To E mail
$mail = new PHPMailer();
//$mail->From=FROM_EMAIL;
$mail->FromName=FROM_NAME;
$mail->ContentType ="text/html";
$mail->AddAddress(TO_EMAIL);
$mail->Subject=SUBJECT;
$metter="We Get Subscription Enquiry From Chakmak Blog and Entered Details Are : <br />";
$metter.="Name: ".$name."<br />";
$metter.="Subscription Type: ".$subscription."<br />";
$metter.="Address: ".$address."<br />".$city." ".$zip.",<br>".$state."<br>";
$metter.="Email: ".$email."<br />";
$metter.="Contact No.: ".$contact."<br />";
$mail->Body = stripslashes($metter);
echo "nag7<br>
";
if($mail->Send())
{
echo "nag8<br>
";
echo "Mail Sent";
$mail->ClearAddresses();
}
// To CC
$mail1 = new PHPMailer();
echo "nag9<br>
";
//$mail1->From=FROM_EMAIL;
$mail1->FromName=FROM_NAME;
$mail1->ContentType ="text/html";
$mail1->AddAddress(TO_CC);
$mail1->Subject=SUBJECT;
$metter="Thank you for requesting";
$mail1->Body = stripslashes($metter);
echo "nag10<br>
";
if($mail1->Send())
{
echo "nag11<br>
";
$mail1->ClearAddresses();
}
echo "nag12<br>
";
}
?>
<html>
<head>
<title>Chakmak Blog Subscription</title>
</head>
<body>
<p>Thanks For Your Subscription!!!!</p>
<p>We will get back to you shortly!</p>
</body>