One Hat Cyber Team
Your IP :
216.73.216.115
Server IP :
194.44.31.54
Server :
Linux zen.imath.kiev.ua 4.18.0-553.77.1.el8_10.x86_64 #1 SMP Fri Oct 3 14:30:23 UTC 2025 x86_64
Server Software :
Apache/2.4.37 (Rocky Linux) OpenSSL/1.1.1k
PHP Version :
5.6.40
Buat File
|
Buat Folder
Eksekusi
Dir :
~
/
home
/
sam
/
public_html
/
go
/
news
/
Edit File:
send.php
<?php /* ||========================================================== || Fusion News 3.x ||---------------------------------------------------------- || File Version : $Id: send.php 212 2008-02-22 20:44:43Z xycaleth $ || Contact : xycaleth@gmail.com || Copyright: : (c) 2006 - 2008, FusionNews.net || License Info : http://www.gnu.org/copyleft/gpl.html ||========================================================== */ if ( !defined ('FNEWS_ROOT_PATH') ) { die ('<p>You should view the send to friend form by including it through news.php, e.g.:</p><p><code><?php<br /><br />$fn_mode = \'send\';<br />include \'news/news.php\';<br /><br />?></code></p>'); } $news_tmpl = get_template ('news_temp.php', false); if ( strpos ($news_tmpl, '{send}') === false ) { exit; } // free up some memory unset ($news_tmpl); $id = ( isset ($VARS['fn_id']) ) ? intval ($VARS['fn_id']) : 0; $action = ( isset ($VARS['fn_action']) ) ? $VARS['fn_action'] : ''; if ( !$action ) { if ( !file_exists (FNEWS_ROOT_PATH . 'news/news.' . $id . '.php') ) { echo $com11; } else { $file = file(FNEWS_ROOT_PATH."news/news.".$id.".php"); $news_info = parse_news_to_view ($file[1]); //replace user variables $tem = get_template('sendtofriend_temp.php', TRUE); $tem = "<script src=\"./jsfunc.js\" type=\"text/javascript\"></script>".$tem; $tem = str_replace("{post_id}", $news_info['post_id'], $tem); $tem = str_replace("{subject}", $news_info['subject'], $tem); $tem = str_replace("{user}", $news_info['writer'], $tem); $tem = str_replace("{date}", $news_info['date'], $tem); $tem = str_replace("{news}", $news_info['news'], $tem); $tem = str_replace("{icon}", $news_info['icon'], $tem); $tem = str_replace("{nrc}", $news_info['nrc'], $tem); $tem = str_replace("{com}", $news_info['link_comments'], $tem); $tem = str_replace("{fullstory}", $news_info['fullnews'], $tem); $tem = str_replace("{cat_name}", $news_info['cat_name'], $tem); $tem = str_replace("{cat_id}", $news_info['cat_id'], $tem); $tem = str_replace("{cat_icon}", $news_info['cat_icon'], $tem); $qs = clean_query_string(); $qs = '&fn_incl=' . $fn_incl . $qs; $tem = str_replace("[form]", '<form action="?fn_mode=send&fn_action=send&fn_id=' . $id . $qs . '" method="post" id="newsposting">', $tem); $tem = str_replace("[/form]", "</form>", $tem); $tem = str_replace("[buttons]", "<input type=\"submit\" value=\"" . $ind125 . "\"> <input type=\"reset\" value=\"" . $ind16 . "\">", $tem); $tem = preg_replace ('/\[sendnamefld,\s*([0-9]+)\]/', '<input type="text" size="\\1" name="n" />', $tem); $tem = preg_replace ('/\[recnamefld,\s*([0-9]+)\]/', '<input type="text" size="\\1" name="fn" />', $tem); $tem = preg_replace ('/\[sendmailfld,\s*([0-9]+)\]/', '<input type="text" size="\\1" name="e" />', $tem); $tem = preg_replace ('/\[recmailfld,\s*([0-9]+)\]/', '<input type="text" size="\\1" name="fe" />', $tem); $tem = preg_replace('/\[mesfld,\s*([0-9]+),\s*([0-9]+)\]/', '<textarea name="m" cols="\\1" rows="\\2"></textarea>', $tem); echo $tem; } } //send mail else if ( $action == "send" ) { $name = ( isset ($VARS["n"]) ) ? $VARS['n'] : ''; $friend_name = ( isset ($VARS["fn"]) ) ? $VARS['fn'] : ''; $email = ( isset ($VARS["e"]) ) ? trim ($VARS['e']) : ''; $friend_email = ( isset ($VARS["fe"]) ) ? trim ($VARS['fe']) : ''; $message = ( isset ($VARS["m"]) ) ? htmlspecialchars ($VARS['m']) : ''; if ( !$name || !$friend_name || !$email || !$friend_email || !$message ) { echo $error23; } else if ( !valid_email ($email) || !valid_email ($friend_email) ) { echo $snd7; } else { $subject = $snd0 . ' ' . $friend_name . ', ' . $snd1; $message = <<< html $snd0 $friend_name! $snd1 {$hurl}?fn_id=$id&fn_mode=fullnews ======================================== $message ======================================== $snd2 $name html; $headers = 'From: ' . $email . "\n"; $headers .= 'Reply-To: ' . $email . "\n"; $headers .= 'Content-Type: text/plain' . "\n"; $headers .= 'Mime-Version: 1.0' . "\n"; $headers .= 'X-Mailer: PHP' . "\n"; $headers .= 'X-AntiAbuse: Sent From - ' . $site . "\n"; $headers .= 'X-AntiAbuse: Sender IP - ' . getip() . "\n"; if ( @mail ($friend_email, $subject, $message, $headers) ) { echo $snd4 . ' ' . $friend_email . '. <a href="javascript:history.go (-2)">' . $snd5 . '</a>'; } else { echo $snd6; } } } ?>
Simpan