ACC SHELL
<?php
session_start();
if($_POST["login"])
{
if($_POST["uzivatel"]=="" || $_POST["heslo"]=="")
{
Header("Location: http://www.ambfinance.cz/admin/");
}
else
{
$zakodovane = MD5($_POST["heslo"]);
if($_POST["uzivatel"]!="admin" || $zakodovane!="beaa18c9e6f45b64fcc7ea0db13afcbd") { Header("Location: http://www.ambfinance.cz/admin/"); }
else
{
$_SESSION['user_logged']="ano";
}
}
}
function sesna()
{
if (SID) echo "&".SID;
else if (StrLen($PHPSESSID)>0) echo "&PHPSESSID=".$PHPSESSID;
}
?>
<?php
echo '<?xml version="1.0" encoding="UTF-8"?>';
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="cs" xml:lang="cs">
<head>
<meta http-equiv="content-language" content="cs" />
<meta http-equiv="content-type" content="text/html; charset=utf-8" />
<meta name="Author" content="Pavel Marek, DiS. - (c) www.pavelmarek.com" />
<title>Administrace</title>
<link rel="StyleSheet" type="text/css" href="styl.css" />
</head>
<body>
<?php
if($_SESSION["user_logged"]!="ano"){ ?>
<div id='login'>
<?php echo "<form action=\"index.php"; if (StrLen(SID)>9) echo "?".SID; else {if (!empty($PHPSESSID)) echo "?PHPSESSID=$PHPSESSID";} echo "\" method=\"post\">"; ?>
<table class='tab_login' cellspacing='1' cellpadding='1'>
<tr><td>Uživatel:</td><td><input type='text' name='uzivatel' /></td></tr>
<tr><td>Heslo:</td><td><input type='password' name='heslo' /></td></tr>
<tr><td></td><td><input type='submit' name='login' value='Přihlásit se' /></td></tr>
</table>
</form>
<br />
</div>
<?php
}else{
echo "<div>";
$spojeni = MySQL_Connect("mysql50.unihost.cz","katalog_mpalan","eIt5b87C");
MySQL_Select_DB("katalog_mpalan");
Mysql_query("SET NAMES utf8");
$filename='main.php'; // výchozí stránka
if (!empty($_GET['id'])) // nebo je pośadována nějaká stránka?
{
if (File_Exists($_GET['id'].'.php'))
{
$filename=$_GET['id'].'.php';
}
}
include ($filename); // vlośit soubor
MySQL_Close($spojeni);
echo "</div>";
}
?>
</div>
</body>
</html>
ACC SHELL 2018