ACC SHELL

Path : /srv/www/vhosts/bubbagump/
File Upload :
Current File : /srv/www/vhosts/bubbagump/zjistenihesla.php

<?php
do {
	require "pripojenidb.php";
	$tabulka = $NAZEV_PROJEKTU."hesla";
	$pocetzaznamu = 0;
	@$vysledek = MySQL_Query("SELECT count(ID_uzivatele) as Pocetvysledku FROM $tabulka WHERE Login = '".$_POST["login"]."'");
	while ($zaznam = MySQL_Fetch_Array($vysledek)):
		$pocetzaznamu = $zaznam["Pocetvysledku"];
		if ($pocetzaznamu == 0) {$spatneheslo = 1;}
	endwhile;
  if (!$pocetzaznamu == 0) { //kdyz neodpovida login, tak ani nekontroluj heslo
    @$vysledek = MySQL_Query("SELECT * FROM $tabulka WHERE Login = '".$_POST["login"]."'");
    while ($zaznam = MySQL_Fetch_Array($vysledek)):
      $adminuzivatelu = 2;
      include "scripty/zmenahesla.php";
      if ($hsl == $zaznam["Heslo"]) {
        $_SESSION[$NAZEV_PROJEKTU."prihlasen"] = "ano";
				if($zaznam["Login"]=="wadmin") {
          $_SESSION[$NAZEV_PROJEKTU."superuser"] = 1;
				}
        //zaregistruj jmeno prihlaseneho, login, a prava...
        if(!isset($_SESSION["jmenoprihlaseneho"])) {
          $_SESSION["jmenoprihlaseneho"] = $zaznam["Jmeno"];
        }
        if(!isset($_SESSION["loginuzivatele"])) {
					if($zaznam["Login"]=="wadmin") $_SESSION["loginuzivatele"] = "admin";
					else $_SESSION["loginuzivatele"] = $zaznam["Login"];
        }
        if(!isset($_SESSION["pravauzivatele"])) {
          $_SESSION["pravauzivatele"] = $zaznam["Jmeno"];
        }
        if(!isset($_SESSION["iduzivateleregistred"])) {
          $_SESSION["iduzivateleregistred"] = $zaznam["ID_uzivatele"];
        }
				$soubor = "posledniaktualizace.php";
				$fp = fopen ($soubor, "w");
				fwrite ($fp, Time ());
				fclose ($fp);
      }
			else {
			  $spatneheslo = 1;
			}
    endwhile;
	} //endif $pocetzaznamu
  else {
		$spatneheslo = 1;
	}
} while (false);
MySQL_Close($spojeni);

?>

ACC SHELL 2018