if ($method == 'resend') {
//Captcha Validate
require_once PHP_BASE_DIR . "/securimage/securimage.php";
$img = new Securimage();
if ($img->check($captcha) == false) {
$res['message'] = '验证码错误!';
$res['action'] = 'resend';
} else {
$db = new MySQL($log);
if ($mysqli = $db->openDB()) {
$user = new User($mysqli, $log);
$invitation = new Invitation($mysqli, $log);
if ($user->getUserByMail($email)) {
if ($user->status == 2) {
$s_email = $email;
$email_code = $invitation->genEmailValidateCode($user->id);
$saemail = new SaeMail();
if ($saemail) {
//sea maill
$message = "尊敬的XSSRAT用户 \r\n\t\t\t您好,欢迎您使用XSSRAT。XSSRAT是一个开放性的Web前端漏洞利用平台,您可以使用该平台进行一些Web前端漏洞的测试,并可以贡献自己的模块供其他用户使用。\r\n\t\t\t本平台是一个开放性的平台,可用于渗透测试或漏洞挖掘过程中,以提高Web应用的安全性,本身不具有任何恶意性。请勿将该平台用于非法用途,否则后果自负!\r\n\t\t\t请访问以下链接激活您的账号:\t\t\t\t\t\r\n\t\t\thttp://xssrat.sinaapp.com/activating.php?code=" . $email_code . "&id=" . $user->id . "&method=active\t\r\n\t\t\r\n\t\t\thttp://xssrat.sinaapp.com\r\n\t\t\tMak3 hack m0r3 c00l!";
$ret = $saemail->quickSend($email, 'XSSRAT 用户验证', $message, MAIL_ACCOUNT, MAIL_PASS);
$reg_info = array('username' => htmlspecialchars($user->username, ENT_QUOTES), 'email' => htmlspecialchars($user->email, ENT_QUOTES));
$_SESSION["reg_info"] = $reg_info;
if ($ret) {
$res['result'] = true;
$res['message'] = '邮件已发出,请您及时查收,若您一直未收到,请稍后重新发送!';
$res['action'] = 'resend';
}
if ($ret === false) {
$log->error($mail->errmsg());
$res['message'] = '邮件发送失败,请稍后重试!';
$inv_id = $invitation->vilidateCode($invitation_code);
if ($inv_id) {
$user->username = $username;
$user->password = hash('sha256', $password_1);
$user->email = $email;
$user->type = 3;
//普通用户
$user->b_send = 1;
//发送邮件
$user->status = 2;
//未激活状态
$uid = $user->addUser();
if ($uid > 0) {
$invitation->setRegister($inv_id, $uid);
//生成邮件验证码
$val_code = $invitation->genEmailValidateCode($uid);
$reg_info = array('username' => htmlspecialchars($user->username, ENT_QUOTES), 'email' => htmlspecialchars($user->email, ENT_QUOTES), 'message' => '');
$saemail = new SaeMail();
if ($email) {
//sea maill
$saemail = new SaeMail();
$message = "尊敬的XSSRAT用户 \r\n\t您好,欢迎您使用XSSRAT。XSSRAT是一个开放性的Web前端漏洞利用平台,您可以使用该平台进行一些Web前端漏洞的测试,并可以贡献自己的模块供其他用户使用。\r\n\t本平台是一个开放性的平台,可用于渗透测试或漏洞挖掘过程中,以提高Web应用的安全性,本身不具有任何恶意性。请勿将该平台用于非法用途,否则后果自负!\r\n\t请访问以下链接激活您的账号:\t\t\t\t\t\r\n\thttp://xssrat.sinaapp.com/activating.php?code=" . $val_code . "&id=" . $uid . "&method=active\r\n\r\n\thttp://xssrat.sinaapp.com\r\n\tMak3 hack m0r3 c00l!";
$ret = $saemail->quickSend($email, 'XSSRAT 用户验证', $message, MAIL_ACCOUNT, MAIL_PASS);
if ($ret) {
$res['result'] = true;
$res['reason'] = '已注册成功,请收取邮件以激活帐号!';
$reg_info['message'] = '已注册成功,请收取邮件以激活帐号!';
}
if ($ret === false) {
$log->error($mail->errmsg());
$res['result'] = true;
