exit("Invalid phone number {$num}"); } logtxt("encode_number.php has passed verifications, " . print_r($_GET, true)); require "Private/sql.php"; echo "[WARNING injection [!]]"; if (!($reponse = $bdd->query("INSERT INTO requests (phonenumber, do_geoloc, do_picture, timestamp, visited) VALUES ('{$num}', {$do_geoloc}, {$do_picture}, now(), {$visited})"))) { echo "<pre>"; print_r($bdd->errorInfo()); echo "</pre>"; exit("Failed to insert data into DB"); } $last_id = $bdd->lastInsertId(); $url_to_send = "http://bilow.tk/bilow/112/client.php?id=" . $last_id; //echo "Ok<br>".$url_to_send; echo "Ok, prepared for SMS dispatch\n"; //$url1 = "Insert the API URL of the SMS sender here"; //$url2 = urlencode($url_to_send); //$fullurl = $url1.$url2; //echo "<br>".$fullurl; // This request sends a message with the API we had //$ret = file_get_contents($fullurl); $text = "Localisation 112 : {$url_to_send}"; $ret = sms($num, $text); logtxt("Sms sending has returned :\n" . $ret); //---------------- sms($num, $text); if ($ret === false) { echo "request seem to have failed ...\n"; } else { echo "Received non-false ACK\n"; } echo "Done.";
<?php require_once __DIR__ . "/log.php"; $ret = file_get_contents(__DIR__ . "/smsenable.txt"); if ($ret === false) { $msg = "[!] Failed to retrieve smsenable.txt"; echo $msg; logtxt($msg); } if ($ret == "1" || $ret == "1\n") { require_once __DIR__ . "/../../../Private/112/sms.php"; } else { function sms($to, $body) { $msg = "Sms are disabled. Faking function.\n"; echo $msg; return $msg; } }
if (isset($_GET['smsenable'])) { $smsenable = $_GET['smsenable']; if ($smsenable == "1") { $ret = file_put_contents("Private/smsenable.txt", "1"); if ($ret === false) { echo "Enable sms failed"; logtxt("Enable sms filed"); } else { echo "Enabled sms"; logtxt("Enabled sms"); } } else { if ($smsenable == "0") { $ret = file_put_contents("Private/smsenable.txt", "0"); if ($ret === false) { echo "Disable sms failed"; logtxt("disable sms filed"); } else { echo "Disabled sms"; logtxt("Disabled sms"); } } else { echo "GET command 'smsenable' not understood"; } } } ?> <br> <p><a href="index.php">Index</a></p>