HEX
Server: Apache
System: Linux msm5694.mjhst.com 3.10.0-1160.119.1.el7.x86_64 #1 SMP Tue Jun 4 14:43:51 UTC 2024 x86_64
User: camjab_ssh (1000)
PHP: 5.3.29
Disabled: NONE
$ pwd: /home/httpd/html/baretube.com.new/admin/
Upload Files
File: /home/httpd/html/baretube.com.new/admin/functions.bootstrap.php
<?php

/* -- check current mysql version */
preg_match('/[0-9]\.[0-9]+\.[0-9]+/', mysqli_get_server_info($dblink), $version);
$config['mysql_version'] = (float) $version[0];

/* -- setup current ip (whether it's proxy, or direct) */
if (isset($_SERVER['HTTP_CLIENT_IP']) && $_SERVER['HTTP_CLIENT_IP'] != "") {
    $config['current_ip'] = $_SERVER['HTTP_CLIENT_IP'];
} else if (isset($_SERVER['HTTP_X_FORWARDED_FOR']) && $_SERVER['HTTP_X_FORWARDED_FOR'] != "") {
    $config['current_ip'] = $_SERVER['HTTP_X_FORWARDED_FOR'];
} else {
    $config['current_ip'] = $_SERVER['REMOTE_ADDR'];
}

/* -- check current device against mobile detect */
$isMobile = false;
if ($config['enableMobile'] && detectMobile() === true) {
    $isMobile = true;
    if ($config['redirect_mobile'] != '') {
        header("Location: $config[redirect_mobile]");
        exit();
    }
}

/* -- redirect to login if current session IP changed */
if (isset($_SESSION['ip']) && $_SESSION['ip'] != $_SERVER['REMOTE_ADDR']) {
    unset($_SESSION['username']);
    unset($_SESSION['userid']);
    unset($_SESSION['ip']);
    header("Location: $basehttp/login");
    exit();
}

/* -- reloads currently logged user if profile requires updating current session */
if (empty($_SERVER['HTTP_X_REQUESTED_WITH']) || strtolower($_SERVER['HTTP_X_REQUESTED_WITH']) != 'xmlhttprequest') {
    if (strpos($_SERVER['REQUEST_URI'], '/admin/') === false && isset($_SESSION['userid']) && is_numeric($_SESSION['userid'])) {
        $session_reload = dbRow("SELECT * FROM `users` WHERE `record_num` = '" . (int) $_SESSION['userid'] . "'");
        if (is_array($session_reload)) {
            if ($session_reload['enabled'] == 0) {
                dbUpdate('users', array('session_reload' => 0, 'record_num' => $_SESSION['userid']));
                destroySession();
                setMessage(_t('Your account has been disabled'), 'error');
                header("Location: $basehttp");
                exit();
            } elseif ($session_reload['session_reload'] == 1) {
                updateUserSession();
                dbUpdate('users', array('session_reload' => 0, 'record_num' => $_SESSION['userid']));
            }
        } else {
            destroySession();
            setMessage(_t('Your account has been removed'), 'error');
            header("Location: $basehttp");
            exit();
        }
    }
}
@ Telegram