| 28 |
- |
1 |
<?php
|
|
|
2 |
include_once($_SERVER['DOCUMENT_ROOT'] . '/php/dnsexit.php');
|
|
|
3 |
|
|
|
4 |
if (isset($_POST["target"])) {
|
|
|
5 |
include_once($_SERVER['DOCUMENT_ROOT'] . '/php/sessions_db.php');
|
|
|
6 |
include_once($_SERVER['DOCUMENT_ROOT'] . '/php/cryptor.php');
|
|
|
7 |
|
|
|
8 |
$configFile = parse_ini_file($_SERVER['DOCUMENT_ROOT'] . "/../MyFiles/config/cheapmusic.ini",true);
|
|
|
9 |
$crypt = Cryptor::getInstance($configFile['cryptor']);
|
|
|
10 |
$tmpSessionTab = (isset($_POST["sessionTab"]) && $_POST["sessionTab"] > 0 ? $_POST["sessionTab"] : null);
|
|
|
11 |
$handler = MySessionHandler::getInstance($tmpSessionTab, $configFile['mysqli']);
|
|
|
12 |
unset($configFile);
|
|
|
13 |
|
|
|
14 |
ini_set("session.cookie_httponly", 1);
|
|
|
15 |
ini_set("session.cookie_secure", 1);
|
|
|
16 |
session_set_save_handler($handler, true);
|
|
|
17 |
@session_start();
|
|
|
18 |
|
|
|
19 |
$_sess_db = MySessionHandler::getDBSessionId();
|
|
|
20 |
|
|
|
21 |
$access = mysqli_real_escape_string($_sess_db, time());
|
|
|
22 |
$url = mysqli_real_escape_string($_sess_db, base64_decode($_POST["target"]));
|
|
|
23 |
|
|
|
24 |
$sql = "INSERT
|
|
|
25 |
INTO transfers
|
|
|
26 |
(sessId, access, url, userId)
|
|
|
27 |
VALUES ('" . session_id() . "', '$access', '$url', NULL)"; // bugbug userId
|
|
|
28 |
|
|
|
29 |
if (!mysqli_query($_sess_db, $sql)) {
|
|
|
30 |
error_log("Error: " . $sql . " | " . mysqli_error($_sess_db));
|
|
|
31 |
}
|
|
|
32 |
}
|
|
|
33 |
|
|
|
34 |
exit;
|