forked from msilvoso/vulnerableApp
-
Notifications
You must be signed in to change notification settings - Fork 0
/
index.php
98 lines (90 loc) · 2.31 KB
/
index.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
<?php
/*
Piti's blog is a very vulnerable web app written to illustrate a php security training
Copyright (C) 2012 Manuel Silvoso
This program is free software: you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation, either version 3 of the License, or
(at your option) any later version.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
along with this program. If not, see <http://www.gnu.org/licenses/>.
*/
session_start();
//includes
$config=parse_ini_file('config.ini',true);
require_once 'includes/database.php';
require_once 'includes/functions.php';
/*
* main action
*/
if (isset($_GET['action']) && !empty($_GET['action']))
{
if ((!isset($_SESSION['login']) || empty($_SESSION['login'])) && $_GET['action']!='login.php')
{
require_once 'actions/list.php';
errorMessage('You have to be logged in to execute this action');
}
else
{
require_once 'actions/'.$_GET['action'];
}
}
else
{
require_once 'actions/list.php';
}
/*
* display
*/
//header
require_once 'header.php';
//login
if (isset($_SESSION['login']) && !empty($_SESSION['login'])):
?>
<div id="right">
<p>Welcome <?=$_SESSION['login']?></p>
<p><a href="/index.php?action=logout.php">logout</a>
</div>
<?php
else:
?>
<div id="right">
<form name="loginForm" action="index.php?action=login.php" method="post">
<label for="login">Login:</label>
<br/>
<input type="text" name="login" id="login"/>
<br/>
<label for="password">Password:</label>
<br/>
<input type="password" name="password" id="password"/>
<br/>
<input type="submit" name="submit" value="submit"/>
</form>
</div>
<?php
endif;
?>
<div id="main">
<?php
//errors
if (isset($_SESSION['error']) && is_array($_SESSION['error']) && count($_SESSION['error']))
{
foreach($_SESSION['error'] as $errorMessage):
?>
<div class="error"><?=$errorMessage?></div>
<?php
endforeach;
echo "<br/>";
unset($_SESSION['error']);
}
//view
echo "$view<br/><br/>";
?>
</div>
<?php
//footer
require_once 'footer.php';