Ð¤Ð°Ð¹Ð»Ð¾Ð²Ñ‹Ð¹ Ð¼ÐµÐ½ÐµÐ´Ð¶ÐµÑ€

Ð¤Ð°Ð¹Ð»Ð¾Ð²Ñ‹Ð¹ Ð¼ÐµÐ½ÐµÐ´Ð¶ÐµÑ€ - Ð ÐµÐ´Ð°ÐºÑ‚Ð¸Ñ€Ð¾Ð²Ð°Ñ‚ÑŒ - /var/www/html/administrator/components/com_jssupportticket/include/classes/privatecredentials.php

ÐÐ°Ð·Ð°Ð´
<?php /** * @Copyright Copyright (C) 2015 ... Ahmad Bilal * @license GNU/GPL http://www.gnu.org/copyleft/gpl.html * Company: Buruj Solutions + Contact: www.burujsolutions.com , info@burujsolutions.com * Created on: May 22, 2015 ^ + Project: JS Tickets ^ */ defined('_JEXEC') or die('Not Allowed'); class privatecredentials{ // The cipher method. openssl_get_cipher_methods returns list of all available methods private $cipher_method = "AES-256-CBC"; // to return data on as is private $options = OPENSSL_RAW_DATA; private $secretKey; public function encrypt($text_for_enrcyption) { $this->secretKey = $this->secretKey(); $iv = openssl_random_pseudo_bytes(openssl_cipher_iv_length($this->cipher_method)); $encrypted_text = openssl_encrypt( $text_for_enrcyption, $this->cipher_method, $this->secretKey, $this->options, $iv ); $return_data = base64_encode($encrypted_text) . ':'. base64_encode($iv); return $return_data; } public function decrypt($encrypted_string) { $parts = explode(':', $encrypted_string); if (count($parts) != 2) { die('failed'); } $encrypted_text = base64_decode($parts[0]); $iv = base64_decode($parts[1]); return openssl_decrypt( $encrypted_text, $this->cipher_method, $this->getSecretKeyForDcrpt(), $this->options, $iv); } private function secretKey(){ $secretkey = JSSupportTicketModel::getJSModel('config')->getConfigurationByName('private_credentials_secretkey'); if($secretkey == ''){ if(defined('JSST_PRIVATE_CREDENTIALS_KEY')){ $secretkey = hash('sha256', JSST_PRIVATE_CREDENTIALS_KEY); }else{ $secretkey = $this->generateSecretKey(); $secretkey = hash('sha256', $secretkey); $query = "UPDATE `#__js_ticket_config` set configvalue = $secretkey WHERE configname = 'private_credentials_secretkey'"; $db->setQuery($query); if(!$db->execute()){ $error_message = 'Secrect key store failed'; JSSupportTicketModel::getJSModel('systemerror')->addSystemError($error_message); } } // store secret key in configuration } return $secretkey; } private function getSecretKeyForDcrpt(){ if(defined('JSST_PRIVATE_CREDENTIALS_KEY')){ $secretkey = hash('sha256', JSST_PRIVATE_CREDENTIALS_KEY); }else{ $secretkey = JSSupportTicketModel::getJSModel('config')->getConfigurationByName('private_credentials_secretkey'); } return $secretkey; } // Generate a key of given length; public static function generateSecretKey($length = 128){ return bin2hex(openssl_random_pseudo_bytes($length)); } }

| ver. 1.1 | | . | PHP 8.4.18 | Ð“ÐµÐ½ÐµÑ€Ð°Ñ†Ð¸Ñ ÑÑ‚Ñ€Ð°Ð½Ð¸Ñ†Ñ‹: 0 | proxy | phpinfo | ÐÐ°ÑÑ‚Ñ€Ð¾Ð¹ÐºÐ°