T.ME/BIBIL_0DAY
CasperSecurity


Server : Apache/2
System : Linux server-15-235-50-60 5.15.0-164-generic #174-Ubuntu SMP Fri Nov 14 20:25:16 UTC 2025 x86_64
User : gositeme ( 1004)
PHP Version : 8.2.29
Disable Function : exec,system,passthru,shell_exec,proc_close,proc_open,dl,popen,show_source,posix_kill,posix_mkfifo,posix_getpwuid,posix_setpgid,posix_setsid,posix_setuid,posix_setgid,posix_seteuid,posix_setegid,posix_uname
Directory :  /home/gositeme/domains/gositeme.com/public_html/quickqr/includes/payments/mollie/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Current File : /home/gositeme/domains/gositeme.com/public_html/quickqr/includes/payments/mollie/pay.php
<?php
header("Pragma: no-cache");
header("Cache-Control: no-cache");
header("Expires: 0");

if (isset($_SESSION['quickad'][$access_token]['payment_type'])) {
    $payment_type = $_SESSION['quickad'][$access_token]['payment_type'];

    if($payment_type == "order") {
        $restaurant_id = $_SESSION['quickad'][$access_token]['restaurant_id'];
        $restaurant = ORM::for_table($config['db']['pre'] . 'restaurant')
            ->find_one($restaurant_id);

        $userdata = get_user_data(null, $restaurant['user_id']);
        $currency = !empty($userdata['currency'])?$userdata['currency']:get_option('currency_code');

        $mollie_api_key = get_restaurant_option($restaurant_id,'restaurant_mollie_api_key');
    } else {
        $currency = filter_var($config['currency_code'], FILTER_SANITIZE_STRING);
        $mollie_api_key = get_option('mollie_api_key');
    }

    if ($currency != 'EUR') {
        error($lang['MOLLIE_ACCEPTS_EURO_ONLY'], __LINE__, __FILE__, 1);
        exit();
    }

    $title = filter_var($_SESSION['quickad'][$access_token]['name'], FILTER_SANITIZE_STRING);
    $amount = filter_var($_SESSION['quickad'][$access_token]['amount'], FILTER_SANITIZE_STRING);

    try {
        include_once 'Mollie/API/Autoloader.php';
        $api = new \Mollie_API_Client();
        $api->setApiKey($mollie_api_key);

        $mollie_payment = $api->payments->create(array(
            'amount' => $amount,
            'description' => $title,
            'redirectUrl' => $link['IPN'] . "/?access_token=" . $access_token . "&i=mollie",
            'metadata' => array('access_token' => $access_token),
            'issuer' => null
        ));
        if ($mollie_payment->isOpen()) {
            $_SESSION['quickad'][$access_token]['mollie_id'] = $mollie_payment->id;
            header('Location: ' . $mollie_payment->getPaymentUrl());
            exit;
        } else {

            payment_fail_save_detail($access_token);
            email($config['admin_email'], $config['site_title'] . ' Admin', 'Mollie error in ' . $config['site_title'], 'Mollie error in ' . $config['site_title']);

            payment_error("error", $lang['MOLLIE_ERROR'], $access_token);
            exit();
        }

    } catch (\Exception $e) {
        payment_fail_save_detail($access_token);
        echo $error_msg = $e->getMessage();

        email($config['admin_email'], $config['site_title'] . ' Admin', 'Mollie error in ' . $config['site_title'], 'Mollie error in ' . $config['site_title'] . '. Error Message: ' . $error_msg);

        payment_error("error", $error_msg, $access_token);
        exit();
    }

} else {
    error($lang['INVALID_TRANSACTION'], __LINE__, __FILE__, 1);
    exit();
}

CasperSecurity Mini