Digitalstack/ZnoteAAC
2
0
Fork 0
mirror of https://github.com/Znote/ZnoteAAC.git synced 2025-04-29 10:49:23 +02:00
Code Issues Packages Projects Releases Wiki Activity

Fix paypal IPs, fix #467

Browse Source
This commit is contained in:
Znote 2021-07-18 22:35:47 +02:00
parent 6af276225f
commit 1c3480f322
1 changed files with 37 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

37
ipn.php
View File

@ -1,7 +1,44 @@
<?php <?php
/* 2021: Paypal hosts arent neccesarily notify.paypal.com any longer.
if (gethostbyaddr($_SERVER['REMOTE_ADDR']) !== 'notify.paypal.com') { if (gethostbyaddr($_SERVER['REMOTE_ADDR']) !== 'notify.paypal.com') {
exit(); exit();
} }
*/
function ip_in_range( $ip, $range ) {
if ( strpos( $range, '/' ) === false ) {
$range .= '/32';
}
// $range is in IP/CIDR format eg 127.0.0.1/24
list( $range, $netmask ) = explode( '/', $range, 2 );
$range_decimal = ip2long( $range );
$ip_decimal = ip2long( $ip );
$wildcard_decimal = pow( 2, ( 32 - $netmask ) ) - 1;
$netmask_decimal = ~ $wildcard_decimal;
return ( ( $ip_decimal & $netmask_decimal ) == ( $range_decimal & $netmask_decimal ) );
}
$paypal_ip_ranges = array(
"173.0.81.65",
"173.0.81.140",
"64.4.240.0/21",
"64.4.248.0/22",
"66.211.168.0/22",
"173.0.80.0/20",
"91.243.72.0/23"
);
$verified = false;
for($i = 0; $i < count($paypal_ip_ranges); $i++) {
if(ip_in_range($_SERVER["REMOTE_ADDR"], $paypal_ip_ranges[$i])) {
$verified = true;
break;
}
}
if(!$verified) {
exit();
}
// Require the functions to connect to database and fetch config values // Require the functions to connect to database and fetch config values
require 'config.php'; require 'config.php';