From 732ed43796d60f294705276d69c19a126137b521 Mon Sep 17 00:00:00 2001 From: Myron Blair Date: Fri, 22 May 2026 13:05:16 +0000 Subject: [PATCH] Security: remove phpinfo.php and setup_password.php from production --- api/phpinfo.php | 6 --- api/setup_password.php | 116 ----------------------------------------- 2 files changed, 122 deletions(-) delete mode 100644 api/phpinfo.php delete mode 100644 api/setup_password.php diff --git a/api/phpinfo.php b/api/phpinfo.php deleted file mode 100644 index 43eed3d..0000000 --- a/api/phpinfo.php +++ /dev/null @@ -1,6 +0,0 @@ - diff --git a/api/setup_password.php b/api/setup_password.php deleted file mode 100644 index e65a5e4..0000000 --- a/api/setup_password.php +++ /dev/null @@ -1,116 +0,0 @@ - PDO::ERRMODE_EXCEPTION] - ); - - $hash = password_hash($password, PASSWORD_BCRYPT); - - // Check if user exists - $check = $pdo->prepare("SELECT COUNT(*) FROM admin_users WHERE email = ?"); - $check->execute([$email]); - - if ($check->fetchColumn() > 0) { - // Update existing - $s = $pdo->prepare("UPDATE admin_users SET password_hash = ? WHERE email = ?"); - $s->execute([$hash, $email]); - $message = 'Password updated successfully!'; - } else { - // Create new - $s = $pdo->prepare("INSERT INTO admin_users (id, email, password_hash, created_at) VALUES (?, ?, ?, NOW())"); - $s->execute(['admin-1', $email, $hash]); - $message = 'Admin account created successfully!'; - } - - // Verify - if (password_verify($password, $hash)) { - $success = true; - } else { - $message = 'Error: Password verification failed.'; - } - - } catch (Exception $e) { - $message = 'Database error: ' . $e->getMessage(); - } - } -} -?> - - - - - -Admin Setup — Epic Travel - - - -
-

Epic Travel Admin Setup

-
Set your admin email and password
- - -
- -
- - - -

- You can now login to the admin panel.

- ⚠ Delete this file immediately!
- Run in SSH: rm /home/epictravelexpeditions.com/public_html/api/setup_password.php -

- -
- - - - - - - -
-
⚠ Delete this file after use. It provides direct DB access.
- -
- -