403Webshell
Server IP : 80.241.246.6  /  Your IP : 216.73.216.188
Web Server : Apache/2.4.25 (Debian)
System : Linux kharagauli 4.9.0-19-amd64 #1 SMP Debian 4.9.320-2 (2022-06-30) x86_64
User : www-data ( 33)
PHP Version : 7.0.33-0+deb9u12
Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /var/www/kharagauli1/moduls/big_logo/admin/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /var/www/kharagauli1/moduls/big_logo/admin/post.php
<?php
/*
@author suxoza <suxoza@gmail.com>
*/
if(realpath(__FILE__) == realpath($_SERVER['SCRIPT_FILENAME']))die("__main__");


    $_time = 0;
    if($_POST['time']){
        list($day,$month,$year) = explode('/',$_->clier($_POST['time']));
        $_time = mktime(0, 0, 0, $month, $day, $year);
    }
    $_logo = '';
    $select_body = '';
    try{
        if(!isset($url[4]) && in_array('more', $url))throw new Exception("bad uri format!!!");
        $select_body = $_->select("*","body","small",["id",$url[4]]);
        $_logo = $select_body['logo'];
    }catch(Exception $exc){
        die($exc->getMessage());
    }




    if($_logo)
        if($_POST['delete_logo'] || $_FILES['file']['name']) {
            _files::delete_image($_logo);
            $_logo = '';
        }


    if($_FILES['file']['name'])
        $_logo = _files::__file('file');



    

    
    $insert = ['page_id','logo','attributes','banner','page_date','date_modify'];
    $value = [$select_menu['id'],$_logo,'',$_POST['banner'],$_time,time()];
    for($i = 0; $i < count($_->language_config); $i++){
           $insert[] = "name_".$_->language_config[$i];
           $insert[] = "body_".$_->language_config[$i];
           $value[] = $_->clier($_POST['name_'.$_->language_config[$i]]);
           $bd = _files::custom_get_images($_POST['body_'.$_->language_config[$i]]);
           if($select_body)
                _files::custom_delete_images_from_body($select_body['body_'.$_->language_config[$i]],$bd);
           $value[] = $bd;
    }
    
    
    $navig_name = '/'.$url[1].'/'.$url[2];
 
        if(in_array('more', $url)){
            if($_->update("body",[$insert,$value,["id",$url[4]]],0))
                 header("Location:".location($_POST['added_params'],$navig_name,$_).$_COOKIE['location_href_menu']."/changed/");
             else
                 die("update error!!!!!");

        }elseif(in_array('new', $url)){
              $insert[] = "date";
              $value[]  = time();
              if($_->insert("body",[$insert,$value],'b_clier'))
                   header("Location:".location($_POST['added_params'],$navig_name,$_).$_COOKIE['location_href_menu']."/added/");
               else
                   die("insert error!!!!!");

        }else die("unconv uri!!!");
 
    
    
    function location($a,$navig_name,$_){
        if(!$a)return $_SERVER['HTTP_REFERER'];
        elseif($a == 1)return $navig_name;
        elseif($a == 2)return $navig_name.'/more/'.$_->con->lastInsertId();
    }



?>

Youez - 2016 - github.com/yon3zu
LinuXploit