!C99Shell v.2.1 [PHP 7 Update] [1.12.2019]!

Software: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.4.16. PHP/5.4.16 

uname -a: Linux roko-bkp 3.10.0-1160.102.1.el7.x86_64 #1 SMP Tue Oct 17 15:42:21 UTC 2023 x86_64 

uid=48(apache) gid=48(apache) groups=48(apache),1003(webmaster) 

Safe-mode: OFF (not secure)

/var/www/html/lib/tinymce/plugins/tinybrowser/   drwxr-xr-x
Free 9.4 GB of 93.48 GB (10.06%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     upload.php (4.39 KB)      -rwxr-xr-x
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?php
require_once("config_tinybrowser.php");
// Set language
if(isset($tinybrowser['language']) && file_exists('langs/'.$tinybrowser['language'].'.php'))
    {
    require_once('langs/'.$tinybrowser['language'].'.php'); 
    }
else
    {
    require_once('langs/en.php'); // Falls back to English
    }
require_once("fns_tinybrowser.php");

// Check session, if it exists
if(session_id() != '')
    {
    if(!isset($_SESSION[$tinybrowser['sessioncheck']]))
        {
        echo TB_DENIED;
        exit;
        }
    }

if(!$tinybrowser['allowupload'])
    {
    echo TB_UPDENIED;
    exit;
    }

// Assign get variables
$typenow = (isset($_GET['type']) ? $_GET['type'] : 'image');
$passfeid = (isset($_GET['feid']) ? '&feid='.$_GET['feid'] : '');

// determine file dialog file types
switch ($_GET['type'])
    {
    case 'image':
        $filestr TB_TYPEIMG;
        break;
    case 'media':
        $filestr TB_TYPEMEDIA;
        break;
    case 'file':
        $filestr TB_TYPEFILE;
        break;
    }
$fileexts str_replace(",",";",$tinybrowser['filetype'][$_GET['type']]);
$filelist $filestr.' ('.$tinybrowser['filetype'][$_GET['type']].')';

// Initalise alert array
$notify = array(
    "type" => array(),
    "message" => array()
);
$goodqty = (isset($_GET['goodfiles']) ? $_GET['goodfiles'] : 0);
$badqty = (isset($_GET['badfiles']) ? $_GET['badfiles'] : 0);

if($goodqty>0)
    {
    $notify['type'][]='success';
    $notify['message'][]=sprintf(TB_MSGUPGOOD$goodqty);
    }
if($badqty>0)
    {
    $notify['type'][]='failure';
    $notify['message'][]=sprintf(TB_MSGUPBAD$badqty);
    }
if(isset($_GET['permerror']))
    {
    $notify['type'][]='failure';
    $notify['message'][]=sprintf(TB_MSGUPFAIL$tinybrowser['docroot'].$tinybrowser['path'][$typenow]);
    }
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<title>TinyBrowser :: <?=  TB_UPLOAD?></title>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
<?php
if(!isset($_GET['feid']) && $tinybrowser['integration']=='tinymce')
    {
    ?><link rel="stylesheet" type="text/css" media="all" href="<?=  $tinybrowser['tinymcecss']; ?>" /><?php 
    }
else
    {
    ?><link rel="stylesheet" type="text/css" media="all" href="css/stylefull_tinybrowser.css" /><?php 
    }
?>
<link rel="stylesheet" type="text/css" media="all" href="css/style_tinybrowser.css.php" />
<script type="text/javascript" src="js/swfobject.js"></script>
<script type="text/javascript">
function uploadComplete(url) {
document.location = url;
}
</script>
</head>
<body onload='
      var so = new SWFObject("flexupload.swf", "mymovie", "600", "330", "9", "#ffffff");
      so.addVariable("folder", "<?=  uniqid(rand(01000)); ?>");
        so.addVariable("uptype", "<?=  $typenow?>");
        so.addVariable("destid", "<?=  $passfeid?>");
        so.addVariable("maxsize", "<?=  $tinybrowser['maxsize'][$_GET['type']]; ?>");
      so.addVariable("redirect", "upload_process.php");
      so.addVariable("upload", "upload_file.php");
      so.addVariable("filenames", "<?=  $filelist?>");
      so.addVariable("extensions", "<?=  $fileexts?>");
      so.addVariable("filenamelbl", "<?=  TB_FILENAME?>");
      so.addVariable("sizelbl", "<?=  TB_SIZE?>");
      so.addVariable("progresslbl", "<?=  TB_PROGRESS?>");
      so.addVariable("browselbl", "<?=  TB_BROWSE?>");
      so.addVariable("removelbl", "<?=  TB_REMOVE?>");
      so.addVariable("uploadlbl", "<?=  TB_UPLOAD?>");
      so.addVariable("uplimitmsg", "<?=  TB_MSGMAXSIZE?>");
      so.addVariable("uplimitlbl", "<?=  TB_TTLMAXSIZE?>");
      so.addVariable("uplimitbyte", "<?=  TB_BYTES?>");
      so.addParam("allowScriptAccess", "always");
      so.addParam("type", "application/x-shockwave-flash");
      so.write("flashcontent");'>
<?php
if(count($notify['type'])>0alert($notify);
?>
<div class="tabs">
<ul>
<li id="browse_tab"><span><a href="tinybrowser.php?type=<?=  $typenow.$passfeid ?>"><?=  TB_BROWSE?></a></span></li>
<li id="upload_tab" class="current"><span><a href="upload.php?type=<?=  $typenow.$passfeid ?>"><?=  TB_UPLOAD?></a></span></li>
<?php
if($tinybrowser['allowedit'] || $tinybrowser['allowdelete'])
    {
    ?><li id="edit_tab"><span><a href="edit.php?type=<?=  $typenow.$passfeid ?>"><?=  TB_EDIT?></a></span></li>
    <?php ?>
</ul>
</div>
<div class="panel_wrapper">
<div id="general_panel" class="panel currentmod">
<fieldset>
<legend><?=  TB_UPLOADFILES?></legend>
    <div id="flashcontent"></div>
</fieldset></div></div>
</body>
</html>

:: Command execute ::

Enter:
 
Select:
 

:: Search ::
  - regexp 
:: Upload ::
 
[ Read-Only ]

:: Make Dir ::
 
[ Read-Only ]
:: Make File ::
 
[ Read-Only ]

:: Go Dir ::
 
:: Go File ::
 

--[ c99shell v.2.1 [PHP 7 Update] [1.12.2019] maintained by KaizenLouie and updated by cermmik | C99Shell Github (MySQL update) | Generation time: 0.0048 ]--