⚝
One Hat Cyber Team
⚝
Your IP:
216.73.216.1
Server IP:
185.238.29.86
Server:
Linux server2 6.8.12-6-pve #1 SMP PREEMPT_DYNAMIC PMX 6.8.12-6 (2024-12-19T19:05Z) x86_64
Server Software:
nginx/1.18.0
PHP Version:
8.1.31
Buat File
|
Buat Folder
Eksekusi
Dir :
~
/
var
/
www
/
olasjoys
/
admin123
/
filemanager
/
Edit File: force_download.php
<?php include 'config/config.php'; if ($_SESSION['verify'] != 'RESPONSIVEfilemanager') { die('Forbidden'); } include 'include/utils.php'; if (preg_match('/\.{1,2}[\/|\\\]/', $_POST['path']) !== 0) { die('wrong path'); } if (strpos($_POST['name'], '/') !== false || strpos($_POST['name'], '\\') !== false) { die('wrong path'); } $path = $current_path.$_POST['path']; $name = $_POST['name']; $info = pathinfo($name); if (!in_array(fix_strtolower($info['extension']), $ext)) { die('wrong extension'); } header('Pragma: private'); header('Cache-control: private, must-revalidate'); header('Content-Type: application/octet-stream'); header('Content-Length: '.(string)filesize($path.$name)); header('Content-Disposition: attachment; filename="'.($name).'"'); readfile($path.$name); exit;
Simpan