403Webshell
Server IP : 103.119.228.120  /  Your IP : 3.145.44.22
Web Server : Apache
System : Linux v8.techscape8.com 3.10.0-1160.119.1.el7.tuxcare.els2.x86_64 #1 SMP Mon Jul 15 12:09:18 UTC 2024 x86_64
User : nobody ( 99)
PHP Version : 5.6.40
Disable Function : shell_exec,symlink,system,exec,proc_get_status,proc_nice,proc_terminate,define_syslog_variables,syslog,openlog,closelog,escapeshellcmd,passthru,ocinum cols,ini_alter,leak,listen,chgrp,apache_note,apache_setenv,debugger_on,debugger_off,ftp_exec,dl,dll,myshellexec,proc_open,socket_bind,proc_close,escapeshellarg,parse_ini_filepopen,fpassthru,exec,passthru,escapeshellarg,escapeshellcmd,proc_close,proc_open,ini_alter,popen,show_source,proc_nice,proc_terminate,proc_get_status,proc_close,pfsockopen,leak,apache_child_terminate,posix_kill,posix_mkfifo,posix_setpgid,posix_setsid,posix_setuid,dl,symlink,shell_exec,system,dl,passthru,escapeshellarg,escapeshellcmd,myshellexec,c99_buff_prepare,c99_sess_put,fpassthru,getdisfunc,fx29exec,fx29exec2,is_windows,disp_freespace,fx29sh_getupdate,fx29_buff_prepare,fx29_sess_put,fx29shexit,fx29fsearch,fx29ftpbrutecheck,fx29sh_tools,fx29sh_about,milw0rm,imagez,sh_name,myshellexec,checkproxyhost,dosyayicek,c99_buff_prepare,c99_sess_put,c99getsource,c99sh_getupdate,c99fsearch,c99shexit,view_perms,posix_getpwuid,posix_getgrgid,posix_kill,parse_perms,parsesort,view_perms_color,set_encoder_input,ls_setcheckboxall,ls_reverse_all,rsg_read,rsg_glob,selfURL,dispsecinfo,unix2DosTime,addFile,system,get_users,view_size,DirFiles,DirFilesWide,DirPrintHTMLHeaders,GetFilesTotal,GetTitles,GetTimeTotal,GetMatchesCount,GetFileMatchesCount,GetResultFiles,fs_copy_dir,fs_copy_obj,fs_move_dir,fs_move_obj,fs_rmdir,SearchText,getmicrotime
MySQL : ON |  cURL : ON |  WGET : ON |  Perl : ON |  Python : ON |  Sudo : ON |  Pkexec : ON
Directory :  /var/softaculous/webmail/

Upload File :
current_dir [ Writeable] document_root [ Writeable]

 

Command :

[ Back ]     

Current File : /var/softaculous/webmail/_edit.php
<?php

//////////////////////////////////////////////////////////////
//===========================================================
// edit.php(For individual softwares)
//===========================================================
// SOFTACULOUS 
// Version : 1.0
// Inspired by the DESIRE to be the BEST OF ALL
// ----------------------------------------------------------
// Started by: Alons
// Date:       10th Jan 2009
// Time:       21:00 hrs
// Site:       http://www.softaculous.com/ (SOFTACULOUS)
// ----------------------------------------------------------
// Please Read the Terms of use at http://www.softaculous.com
// ----------------------------------------------------------
//===========================================================
// (c)Softaculous Inc.
//===========================================================
//////////////////////////////////////////////////////////////

if(!defined('SOFTACULOUS')){

	die('Hacking Attempt');

}

/////////////////////////////////////////
// All functions in this PAGE must begin
// with TWO UNDERSCORE '__' to avoid 
// clashes with SOFTACULOUS Functions
// e.g. __funcname()
/////////////////////////////////////////

//////////////////////////////////////////
// Note : The path of the upgrade package 
//        is $software['path'].'/' . So to
//        access other files use 
//        $software['path'].'/other_file.ext'
//////////////////////////////////////////

//The Edit process
function __edit($installation){

global $__settings, $globals, $setupcontinue, $software, $error, $replace_data;

	$__settings['admin_username'] = optPOST('admin_username');
	$__settings['admin_pass'] = optPOST('admin_pass');
	
	// Do we need to reset the password ?
	if(!empty($__settings['admin_pass'])){
	
		// We need the username
		if(empty($__settings['admin_username'])){
			$error[] = '{{err_no_username}}';
			return false;
		}
		
		//Making a backup of the  old settings file 
		@scopy($installation['softpath'].'/data/settings/settings.xml', $installation['softpath'].'/data/settings/settings.xml.bak');
		
		//we need values of username and old password 
		$file = sfile($installation['softpath'].'/data/settings/settings.xml');
		
		if(empty($file)){
			$error[] = '{{err_openconfig}}';
			return false;
		}
		
		soft_preg_replace('/<AdminLogin>(.*?)<\/AdminLogin>/is', $file, $user, 1);	
		soft_preg_replace('/<AdminPassword>(.*?)<\/AdminPassword>/is', $file, $pass, 1);	
		
		if($__settings['admin_username'] != $user){
			$error[] = '{{err_no_such_user}}';
			return false;			
		}else{	
		
			if(sversion_compare($installation['ver'], '7.7.0', '<')){
				
				// This is to obtain old password method from extend.php
				@sp_include_once($software['path'].'/extend.php');
				
				// creating password using extend.php __ad_pass_md5() function
				$__settings['admin_pass'] = __ad_pass_md5($__settings['admin_pass']);
			}else{
				
				//Retrieving salt from salt.php 
				$salt = sfile($installation['softpath'].'/data/salt.php');
				
				if(empty($file)){
					$error[] = '{{err_openconfig}} to fetch salt';
				return false;
				}
				
				$__settings['salt'] = trim($salt);
				
				// This is to obtain password method from install.php
				@sp_include_once($software['path'].'/install.php');			
			
				// creating password using install.php __ad_pass() function
				$__settings['admin_pass'] = __ad_pass($__settings['admin_pass']);
			}
			
			$replace_data["<AdminPassword>".$pass."</AdminPassword>"] = "<AdminPassword>".$__settings['admin_pass']."</AdminPassword>";
			
			sclone_replace($replace_data, $installation['softpath'].'/data/settings/settings.xml', true);
		}
	}
}

?>

Youez - 2016 - github.com/yon3zu
LinuXploit