Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- if ( (!isset($_SERVER['PHP_AUTH_USER'])) && (!isset($_SERVER['PHP_AUTH_PW'])) ) {
- header('WWW-Authenticate: basic realm="Login"');
- header('HTTP/1.0 401 Unauthorized');
- echo 'Please login to continue.';
- exit();
- }
- else {
- $user=$_SERVER['PHP_AUTH_USER'];
- $pass=$_SERVER['PHP_AUTH_PW'];
- if ($user == 'Happy' && $pass == '****') { $loggedin=1; }
- }
- if (!$loggedin) {
- die('invalid login');
- }
- $path='/home/holzbit/srcds/orangebox/cstrike/';
- $uri=$_SERVER['REQUEST_URI'];
- if ($_GET['edit']) {
- $_dir=$_GET['edit'];
- if (preg_match('/(.+)\/.+$/',$_dir,$match)) {
- $_GET['dir']=urlencode($match[1]);
- $_dir=$_GET['dir'];
- }
- $edit1=urldecode($_GET['edit']);
- $edit2=$path.$edit1;
- $file=file_get_contents($edit2);
- echo '<form action="/index.php?dir='.$_dir.'" method="POST">';
- echo '<textarea style="width:100%;height:90%;" name="content">';
- echo $file;
- echo '</textarea>';
- echo '<input type="hidden" name="file" value="'.$edit1.'">';
- echo '<div align="center"><input type="submit" value="Save" name="save"></div>';
- echo '</form>';
- }
- if ($_GET['remove']) {
- $remove=urldecode($_GET['remove']);
- $file=$path.$remove;
- if (preg_match('/(.+)\/.+$/',$remove,$match)) {
- $_GET['dir']=urlencode($match[1]);
- }
- unlink($file);
- echo '<center><p>File Deleted</p></center>';
- }
- if ($_GET['rename']) {
- $remove=urldecode($_GET['rename']);
- $file=$path.$remove;
- if (preg_match('/(.+)\/.+$/',$remove,$match)) {
- $_GET['dir']=urlencode($match[1]);
- }
- }
- if ($_POST['dorename']) {
- $_GET['dir']=$_POST['dir'];
- $file=urldecode($_POST['file']);
- $dir=urldecode($_POST['dir']);
- $new=$_POST['rename'];
- rename($path.$file,$path.$dir.'/'.$new);
- echo '<center>File Renamed</center><br>';
- }
- if ($_POST['upload']) {
- $uploads_dir=$path.urldecode($_POST['dir']);
- foreach ($_FILES as $key => $val) {
- $name=$val['name']; $tmp_name=$val['tmp_name']; $size=$val['size'];
- if ($size) {
- move_uploaded_file($tmp_name, "$uploads_dir/$name");
- }
- }
- echo "<Center>Upload Complete</center>";
- }
- if ($_POST['save']) {
- $edit=$path.urldecode($_POST['file']);
- $content=$_POST['content'];
- if (is_file($edit)) {
- file_put_contents($edit, $content);
- echo "<center>File Saved</center>";
- }
- }
- if ($_GET['download']) {
- $file = $path.$_GET['download'];
- $fsize = filesize($file);
- if (!is_file($file)) {
- // File doesn't exist, output error
- die('file not found');
- }
- else {
- // Set headers
- header("Content-Type: binary/octet-stream");
- header("Content-Length: $fsize");
- header('Content-Disposition: attachment; filename='.$file);
- // Read the file from disk
- readfile($file);
- exit();
- }
- }
- if (!$_GET['dir']) { $read_dir=$path; }
- else {
- $dir=urldecode($_GET['dir']);
- if (strstr($dir,"..")) { $dir='/'; }
- if ($dir == '/') { $read_dir=$path; }
- else { $read_dir=$path.$dir; }
- }
- $handle = opendir($read_dir);
- $files=array();
- while ($file = readdir($handle)) {
- $file=strtolower($file);
- if ($file != '.' && $file != '..') {
- if ($dir) {
- $files[$file]=$path.$dir.'/'.$file;
- }
- else {
- $files[$file]=$path.$file;
- }
- }
- }
- if (preg_match('/(.+)\/.+$/',$dir,$match)) {
- $up=urlencode($match[1]);
- echo '<a href="/index.php?dir='.$up.'">.</a><br>';
- }
- echo '<a href="/index.php">..</a><br>';
- asort($files);
- foreach ($files as $file => $_path) {
- if (is_dir($_path)) {
- if ($dir) { $_dir=urlencode($dir.'/'.$file); }
- else { $_dir=$file; }
- echo '<a href="/index.php?dir='.$_dir.'"><b>'.$file.'</b></a><br>';
- }
- else {
- if ($dir) { $_file=urlencode($dir.'/'.$file); }
- else { $_file=$file; }
- echo '<a href="/index.php?download='.$_file.'">'.$file.'</a>';
- echo ' <a href="/index.php?edit='.$_file.'">[Edit]</a>';
- echo ' <a href="/index.php?remove='.$_file.'">[Remove]</a>';
- echo ' <a href="/index.php?rename='.$_file.'">[Rename]</a><br>';
- }
- }
- if ($_GET['rename']) {
- $rename=urldecode($_GET['rename']);
- $file=$path.$rename;
- if (preg_match('/(.+)\/.+$/',$rename,$match)) {
- $_GET['dir']=urlencode($match[1]);
- }
- echo '<form action="'.$uri.'" method="POST">
- <center>
- New file:
- <input type="text" name="rename"><br>
- <input type="submit" name="dorename" value="Rename">
- <input type="hidden" name="file" value="'.$_GET['rename'].'">
- <input type="hidden" name="dir" value="'.$_GET['dir'].'">
- </center>
- </form>
- ';
- exit();
- }
- $dir=$_GET['dir'];
- echo '
- <center>
- <form action="index.php?dir='.$dir.'" method="post" enctype="multipart/form-data">
- Upload these files:<br />
- <input name="file1" type="file" /><br />
- <input name="file2" type="file" /><br />
- <input name="file3" type="file" /><br />
- <input name="file4" type="file" /><br />
- <input name="file5" type="file" /><br />
- <input type="hidden" name="dir" value="'.$dir.'">
- <input type="submit" value="Send files" name="upload"/>
- </form>
- </center>
- ';
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement