Linux sothorn202 5.15.0-161-generic #171-Ubuntu SMP Sat Oct 11 08:17:01 UTC 2025 x86_64
Apache/2.4.52 (Ubuntu)
: 202.28.82.202 | : 216.73.216.9
pkexec version 0.105
Cant Read [ /etc/named.conf ]
iqtd
RED EYES BYPASS SHELL!
Terminal
Auto Root
Adminer
Backdoor Destroyer
Kernel Exploit
Lock Shell
Lock File
Create User
+ Create Folder
+ Create File
/
home /
lifelonglearn /
work_181165 /
API /
Form /
[ HOME SHELL ]
NAME
SIZE
PERMISSION
ACTION
TestFetch copy.php
3.92
KB
-rwxr-xr-x
TestFetch.php
3.91
KB
-rwxr-xr-x
fetch.php
2.92
KB
-rwxr-xr-x
saveTest.php
4.74
KB
-rwxr-xr-x
Delete
Unzip
Zip
${this.title}
Close
Code Editor : saveTest.php
<?php try { require_once("../../server/server.php"); if ($_SERVER["REQUEST_METHOD"] == "POST") { $data = json_decode(file_get_contents("php://input"), true); if ($data !== "" && count($data) !== 0) { if (isset($data["AuthToken"]) && $data["AuthToken"] !== "") { $Auth = $data["AuthToken"]; $id = $_SESSION["lms-ID"]; $db->query("TRUNCATE TABLE test"); $db->query("TRUNCATE TABLE TestUnit"); $db->query("TRUNCATE TABLE question"); $query = $db->prepare("SELECT AuthToken FROM user where ID = '$id'"); if ($query->execute()) { $query = $query->fetch(PDO::FETCH_ASSOC); if (password_verify($Auth, $query["AuthToken"])) { $title = $data["title"]; $detail = $data["detail"]; $point = $data["point"]; $Arr = $data["Arr"]; $date = date("Y-m-d H:i"); if ($data["answer"] == true) { $showans = 200; }else { $showans = 405; } $query = $db->prepare("INSERT INTO test (name,detail,answer,point,date) value ('$title','$detail','$showans','$point','$date')"); if ($query->execute()) { $idtest = $db->lastInsertId(); for ($i = 0; $i < count($Arr); $i++) { $choice = $Arr[$i]["choice"]; $question = $Arr[$i]["question"]; $make = $Arr[$i]["make"]; $index = $db->query("SELECT role FROM TestUnit ORDER BY 'role' DESC limit 1")->fetch(PDO::FETCH_ASSOC); if (count($index) == 0 ){ $index = 0; }else { $index = $index["role"] +1; } if ($db->query("INSERT INTO TestUnit (name,make,role,testID) VALUE ('$question','$make','$index','$idtest')")) { $chID = $db->lastInsertId(); for ($c = 0; $c < count($choice); $c++) { $val = $choice[$c]["value"]; $answer = $choice[$c]["answer"]; if ($answer == 1) { $answer = 200; }else { $answer = 405; } $db->query("INSERT INTO question (name,answer,testID) VALUE ('$question','$answer','$chID')"); } } else { $db->query("DELETE FROM test where ID = '$idtest'"); http_response_code(405); echo json_encode(array("status" => false, "message" => "Server Error!!")); } } http_response_code(200); echo json_encode(array("status" => true, "message" => "success")); exit; } else { http_response_code(405); echo json_encode(array("status" => false, "message" => "Server Error!!")); exit; } } else { http_response_code(405); echo json_encode(array("status" => false, "message" => "AuthToken Invalid!!")); exit; } } else { http_response_code(405); echo json_encode(array("status" => false, "message" => "Server Error!!")); exit; } } } else { http_response_code(405); echo json_encode(array("status" => false, "message" => "Data exist!!")); exit; } } else { http_response_code(405); echo json_encode(array("status" => false, "message" => "Request method Not accept!!")); exit; } } catch (Exception $e) { http_response_code(405); echo json_encode(array("status" => false, "message" => $e->getMessage())); exit; }
Close