..show you how to make a multi bridge between THC_DO, THC_SS and THC_II and keep track of the output in realtime using iframes. So what exactly are we going to do? First of all if you..
Mister LG can create upload forms and test targets on file upload vulnerabilities
<?php
/* Edit the application structure
Author: Remco Kouw
Site: http://www.hacksuite.com
Last Edit: 04-03-2015
*/
if(!defined('IN_SCRIPT')){
exit;
}
$bForm = true;
if(isset($_GET['callback'])){
if(!function_exists("GetFilesByDirectory")){
include_once("../Functions/getfilebydir.php");
}
$aFiles = GetFilesByDirectory($_PATHS['root']."/Modules/thc_ss/CALLBACKS");
$sFile = "";
for($x=0;$x<count($aFiles);$x++){
@include_once("Modules/thc_ss/CALLBACKS/".$aFiles[$x]);
if($_CBACKD[0]==$_GET['callback']){
$sFile = $_PATHS['root']."/Modules/thc_ss/CALLBACKS/".$_CBACKD[1];
break;
}
}
// edit app setup or file
if($sFile==""){
$bForm = false;
}
}
elseif(isset($_GET['mod'])){
// edit module setup or file
$sFile = $_PATHS['root']."/Modules/".$_GET['mod']."/setup.php";
if(!is_file($sFile)){
$bForm = false;
}
}
elseif(isset($_GET['apps'])){
// edit callback directly
if(false!=($iExtra = @count($aExtra))){
for($x=0;$x<$iExtra;$x++){
if($aExtra[$x][0]==$_GET['apps']){
$sFile = $aExtra[$x][1]."/setup.php";
break;
}
}
}
}
else{
// unknown tool
$bForm = false;
}
if($bForm){
if(!function_exists("GetFileData")){
include_once($_PATHS['functions_root']."/get_file_data.php");
}
$sData = GetFileData($sFile);
$sCode .= " <form class=\"developform\">\n";
$sCode .= " <div class=\"emboss borderr5 border1pxtrans pad5 edgeglow overflw\">\n";
$sCode .= " <div class=\"embosshdrnocenter border1pxtrans pad10\">edit setup</div>\n";
$sCode .= " <div class=\"cc_record\">\n";
$sCode .= " <div class=\"flt pad3 w700\"><small>".$sFile."</small><br /><input type=\"hidden\" name=\"sEditFile\" value=\"".$sFile."\" /><textarea rows=\"15\" cols=\"80\" name=\"sNewData\">".$sData."</textarea><br /><input type=\"submit\" name=\"submit\" value=\"Edit\" /></div>\n";
$sCode .= " </div>\n";
$sCode .= " <div class=\"clear\"></div>\n";
$sCode .= " </div>\n";
$sCode .= " </form>\n";
}
else{
$sCode = "<div class=\"spacingmsg\">".$_CONTEXT['result_headers']['error']."Specified file doesn't exist<p><a href=\"development.php?action=list\">[ back ]</a></p></div>\n";
}
?>