| Server IP : 195.201.23.43 / Your IP : 3.145.164.105 Web Server : Apache System : Linux webserver2.vercom.be 5.4.0-192-generic #212-Ubuntu SMP Fri Jul 5 09:47:39 UTC 2024 x86_64 User : kdecoratie ( 1041) PHP Version : 7.1.33-63+ubuntu20.04.1+deb.sury.org+1 Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals, MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : OFF | Sudo : ON | Pkexec : ON Directory : /usr/share/usermin/shell/ |
Upload File : |
#!/usr/bin/perl
# index.cgi
# Show the shell user interface
$unsafe_index_cgi = 1;
require './shell-lib.pl';
%access = &get_module_acl();
&ReadParseMime() if ($ENV{'REQUEST_METHOD'} ne 'GET');
&ui_print_unbuffered_header(
undef, $text{'index_title'}, "", undef,
$module_info{'usermin'} ? 0 : 1, 1,
undef, undef, undef,
"onLoad='window.scroll(0, 10000); document.forms[0].cmd.focus()'");
$prevfile = "$module_config_directory/previous.$remote_user";
if ($in{'clearcmds'}) {
&lock_file($prevfile);
unlink($prevfile);
&unlock_file($prevfile);
&webmin_log("clear");
}
else {
open(PREVFILE, "<$prevfile");
chop(@allprevious = <PREVFILE>);
close(PREVFILE);
@previous = &unique(@allprevious);
}
$cmd = $in{'doprev'} ? $in{'pcmd'} : $in{'cmd'};
$chroot = &get_chroot();
if ($in{'pwd'}) {
$pwd = $in{'pwd'};
}
else {
if ($gconfig{'os_type'} eq 'windows') {
# Initial directory is c:/
$pwd = "c:/";
}
else {
# Initial directory is user's home
local @uinfo = getpwnam($access{'user'} || $remote_user);
$pwd = scalar(@uinfo) && -d $uinfo[7] ? $uinfo[7] : "/";
$pwd =~ s/^\Q$chroot\E//g;
}
}
if (!$in{'clear'}) {
# Show the prior history and command input
$history = &un_urlize($in{'history'});
print "<pre>";
if ($history) {
print $history;
}
if ($cmd) {
# Execute the latest command
$fullcmd = $cmd;
chdir($chroot.$pwd);
$cmdmsg = "<b>> ".&html_escape($cmd, 1)."</b>\n";
$history .= $cmdmsg;
print $cmdmsg;
if ($cmd =~ /^cd\s+"([^"]+)"\s*(;?\s*(.*))$/ ||
$cmd =~ /^cd\s+'([^']+)'\s*(;?\s*(.*))$/ ||
$cmd =~ /^cd\s+([^; ]*)\s*(;?\s*(.*))$/) {
$cmd = undef;
$path = $1;
if ($path !~ /^\//) {
$path = $pwd."/".$path;
}
if (!chdir($chroot.$path)) {
$err = &html_escape("$path: $!")."\n";
print $err;
$history .= $err;
}
else {
$cmd = $3 if ($2);
$pwd = &get_current_dir();
$pwd =~ s/^\Q$chroot\E//g;
}
}
if ($cmd) {
local $user = $access{'user'} || $remote_user;
local @uinfo;
&clean_environment() if ($config{'clear_envs'});
delete($ENV{'SCRIPT_NAME'}); # So that called Webmin
# programs get the right
# module, not this one!
if (&supports_users() && $user ne "root") {
$cmd = &command_as_user(
$user, $access{'shellenv'} ? 2 : 0,
"cd $pwd && $cmd");
@uinfo = getpwnam($user);
}
else {
$cmd = "($cmd)";
}
if ($chroot && $uinfo[8] !~ /\/jk_chrootsh$/) {
$cmd = "chroot ".quotemeta($access{'chroot'}).
" sh -c ".quotemeta("cd $pwd ; $cmd");
}
$pid = &open_execute_command(OUTPUT, $cmd, 2, 0);
$out = "";
$trunc = 0;
$total = 0;
$timedout = 0;
$start = time();
$max = $config{'max_runtime'};
while(1) {
$elapsed = time() - $start;
if ($config{'max_runtime'}) {
# Wait for some output, up to timeout
if ($elapsed >= $max) {
$timedout = 1;
last;
}
local $rmask;
vec($rmask, fileno(OUTPUT), 1) = 1;
$sel = select($rmask, undef, undef,
$config{'max_runtime'} - $elapsed);
$elapsed = time() - $start;
if (!$sel || $sel < 0) {
# Select didn't find anything
if ($elapsed >= $max) {
$timedout = 1;
}
last;
}
}
local $buf;
$got = sysread(OUTPUT, $buf, 80);
last if ($got <= 0);
$total += length($buf);
if ($config{'max_output'} &&
length($out) < $config{'max_output'}) {
$out .= $buf;
print &html_escape($buf);
}
else {
$trunc = 1;
}
}
if ($timedout && $pid) {
kill('TERM', $pid);
}
close(OUTPUT);
&reset_environment() if ($config{'clear_envs'});
if ($out && $out !~ /\n$/) {
print "\n";
$out .= "\n";
}
$out = &html_escape($out);
my $msg;
if ($trunc) {
$msg = "<i>".&text('index_trunced',
&nice_size($config{'max_output'}),
&nice_size($total))."</i>\n";
print $msg;
$out .= $msg;
}
if ($timedout) {
$msg = "<i>".&text('index_timedout',
$config{'max_runtime'})."</i>\n";
print $msg;
$out .= $msg;
}
$history .= $out;
}
@previous = ((grep { $_ ne $fullcmd } @previous), $fullcmd);
push(@allprevious, $fullcmd);
&lock_file($prevfile);
&open_tempfile(PREVFILE, ">>$prevfile");
&print_tempfile(PREVFILE, $fullcmd,"\n");
&close_tempfile(PREVFILE);
&unlock_file($prevfile);
&webmin_log("run", undef, undef, { 'cmd' => $fullcmd });
}
print "</pre>";
print &ui_hr() if ($history);
}
print "$text{'index_desc'}<br>\n";
print &ui_form_start("index.cgi", "form-data");
print "<table width=100%><tr>\n";
# Command to run
print "<td width=10%>",&ui_submit($text{'index_ok'}),"</td>\n";
print "<td>",&ui_textbox("cmd", undef, 50, 0, undef,
"style='width:100%'"),"</td>\n";
print "<td align=right width=10%>",&ui_submit($text{'index_clear'}, "clear"),
"</td>\n";
print "</tr>\n";
print &ui_hidden("pwd", $pwd);
print &ui_hidden("history", &urlize($history));
foreach $p (@allprevious) {
print &ui_hidden("previous", $p);
}
# Previous command menu
if (@previous) {
print "<tr>\n";
print "<td width=10%>",&ui_submit($text{'index_pok'}, "doprev"),
"</td>\n";
print "<td>",&ui_select("pcmd", undef,
[ map { [ $_, &html_escape($_) ] } reverse(@previous) ]);
print "<input type=button name=movecmd ",
"value='$text{'index_edit'}' ",
"onClick='cmd.value = pcmd.options[pcmd.selectedIndex].value'>\n";
print "</td>\n";
print "<td align=right width=10%>",
&ui_submit($text{'index_clearcmds'}, "clearcmds"),"</td>\n";
print "</tr>\n";
}
print "</table>\n";
print &ui_form_end();
&ui_print_footer("/", $text{'index'});
Private