This repository has been archived by the owner on Apr 18, 2023. It is now read-only.
/
indexer65418662.php
95 lines (84 loc) · 3.51 KB
/
indexer65418662.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
<?php
require($_SERVER['DOCUMENT_ROOT'] . "/indexer/config/settings.php");
session_start();
if(!isset($_SESSION['authenticated'])){
$_SESSION['authenticated'] = false;
echo "nope nope nope";
}
$current_url = explode("#", $_POST['url'])[0];
if($current_url!="/"){
//path to directory to scan
$directory = explode("/",explode("http://",$current_url)[1])[1] . "/";
$needPassword = false;
foreach(getProtectedFolders() as $folder){
if($folder . "/" == "/" . $directory){
$needPassword = true;
}
}
$permissionToView = false;
if($needPassword && isset($_SESSION['authenticated']) && !$_SESSION['authenticated']){
if($_POST['pass'] == getServerPassword()){
$_SESSION['authenticated'] = true;
$permissionToView = true;
}
}
else if($_SESSION['authenticated']){
$permissionToView = true;
}
if($permissionToView){
if($directory == explode("/",getUploadDirectory())[1] . "/"){
echo "<h3>This content does not necessarily reflect the views and opinions of the proprietor.</h3>";
}
for ($i = 2;$i < count(explode("/",explode("http://",$current_url)[1]));$i++) {
if (explode("/",explode("http://",$current_url)[1])[$i] != "#"){
$directory .= explode("/",explode("http://",$current_url)[1])[$i];
//if ($i < count(explode("/",explode("http://",$current_url)[1]))) {
$directory .= "/";
//}
}
}
//get all folders in directory.
$folders = glob(getServerRoot() . $directory . "*");
//print ../ to go up directory
echo "<a href='../'>../</a> <br /><br />";
//print each folder name
foreach($folders as $folder)
{
if(is_dir($folder)){
$folder = explode(getServerRoot() . $directory, $folder)[1];
echo "<a href='".$folder."'>".$folder."/</a><br />";
}
}
echo "<br />";
//get files in directory.
$files = glob(getServerRoot() . $directory . "*.*");
//print each file name
foreach($files as $file)
{
if($file!="index.php"){
$file = explode(getServerRoot() . $directory, $file)[1];
$extension = explode(".", $file);
if($extension[1] != "preview"){
if(file_exists(getServerRoot() . $directory . $extension[0] . ".preview.jpg")){
echo "<a href='#' onclick=\"updateFile('".$extension[0].".preview.jpg','".$extension[1]."');\" onmouseover='genQRcode(\"" . $current_url . $file . "\")' onmouseout='removeQRcode()'>".$file."</a><br />";
}
else{
if($directory == "public//"){
echo "<a href='#' onclick=\"updateFile('".$file."');\" onmouseover='genQRcode(\"" . $current_url . $file . "\")' onmouseout='removeQRcode()'>" . $file . "</a><a href='#'><span id='" . $file . "-btn' class='deleteBtn' onclick='confirmDelete(this);'></span></a><span id='" . $file . "' class='confirmDeleteControls'> <a href='#' onclick='cancelDelete(this.parentNode);'>no</a> / <a href='#' onclick='deleteFile(\"/indexer/deletePublicFile.php?url=" . explode("/",$file)[0] . "\")'>yes</a></span><br />";
}
else{
echo "<a href='#' onclick=\"updateFile('".$file."');\" onmouseover='genQRcode(\"" . $current_url . $file . "\")' onmouseout='removeQRcode()'>" . $file . "</a><br />";
}
}
}
}
}
}
else{
echo "<h3>This content has been hidden from you by the proprietor. If you need a password, you may request one from <a href='mailto:webmaster@" . explode("/",$_POST['url'])[2] . "'>the proprietor</a>.</h3>";
}
}
else{
echo "<span style='font-size:100px'>Ahhhh... you one tricky guy</span> <span style='font-size:12px'>(or girl)</span>";
}
?>