HEX
Server: Apache
System: Linux msm5694.mjhst.com 3.10.0-1160.119.1.el7.x86_64 #1 SMP Tue Jun 4 14:43:51 UTC 2024 x86_64
User: camjab_ssh (1000)
PHP: 5.3.29
Disabled: NONE
$ pwd: /home/httpd/html/porn.tw/public_html/controllers/
Upload Files
File: /home/httpd/html/porn.tw/public_html/controllers/control.loadLayout.php
<?php
    $validTemplates = array();
    $validTemplates = scandir($basepath . '/templates');
    unset($validTemplates[0]); //get rid of . and ..
    unset($validTemplates[1]);
    if (in_array($_GET['id'], $validTemplates)) {
        $_SESSION['templatePath'] = $basepath . '/templates/' . $_GET['id'];
        $_SESSION['templateURL'] = $basehttp . '/templates/' . $_GET['id'];
    } else {
        $_SESSION['templatePath'] = $template_path;
        $_SESSION['templateURL'] = $template_url;
    }
    header("Location: $basehttp");exit();
?>
@ Telegram