ShellBanner
IP Address: 80.252.133.24:443 You: 216.73.216.93
System:Linux MiraNet 3.0.0-14-generic-pae #23-Ubuntu SMP Mon Nov 21 22:07:10 UTC 2011 i686
Software:Apache. PHP/5.3.6-13ubuntu3.10
ID:uid=65534(nobody) gid=65534(nogroup) groups=65534(nogroup)
Safe Mode:OFF
Open_Basedir:OFF
Freespace:27.16 GB of 70.42 GB (38.57%)
MySQL: ON MSSQL: OFF Oracle: OFF PostgreSQL: OFF Curl: OFF Sockets: ON Fetch: OFF Wget: ON Perl: ON
Disabled Functions: pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,

/ http/ guitar.1/ components/ com_mailto/ - drwxr-xr-x

Directory:
Viewing file:     controller.php (3.69 KB)      -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?php
/**
 * @package        Joomla.Site
 * @subpackage    com_mailto
 * @copyright    Copyright (C) 2005 - 2012 Open Source Matters, Inc. All rights reserved.
 * @license        GNU General Public License version 2 or later; see LICENSE.txt
 */

// No direct access
defined('_JEXEC') or die;

jimport('joomla.application.component.controller');

/**
 * @package        Joomla.Site
 * @subpackage    com_mailto
 */
class MailtoController extends JController
{

    /**
     * Show the form so that the user can send the link to someone
     *
     * @access public
     * @since 1.5
     */
    function mailto()
    {
        $session JFactory::getSession();
        $session->set('com_mailto.formtime'time());
        JRequest::setVar('view''mailto');
        $this->display();
    }

    /**
     * Send the message and display a notice
     *
     * @access public
     * @since 1.5
     */
    function send()
    {
        // Check for request forgeries
        JSession::checkToken() or jexit(JText::_('JINVALID_TOKEN'));

        $app    JFactory::getApplication();
        $session JFactory::getSession();
        $db    JFactory::getDbo();

        $timeout $session->get('com_mailto.formtime'0);
        if ($timeout == || time() - $timeout 20) {
            JError::raiseNotice(500JText:: ('COM_MAILTO_EMAIL_NOT_SENT'));
            return $this->mailto();
        }

        $SiteName    $app->getCfg('sitename');
        $MailFrom    $app->getCfg('mailfrom');
        $FromName    $app->getCfg('fromname');

        $link        MailtoHelper::validateHash(JRequest::getCMD('link''''post'));

        // Verify that this is a local link
        if (!$link || !JURI::isInternal($link)) {
            //Non-local url...
            JError::raiseNotice(500JText:: ('COM_MAILTO_EMAIL_NOT_SENT'));
            return $this->mailto();
        }

        // An array of email headers we do not want to allow as input
        $headers = array (    'Content-Type:',
                            'MIME-Version:',
                            'Content-Transfer-Encoding:',
                            'bcc:',
                            'cc:');

        // An array of the input fields to scan for injected headers
        $fields = array(
            'mailto',
            'sender',
            'from',
            'subject',
        );

        /*
         * Here is the meat and potatoes of the header injection test.  We
         * iterate over the array of form input and check for header strings.
         * If we find one, send an unauthorized header and die.
         */
        foreach ($fields as $field)
        {
            foreach ($headers as $header)
            {
                if (strpos($_POST[$field], $header) !== false)
                {
                    JError::raiseError(403'');
                }
            }
        }

        /*
         * Free up memory
         */
        unset ($headers$fields);

        $email                JRequest::getString('mailto''''post');
        $sender                JRequest::getString('sender''''post');
        $from                JRequest::getString('from''''post');
        $subject_default    JText::sprintf('COM_MAILTO_SENT_BY'$sender);
        $subject            JRequest::getString('subject'$subject_default'post');

        // Check for a valid to address
        $error    false;
        if (! $email  || ! JMailHelper::isEmailAddress($email))
        {
            $error    JText::sprintf('COM_MAILTO_EMAIL_INVALID'$email);
            JError::raiseWarning(0$error);
        }

        // Check for a valid from address
        if (! $from || ! JMailHelper::isEmailAddress($from))
        {
            $error    JText::sprintf('COM_MAILTO_EMAIL_INVALID'$from);
            JError::raiseWarning(0$error);
        }

        if ($error)
        {
            return $this->mailto();
        }

        // Build the message to send
        $msg    JText :: _('COM_MAILTO_EMAIL_MSG');
        $body    sprintf($msg$SiteName$sender$from$link);

        // Clean the email data
        $subject JMailHelper::cleanSubject($subject);
        $body     JMailHelper::cleanBody($body);
        $sender     JMailHelper::cleanAddress($sender);

        // Send the email
        if (JFactory::getMailer()->sendMail($from$sender$email$subject$body) !== true)
        {
            JError::raiseNotice(500JText:: ('COM_MAILTO_EMAIL_NOT_SENT'));
            return $this->mailto();
        }

        JRequest::setVar('view''sent');
        $this->display();
    }
}
Command:
Quick Commands:
Upload:
[OK] Max size: 100MB
PHP Filesystem: <@ Ú
Search File:
regexp
Create File:
Overwrite [OK]
View File:
Mass Defacement:
[+] Main Directory: [+] Defacement Url:
LmfaoX Shell - Private Build [BETA] - v0.1 -; Generated: 0.3147 seconds