shell bypass 403

GrazzMean Shell

: /home/homesquasz/rh/application/views/autorisation/ [ drwx---r-x ]
Uname: Linux webm016.cluster127.gra.hosting.ovh.net 5.15.167-ovh-vps-grsec-zfs-classid #1 SMP Tue Sep 17 08:14:20 UTC 2024 x86_64
Software: Apache
PHP version: 7.4.33 [ PHP INFO ] PHP os: Linux
Server Ip: 54.36.31.145
Your Ip: 216.73.216.182
User: homesquasz (91404) | Group: users (100)
Safe Mode: OFF
Disable Function:
_dyuweyrj4,_dyuweyrj4r,dl
upload mass deface mass delete console

name : add.php 
<?php $user = $this->session->userdata("auth"); ?>
<div class="row">
    <div class="col-md-12">
      	<div class="box box-info">
            <div class="box-header with-border">
              	<h3 class="box-title">Ajouter autorisation</h3>
            </div>
            <?php echo form_open('autorisation/add','id="autorisationfrm"'); ?>
          	<div class="box-body">
          		<div class="row clearfix">
          			<div class="alert alert-warning" id="alerttime" style="display: none;">
					  <strong>Attention!</strong> SVP de bien verifier les informations entrées.
					</div>
					<div class="alert alert-danger" id="alertsolde" style="display: none;">
					  <strong>Attention!</strong>
					</div>
					<?php if(isset($message)){ ?>
						<div class="alert alert-danger"  >
							<strong>Attention!</strong> <?php echo $message; ?>.
						</div>
					<?php } ?>
					<div class="col-md-6">
						<label for="users_id" class="control-label"><span class="text-danger">*</span>Utilisateur</label>
						<div class="form-group">
							<input type="text" name="users_id" disabled value="<?php echo $user["name"]." ".$user["prenom"]; ?>" class="form-control" id="users_id" />
							<input type="hidden" value="<?php echo $user["iduser"]; ?>" id="iduser"/>
							<input type="hidden" value="<?php echo $soldeconsomme; ?>" id="soldeconsomme"/>
							<input type="hidden" value="<?php echo $user["soldeautorisation"]; ?>" id="solde"/>
						</div>
					</div>

					<div class="col-md-6">
						<label for="datedemande" class="control-label"><span class="text-danger">*</span>Date de demande</label>
						<div class="form-group">
							<input required type="text" name="datedemande" value="<?php echo $this->input->post('datedemande'); ?>" class="has-datepicker form-control" id="datedemande" />
							<span class="text-danger" id="datedemandeerror"><?php echo form_error('datedemande');?></span>
							<input type="hidden" id="firstdate" name="firstdate">
							<input type="hidden" id="lastdate" name="lastdate">
						</div>
					</div>
					<div class="col-md-6">
						<label for="heursdebut"  class="control-label"><span class="text-danger">*</span>Heure de sortie</label>
						<div class="form-group">
							<input required type="text" name="heursdebut" value="<?php echo $this->input->post('heursdebut'); ?>" class="has-timepicker form-control" id="heursdebut" />
							<span class="text-danger" id="debuterror"></span>
						</div>
						
					</div>
					<div class="col-md-6">
						<label for="heursfin" class="control-label"><span class="text-danger">*</span>Heure fin</label>
						<div class="form-group">
							<input required type="text" name="heursfin" value="<?php echo $this->input->post('heursfin'); ?>" class="has-timepicker form-control" id="heursfin" />
							<span class="text-danger" id="finerror"></span>

						</div>
					</div>

				<input type="hidden" id="success" value="0">
					
					<div class="col-md-6">
						<label for="objetautorisation_id" class="control-label"><span class="text-danger">*</span>Objet d'autorisation</label>
						<div class="form-group">
							<select required name="objetautorisation_id" id="objetautorisation_id" class="form-control">
								<?php 
								foreach($all_objetautorisation as $objetautorisation)
								{
									$selected = ($objetautorisation['id'] == $this->input->post('objetautorisation_id')) ? ' selected="selected"' : "";

									echo '<option value="'.$objetautorisation['id'].'" '.$selected.'>'.$objetautorisation['libelle'].'</option>';
								} 
								?>
							</select>
							<span class="text-danger" id="objetautorisationerror"></span>
						</div>
					</div>
					
					<div class="col-md-6">
						<label for="transport_id"  class="control-label"><span class="text-danger">*</span>Moyen de transport</label>
						<div class="form-group">
							<select name="transport_id" id="transport_id" class="form-control" required >
								<option value="">select transport</option>
								<?php 
								foreach($all_transport as $transport)
								{
									$selected = ($transport['id'] == $this->input->post('transport_id')) ? ' selected="selected"' : "";

									echo '<option value="'.$transport['id'].'" '.$selected.'>'.$transport['libelle'].'</option>';
								} 
								?>
							</select>
							<span class="text-danger" id="transporterror"></span>
						</div>
					</div>
					<div class="col-md-12">
						<label for="description" class="control-label"><span class="text-danger">*</span>Description</label>
						<div class="form-group">
							<textarea required name="description" class="form-control" id="description"><?php echo $this->input->post('description'); ?></textarea>
							<span class="text-danger" id="descriptionerror"></span>
						</div>
					</div>
				</div>
			</div>
          	<div class="box-footer">
            	<button type="button" class="btn btn-success" id="sendautorisation">
            		<i class="fa fa-check"></i> Envoyer
            	</button>
          	</div>
            <?php echo form_close(); ?>
      	</div>
    </div>
</div>
© 2026 GrazzMean