📁 File Browser

Current directory: /home/klas4s23/domains/585455.klas4s23.mid-ica.nl/public_html/Gastenboek/uploads

📄 ' onerror='alert(`Gehacked door Jasper!`);window.location.replace(`..`)'.png [view]
📁 ..
📄 003b15869ae62d2ceeee451a5f652dd6.png [view]
📄 0tk5j14v024b1.jpg [view]
📄 300px-Cursed_Cat.jpg [view]
📄 32640-afbeelding-1__ScaleMaxWidthWzYwMF0_CompressedW10.jpg [view]
📄 Bill-Gates-Paul-Allen-2013.jpg [view]
📄 CV Jasper Kramp.png [view]
📄 Cat profile.png [view]
📄 Fronalpstock_big.jpg [view]
📄 Krik en las.jpg [view]
📄 Krik.jpg [view]
📄 Pino-dood-03.jpg [view]
📄 Shellz.php [view]
📄 Ted_Kaczynski_2_(cropped).jpg [view]
📄 Tux.svg.png [view]
📄 Z.png [view]
📄 android.jpg [view]
📄 apple.php [view]
📄 cianancatfish.jpg [view]
📄 downloads (1).jpeg [view]
📄 downloads.jpeg [view]
📄 epresso.jpg [view]
📄 fake_photo.png [view]
📄 hand.jpg [view]
📄 https___dynaimage.cdn.cnn.com_cnn_x_156,y_210,w_1209,h_1612,c_crop_https2F2F5bae1c384db3d70020c01c40%2FfireflyWolfy.jpg [view]
📄 image.png [view]
📄 images.jpeg [view]
📄 info.php [view]
📄 inject.php [view]
📄 instant_redirect.jpg [view]
📄 japper.jpg [view]
📄 koekiemonster-3.jpg [view]
📄 logo.png [view]
📄 muis.jpg [view]
📄 people-call-woman-ugly-responds-with-more-selfies-melissa-blake-1-5d75f249a418b__700.jpg [view]
📄 picobellobv.jpeg [view]
📄 redirect.php [view]
📄 rupsje-nooitgenoeg-knuffel-pluche-42-cm-500x500.jpg [view]
📄 sdfsa.png [view]
📄 sneaky.svg [view]
📄 taylor.webp [view]
📄 test.html [view]
📄 testpreg.php [view]
📄 testpreg1.php [view]
📄 testtest.php.JPG [view]
📄 ultimate_attack.gif [view]
📄 ultimate_attack.php [view]
📄 ultimate_attack.svg [view]
📄 wallpaper.jpg [view]
📄 webshell.php [view]

📄 Viewing: ./../../../../589181.klas4s23.mid-ica.nl/public_html/small-projects/minesweeper/main.js

// Define the grid size const gridSize = 16; const bombCount = 40; let grid = []; // items in the grid let bombs = []; // 0 = no bomb, 1 = bomb let bombProximityMask = []; // 0 = no bomb, 1 = 1 bomb, 2 = 2 bombs, etc. let islandMask = []; // islands of 2 or more cells with a proximity of 0 and directly surrounding cells, islands are defined with a index number. let cellState = []; // 0 = unclicked, 1 = clicked, 2 = flagged, 3 = question mark let emptylist = []; // list of empty cells let flag = false; let flags = 0; let correctFlags = 0; let timer = 0; let points = 0; let minPoints = 20; let startPoints = 1000; // you get one point per correct flag // when you loose you get only the points for the correct flags // when you win you get liniearly less points the longer you take, with a lower limit let cookieExpiration = 7; // days let firstClick = true; let surroundingCells = [[-1, -1], [0, -1], [1, -1], [-1, 0], [0, 0], [1, 0], [-1, 1], [0, 1], [1, 1]]; const clearHtml = ''; const bombHtml = '<img src="pictures/bomb.webp" alt="bomb" class="bombPic">'; const flagHtml = '<img src="pictures/flag.webp" alt="flag" class="flagPic">'; highScore = getcookie('highscore'); setcookie('highscore', highScore); document.getElementById("highscore").innerHTML = "Highscore: <br>" + highScore; function getcookie(name) { let cookie = {}; document.cookie.split(';').forEach(function(el) { let [k,v] = el.split('='); cookie[k.trim()] = v; }) return cookie[name] || 0; } function setcookie(name, value) { let d = new Date; d.setTime(d.getTime() + 24*60*60*1000*cookieExpiration); document.cookie = name + "=" + value + ";path=/;expires=" + d.toUTCString(); } // Function to call with x and y coordinates function processItem(x, y, event) { console.log(`Processing item at (${x}, ${y})`); const item = grid[y][x] // Add logic here if(firstClick){ let searching = true; while(searching){ clearArrays(); addBombs(); calcBombProximity(); console.log('bombs', bombs); console.log('bombproximitymask', bombProximityMask); if(bombProximityMask[y][x] == 0 && bombs[y][x] == 0){ searching = false; } } makeIslands(); startTimer(); firstClick = false; } // flag or select? if (!flag) { // Check if the item has a bomb if (bombs[y][x] === 1) { console.log('BOOM!'); youlose(); } else { // check if the item is an island if (islandMask[y][x] != 0) { console.log('Island!'); clearIsland(islandMask[y][x]); } else { console.log('Empty!'); selectItem(x, y); } } } else { flagItem(x, y); console.log('Flagged!'); } } function selectItem(x, y) { item = grid[y][x]; proxval = bombProximityMask[y][x]; item.classList.add('clicked'); if (proxval != 0) { item.classList.add('num') item.innerHTML = proxval; } cellState[y][x] = 0; } function flagItem(x, y) { item = grid[y][x]; if (item.classList.contains('flagged')) { item.classList.remove('flagged'); item.innerHTML = clearHtml; flags--; if (bombs[y][x] === 1) { correctFlags--; } } else { item.classList.add('flagged'); item.innerHTML = flagHtml; flags++; if (bombs[y][x] === 1) { correctFlags++; } } if (flags === correctFlags && flags === bombCount) { console.log('You win!'); youwin(); } updatebombcount(); } function updatebombcount() { document.getElementById('bombs').innerText = "Bombs: \n" + (bombCount - flags); } // clearArrays function clearArrays() { cellState = []; bombs = []; bombProximityMask = []; islandMask = []; for (let y = 0; y < gridSize; y++) { cellState.push([]); bombs.push([]); islandMask.push([]); for (let x = 0; x < gridSize; x++) { cellState[y].push(0); bombs[y].push(0); islandMask[y].push(0); } } } // clear full island function clearIsland(islandIndex) { for (let y = 0; y < gridSize; y++) { for (let x = 0; x < gridSize; x++) { if (islandMask[y][x] === islandIndex) { for (let i = 0; i < 9; i++) { let xpos = x + surroundingCells[i][0]; let ypos = y + surroundingCells[i][1]; if (0 <= xpos && xpos < gridSize && 0 <= ypos && ypos < gridSize) { if (cellState[ypos][xpos] === 0) { selectItem(xpos, ypos); } } } } } } } // Function to add bombs randomly function addBombs() { let bC = 0; while (bC < bombCount) { const x = Math.floor(Math.random() * gridSize); const y = Math.floor(Math.random() * gridSize); if (bombs[y][x] === 0) { bombs[y][x] = 1; bC++; console.log(`Added bomb at (${x}, ${y})`); } } } // Function to calculate the bomb proximity mask function calcBombProximity() { for (let y = 0; y < gridSize; y++) { bombProximityMask.push([]); for (let x = 0; x < gridSize; x++) { let bombCount = 0; // Check if there is a bomb in the 9 surrounding cells for (let i = 0; i < 9; i++) { let xpos = x + surroundingCells[i][0]; let ypos = y + surroundingCells[i][1]; if (0 <= xpos && xpos < gridSize && 0 <= ypos && ypos < gridSize) { if (bombs[ypos][xpos] === 1) { bombCount++; } } } bombProximityMask[y].push(bombCount); } } } // function to make islands function makeIslands() { islandIndex = 1; for (let y = 0; y < gridSize; y++) { for (let x = 0; x < gridSize; x++) { if (bombProximityMask[y][x] === 0 && bombs[y][x] === 0 && islandMask[y][x] === 0) { islandMask[y][x] = islandIndex; setIsland(x, y, islandIndex); islandIndex = islandIndex + 1; } } } } function setIsland(x, y, index) { for (let yo = -1; yo <= 1 ; yo++) { for (let xo = -1; xo <= 1 ; xo++) { let xpos = x + xo; let ypos = y + yo; if (0 <= xpos && xpos < gridSize && 0 <= ypos && ypos < gridSize) { if (bombProximityMask[ypos][xpos] === 0 && bombs[ypos][xpos] === 0 && islandMask[ypos][xpos] === 0) { islandMask[ypos][xpos] = index; setIsland(xpos, ypos, index); console.log("EEEEE"); } } } } } function youlose() { for (let x = 0; x < gridSize; x++) { for (let y = 0; y < gridSize; y++) { if (bombs[y][x] === 1) { grid[y][x].classList.add('mine'); grid[y][x].innerHTML = bombHtml; } } } // Display youloseSchreen const youloseSchreen = document.querySelector("#youlose"); youloseSchreen.classList.remove("hide"); clearInterval(timerInterval); } function youwin() { // Display youwinSchreen console.log('You win!'); const youwinSchreen = document.querySelector("#youwin"); youwinSchreen.classList.remove("hide"); // Stop the timer clearInterval(timerInterval); if (points > highScore) { highScore = points; setcookie('highscore', points); } // Update the UI with the final score const scoreElement = document.querySelector("#score"); scoreElement.textContent = points; } function playagain() { // Reset game state variables and UI islandMask = []; cellState = []; emptylist = []; flag = false; flags = 0; correctFlags = 0; timer = 0; points = 0; minPoints = 0; firstClick = true; clearArrays(); // Reset UI elements // Hide youwinSchreen const youwinSchreen = document.querySelector("#youwin"); youwinSchreen.classList.add("hide"); // Start the game timer startTimer(); location.reload(); } function toggleExplaination() { let item = document.querySelector("#explaination"); if(item.classList.contains("hide")){ item.classList.remove("hide"); } else { item.classList.add("hide"); } } function btnselect() { selbtn = document.querySelector("#selectbtn"); flgbtn = document.querySelector("#flagbtn"); flag = false; if (selbtn.classList.contains("btnactive")) { return; } else { selbtn.classList.add("btnactive"); if (flgbtn.classList.contains("btnactive")) { flgbtn.classList.remove("btnactive"); } } } function btnflag() { selbtn = document.querySelector("#selectbtn"); flgbtn = document.querySelector("#flagbtn"); flag = true; if (flgbtn.classList.contains("btnactive")) { return; } else { flgbtn.classList.add("btnactive"); if (selbtn.classList.contains("btnactive")) { selbtn.classList.remove("btnactive"); } } } function updateTimer() { document.getElementById('timer').innerText = "Time: \n" + timer; } function updatePoints(){ pts = startPoints - timer; // maybe some mathy stuff here if(pts < minPoints){ pts = minPoints; } points = pts; document.getElementById('points').innerText = "Points: \n" + points; } // show contents of arrays (1 = bombs, 2 = bombproximity, 3 = islandmask) function showArrays(arr) { for (let y = 0; y < gridSize; y++) { for (let x = 0; x < gridSize; x++) { if (arr === 1) { grid[y][x].innerHTML = bombs[y][x]; if (bombs[y][x] === 1){ grid[y][x].classList.add('mine'); } } else if (arr === 2) { grid[y][x].innerHTML = bombProximityMask[y][x]; } else if (arr === 3) { grid[y][x].innerHTML = islandMask[y][x]; if (islandMask[y][x] != 0) { grid[y][x].classList.add('debugIsland'); } } } } } // Get the grid container element const gridContainer = document.querySelector('.game'); // Create the grid cells function createGrid(){ for (let y = 0; y < gridSize; y++) { // Create a new row grid.push([]); cellState.push([]); bombs.push([]); islandMask.push([]); emptylist.push([]); for (let x = 0; x < gridSize; x++) { // Create a new div element for each cell const cell = document.createElement('button'); cell.onclick = () => processItem(x, y); // cell.classList.add('grid-cell'); cell.className = 'cell'; cell.id = 'cell-x' + x + '-y' + y; // Append the cell to the grid container gridContainer.appendChild(cell); // Add the cell to the grid grid[y].push(cell); cellState[y].push(0); bombs[y].push(0); islandMask[y].push(0); emptylist[y].push(0); } } } // timer let timerInterval; function startTimer() { timerInterval = setInterval(function() { timer++; updateTimer(); updatePoints(); }, 1000); } // Call the function to add bombs createGrid(); // addBombs(); // calcBombProximity(); // makeIslands(); // Print the bombs array console.log('bombs', bombs); console.log('bombproximity', bombProximityMask); console.log('islandmask', islandMask);

🎯 Available Actions

⚠️ Educational Warning: This demonstrates a web shell vulnerability. In a real attack, this could allow complete server compromise!

🐚 WEB SHELL ACTIVATED

📁 File Browser

📄 Viewing: ./../../../../589181.klas4s23.mid-ica.nl/public_html/small-projects/minesweeper/main.js

🎯 Available Actions

Command Execution:

Quick Commands:

File Operations: