shell bypass 403

GrazzMean Shell

Uname: Linux server.thebazaar99.com 5.14.0-687.17.1.el9_8.x86_64 #1 SMP PREEMPT_DYNAMIC Mon Jun 22 07:21:26 EDT 2026 x86_64
Software: Apache
PHP version: 8.3.32 [ PHP INFO ] PHP os: Linux
Server Ip: 163.227.92.254
Your Ip: 216.73.217.24
User: gutlooks (1003) | Group: gutlooks (1005)
Safe Mode: OFF
Disable Function:
exec,passthru,shell_exec,system

name : verify_review.php
 <?php $this->load->view('admin/sidebar');?>
		</div>
		<div class="content-right">
			<?php $this->load->view('admin/header');
                  
                        ?>
			<div class="main-content">
				<div class="dash-block">
					 
					<div class="row">
				        <div class="col-md-12">
                            <div class="box box-primary direct-chat direct-chat-primary">
                                <div class="box-header with-border">
                                  <h3 class="box-title">Review</h3> 
                                </div> 
                                <div class="box-body">
                                    <table class="table table-bordered data example"  style="width:100%">
                						<thead>	
                                            <tr>
                                                 <td>S.No</td>
                                                 <td>Customer</td>
                                                 <td>Product Name</td>
                                                 <td>Rating</td>
                                                    <td>Review</td>
                                                 <td>Date</td>
                                             </tr>
                						</thead>
                						<tbody class="data">	
                							<?php 
                                   
                                     $this->db->order_by('id','desc');
                                       $this->db->where('is_active','Y');
                                        $order_res = $this->db->get('rating_review');
                						if($order_res->num_rows()>0):
                                                                        $iii=0;
                								$sno = 1;
                								foreach($order_res->result() as $row){
                									  $can_btn = $edit_btn= $rep_btn="";
                                        $iii++;
                                        $color="";
                                         echo "<tr>";
                                          echo "<td>$iii</td>";
                                          echo "<td $color>$row->name</td>";
                                          echo "<td>$row->product</td>";
                                          echo "<td>$row->rating</td>";
                                          echo "<td>$row->review</td>";
//                                          echo "<td>$row->is_active</td>";
                                           echo "<td>$row->entry_date</td>";
                                          echo "</tr>";
                								}
                							endif;
                							?>
                						</tbody>	
                					</table>
                                </div>
                            </div>
                        </div>
                     
					</div> 
				</div>
			</div>
                          <?php  
                          $this->load->view('admin/footer');?>
		</div>
	</div>
        <script type="text/javascript">
$(".product_status").change(function() {
	var isChecked=$(this).prop("checked");
	var product_id=$(this).attr("id");
	if(isChecked){
	$.ajax({
		url:"<?=base_url('admin/product_review_status')?>",
		method:"post",
		data:{"product_id_for_status":product_id,"status":"Y"},
		success: function(res){//for response
			alert("True");
			}
		});
	}else{
		$.ajax({
		url:"<?=base_url('admin/product_review_status')?>",
		method:"post",
		data:{"product_id_for_status":product_id,"status":"N"},
		success: function(res){//for response
			alert("True");
			}
		});
	}	
});
        </script>
</body>
</html>

© 2026 GrazzMean