JEMBOT MAWOT Bypass Shell
<?php
/**
* @package AcyMailing for Joomla!
* @version 4.9.0
* @author acyba.com
* @copyright (C) 2009-2015 ACYBA S.A.R.L. All rights reserved.
* @license GNU/GPLv3 http://www.gnu.org/licenses/gpl-3.0.html
*/
defined('_JEXEC') or die('Restricted access');
?><div id="acymodifyform">
<?php if($this->values->show_page_heading){ ?>
<h1 class="contentheading<?php echo $this->values->suffix; ?>"><?php echo $this->values->page_heading; ?></h1>
<?php } ?>
<?php if(!empty($this->introtext)){ echo '<span class="acymailing_introtext">'.$this->introtext.'</span>'; } ?>
<form action="<?php echo JRoute::_( 'index.php' );?>" method="post" name="adminForm" id="adminForm" <?php if(!empty($this->fieldsClass->formoption)) echo $this->fieldsClass->formoption; ?> >
<fieldset class="adminform acy_user_info">
<legend><span><?php echo JText::_( 'USER_INFORMATIONS' ); ?></span></legend>
<div width="100%" id="acyuserinfo">
<?php if(acymailing_level(3)){
if(!empty($this->subscriber->email)) $this->fieldsClass->currentUser = $this->subscriber;
$tmpCatId = array();
$tmpCatTag = array();
foreach($this->extraFields as $fieldName => $oneExtraField) {
if($oneExtraField->type == 'category'){
if(empty($oneExtraField->fieldcat) && !empty($tmpCatId)){
while(!empty($tmpCatId)){
echo '</'.end($tmpCatTag).'>';
array_pop($tmpCatId);
array_pop($tmpCatTag);
}
}
$tmpCatId[] = $oneExtraField->fieldid;
$tmpCatTag[] = $oneExtraField->options['fieldcattag'];
echo '<'.end($tmpCatTag).' class="fieldCategory '.$oneExtraField->options['fieldcatclass'].'" id="tr'.$oneExtraField->namekey.'">';
if(end($tmpCatTag) == 'fieldset') echo '<legend>'.$oneExtraField->fieldname.'</legend>';
}else{
if(in_array($oneExtraField->fieldcat, $tmpCatId) || empty($oneExtraField->fieldcat)){
while(!empty($tmpCatId) && $oneExtraField->fieldcat != end($tmpCatId)){
echo '</'.end($tmpCatTag).'>';
array_pop($tmpCatId);
array_pop($tmpCatTag);
}
}
echo '<div id="tr'.$fieldName.'"><div width="150" class="key"><label>'.$this->fieldsClass->getFieldName($oneExtraField).'</label></div>';
echo '<div class="inputVal">';
if(in_array($fieldName,array('name','email')) AND !empty($this->subscriber->userid)){echo $this->subscriber->$fieldName; }
else{echo $this->fieldsClass->display($oneExtraField,@$this->subscriber->$fieldName,'data[subscriber]['.$fieldName.']'); }
echo '</div></div>';
}
}
$lastVal = end($tmpCatId);
while(!empty($lastVal)){
echo '</'.end($tmpCatTag).'>';
array_pop($tmpCatId);
array_pop($tmpCatTag);
$lastVal = end($tmpCatId);
}
}else{
if(!empty($this->fieldsToDisplay) && (strpos($this->fieldsToDisplay, 'name') !== false || strpos($this->fieldsToDisplay, 'default') !== false || strpos($this->fieldsToDisplay, 'all') !== false)){ ?>
<div id="trname">
<div width="150" class="key">
<label for="field_name"><?php echo JText::_( 'JOOMEXT_NAME' ); ?></label>
</div>
<div>
<?php
if(empty($this->subscriber->userid)){
echo '<input type="text" name="data[subscriber][name]" id="field_name" class="inputbox" style="width:200px;" value="'.$this->escape(@$this->subscriber->name).'" />';
}else{
echo $this->subscriber->name;
}
?>
</div>
</div>
<?php }
if(!empty($this->fieldsToDisplay) && (strpos($this->fieldsToDisplay, 'email') !== false || strpos($this->fieldsToDisplay, 'default') !== false || strpos($this->fieldsToDisplay, 'all') !== false)){ ?>
<div id="tremail">
<div class="key">
<label for="field_email"><?php echo JText::_( 'JOOMEXT_EMAIL' ); ?></label>
</div>
<div>
<?php
if(empty($this->subscriber->userid)){
echo '<input class="inputbox" type="text" name="data[subscriber][email]" id="field_email" style="width:200px;" value="'.$this->escape(@$this->subscriber->email).'" />';
}else{
echo $this->subscriber->email;
}
?>
</div>
</div>
<?php }
if(!empty($this->fieldsToDisplay) && (strpos($this->fieldsToDisplay, 'html') !== false || strpos($this->fieldsToDisplay, 'default') !== false || strpos($this->fieldsToDisplay, 'all') !== false)){ ?>
<div id="trhtml">
<div class="key">
<label for="field_email"><?php echo JText::_( 'RECEIVE' ); ?></label>
</div>
<div>
<?php echo JHTML::_('acyselect.booleanlist', "data[subscriber][html]" , '',$this->subscriber->html,JText::_('HTML'),JText::_('JOOMEXT_TEXT'),'user_html'); ?>
</div>
</div>
<?php }
}
?>
</div>
</fieldset>
<?php if($this->displayLists){?>
<fieldset class="adminform acy_subscription_list">
<legend><span><?php echo JText::_( 'SUBSCRIPTION' ); ?></span></legend>
<div width="100%" id="acyusersubscription">
<div nowrap="nowrap" width="150" class="subscriptionTitle"><?php echo JText::_( 'SUBSCRIBE' );?></div>
<?php
$k = 0;
foreach($this->subscription as $row){
if(empty($row->published) OR !$row->visible) continue;
$listClass = 'acy_list_status_' . str_replace('-','m',(int) @$row->status);
?>
<div class="<?php echo "row$k $listClass"; ?>">
<div align="center" nowrap="nowrap" valign="top" class="acystatus">
<span><?php echo $this->status->display("data[listsub][".$row->listid."][status]",@$row->status); ?></span>
</div>
<div valign="top" class="acyListInfo">
<div class="list_name"><?php echo $row->name ?></div>
<div class="list_description"><?php echo $row->description ?></div>
</div>
</div>
<?php
$k = 1 - $k;
} ?>
</div>
</fieldset>
<?php } ?>
<br />
<input type="hidden" name="option" value="<?php echo ACYMAILING_COMPONENT; ?>" />
<input type="hidden" name="task" value="savechanges" />
<input type="hidden" name="ctrl" value="user" />
<?php
$app = JFactory::getApplication();
$menus = $app->getMenu();
if(!empty($menus)) $current = $menus->getActive();
if(!empty($current)) echo '<input type="hidden" name="acy_source" value="menu_'.$current->id.'" />';
echo JHTML::_( 'form.token' ); ?>
<input type="hidden" name="subid" value="<?php echo $this->subscriber->subid; ?>" />
<?php if(JRequest::getCmd('tmpl') == 'component'){ ?><input type="hidden" name="tmpl" value="component" /><?php } ?>
<input type="hidden" name="key" value="<?php echo $this->subscriber->key; ?>" />
<p class="acymodifybutton">
<input class="button btn btn-primary" type="submit" onclick="return checkChangeForm();" value="<?php echo empty($this->subscriber->subid) ? $this->escape(JText::_('SUBSCRIBE')) : $this->escape(JText::_('SAVE_CHANGES'))?>"/>
</p>
</form>
<?php if(!empty($this->finaltext)){ echo '<span class="acymailing_finaltext">'.$this->finaltext.'</span>'; } ?>
</div>
xxxxx1.0, XXX xxxx