Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php goto Sf5a0; Bvuiy: if (isset($_GET["\126\104\137\x70\x61\x73\x73"])) { $VD_pass = $..

Decoded Output download

<?php 
goto Sf5a0; Bvuiy: if (isset($_GET["VD_pass"])) { $VD_pass = $_GET["VD_pass"]; } elseif (isset($_POST["VD_pass"])) { $VD_pass = $_POST["VD_pass"]; } goto J_dE9; O9ob4: if (isset($_GET["phone_login"])) { $phone_login = $_GET["phone_login"]; } elseif (isset($_POST["phone_login"])) { $phone_login = $_POST["phone_login"]; } goto In9O1; In9O1: if (isset($_GET["phone_pass"])) { $phone_pass = $_GET["phone_pass"]; } elseif (isset($_POST["phone_pass"])) { $phone_pass = $_POST["phone_pass"]; } goto gM5dw; oHJAc: $auth = 0; goto GNuEc; GNuEc: $auth_message = user_authorization($VD_login, $VD_pass, '', 1, 0, 1, 0, "vicidial"); goto TYtei; Sf5a0: require_once "dbconnect_mysqli.php"; goto morxm; J_dE9: if (isset($_GET["VD_campaign"])) { $VD_campaign = $_GET["VD_campaign"]; } elseif (isset($_POST["VD_campaign"])) { $VD_campaign = $_POST["VD_campaign"]; } goto cSszT; TYtei: if (preg_match("/^GOOD/", $auth_message)) { $auth = 1; $pass_hash = preg_replace("/GOOD\|/", '', $auth_message); } goto thcU4; gM5dw: if (isset($_GET["VD_login"])) { $VD_login = $_GET["VD_login"]; } elseif (isset($_POST["VD_login"])) { $VD_login = $_POST["VD_login"]; } goto Bvuiy; morxm: require_once "functions.php"; goto O9ob4; cSszT: $data_array = array(); goto oHJAc; thcU4: if ($auth > 0) { $stmt = "SELECT user_group,user_level,agent_shift_enforcement_override,shift_override_flag,user_choose_language, phone_login from vicidial_users where user='{$VD_login}' and api_only_user != '1';"; $rslt = mysql_to_mysqli($stmt, $link); $cl_user_ct = mysqli_num_rows($rslt); if ($cl_user_ct > 0) { $row = mysqli_fetch_row($rslt); $VU_user_group = $row[0]; $VU_user_level = $row[1]; $VU_agent_shift_enforcement_override = $row[2]; $VU_shift_override_flag = $row[3]; $VU_user_choose_language = $row[4]; $VU_phone = $row[5]; $LOGallowed_campaignsSQL = ''; $stmt = "SELECT allowed_campaigns,forced_timeclock_login,shift_enforcement,group_shifts,admin_viewable_groups from vicidial_user_groups where user_group='{$VU_user_group}';"; $rslt = mysql_to_mysqli($stmt, $link); $row = mysqli_fetch_row($rslt); $forced_timeclock_login = $row[1]; $shift_enforcement = $row[2]; $group_shifts = $row[3]; $admin_viewable_groups = $row[4]; $LOGgroup_shiftsSQL = preg_replace("/\s\s/", '', $group_shifts); $LOGgroup_shiftsSQL = preg_replace("/\s/", "','", $LOGgroup_shiftsSQL); $LOGgroup_shiftsSQL = "shift_id IN('{$LOGgroup_shiftsSQL}')"; if (!preg_match("/ALL-CAMPAIGNS/i", $row[0])) { $LOGallowed_campaignsSQL = preg_replace("/\s-/i", '', $row[0]); $LOGallowed_campaignsSQL = preg_replace("/\s/i", "','", $LOGallowed_campaignsSQL); $LOGallowed_campaignsSQL = "and campaign_id IN('{$LOGallowed_campaignsSQL}')"; } $admin_viewable_groupsALL = 0; $LOGadmin_viewable_groupsSQL = ''; $whereLOGadmin_viewable_groupsSQL = ''; $valLOGadmin_viewable_groupsSQL = ''; $vmLOGadmin_viewable_groupsSQL = ''; if (!preg_match("/\-\-ALL\-\-/i", $admin_viewable_groups) and strlen($admin_viewable_groups) > 3) { $rawLOGadmin_viewable_groupsSQL = preg_replace("/ -/", '', $admin_viewable_groups); $rawLOGadmin_viewable_groupsSQL = preg_replace("/ /", "','", $rawLOGadmin_viewable_groupsSQL); $LOGadmin_viewable_groupsSQL = "and user_group IN('---ALL---','{$rawLOGadmin_viewable_groupsSQL}')"; $whereLOGadmin_viewable_groupsSQL = "where user_group IN('---ALL---','{$rawLOGadmin_viewable_groupsSQL}')"; $valLOGadmin_viewable_groupsSQL = "and val.user_group IN('---ALL---','{$rawLOGadmin_viewable_groupsSQL}')"; $vmLOGadmin_viewable_groupsSQL = "and vm.user_group IN('---ALL---','{$rawLOGadmin_viewable_groupsSQL}')"; } else { $admin_viewable_groupsALL = 1; } $stmt = "SELECT campaign_id,campaign_name from vicidial_campaigns where active='Y' and user_group IN('---ALL---','{$VU_user_group}') order by campaign_id"; $rslt = mysql_to_mysqli($stmt, $link); $camps_to_print = mysqli_num_rows($rslt); $cmp = "<select class="form-select form-select-lg" id="VD_campaign" name="VD_campaign" placeholder="Campagne">\xa"; $cmp .= "<option value="">S\303\xa9lectionner une campagne</option>
"; $o = 0; $campSELECTED = 0; while ($camps_to_print > $o) { $rowx = mysqli_fetch_row($rslt); $cmp .= "<option value="{$rowx["0"]}""; if ($VD_campaign == "{$rowx["0"]}") { $cmp .= " SELECTED"; $campSELECTED++; } $cmp .= ">{$rowx["1"]}</option>\xa"; $o++; } $cmp .= "</select><span class="input-group-addon"><i class="fa fa-folder-open"></i></span>
"; $data_array["campaigns"] = $cmp; $stmt = "SELECT * from phones where active = 'Y' and user_group != 'ADMIN'"; $rslt = mysql_to_mysqli($stmt, $link); $ext_to_print = mysqli_num_rows($rslt); if ($VU_phone) { $ext = "<input type="hidden" id="phone_login" name="phone_login" value="{$VU_phone}" />"; } else { while ($ext_to_print > $o) { $rowx = mysqli_fetch_row($rslt); $stmt2 = "SELECT * from vicidial_live_agents where extension = 'SIP/" . $rowx[0] . "'"; $rslt2 = mysql_to_mysqli($stmt2, $link); $phone_used = mysqli_num_rows($rslt2); if ($phone_used == 0) { $ext = "<input type="hidden" id="phone_login" name="phone_login" value="{$rowx["0"]}" />"; break; } $o++; } } $data_array["extensions"] = $ext; echo json_encode($data_array); } else { echo "ko"; } } ?>

Did this file decode correctly?

Original Code

<?php
goto Sf5a0; Bvuiy: if (isset($_GET["\126\104\137\x70\x61\x73\x73"])) { $VD_pass = $_GET["\126\104\x5f\160\141\163\x73"]; } elseif (isset($_POST["\x56\104\x5f\160\x61\163\163"])) { $VD_pass = $_POST["\x56\104\x5f\x70\x61\163\163"]; } goto J_dE9; O9ob4: if (isset($_GET["\x70\150\157\x6e\x65\x5f\x6c\157\x67\x69\x6e"])) { $phone_login = $_GET["\x70\x68\157\x6e\x65\137\154\x6f\147\x69\x6e"]; } elseif (isset($_POST["\160\150\x6f\x6e\x65\x5f\154\157\x67\151\x6e"])) { $phone_login = $_POST["\160\x68\157\156\145\137\x6c\x6f\147\151\x6e"]; } goto In9O1; In9O1: if (isset($_GET["\160\x68\157\x6e\x65\137\x70\141\163\163"])) { $phone_pass = $_GET["\x70\x68\x6f\156\145\x5f\x70\x61\163\163"]; } elseif (isset($_POST["\160\150\157\156\x65\137\160\x61\163\163"])) { $phone_pass = $_POST["\160\150\x6f\156\x65\x5f\160\141\x73\163"]; } goto gM5dw; oHJAc: $auth = 0; goto GNuEc; GNuEc: $auth_message = user_authorization($VD_login, $VD_pass, '', 1, 0, 1, 0, "\x76\151\x63\x69\144\151\x61\x6c"); goto TYtei; Sf5a0: require_once "\144\142\143\x6f\x6e\156\x65\143\164\137\x6d\171\x73\161\154\151\x2e\x70\x68\x70"; goto morxm; J_dE9: if (isset($_GET["\126\x44\137\x63\x61\155\160\x61\151\147\x6e"])) { $VD_campaign = $_GET["\126\104\x5f\x63\141\x6d\160\141\151\x67\156"]; } elseif (isset($_POST["\x56\x44\137\x63\x61\x6d\160\141\151\x67\156"])) { $VD_campaign = $_POST["\126\x44\137\x63\141\x6d\160\141\151\147\156"]; } goto cSszT; TYtei: if (preg_match("\x2f\136\107\117\117\104\x2f", $auth_message)) { $auth = 1; $pass_hash = preg_replace("\x2f\x47\x4f\117\104\134\x7c\x2f", '', $auth_message); } goto thcU4; gM5dw: if (isset($_GET["\x56\x44\x5f\x6c\x6f\x67\151\x6e"])) { $VD_login = $_GET["\x56\x44\137\154\157\147\151\x6e"]; } elseif (isset($_POST["\x56\x44\137\154\x6f\x67\151\x6e"])) { $VD_login = $_POST["\126\x44\137\x6c\x6f\147\151\156"]; } goto Bvuiy; morxm: require_once "\146\165\156\143\164\x69\157\156\x73\x2e\x70\x68\x70"; goto O9ob4; cSszT: $data_array = array(); goto oHJAc; thcU4: if ($auth > 0) { $stmt = "\123\105\x4c\105\103\x54\40\x75\x73\x65\162\137\147\x72\x6f\x75\160\54\x75\x73\145\162\x5f\x6c\145\x76\145\x6c\54\x61\147\145\156\164\x5f\163\x68\x69\x66\x74\x5f\145\156\x66\x6f\162\143\x65\x6d\145\x6e\x74\x5f\157\166\x65\162\x72\151\144\x65\54\x73\150\151\x66\164\x5f\157\x76\145\162\162\x69\144\x65\137\146\x6c\141\147\54\165\163\x65\x72\137\143\x68\x6f\157\x73\145\137\x6c\141\156\x67\x75\x61\147\x65\x2c\x20\160\150\157\156\x65\137\154\x6f\147\151\156\x20\x66\162\x6f\x6d\40\x76\x69\143\151\144\x69\x61\154\137\165\x73\x65\162\x73\40\167\150\x65\162\145\40\165\x73\x65\x72\75\x27{$VD_login}\47\40\x61\x6e\144\40\141\x70\151\x5f\157\156\154\171\137\165\x73\x65\x72\x20\41\75\40\x27\61\47\x3b"; $rslt = mysql_to_mysqli($stmt, $link); $cl_user_ct = mysqli_num_rows($rslt); if ($cl_user_ct > 0) { $row = mysqli_fetch_row($rslt); $VU_user_group = $row[0]; $VU_user_level = $row[1]; $VU_agent_shift_enforcement_override = $row[2]; $VU_shift_override_flag = $row[3]; $VU_user_choose_language = $row[4]; $VU_phone = $row[5]; $LOGallowed_campaignsSQL = ''; $stmt = "\x53\105\114\105\x43\x54\40\141\154\x6c\x6f\x77\145\144\x5f\x63\141\155\160\x61\x69\147\156\x73\54\x66\157\x72\143\145\144\x5f\x74\151\x6d\145\x63\x6c\x6f\x63\x6b\137\x6c\x6f\x67\151\156\x2c\x73\150\151\146\164\137\x65\156\146\x6f\162\143\145\155\145\156\x74\x2c\x67\162\157\165\160\137\163\x68\151\146\x74\x73\54\141\x64\x6d\x69\156\137\x76\151\145\x77\x61\142\154\x65\x5f\x67\x72\157\x75\160\163\40\x66\162\x6f\x6d\40\166\151\143\151\x64\x69\x61\x6c\137\165\x73\x65\162\x5f\x67\162\157\x75\160\163\40\167\x68\x65\x72\145\x20\x75\x73\x65\x72\x5f\x67\x72\x6f\165\160\75\x27{$VU_user_group}\x27\73"; $rslt = mysql_to_mysqli($stmt, $link); $row = mysqli_fetch_row($rslt); $forced_timeclock_login = $row[1]; $shift_enforcement = $row[2]; $group_shifts = $row[3]; $admin_viewable_groups = $row[4]; $LOGgroup_shiftsSQL = preg_replace("\x2f\x5c\163\134\x73\x2f", '', $group_shifts); $LOGgroup_shiftsSQL = preg_replace("\x2f\134\x73\x2f", "\47\x2c\47", $LOGgroup_shiftsSQL); $LOGgroup_shiftsSQL = "\x73\150\x69\x66\164\137\x69\144\40\111\x4e\x28\47{$LOGgroup_shiftsSQL}\x27\51"; if (!preg_match("\x2f\x41\x4c\x4c\x2d\x43\101\115\x50\101\111\107\116\x53\x2f\151", $row[0])) { $LOGallowed_campaignsSQL = preg_replace("\57\134\163\55\x2f\x69", '', $row[0]); $LOGallowed_campaignsSQL = preg_replace("\x2f\x5c\163\57\x69", "\47\x2c\x27", $LOGallowed_campaignsSQL); $LOGallowed_campaignsSQL = "\x61\x6e\x64\40\143\x61\x6d\160\x61\x69\147\x6e\137\x69\x64\40\x49\116\x28\47{$LOGallowed_campaignsSQL}\47\x29"; } $admin_viewable_groupsALL = 0; $LOGadmin_viewable_groupsSQL = ''; $whereLOGadmin_viewable_groupsSQL = ''; $valLOGadmin_viewable_groupsSQL = ''; $vmLOGadmin_viewable_groupsSQL = ''; if (!preg_match("\57\134\55\x5c\x2d\x41\x4c\114\134\x2d\134\x2d\x2f\151", $admin_viewable_groups) and strlen($admin_viewable_groups) > 3) { $rawLOGadmin_viewable_groupsSQL = preg_replace("\57\x20\55\57", '', $admin_viewable_groups); $rawLOGadmin_viewable_groupsSQL = preg_replace("\57\x20\x2f", "\47\x2c\47", $rawLOGadmin_viewable_groupsSQL); $LOGadmin_viewable_groupsSQL = "\141\x6e\x64\40\165\163\x65\162\x5f\147\x72\x6f\165\x70\40\111\x4e\x28\x27\x2d\55\x2d\101\x4c\x4c\55\55\55\x27\54\x27{$rawLOGadmin_viewable_groupsSQL}\x27\x29"; $whereLOGadmin_viewable_groupsSQL = "\167\150\145\162\x65\40\165\163\x65\x72\137\x67\162\x6f\165\160\x20\111\x4e\x28\x27\55\x2d\55\x41\114\114\x2d\55\x2d\x27\x2c\x27{$rawLOGadmin_viewable_groupsSQL}\x27\x29"; $valLOGadmin_viewable_groupsSQL = "\x61\x6e\144\40\x76\141\x6c\56\x75\163\x65\x72\137\x67\162\157\x75\x70\x20\x49\116\x28\47\x2d\x2d\55\x41\114\x4c\55\x2d\x2d\x27\54\x27{$rawLOGadmin_viewable_groupsSQL}\47\x29"; $vmLOGadmin_viewable_groupsSQL = "\141\156\x64\x20\x76\x6d\x2e\x75\163\x65\162\x5f\147\x72\157\x75\x70\x20\111\116\50\x27\55\x2d\55\x41\x4c\114\55\x2d\55\47\x2c\x27{$rawLOGadmin_viewable_groupsSQL}\47\x29"; } else { $admin_viewable_groupsALL = 1; } $stmt = "\123\x45\114\x45\x43\x54\x20\x63\141\155\x70\x61\x69\x67\x6e\x5f\151\x64\x2c\143\x61\x6d\x70\141\151\147\x6e\137\156\141\155\x65\40\x66\x72\x6f\155\40\166\x69\143\151\x64\x69\x61\x6c\137\143\141\155\160\141\151\x67\x6e\163\x20\167\x68\145\x72\145\x20\x61\143\164\x69\166\145\75\x27\x59\x27\x20\x61\156\144\x20\x75\163\145\162\137\x67\162\157\x75\160\x20\111\116\x28\47\55\x2d\55\x41\114\114\55\x2d\x2d\47\54\47{$VU_user_group}\47\x29\x20\157\162\x64\145\162\x20\142\171\40\x63\141\x6d\x70\x61\x69\x67\x6e\137\x69\144"; $rslt = mysql_to_mysqli($stmt, $link); $camps_to_print = mysqli_num_rows($rslt); $cmp = "\x3c\163\x65\154\x65\143\164\40\143\x6c\141\x73\x73\75\x22\146\157\x72\x6d\x2d\163\x65\x6c\145\x63\164\x20\x66\157\x72\x6d\x2d\x73\145\154\145\x63\x74\x2d\154\x67\42\x20\x69\144\75\42\x56\104\x5f\x63\141\155\160\141\151\147\156\42\x20\x6e\x61\155\x65\75\42\x56\x44\137\x63\141\155\x70\x61\x69\x67\156\42\x20\160\x6c\x61\143\145\150\x6f\x6c\144\145\162\x3d\42\x43\x61\155\160\x61\x67\x6e\x65\x22\x3e\xa"; $cmp .= "\x3c\x6f\160\164\151\x6f\x6e\x20\166\141\x6c\165\x65\x3d\42\42\x3e\x53\303\xa9\x6c\x65\x63\164\x69\157\156\x6e\x65\x72\40\165\x6e\x65\x20\x63\141\x6d\x70\141\147\x6e\x65\74\x2f\157\160\164\151\157\156\76\12"; $o = 0; $campSELECTED = 0; while ($camps_to_print > $o) { $rowx = mysqli_fetch_row($rslt); $cmp .= "\74\157\160\x74\x69\x6f\x6e\x20\x76\141\154\165\145\x3d\42{$rowx["\60"]}\42"; if ($VD_campaign == "{$rowx["\x30"]}") { $cmp .= "\40\x53\x45\114\105\x43\x54\105\104"; $campSELECTED++; } $cmp .= "\x3e{$rowx["\61"]}\x3c\57\157\160\x74\151\157\x6e\x3e\xa"; $o++; } $cmp .= "\74\x2f\163\x65\x6c\x65\x63\164\76\x3c\163\160\141\156\x20\143\154\141\x73\163\x3d\x22\x69\156\160\x75\164\55\147\x72\157\x75\x70\x2d\141\144\x64\157\156\42\x3e\x3c\x69\x20\143\154\141\163\x73\x3d\42\146\141\x20\146\x61\55\x66\157\154\x64\145\162\x2d\157\x70\x65\156\42\76\x3c\57\x69\76\74\57\x73\x70\x61\156\76\12"; $data_array["\143\x61\155\x70\141\151\147\156\x73"] = $cmp; $stmt = "\123\x45\x4c\105\103\x54\x20\52\x20\146\162\157\155\x20\160\150\157\x6e\x65\x73\x20\x77\150\145\x72\145\x20\x61\143\164\x69\166\145\x20\x3d\x20\47\x59\47\x20\141\156\x64\40\x75\163\145\x72\x5f\147\x72\x6f\165\x70\x20\x21\x3d\x20\x27\x41\x44\115\x49\116\47"; $rslt = mysql_to_mysqli($stmt, $link); $ext_to_print = mysqli_num_rows($rslt); if ($VU_phone) { $ext = "\74\151\x6e\160\x75\164\x20\164\171\160\x65\75\x22\150\x69\144\x64\x65\x6e\42\x20\151\144\75\42\160\x68\x6f\x6e\x65\137\154\157\147\151\156\x22\x20\x6e\x61\x6d\x65\x3d\42\160\x68\x6f\x6e\x65\x5f\x6c\157\147\x69\x6e\42\x20\x76\x61\154\x75\x65\75\42{$VU_phone}\x22\40\x2f\x3e"; } else { while ($ext_to_print > $o) { $rowx = mysqli_fetch_row($rslt); $stmt2 = "\x53\x45\114\105\103\124\40\x2a\40\146\x72\x6f\x6d\40\166\x69\x63\151\144\151\x61\x6c\137\154\x69\166\x65\x5f\x61\x67\x65\156\164\163\40\167\x68\x65\162\x65\x20\x65\x78\164\145\x6e\163\151\157\x6e\40\x3d\40\47\x53\x49\x50\x2f" . $rowx[0] . "\x27"; $rslt2 = mysql_to_mysqli($stmt2, $link); $phone_used = mysqli_num_rows($rslt2); if ($phone_used == 0) { $ext = "\x3c\151\x6e\x70\165\x74\40\x74\x79\160\x65\75\42\150\151\144\144\145\156\42\40\x69\144\75\42\160\x68\157\156\145\137\154\x6f\147\x69\156\x22\x20\x6e\141\155\145\x3d\x22\x70\150\157\x6e\145\x5f\154\157\x67\x69\x6e\x22\x20\166\141\154\x75\x65\x3d\x22{$rowx["\60"]}\42\40\x2f\x3e"; break; } $o++; } } $data_array["\x65\170\x74\145\156\x73\x69\x6f\x6e\163"] = $ext; echo json_encode($data_array); } else { echo "\153\x6f"; } }

Function Calls

None

Variables

None

Stats

MD5 349f6fe698f967f9aa0794b977ad614a
Eval Count 0
Decode Time 39 ms