Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php @eval("?>".base64_decode("PD9waHAgQGV2YWwoIj8+Ii5iYXNlNjRfZGVjb2RlKCJQRDl3YUhBZ1FHVj..

Decoded Output download

?>b'<?php
	session_start();

	 // $centerid=1001;
	  
	  $arr = $_POST[\'q\'];
	  $centerid=$_POST[\'r\'];
		

		$arr = json_decode($arr);
		$centerPatientID=null;
												   
			
		//include \'dbConnServer.php\';     offline version commented
		include \'dbConn.php\';
		
		//$arrData = @mysqli_real_escape_string($dbconnection,$arrData);
		$createTime=date("Y-m-d H:i:s");
		

		
		
		// Finding the last patientId and add 1 to get the new patientId
		
		$queryLastPatId= "SELECT max ([PatientID]) AS maxPatId
		FROM [dbo].[PATIENT_DETAILS]";
		$stmt = sqlsrv_query( $link, $queryLastPatId );
		if( $stmt === false) {
			die( print_r( sqlsrv_errors(), true) );
		}else{
			$rows = sqlsrv_has_rows( $stmt );
			if ($rows === true)
				{
					while($data = sqlsrv_fetch_array($stmt,SQLSRV_FETCH_BOTH)) {
						if ($data[\'maxPatId\'] == null){
							$PatientID = "00000001";
							$centerPatientID=$centerid.$PatientID;
						}else{
								$centerPatientID = $data[\'maxPatId\']+1;
								//echo  "data  " .($data[\'maxPatId\']) ."<br>";
								//$centerPatientID = intval($data[\'maxPatId\']);
								//echo "after  ".$centerPatientID ;
								
							}
						
					}
				}else{
					$PatientID ="00000001"  ;
					$centerPatientID=$centerid.$PatientID;
				
				}
			
			
			
		}
		// $centerid=1001;
		// $PatientID=00000001;
		 //$centerPatientID=$centerid.$PatientID;
		 //echo $centerPatientID;
		
		
		
		if($centerPatientID!== null || $centerPatientID!== 0 )
		{
			/*$encryptionMethod = "AES-256-CBC";  // AES is used by the U.S. gov\'t to encrypt top secret documents.
			$secretHash = "PacketBio key test";
			//$iv = openssl_random_pseudo_bytes(16);
			
			$arr[0]=openssl_encrypt($arr[0], $encryptionMethod, $secretHash);//,OPENSSL_RAW_DATA, $iv);
			$arr[1]=openssl_encrypt($arr[1], $encryptionMethod, $secretHash);//,OPENSSL_RAW_DATA, $iv);
			$arr[4]=openssl_encrypt($arr[4], $encryptionMethod, $secretHash);//,OPENSSL_RAW_DATA, $iv);
			$arr[5]=openssl_encrypt($arr[5], $encryptionMethod, $secretHash);//,OPENSSL_RAW_DATA, $iv);
			$arr[6]=openssl_encrypt($arr[6], $encryptionMethod, $secretHash);//,OPENSSL_RAW_DATA, $iv);
			$arr[7]=openssl_encrypt($arr[7], $encryptionMethod, $secretHash);//,OPENSSL_RAW_DATA, $iv);
			$arr[8]=openssl_encrypt($arr[8], $encryptionMethod, $secretHash);//,OPENSSL_RAW_DATA, $iv);
			$arr[9]=openssl_encrypt($arr[9], $encryptionMethod, $secretHash);//,OPENSSL_RAW_DATA, $iv);
			$arr[10]=openssl_encrypt($arr[10], $encryptionMethod, $secretHash);//,OPENSSL_RAW_DATA, $iv);
			$arr[12]=openssl_encrypt($arr[12], $encryptionMethod, $secretHash);//,OPENSSL_RAW_DATA, $iv);
			$arr[13]=openssl_encrypt($arr[13], $encryptionMethod, $secretHash);//,OPENSSL_RAW_DATA, $iv);
			$arr[14]=openssl_encrypt($arr[14], $encryptionMethod, $secretHash);//,OPENSSL_RAW_DATA, $iv);
			$arr[15]=openssl_encrypt($arr[15], $encryptionMethod, $secretHash);//,OPENSSL_RAW_DATA, $iv);
			$arr[16]=openssl_encrypt($arr[16], $encryptionMethod, $secretHash);//,OPENSSL_RAW_DATA, $iv);
			$arr[17]=openssl_encrypt($arr[17], $encryptionMethod, $secretHash);//,OPENSSL_RAW_DATA, $iv);
			$arr[18]=openssl_encrypt($arr[18], $encryptionMethod, $secretHash);//,OPENSSL_RAW_DATA, $iv);
			$arr[20]=openssl_encrypt($arr[20], $encryptionMethod, $secretHash);//,OPENSSL_RAW_DATA, $iv);
			$arr[21]=openssl_encrypt($arr[21], $encryptionMethod, $secretHash);//,OPENSSL_RAW_DATA, $iv);
			$arr[22]=openssl_encrypt($arr[22], $encryptionMethod, $secretHash);//,OPENSSL_RAW_DATA, $iv);
			$arr[23]=openssl_encrypt($arr[23], $encryptionMethod, $secretHash);//,OPENSSL_RAW_DATA, $iv);
			$arr[24]=openssl_encrypt($arr[24], $encryptionMethod, $secretHash);//,OPENSSL_RAW_DATA, $iv);
			$arr[25]=openssl_encrypt($arr[25], $encryptionMethod, $secretHash);//,OPENSSL_RAW_DATA, $iv);
			$arr[26]=openssl_encrypt($arr[26], $encryptionMethod, $secretHash);//,OPENSSL_RAW_DATA, $iv);
			$arr[27]=openssl_encrypt($arr[27], $encryptionMethod, $secretHash);//,OPENSSL_RAW_DATA, $iv);*/
			
			
			
			$arr[0]=encode($arr[0]);
			$arr[1]=encode($arr[1]);
			$arr[4]=encode($arr[4]);
			$arr[5]=encode($arr[5]);
			$arr[6]=encode($arr[6]);
			$arr[7]=encode($arr[7]);
			$arr[8]=encode($arr[8]);
			$arr[9]=encode($arr[9]);
			$arr[10]=encode($arr[10]);
			$arr[12]=encode($arr[12]);
			$arr[13]=encode($arr[13]);
			$arr[14]=encode($arr[14]);
			$arr[15]=encode($arr[15]);
			$arr[16]=encode($arr[16]);
			$arr[17]=encode($arr[17]);
			$arr[18]=encode($arr[18]);
			$arr[20]=encode($arr[20]);
			$arr[21]=encode($arr[21]);
			$arr[22]=encode($arr[22]);
			$arr[23]=encode($arr[23]);
			$arr[24]=encode($arr[24]);
			$arr[25]=encode($arr[25]);
			$arr[26]=encode($arr[26]);
			//$arr[27]=encode($arr[27]);
			
			
			
			
			$query_localDB = "INSERT INTO [dbo].PATIENT_DETAILS(FirstName,LastName,Age,Dob,Address, PatientID,GuardianName ,GuardianType ,MobileNumber ,HomeNumber ,Gender ,BloodGroup,height,Allergies ,Complaints ,Aadhaar ,BPLCardID,BPLCardImage ,EmailId ,Remarks ,Addiction,Photo ,SyncFLAG,CreatedBY,CreateTime,Emergency_contact,History,Allergy,Pregnant,PCT_ID,APL)
						VALUES  (\'$arr[0]\',\'$arr[1]\',\'$arr[2]\',\'$arr[3]\',\'$arr[4]\',\'$centerPatientID \' ,\'$arr[5]\',\'$arr[6]\',\'$arr[7]\',\'$arr[8]\',\'$arr[9]\', \'$arr[10]\',\'$arr[11]\',\'$arr[12]\',\'$arr[13]\',\'$arr[14]\',\'$arr[15]\',\'\',\'$arr[16]\',\'$arr[17]\',\'$arr[18]\',\'$arr[19]\',\'y\',\'$arr[20]\',\'$createTime\',\'$arr[21]\',\'$arr[22]\',\'$arr[23]\',\'$arr[24]\',\'$arr[25]\',\'$arr[26]\')";
		$stmt = sqlsrv_query( $link, $query_localDB );
		
		if( $stmt === false) 
		{
			die( print_r( sqlsrv_errors(), true) );
		}
		/*else
		{
			//Onsucessfull updation in local DB insert into server
			$query_serverDB = "INSERT INTO [uhcadmin].PATIENT_DETAILS(FirstName,LastName,Age,Dob,Address, PatientID ,GuardianName ,GuardianType ,MobileNumber ,HomeNumber ,Gender ,BloodGroup,height,Allergies ,Complaints ,Aadhaar ,BPLCardID,BPLCardImage ,EmailId ,Remarks ,Addiction,Photo ,SyncFLAG,CreatedBY,CreateTime,Emergency_contact,History,Allergy,Pregnant,PCT_ID,APL)
			VALUES  (\'$arr[0]\',\'$arr[1]\',\'$arr[2]\',\'$arr[3]\',\'$arr[4]\',\'$centerPatientID\',\'$arr[5]\',\'$arr[6]\',\'$arr[7]\',\'$arr[8]\',\'$arr[9]\', \'$arr[10]\',\'$arr[11]\',\'$arr[12]\',\'$arr[13]\',\'$arr[14]\',\'$arr[15]\',\'\',\'$arr[16]\',\'$arr[17]\',\'$arr[18]\',\'$arr[19]\',\'y\',\'$arr[20]\',\'$createTime\',\'$arr[21]\',\'$arr[22]\',\'$arr[23]\',\'$arr[24]\',\'$arr[25]\',\'$arr[26]\')";
			
			$stmtServer = sqlsrv_query( $linkServer, $query_serverDB );
			if( $stmtServer === false) {
				die( print_r( sqlsrv_errors(), true) );
			}
			else{
				
				echo $centerPatientID.\'$\'."success";
				
			}
			
		}*/
		else
		{
				
				echo $centerPatientID.\'$\'."success";
				
		}
		}
			
			
		else
		{
			echo "null";
			
		}
		
			function safe_b64encode($string) 
			{
				$data = base64_encode($string);
				$data = str_replace(array(\'+\',\'/\',\'=\'),array(\'-\',\'_\',\'\'),$data);
				return $data;
			}
			
			function encode($value)
			{ 
				$skey = "elajCatalyst1@3$";
			
				if(!$value){return false;}
				$text = $value;
				$iv_size = mcrypt_get_iv_size(MCRYPT_RIJNDAEL_256, MCRYPT_MODE_ECB);
				$iv = mcrypt_create_iv($iv_size, MCRYPT_RAND);
				$crypttext = mcrypt_encrypt(MCRYPT_RIJNDAEL_256, $skey, $text, MCRYPT_MODE_ECB, $iv);
				return trim(safe_b64encode($crypttext)); 
			}
		
		
		
		
		
		
		
		
		//////////////////////////////////////////////////////////////////////////////////////////////////////////////////
		
		 // $query = "INSERT INTO [uhcadmin].PATIENT_DETAILS(FirstName,LastName,Age,Dob,Address ,GuardianName ,GuardianType ,MobileNumber ,HomeNumber ,Gender ,BloodGroup,height,Allergies ,Complaints ,Aadhaar ,BPLCardID,BPLCardImage ,EmailId ,Remarks ,Photo ,SyncFLAG,CreatedBY,CreateTime)
			// VALUES  (\'$arr[0]\',\'$arr[1]\',\'$arr[2]\',\'$arr[3]\',\'$arr[4]\',\'$arr[5]\',\'$arr[6]\',\'$arr[7]\',\'$arr[8]\',\'$arr[9]\', \'$arr[10]\',\'$arr[11]\',\'$arr[12]\',\'$arr[13]\',\'$arr[14]\',\'$arr[15]\',\'\',\'$arr[16]\',\'$arr[17]\',\'$arr[18]\',\'y\',\'$arr[19]\',\'$createTime\')";
			
			// // insert into local db
			// include \'dbConn.php\';
			
		
		
			
			// $stmtServer = sqlsrv_query( $linkServer, $query );
			// if( $stmtServer === false) {
				// die( print_r( sqlsrv_errors(), true) );
			// }else
			// {	
				// $id = 0; 
				// $res = sqlsrv_query($linkServer,"SELECT @@identity AS id"); 
				// if ($row = sqlsrv_fetch_array($res, SQLSRV_FETCH_ASSOC)) { 
				// $id = $row["id"]; 
				
					 // $query_localDB = "INSERT INTO [dbo].PATIENT_DETAILS(FirstName,LastName,Age,Dob,Address,PatientID ,GuardianName ,GuardianType ,MobileNumber ,HomeNumber ,Gender ,BloodGroup,height,Allergies ,Complaints ,Aadhaar ,BPLCardID,BPLCardImage ,EmailId ,Remarks ,Photo ,SyncFLAG,CreatedBY,CreateTime)
						// VALUES  (\'$arr[0]\',\'$arr[1]\',\'$arr[2]\',\'$arr[3]\',\'$arr[4]\',\'$id\',\'$arr[5]\',\'$arr[6]\',\'$arr[7]\',\'$arr[8]\',\'$arr[9]\', \'$arr[10]\',\'$arr[11]\',\'$arr[12]\',\'$arr[13]\',\'$arr[14]\',\'$arr[15]\',\'\',\'$arr[16]\',\'$arr[17]\',\'$arr[18]\',\'y\',\'$arr[19]\',\'$createTime\')";
						// // also insert into local DB
					// $stmt = sqlsrv_query( $link, $query_localDB );
					// if( $stmt === false) {
					// die( print_r( sqlsrv_errors(), true) );
					// }
			
				
				// } 
				// echo $id."$"."success";
				
			// }
      
		 
	sqlsrv_close($link);
	//sqlsrv_close($linkServer);  offline version commented

?>'

Did this file decode correctly?

Original Code

<?php @eval("?>".base64_decode(""));

Function Calls

base64_decode 8

Variables

None

Stats

MD5 89773c7a4a9037a273f48ee5b9bfb577
Eval Count 8
Decode Time 121 ms