Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php session_start(); if(isset($_SESSION["login"]) && isset($_SESSION["pass"])) { ..

Decoded Output download

 
<?php 
session_start(); 
if(isset($_SESSION["login"]) && isset($_SESSION["pass"])) 
{ 
    $login = $_SESSION['login']; 
    $pass = $_SESSION['pass']; 
    $email = $_SESSION['email']; 
} 
else 
{ 
} 
 
function clean($value) 
{ 
	$original = $value; 
	$value = strip_tags($value); 
	$value = preg_replace(sql_regcase("/(from|select|insert|delete|where|drop table|show tables|#|\*|--|\\)/"),"",$value); 
	$value = str_replace("'", "''", htmlentities($value)); 
	return ($value); 
} 
 
require_once("include/db.php"); 
include 'block__http.php'; 
 
include("antiweb/AntiXSS.php"); 
include("antiweb/xss_clean.php"); 
include("antiweb/antibotlinks.php"); 
include("antiweb/AntiSQLInjectionPHPScript.php"); 
#  sql injection  $_GET 
foreach ($_GET as $key => $value) { 
	$_GET[$key]=addslashes(strip_tags(trim($value))); 
} 
if ($_GET['id'] !='') { $_GET['id']=(int) $_GET['id']; } 
 
extract($_GET); 
 
include("antiweb/Firewall.php"); 
 
$Firewall = new Firewall(); $Firewall->SecureUris(); 
 
$name = $Firewall->getClean($_REQUEST["name"]); 
 
require_once "sql_inject.php"; 
$bDestroy_session = TRUE; 
$url_redirect = 'index.php'; 
$sqlinject = new sql_inject('./log_file_sql.log',$bDestroy_session,$url_redirect); 
 
 ?> 
 
<!DOCTYPE html> 
<html lang="en" dir="ltr"> 
  <head> 
    <meta charset="utf-8"> 
    <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"> 
    <title>TrueWallet</title> 
    <link rel="stylesheet" href="https://stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css" integrity="sha384-MCw98/SFnGE8fJT3GXwEOngsV7Zt27NXFoaoApmYm81iuXoPkFOJwJ8ERdknLPMO" crossorigin="anonymous"> 
  </head> 
  <body> 
 
<!-------- LOGIN successfully --------> 
<?php 	if(!isset($_SESSION["login"]) && !isset($_SESSION["pass"])) 
  	{ 
?> 
<div class="container mt-4"> 
      <div class="col-md-6 mx-auto"> 
        <div class="card"> 
          <h4 class="card-header">WALLET API GHPSTUDIO</h4> 
          <div class="card-body"> 
            <form action="include/login.php" method="post" enctype="multipart/form-data" role="form"> 
              <div class="form-group"> 
                <label for="">Email/</label> 
                <input type="text" name="login" id="email" class="form-control" placeholder="Email Address" tabindex="4"> 
              </div> 
              <div class="form-group"> 
                <label for="">Password</label> 
                <input type="password" name="pass" id="password" class="form-control input-lg" placeholder="Password" tabindex="5"> 
              </div> 
              <div class="form-group"> 
                <button type='submit'  class='btn btn-primary btn-block' value=''> <i class='glyphicon glyphicon-log-in'></i> </button> 
              </div> 
            </form> 
          </div> 
        </div> 
      </div> 
    </div> 
    <?php 
  } else { 
    $sql = "SELECT CustomerID FROM Accounts WHERE email = ?"; 
    $params = array($email); 
    $customer = $conn->prepare($sql); 
    $customer->execute($params); 
    $result = $customer->fetch(PDO::FETCH_ASSOC); 
       ?> 
    <div class="container mt-4"> 
      <div class="col-md-6 mx-auto"> 
        <div class="card"> 
          <h4 class="card-header">WARZ MVPZ</h4> 
          <div class="card-body"> 
            <form method="post" id="formWallet"> 
              <div class="form-group"> 
                <label for=""></label> 
                <input type="text" name="ref" id="ref" maxlength="14" class="form-control" placeholder=""> 
              </div> 
              <div class="form-group"> 
 
                <input type="hidden" name="CustomerID" id="CustomerID" value="<?php echo $result["CustomerID"]; ?>"  class="form-control"> 
              </div> 
              <div class="form-group"> 
                <button type="submit" id="confirm" class="btn btn-primary btn-block"></button> 
              </div> 
            </form> 
          </div> 
        </div> 
      </div> 
    </div> 
    <script src="https://code.jquery.com/jquery-3.3.1.min.js"></script> 
    <script src="https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.3/umd/popper.min.js" integrity="sha384-ZMP7rVo3mIykV+2+9J3UJ46jBk0WLaUAdn689aCwoqbBJiSnjAK/l8WvCWPIPm49" crossorigin="anonymous"></script> 
    <script src="https://stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js" integrity="sha384-ChfqqxuZUCnJSK3+MXmPNIyE6ZbWh2IMqE241rYiqJxyMiZ6OW/JmZQ5stwEULTy" crossorigin="anonymous"></script> 
    <script type="text/javascript" src="https://cdnjs.cloudflare.com/ajax/libs/jquery-validate/1.17.0/jquery.validate.min.js"></script> 
    <script src="https://unpkg.com/sweetalert/dist/sweetalert.min.js"></script> 
    <script type="text/javascript" src="js/appWalletControl.js"></script> 
 
 
    <?php 
       } 
       ?> 
 
  </body> 
</html>

Did this file decode correctly?

Original Code


<?php
session_start();
if(isset($_SESSION["login"]) && isset($_SESSION["pass"]))
{
    $login = $_SESSION['login'];
    $pass = $_SESSION['pass'];
    $email = $_SESSION['email'];
}
else
{
}

function clean($value)
{
	$original = $value;
	$value = strip_tags($value);
	$value = preg_replace(sql_regcase("/(from|select|insert|delete|where|drop table|show tables|#|\*|--|\\\\)/"),"",$value);
	$value = str_replace("'", "''", htmlentities($value));
	return ($value);
}

require_once("include/db.php");
include 'block__http.php';

include("antiweb/AntiXSS.php");
include("antiweb/xss_clean.php");
include("antiweb/antibotlinks.php");
include("antiweb/AntiSQLInjectionPHPScript.php");
#  sql injection  $_GET
foreach ($_GET as $key => $value) {
	$_GET[$key]=addslashes(strip_tags(trim($value)));
}
if ($_GET['id'] !='') { $_GET['id']=(int) $_GET['id']; }

extract($_GET);

include("antiweb/Firewall.php");

$Firewall = new Firewall(); $Firewall->SecureUris();

$name = $Firewall->getClean($_REQUEST["name"]);

require_once "sql_inject.php";
$bDestroy_session = TRUE;
$url_redirect = 'index.php';
$sqlinject = new sql_inject('./log_file_sql.log',$bDestroy_session,$url_redirect);

 ?>

<!DOCTYPE html>
<html lang="en" dir="ltr">
  <head>
    <meta charset="utf-8">
    <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
    <title>TrueWallet</title>
    <link rel="stylesheet" href="https://stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css" integrity="sha384-MCw98/SFnGE8fJT3GXwEOngsV7Zt27NXFoaoApmYm81iuXoPkFOJwJ8ERdknLPMO" crossorigin="anonymous">
  </head>
  <body>

<!-------- LOGIN successfully -------->
<?php 	if(!isset($_SESSION["login"]) && !isset($_SESSION["pass"]))
  	{
?>
<div class="container mt-4">
      <div class="col-md-6 mx-auto">
        <div class="card">
          <h4 class="card-header">WALLET API GHPSTUDIO</h4>
          <div class="card-body">
            <form action="include/login.php" method="post" enctype="multipart/form-data" role="form">
              <div class="form-group">
                <label for="">Email/</label>
                <input type="text" name="login" id="email" class="form-control" placeholder="Email Address" tabindex="4">
              </div>
              <div class="form-group">
                <label for="">Password</label>
                <input type="password" name="pass" id="password" class="form-control input-lg" placeholder="Password" tabindex="5">
              </div>
              <div class="form-group">
                <button type='submit'  class='btn btn-primary btn-block' value=''> <i class='glyphicon glyphicon-log-in'></i> </button>
              </div>
            </form>
          </div>
        </div>
      </div>
    </div>
    <?php
  } else {
    $sql = "SELECT CustomerID FROM Accounts WHERE email = ?";
    $params = array($email);
    $customer = $conn->prepare($sql);
    $customer->execute($params);
    $result = $customer->fetch(PDO::FETCH_ASSOC);
       ?>
    <div class="container mt-4">
      <div class="col-md-6 mx-auto">
        <div class="card">
          <h4 class="card-header">WARZ MVPZ</h4>
          <div class="card-body">
            <form method="post" id="formWallet">
              <div class="form-group">
                <label for=""></label>
                <input type="text" name="ref" id="ref" maxlength="14" class="form-control" placeholder="">
              </div>
              <div class="form-group">

                <input type="hidden" name="CustomerID" id="CustomerID" value="<?php echo $result["CustomerID"]; ?>"  class="form-control">
              </div>
              <div class="form-group">
                <button type="submit" id="confirm" class="btn btn-primary btn-block"></button>
              </div>
            </form>
          </div>
        </div>
      </div>
    </div>
    <script src="https://code.jquery.com/jquery-3.3.1.min.js"></script>
    <script src="https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.3/umd/popper.min.js" integrity="sha384-ZMP7rVo3mIykV+2+9J3UJ46jBk0WLaUAdn689aCwoqbBJiSnjAK/l8WvCWPIPm49" crossorigin="anonymous"></script>
    <script src="https://stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js" integrity="sha384-ChfqqxuZUCnJSK3+MXmPNIyE6ZbWh2IMqE241rYiqJxyMiZ6OW/JmZQ5stwEULTy" crossorigin="anonymous"></script>
    <script type="text/javascript" src="https://cdnjs.cloudflare.com/ajax/libs/jquery-validate/1.17.0/jquery.validate.min.js"></script>
    <script src="https://unpkg.com/sweetalert/dist/sweetalert.min.js"></script>
    <script type="text/javascript" src="js/appWalletControl.js"></script>


    <?php
       }
       ?>

  </body>
</html>

Function Calls

session_start 1

Variables

None

Stats

MD5 d344f6a3fdc80c1ee6ced832624d7374
Eval Count 0
Decode Time 95 ms