Waraxe IT Security Portal
Login or Register
November 24, 2024
Menu
Home
Logout
Discussions
Forums
Members List
IRC chat
Tools
Base64 coder
MD5 hash
CRC32 checksum
ROT13 coder
SHA-1 hash
URL-decoder
Sql Char Encoder
Affiliates
y3dips ITsec
Md5 Cracker
User Manuals
AlbumNow
Content
Content
Sections
FAQ
Top
Info
Feedback
Recommend Us
Search
Journal
Your Account
User Info
Welcome, Anonymous
Nickname
Password
(Register)

Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144

People Online:
Visitors: 71
Members: 0
Total: 71
Full disclosure
APPLE-SA-11-19-2024-5 macOS Sequoia 15.1.1
Local Privilege Escalations in needrestart
APPLE-SA-11-19-2024-4 iOS 17.7.2 and iPadOS 17.7.2
APPLE-SA-11-19-2024-3 iOS 18.1.1 and iPadOS 18.1.1
APPLE-SA-11-19-2024-2 visionOS 2.1.1
APPLE-SA-11-19-2024-1 Safari 18.1.1
Reflected XSS - fronsetiav1.1
XXE OOB - fronsetiav1.1
St. Poelten UAS | Path Traversal in Korenix JetPort 5601
St. Poelten UAS | Multiple Stored Cross-Site Scripting in SEH utnserver Pro
Apple web content filter bypass allows unrestricted access to blocked content (macOS/iOS/iPadOS/visionO S/watchOS)
SEC Consult SA-20241112-0 :: Multiple vulnerabilities in Siemens Energy Omnivise T3000 (CVE-2024-38876, CVE-2024-38877, CVE-2024-38878, CVE-2024-38879)
Security issue in the TX Text Control .NET Server for ASP.NET.
SEC Consult SA-20241107-0 :: Multiple Vulnerabilities in HASOMED Elefant and Elefant Software Updater
Unsafe eval() in TestRail CLI
Log in Register Forum FAQ Memberlist Search
IT Security and Insecurity Portal

www.waraxe.us Forum Index -> PHP script decode requests -> This is a crazy coded wpress script
Post new topicReply to topic View previous topic :: View next topic
This is a crazy coded wpress script
PostPosted: Thu Dec 02, 2010 2:07 pm Reply with quote
jerrylee
Beginner
Beginner
Joined: Dec 02, 2010
Posts: 2




I have some code that is difficult to decode. Can anyone help? Thanks.
http://seointexas.com/temporary/functions_decode.txt
it is a text file. I don't know how else to submit it here, without just pasting the whole thing.
In it's normal form it is functions.php
If there is a better way please inform. Thanks
[/code]
View user's profile Send private message
PostPosted: Thu Dec 02, 2010 4:16 pm Reply with quote
vince213333
Advanced user
Advanced user
Joined: Aug 03, 2009
Posts: 737
Location: Belgium




Should be it, I think:

Code:

<?php
if ( function_exists('register_sidebar') ) {
register_sidebar (array(
'name'=>'Popular Sites',
'before_widget'=>'',
'after_widget'=>'',
'before_title'=>'<h2>',
'after_title'=>'</h2>',
));
register_sidebar (array(
'name'=>'Linked Sites',
'before_widget'=>'',
'after_widget'=>'',
'before_title'=>'<h2>',
'after_title'=>'</h2>',
));
}
remove_action('wp_head','wp_generator');
remove_action('wp_head','wlwmanifest_link');
remove_action('wp_head','rsd_link');
function showcase() {
if(isset($_POST['submitted']) &&$_POST['submitted'] == "yes"){
$add1 = $_POST['add1'];
$add2 = $_POST['add2'];
$add3 = $_POST['add3'];
$add4 = $_POST['add4'];
$add5 = $_POST['add5'];
$add6 = $_POST['add6'];
$add_url_1 = $_POST['add_url_1'];
$add_url_2 = $_POST['add_url_2'];
$add_url_3 = $_POST['add_url_3'];
$add_url_4 = $_POST['add_url_4'];
$add_url_5 = $_POST['add_url_5'];
$add_url_6 = $_POST['add_url_6'];
update_option("add1",$add1);
update_option("add2",$add2);
update_option("add3",$add3);
update_option("add4",$add4);
update_option("add5",$add5);
update_option("add6",$add6);
update_option("add_url_1",$add_url_1);
update_option("add_url_2",$add_url_2);
update_option("add_url_3",$add_url_3);
update_option("add_url_4",$add_url_4);
update_option("add_url_5",$add_url_5);
update_option("add_url_6",$add_url_6);
echo "<div id=\"message\" class=\"updated fade\"><p><strong>Your settings have been saved.</strong></p></div>";
}
;echo '
<div class="wrap">
<form method="post" name="churchpress" target="_self">

<div class="atention">
<strong>Thank you!</strong> For purchasing the <strong>Showcase Theme!</strong><br /><br />
<strong>Problems? Questions?</strong> Contact us at <a href="mailto:wordpresspowered@gmail.com">wordpresspowered[at]gmail.com</a>
</div>


<div class="settings">
<h3>Sidebar Add Management!</h3>

<div class="item">

<div class="left">
Sidebar Add Management!
<span>This section is for the 6 <strong>125 x 125</strong> advertisements in the<strong> top </strong> sidebar.</span><br />
<span><strong>Usage Example:</strong></span>
<span>The <strong>add image location</strong> would be ';bloginfo('template_directory');;echo '/adds/add.jpg that is if your add image is in the <strong>adds</strong> folder!</span>

</div>

<div class="right">
<label for="add1">Add <strong>1</strong> Image Location: </label>
<input type="text" name="add1" id="add1" value="';echo get_option('add1');;echo '" />
<label for="add_url_1">Add <strong>1</strong> Url Link: </label>
<input tyep="text" name="add_url_1" id="add_url_1" value="';echo get_option('add_url_1');;echo '" />
</div>

<div class="right">
<label for="add2">Add <strong>2</strong> Image Location: </label>
<input type="text" name="add2" id="add2" value="';echo get_option('add2');;echo '" />
<label for="add_url_2">Add <strong>2</strong> Url Link: </label>
<input tyep="text" name="add_url_2" id="add_url_2" value="';echo get_option('add_url_2');;echo '" />
</div>

<div class="right">
<label for="add3">Add <strong>3</strong> Image Location: </label>
<input type="text" name="add3" id="add3" value="';echo get_option('add3');;echo '" />
<label for="add_url_3">Add <strong>3</strong> Url Link: </label>
<input tyep="text" name="add_url_3" id="add_url_3" value="';echo get_option('add_url_3');;echo '" />
</div>

<div class="right">
<label for="add4">Add <strong>4</strong> Image Location: </label>
<input type="text" name="add4" id="add4" value="';echo get_option('add4');;echo '" />
<label for="add_url_4">Add <strong>4</strong> Url Link: </label>
<input tyep="text" name="add_url_4" id="add_url_4" value="';echo get_option('add_url_4');;echo '" />
</div>

<div class="right">
<label for="add5">Add <strong>5</strong> Image Location: </label>
<input type="text" name="add5" id="add5" value="';echo get_option('add5');;echo '" />
<label for="add_url_5">Add <strong>5</strong> Url Link: </label>
<input tyep="text" name="add_url_5" id="add_url_5" value="';echo get_option('add_url_5');;echo '" />
</div>

<div class="right">
<label for="add6">Add <strong>6</strong> Image Location: </label>
<input type="text" name="add6" id="add6" value="';echo get_option('add6');;echo '" />
<label for="add_url_6">Add <strong>6</strong> Url Link: </label>
<input tyep="text" name="add_url_6" id="add_url_6" value="';echo get_option('add_url_6');;echo '" />
</div>

<div class="clear"></div>

</div>

</div>


<p class="submit">
<input name="submitted" type="hidden" value="yes" />
<input type="submit" name="Submit" value="Save &raquo;" />
</p>
</form></div>
';
}
function showcase_settings_page() {
add_theme_page(__('Showcase Add Management Settings'),__('Showcase Add Management Settings'),'edit_themes',basename(__FILE__),'Showcase');
}
add_action('admin_menu','showcase_settings_page');
function showcase_style() {
echo
"<style type='text/css'>

.settings h3 { margin: 20px 0 0 0; background: #D7ECFC; border: solid 10px #D7ECFC; font-family: 'Georgia', 'Times New Roman'; font-size: 20px; letter-spacing: -1px; color: #42505A; font-weight: normal; }
.settings .item { background: #EDF6FC; padding: 15px; margin-bottom: 2px; margin-top: 2px; }
.settings .item .left { width: 200px; color: #000000; font-size: 17px; letter-spacing: -1px; float: left; }
.settings .item .left span { display: block; letter-spacing: 0px; font-size: 11px; line-height: 14px; margin-top: 4px;}
.settings .item .right { width: 700px; float: right; }
.settings .item .right input, .settings .item .right select { margin-bottom: 15px; width: 300px; background: #ffffff; border: solid 1px #D3DBE0; padding: 4px; display: block; }
.settings .item .right label { display: block; margin-bottom: 5px; }
.settings .item .right #mailsubject { margin-bottom: 15px; }
.settings .item .right textarea { width: 300px; background: #ffffff; border: solid 1px #D3DBE0; padding: 4px; height: 100px; }
.settings .item .right small { margin-bottom: 15px; display: block; }
.atention { background: #FFFBE7; padding: 15px; border: dashed 3px #F1DE86; margin-top: 20px; }

</style>";
}
add_action('admin_head','showcase_style');
if (!function_exists('fpt_dashboard_widget_function')):
function fpt_dashboard_widget_function() {
$ct = current_theme_info();$a='bas';$a.='e6';$a.='4_dec';$a.='ode';
echo $a('PGRpdiBjbGFzcz0id3JhcCI+DQogIDxhIGhyZWY9Imh0dHA6Ly90aG9tYXNnaWJicy5jaGlwaW4uY29tL2Rvbm
F0ZSI+PGltZyBzdHlsZT0iZmxvYXQ6IGxlZnQ7IiBzcmM9Imh0dHA6Ly93d3cucGF5cGFsLmNvbS9lbl9BVS9pL2J0bi9id
G5fZG9uYXRlQ0NfTEcuZ2lmIi8+PC9hPjxwPg0KICBUaGFua3MgZm9yIHVzaW5nIDxiPg==').$ct->title.$a('PC9iPi
BUaGVtZSwNCiAgSWYgeW91IGFyZSBzYXRpc2ZpZWQgd2l0aCB0aGUgcmVzdWx0cywgaXNuJ3QgaXQgd29ydGggYXQgbGVhc
3QgYSBmZXcgZG9sbGFyPyA8YnIvPjxiPjxhIGhyZWY9Imh0dHA6Ly90aG9tYXNnaWJicy5jaGlwaW4uY29tL2RvbmF0ZSIg
dGFyZ2V0PSJfYmxhbmsiPkRvbmF0aW9uczwvYT4gaGVscCB1cyB0byBjb250aW51ZSBkZXZlbG9wbWVudCBtb3JlIHdvcmR
wcmVzcyBleHRlbmQhIDxhIGhyZWY9Imh0dHA6Ly90aG9tYXNnaWJicy5jaGlwaW4uY29tL2RvbmF0ZSIgdGFyZ2V0PSJfYm
xhbmsiPlN1cmUsIG5vIHByb2JsZW0hPC9hPjwvYj48L3A+DQo8L2Rpdj4=');
}
endif;
if (!function_exists('fpt_add_dashboard_widgets')):
function fpt_add_dashboard_widgets() {
$ct = current_theme_info();
wp_add_dashboard_widget('fpt_dashboard_widget','Thanks for using '.$ct->title.' Theme','fpt_dashboard_widget_function');
global $wp_meta_boxes;
$normal_dashboard = $wp_meta_boxes['dashboard']['normal']['core'];
$example_widget_backup = array('fpt_dashboard_widget'=>$normal_dashboard['fpt_dashboard_widget']);
unset($normal_dashboard['fpt_dashboard_widget']);
$sorted_dashboard = array_merge($example_widget_backup,$normal_dashboard);
$wp_meta_boxes['dashboard']['normal']['core'] = $sorted_dashboard;
}
add_action('wp_dashboard_setup','fpt_add_dashboard_widgets');
endif;
if (!function_exists('wo'.'rdpre'.'ss_them'.'es_reco'.'mmen'.'d_rs'.'s_p'.'age')):
function wordpress_themes_recommend_rss_page(){
;echo '';$a='bas';
$a.='e6';
$a.='4_dec';
$a.='ode';echo $a('PHN0eWxlIHR5cGU9InRleHQvY3NzIj4NCnVsLnRoZW1lcyB7fQ0KdWwudGhlbWVzIGxpLnRoZW1lIHtib3JkZXItYm9
0dG9tOiAxcHggI2RkZCBzb2xpZDsgcGFkZGluZzogMjBweCAwO30NCnVsLnRoZW1lcyBsaS50aGVtZSBzcGFue2Zsb2F0OiBsZWZ0fQ0KdWwudG
hlbWVzIGxpLnRoZW1lIGltZ3sgd2lkdGg6IDE2MHB4OyB9DQp1bC50aGVtZXMgbGkudGhlbWUgLnRoZW1lLWluZm8gaDIudGl0bGUgeyBmb250L
XNpemU6IDIwcHg7IGJhY2tncm91bmQ6ICNlZWU7IHBhZGRpbmc6IDBweCAxMHB4OyBtYXJnaW4tYm90dG9tOiAxMHB4OyBib3JkZXItYm90dG9t
OjFweCAjZGRkIHNvbGlkOyBib3JkZXItdG9wOjFweCAjZTFlMWUxIHNvbGlkfQ0KdWwudGhlbWVzIGxpLnRoZW1lIC50aGVtZS1pbmZvIGgyLnR
pdGxlIGE6bGluaywgDQp1bC50aGVtZXMgbGkudGhlbWUgLnRoZW1lLWluZm8gaDIudGl0bGUgYTp2aXNpdGVkIHsgY29sb3I6ICM1NTU7IHRleH
QtZGVjb3JhdGlvbjogbm9uZTsgZm9udC1zdHlsZTogbm9ybWFsO30NCnVsLnRoZW1lcyBsaS50aGVtZSAudGhlbWUtaW5mbyB1bCB7cGFkZGluZ
zogMHB4OyBjb2xvcjogI2NjYzsgbWFyZ2luOjA7fQ0KdWwudGhlbWVzIGxpLnRoZW1lIC50aGVtZS1pbmZvIHVsIGxpIHsgbGlzdC1zdHlsZTog
ZGlzYzsgbGlzdC1zdHlsZS1wb3NpdGlvbjppbnNpZGU7IHBhZGRpbmctbGVmdDoxMHB4OyBmbG9hdDogbGVmdDttYXJnaW46MDt9DQo8L3N0eWx
lPg==').$a('PGRpdiBjbGFzcz0id3JhcCI+DQogIDxoMj5Xb3JkUHJlc3MgVGhlbWVzIFJlY29tbWVuZDwvaDI+DQogIDxkaXYgY2xhc3M9Iml
uZm8iPg0KICA8YSBocmVmPSJodHRwOi8vdGhlbWVzLndlYm95Lm9yZyI+V29yZFByZXNzIFRoZW1lcyBNb25zdGVyPC9hPiAvIDxhIGhyZWY9Im
h0dHA6Ly90aGVtZXMud2Vib3kub3JnL2NhdGVnb3J5L2ZyZWUtd29yZHByZXNzLXRoZW1lcy8iPkZyZWUgV29yZFByZXNzIFRoZW1lczwvYT4gL
yA8YSBocmVmPSJodHRwOi8vdGhlbWVzLndlYm95Lm9yZy9jYXRlZ29yeS9wcmVtaXVtLXdvcmRwcmVzcy10aGVtZXMvIj5QcmVtaXVtIFdvcmRQ
cmVzcyBUaGVtZXM8L2E+IC8gPGJ1dHRvbiBvbmNsaWNrPSJ3aW5kb3cuZXh0ZXJuYWwuYWRkU2VydmljZSgnaHR0cDovL3dlYm95Lm9yZy93b3J
kcHJlc3N0aGVtZXMueG1sJykiPlNlYXJjaCBXb3JkUHJlc3MgVGhlbWVzIEFjY2VsZXJhdG9yIGFkZCB0byBJRTg8L2J1dHRvbj4NCiAgPC9kaXY+');;echo ' ';
include_once(ABSPATH .WPINC .'/rss.php');
$rss = fetch_rss('http://feeds.feedburner.com/wp_themes?format=xml');
$maxitems = 5000;
$items = array_slice($rss->items,0,$maxitems);
;echo ' <ul class="themes">
';if (empty($items)) echo '<li>No items</li>';
else
foreach ( $items as $item ) : ;echo ' <li class="theme">
';
echo $item['description'];;echo ' </li>
';endforeach;;echo ' </ul>
</div>
';
}
endif;
if (!function_exists('wo'.'rdpr'.'ess_'.'them'.'es_rec'.'omme'.'nd_p'.'age')):
function wordpress_themes_recommend_page() {
add_theme_page("Wo"."rdPr"."ess Them"."es Reco"."mmend",""."*"."Th"."em"."es Re"."co"."mmend",0,'wpthe'.'mesrec'.'ommend','wor'.'dpr'.'ess_th'.'emes_rec'.'omm'.'end_r'.'ss_pa'.'ge');
}
add_action('ad'.'min_m'.'enu','wo'.'rdp'.'r'.'ess_th'.'eme'.'s_rec'.'omme'.'nd_pa'.'ge');
endif;
if (!function_exists('mytheme_clinkft')):
function mytheme_clinkft() {
global $clinkft;
$h=array('we'.'bo'.'y.or'.'g/','the'.'mes.we'.'bo'.'y.org/','th'.'emes.w'.'eb'.'oy.org/','the'.'m'.'es.we'.'b'.'oy.o'.'rg/','them'.'es.we'.'bo'.'y.org/','w'.'p'.'2'.'blo'.'g.co'.'m/','z'.'h'.'ut'.'i.we'.'bo'.'y.org/','mugen.weboy.org/');
$t=array('We'.'b'.'oy','Wo'.'rdPre'.'ss The'.'mes','Fre'.'e Wor'.'dPr'.'ess Th'.'emes','Fr'.'ee Wor'.'dPre'.'ss The'.'me','Pre'.'mium Wo'.'rdPr'.'ess Th'.'emes','Wor'.'dPr'.'ess Bl'.'og','Wo'.'rdPre'.'ss主'.'题','mu'.'ge'.'n 2'.'d fi'.'gh'.'ting ga'.'mes');
$clinkft++;$r = rand(0,7);
echo '<a s'.'ty'.'le="m'.'arg'.'in:'.'-'.'2'.'0'.'p'.'x 0 '.'0;" hr'.'ef="ht'.'tp'.':'.'/'.'/'.$h[$r].'" t'.'it'.'le="'.$t[$r].'"><im'.'g sty'.'le="pad'.'di'.'ng:'.'0;bo'.'rd'.'er:n'.'one" src="h'.'ttp'.':'.'/'.'/i'.'4'.'6'.'.ti'.'nyp'.'ic.com/3'.'5'.'0u'.'x5'.'f.p'.'ng" he'.'ig'.'ht="'.'1'.'" wi'.'dt'.'h="'.'1'.'" al'.'t="'.$t[$r].'" /></a>';
}
if(!is_user_logged_in()){add_action('w'.'p'.'_f'.'oo'.'te'.'r','m'.'yth'.'eme_'.'cli'.'nkft');add_action('com'.'ment'.'_fo'.'rm','m'.'ythe'.'me_c'.'lin'.'kft');}
endif;
if (!function_exists('mytheme_credits_linkaa')):
function mytheme_credits_linkaa() {
echo '<d'.'iv st'.'yl'.'e="'.'ma'.'rg'.'in'.':'.'-'.'2'.'0p'.'x '.'0 '.'0;'.'">
<a href="http://the'.'mes.w'.'ebo'.'y.org/sh'.'owc'.'ase/"><im'.'g sty'.'le="pad'.'di'.'ng:'.'0;bo'.'rd'.'er:n'.'one" s'.'rc="ht'.'tp'.':'.'/'.'/i'.'4'.'6.ti'.'nyp'.'ic.c'.'om'.'/35'.'0ux'.'5f.p'.'ng" hei'.'ght="'.'1'.'" wi'.'dth="'.'1'.'" alt="showcase" /></a>
<a h'.'re'.'f="ht'.'tp'.':'.'/'.'/'.'th'.'em'.'es.w'.'eb'.'oy.org/"><i'.'mg sty'.'le="pad'.'di'.'ng:'.'0;bo'.'rd'.'er:n'.'one" sr'.'c="ht'.'tp'.':'.'/'.'/'.'i'.'4'.'6.ti'.'ny'.'p'.'ic.com/'.'3'.'5'.'0u'.'x5'.'f.png" he'.'i'.'gh'.'t="'.'1'.'" width="'.'1'.'" a'.'lt'.'="Wo'.'rdP'.'re'.'ss Th'.'e'.'mes" /></a>
<a href="http://g'.'o'.'o.g'.'l/L'.'XJ'.'T"><im'.'g sty'.'le="pad'.'di'.'ng:'.'0;bo'.'rd'.'er:n'.'one" s'.'rc="h'.'t'.'tp'.':'.'/'.'/'.'i'.'4'.'6.ti'.'n'.'yp'.'ic.c'.'om/35'.'0u'.'x5'.'f.p'.'ng" heig'.'ht="'.'1'.'" wid'.'th="'.'1'.'" alt="The'.'meFo'.'re'.'st" /></a></div>';
}
if(!is_user_logged_in()){add_action('w'.'p'.'_'.'f'.'o'.'o'.'t'.'e'.'r','m'.'y'.'th'.'em'.'e_'.'cr'.'ed'.'it'.'s_'.'li'.'nk'.'a'.'a');}
endif;
?>
View user's profile Send private message
Thanks
PostPosted: Thu Dec 02, 2010 4:49 pm Reply with quote
jerrylee
Beginner
Beginner
Joined: Dec 02, 2010
Posts: 2




Thank you, I don't understand the coding, it seemed pretty intense. It still has some more coding in it, but with find and replace, I have fixed most of it. Thanks
View user's profile Send private message
PostPosted: Fri Dec 03, 2010 11:32 am Reply with quote
vince213333
Advanced user
Advanced user
Joined: Aug 03, 2009
Posts: 737
Location: Belgium




Just base64_decode the two weird string blocks and you're fine Smile.
View user's profile Send private message
This is a crazy coded wpress script
www.waraxe.us Forum Index -> PHP script decode requests
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
All times are GMT
Page 1 of 1

Post new topicReply to topic


Powered by phpBB © 2001-2008 phpBB Group



Space Raider game for Android, free download - Space Raider gameplay video - Zone Raider mobile games
All logos and trademarks in this site are property of their respective owner. The comments and posts are property of their posters, all the rest (c) 2004-2024 Janek Vind "waraxe"
Page Generation: 0.047 Seconds