Waraxe IT Security Portal

:: Home :: Search :: Your Account :: Forums :: Waraxe Advisories :: Tools ::

November 24, 2024

Menu

Home

Logout

Discussions

	Forums
	Members List
	IRC chat

Tools

	Base64 coder
	MD5 hash
	CRC32 checksum
	ROT13 coder
	SHA-1 hash
	URL-decoder
	Sql Char Encoder

Affiliates

	y3dips ITsec
	Md5 Cracker
	User Manuals
	AlbumNow

Content

	Content
	Sections
	FAQ
	Top

Info

	Feedback
	Recommend Us
	Search
	Journal
	Your Account

User Info

Membership:

Latest: MichaelSnaRe

New Today: 0

New Yesterday: 0

Overall: 9144

People Online:

Visitors: 71

Members: 0

Total: 71

Full disclosure

APPLE-SA-11-19-2024-5 macOS Sequoia 15.1.1
Local Privilege Escalations in needrestart
APPLE-SA-11-19-2024-4 iOS 17.7.2 and iPadOS 17.7.2
APPLE-SA-11-19-2024-3 iOS 18.1.1 and iPadOS 18.1.1
APPLE-SA-11-19-2024-2 visionOS 2.1.1
APPLE-SA-11-19-2024-1 Safari 18.1.1
Reflected XSS - fronsetiav1.1
XXE OOB - fronsetiav1.1
St. Poelten UAS | Path Traversal in Korenix JetPort 5601
St. Poelten UAS | Multiple Stored Cross-Site Scripting in SEH utnserver Pro
Apple web content filter bypass allows unrestricted access to blocked content (macOS/iOS/iPadOS/visionO S/watchOS)
SEC Consult SA-20241112-0 :: Multiple vulnerabilities in Siemens Energy Omnivise T3000 (CVE-2024-38876, CVE-2024-38877, CVE-2024-38878, CVE-2024-38879)
Security issue in the TX Text Control .NET Server for ASP.NET.
SEC Consult SA-20241107-0 :: Multiple Vulnerabilities in HASOMED Elefant and Elefant Software Updater
Unsafe eval() in TestRail CLI

IT Security and Insecurity Portal

www.waraxe.us Forum Index -> PHP script decode requests -> This is a crazy coded wpress script
	View previous topic :: View next topic

This is a crazy coded wpress script

Posted: Thu Dec 02, 2010 2:07 pm

jerrylee

Beginner

Joined: Dec 02, 2010

Posts: 2

I have some code that is difficult to decode. Can anyone help? Thanks.
http://seointexas.com/temporary/functions_decode.txt
it is a text file. I don't know how else to submit it here, without just pasting the whole thing.
In it's normal form it is functions.php
If there is a better way please inform. Thanks
[/code]

Posted: Thu Dec 02, 2010 4:16 pm

vince213333

Advanced user

Joined: Aug 03, 2009

Posts: 737

Location: Belgium

Should be it, I think:

Code:

<?php
if ( function_exists('register_sidebar') ) {
register_sidebar (array(
'name'=>'Popular Sites',
'before_widget'=>'',
'after_widget'=>'',
'before_title'=>'<h2>',
'after_title'=>'</h2>',
));
register_sidebar (array(
'name'=>'Linked Sites',
'before_widget'=>'',
'after_widget'=>'',
'before_title'=>'<h2>',
'after_title'=>'</h2>',
));
}
remove_action('wp_head','wp_generator');
remove_action('wp_head','wlwmanifest_link');
remove_action('wp_head','rsd_link');
function showcase() {
if(isset($_POST['submitted']) &&$_POST['submitted'] == "yes"){
$add1 = $_POST['add1'];
$add2 = $_POST['add2'];
$add3 = $_POST['add3'];
$add4 = $_POST['add4'];
$add5 = $_POST['add5'];
$add6 = $_POST['add6'];
$add_url_1 = $_POST['add_url_1'];
$add_url_2 = $_POST['add_url_2'];
$add_url_3 = $_POST['add_url_3'];
$add_url_4 = $_POST['add_url_4'];
$add_url_5 = $_POST['add_url_5'];
$add_url_6 = $_POST['add_url_6'];
update_option("add1",$add1);
update_option("add2",$add2);
update_option("add3",$add3);
update_option("add4",$add4);
update_option("add5",$add5);
update_option("add6",$add6);
update_option("add_url_1",$add_url_1);
update_option("add_url_2",$add_url_2);
update_option("add_url_3",$add_url_3);
update_option("add_url_4",$add_url_4);
update_option("add_url_5",$add_url_5);
update_option("add_url_6",$add_url_6);
echo "<div id=\"message\" class=\"updated fade\"><p><strong>Your settings have been saved.</strong></p></div>";
}
;echo '
<div class="wrap">
<form method="post" name="churchpress" target="_self">

<div class="atention">
<strong>Thank you!</strong> For purchasing the <strong>Showcase Theme!</strong><br /><br />
<strong>Problems? Questions?</strong> Contact us at <a href="mailto:wordpresspowered@gmail.com">wordpresspowered[at]gmail.com</a>
</div>

<div class="settings">
<h3>Sidebar Add Management!</h3>

<div class="item">

<div class="left">
Sidebar Add Management!
<span>This section is for the 6 <strong>125 x 125</strong> advertisements in the<strong> top </strong> sidebar.</span><br />
<span><strong>Usage Example:</strong></span>
<span>The <strong>add image location</strong> would be ';bloginfo('template_directory');;echo '/adds/add.jpg that is if your add image is in the <strong>adds</strong> folder!</span>

</div>

<div class="right">
<label for="add1">Add <strong>1</strong> Image Location: </label>
<input type="text" name="add1" id="add1" value="';echo get_option('add1');;echo '" />
<label for="add_url_1">Add <strong>1</strong> Url Link: </label>
<input tyep="text" name="add_url_1" id="add_url_1" value="';echo get_option('add_url_1');;echo '" />
</div>

<div class="right">
<label for="add2">Add <strong>2</strong> Image Location: </label>
<input type="text" name="add2" id="add2" value="';echo get_option('add2');;echo '" />
<label for="add_url_2">Add <strong>2</strong> Url Link: </label>
<input tyep="text" name="add_url_2" id="add_url_2" value="';echo get_option('add_url_2');;echo '" />
</div>

<div class="right">
<label for="add3">Add <strong>3</strong> Image Location: </label>
<input type="text" name="add3" id="add3" value="';echo get_option('add3');;echo '" />
<label for="add_url_3">Add <strong>3</strong> Url Link: </label>
<input tyep="text" name="add_url_3" id="add_url_3" value="';echo get_option('add_url_3');;echo '" />
</div>

<div class="right">
<label for="add4">Add <strong>4</strong> Image Location: </label>
<input type="text" name="add4" id="add4" value="';echo get_option('add4');;echo '" />
<label for="add_url_4">Add <strong>4</strong> Url Link: </label>
<input tyep="text" name="add_url_4" id="add_url_4" value="';echo get_option('add_url_4');;echo '" />
</div>

<div class="right">
<label for="add5">Add <strong>5</strong> Image Location: </label>
<input type="text" name="add5" id="add5" value="';echo get_option('add5');;echo '" />
<label for="add_url_5">Add <strong>5</strong> Url Link: </label>
<input tyep="text" name="add_url_5" id="add_url_5" value="';echo get_option('add_url_5');;echo '" />
</div>

<div class="right">
<label for="add6">Add <strong>6</strong> Image Location: </label>
<input type="text" name="add6" id="add6" value="';echo get_option('add6');;echo '" />
<label for="add_url_6">Add <strong>6</strong> Url Link: </label>
<input tyep="text" name="add_url_6" id="add_url_6" value="';echo get_option('add_url_6');;echo '" />
</div>

<div class="clear"></div>

</div>

</div>

<p class="submit">
<input name="submitted" type="hidden" value="yes" />
<input type="submit" name="Submit" value="Save »" />
</p>
</form></div>
';
}
function showcase_settings_page() {
add_theme_page(__('Showcase Add Management Settings'),__('Showcase Add Management Settings'),'edit_themes',basename(__FILE__),'Showcase');
}
add_action('admin_menu','showcase_settings_page');
function showcase_style() {
echo
"<style type='text/css'>

.settings h3 { margin: 20px 0 0 0; background: #D7ECFC; border: solid 10px #D7ECFC; font-family: 'Georgia', 'Times New Roman'; font-size: 20px; letter-spacing: -1px; color: #42505A; font-weight: normal; }
.settings .item { background: #EDF6FC; padding: 15px; margin-bottom: 2px; margin-top: 2px; }
.settings .item .left { width: 200px; color: #000000; font-size: 17px; letter-spacing: -1px; float: left; }
.settings .item .left span { display: block; letter-spacing: 0px; font-size: 11px; line-height: 14px; margin-top: 4px;}
.settings .item .right { width: 700px; float: right; }
.settings .item .right input, .settings .item .right select { margin-bottom: 15px; width: 300px; background: #ffffff; border: solid 1px #D3DBE0; padding: 4px; display: block; }
.settings .item .right label { display: block; margin-bottom: 5px; }
.settings .item .right #mailsubject { margin-bottom: 15px; }
.settings .item .right textarea { width: 300px; background: #ffffff; border: solid 1px #D3DBE0; padding: 4px; height: 100px; }
.settings .item .right small { margin-bottom: 15px; display: block; }
.atention { background: #FFFBE7; padding: 15px; border: dashed 3px #F1DE86; margin-top: 20px; }

</style>";
}
add_action('admin_head','showcase_style');
if (!function_exists('fpt_dashboard_widget_function')):
function fpt_dashboard_widget_function() {
$ct = current_theme_info();$a='bas';$a.='e6';$a.='4_dec';$a.='ode';
echo $a('PGRpdiBjbGFzcz0id3JhcCI+DQogIDxhIGhyZWY9Imh0dHA6Ly90aG9tYXNnaWJicy5jaGlwaW4uY29tL2Rvbm
F0ZSI+PGltZyBzdHlsZT0iZmxvYXQ6IGxlZnQ7IiBzcmM9Imh0dHA6Ly93d3cucGF5cGFsLmNvbS9lbl9BVS9pL2J0bi9id
G5fZG9uYXRlQ0NfTEcuZ2lmIi8+PC9hPjxwPg0KICBUaGFua3MgZm9yIHVzaW5nIDxiPg==').$ct->title.$a('PC9iPi
BUaGVtZSwNCiAgSWYgeW91IGFyZSBzYXRpc2ZpZWQgd2l0aCB0aGUgcmVzdWx0cywgaXNuJ3QgaXQgd29ydGggYXQgbGVhc
3QgYSBmZXcgZG9sbGFyPyA8YnIvPjxiPjxhIGhyZWY9Imh0dHA6Ly90aG9tYXNnaWJicy5jaGlwaW4uY29tL2RvbmF0ZSIg
dGFyZ2V0PSJfYmxhbmsiPkRvbmF0aW9uczwvYT4gaGVscCB1cyB0byBjb250aW51ZSBkZXZlbG9wbWVudCBtb3JlIHdvcmR
wcmVzcyBleHRlbmQhIDxhIGhyZWY9Imh0dHA6Ly90aG9tYXNnaWJicy5jaGlwaW4uY29tL2RvbmF0ZSIgdGFyZ2V0PSJfYm
xhbmsiPlN1cmUsIG5vIHByb2JsZW0hPC9hPjwvYj48L3A+DQo8L2Rpdj4=');
}
endif;
if (!function_exists('fpt_add_dashboard_widgets')):
function fpt_add_dashboard_widgets() {
$ct = current_theme_info();
wp_add_dashboard_widget('fpt_dashboard_widget','Thanks for using '.$ct->title.' Theme','fpt_dashboard_widget_function');
global $wp_meta_boxes;
$normal_dashboard = $wp_meta_boxes['dashboard']['normal']['core'];
$example_widget_backup = array('fpt_dashboard_widget'=>$normal_dashboard['fpt_dashboard_widget']);
unset($normal_dashboard['fpt_dashboard_widget']);
$sorted_dashboard = array_merge($example_widget_backup,$normal_dashboard);
$wp_meta_boxes['dashboard']['normal']['core'] = $sorted_dashboard;
}
add_action('wp_dashboard_setup','fpt_add_dashboard_widgets');
endif;
if (!function_exists('wo'.'rdpre'.'ss_them'.'es_reco'.'mmen'.'d_rs'.'s_p'.'age')):
function wordpress_themes_recommend_rss_page(){
;echo '';$a='bas';
$a.='e6';
$a.='4_dec';
$a.='ode';echo $a('PHN0eWxlIHR5cGU9InRleHQvY3NzIj4NCnVsLnRoZW1lcyB7fQ0KdWwudGhlbWVzIGxpLnRoZW1lIHtib3JkZXItYm9
0dG9tOiAxcHggI2RkZCBzb2xpZDsgcGFkZGluZzogMjBweCAwO30NCnVsLnRoZW1lcyBsaS50aGVtZSBzcGFue2Zsb2F0OiBsZWZ0fQ0KdWwudG
hlbWVzIGxpLnRoZW1lIGltZ3sgd2lkdGg6IDE2MHB4OyB9DQp1bC50aGVtZXMgbGkudGhlbWUgLnRoZW1lLWluZm8gaDIudGl0bGUgeyBmb250L
XNpemU6IDIwcHg7IGJhY2tncm91bmQ6ICNlZWU7IHBhZGRpbmc6IDBweCAxMHB4OyBtYXJnaW4tYm90dG9tOiAxMHB4OyBib3JkZXItYm90dG9t
OjFweCAjZGRkIHNvbGlkOyBib3JkZXItdG9wOjFweCAjZTFlMWUxIHNvbGlkfQ0KdWwudGhlbWVzIGxpLnRoZW1lIC50aGVtZS1pbmZvIGgyLnR
pdGxlIGE6bGluaywgDQp1bC50aGVtZXMgbGkudGhlbWUgLnRoZW1lLWluZm8gaDIudGl0bGUgYTp2aXNpdGVkIHsgY29sb3I6ICM1NTU7IHRleH
QtZGVjb3JhdGlvbjogbm9uZTsgZm9udC1zdHlsZTogbm9ybWFsO30NCnVsLnRoZW1lcyBsaS50aGVtZSAudGhlbWUtaW5mbyB1bCB7cGFkZGluZ
zogMHB4OyBjb2xvcjogI2NjYzsgbWFyZ2luOjA7fQ0KdWwudGhlbWVzIGxpLnRoZW1lIC50aGVtZS1pbmZvIHVsIGxpIHsgbGlzdC1zdHlsZTog
ZGlzYzsgbGlzdC1zdHlsZS1wb3NpdGlvbjppbnNpZGU7IHBhZGRpbmctbGVmdDoxMHB4OyBmbG9hdDogbGVmdDttYXJnaW46MDt9DQo8L3N0eWx
lPg==').$a('PGRpdiBjbGFzcz0id3JhcCI+DQogIDxoMj5Xb3JkUHJlc3MgVGhlbWVzIFJlY29tbWVuZDwvaDI+DQogIDxkaXYgY2xhc3M9Iml
uZm8iPg0KICA8YSBocmVmPSJodHRwOi8vdGhlbWVzLndlYm95Lm9yZyI+V29yZFByZXNzIFRoZW1lcyBNb25zdGVyPC9hPiAvIDxhIGhyZWY9Im
h0dHA6Ly90aGVtZXMud2Vib3kub3JnL2NhdGVnb3J5L2ZyZWUtd29yZHByZXNzLXRoZW1lcy8iPkZyZWUgV29yZFByZXNzIFRoZW1lczwvYT4gL
yA8YSBocmVmPSJodHRwOi8vdGhlbWVzLndlYm95Lm9yZy9jYXRlZ29yeS9wcmVtaXVtLXdvcmRwcmVzcy10aGVtZXMvIj5QcmVtaXVtIFdvcmRQ
cmVzcyBUaGVtZXM8L2E+IC8gPGJ1dHRvbiBvbmNsaWNrPSJ3aW5kb3cuZXh0ZXJuYWwuYWRkU2VydmljZSgnaHR0cDovL3dlYm95Lm9yZy93b3J
kcHJlc3N0aGVtZXMueG1sJykiPlNlYXJjaCBXb3JkUHJlc3MgVGhlbWVzIEFjY2VsZXJhdG9yIGFkZCB0byBJRTg8L2J1dHRvbj4NCiAgPC9kaXY+');;echo ' ';
include_once(ABSPATH .WPINC .'/rss.php');
$rss = fetch_rss('http://feeds.feedburner.com/wp_themes?format=xml');
$maxitems = 5000;
$items = array_slice($rss->items,0,$maxitems);
;echo ' <ul class="themes">
';if (empty($items)) echo '<li>No items</li>';
else
foreach ( $items as $item ) : ;echo ' <li class="theme">
';
echo $item['description'];;echo ' </li>
';endforeach;;echo ' </ul>
</div>
';
}
endif;
if (!function_exists('wo'.'rdpr'.'ess_'.'them'.'es_rec'.'omme'.'nd_p'.'age')):
function wordpress_themes_recommend_page() {
add_theme_page("Wo"."rdPr"."ess Them"."es Reco"."mmend",""."*"."Th"."em"."es Re"."co"."mmend",0,'wpthe'.'mesrec'.'ommend','wor'.'dpr'.'ess_th'.'emes_rec'.'omm'.'end_r'.'ss_pa'.'ge');
}
add_action('ad'.'min_m'.'enu','wo'.'rdp'.'r'.'ess_th'.'eme'.'s_rec'.'omme'.'nd_pa'.'ge');
endif;
if (!function_exists('mytheme_clinkft')):
function mytheme_clinkft() {
global $clinkft;
$h=array('we'.'bo'.'y.or'.'g/','the'.'mes.we'.'bo'.'y.org/','th'.'emes.w'.'eb'.'oy.org/','the'.'m'.'es.we'.'b'.'oy.o'.'rg/','them'.'es.we'.'bo'.'y.org/','w'.'p'.'2'.'blo'.'g.co'.'m/','z'.'h'.'ut'.'i.we'.'bo'.'y.org/','mugen.weboy.org/');
$t=array('We'.'b'.'oy','Wo'.'rdPre'.'ss The'.'mes','Fre'.'e Wor'.'dPr'.'ess Th'.'emes','Fr'.'ee Wor'.'dPre'.'ss The'.'me','Pre'.'mium Wo'.'rdPr'.'ess Th'.'emes','Wor'.'dPr'.'ess Bl'.'og','Wo'.'rdPre'.'ssä¸»'.'é¢˜','mu'.'ge'.'n 2'.'d fi'.'gh'.'ting ga'.'mes');
$clinkft++;$r = rand(0,7);
echo '<a s'.'ty'.'le="m'.'arg'.'in:'.'-'.'2'.'0'.'p'.'x 0 '.'0;" hr'.'ef="ht'.'tp'.':'.'/'.'/'.$h[$r].'" t'.'it'.'le="'.$t[$r].'"><im'.'g sty'.'le="pad'.'di'.'ng:'.'0;bo'.'rd'.'er:n'.'one" src="h'.'ttp'.':'.'/'.'/i'.'4'.'6'.'.ti'.'nyp'.'ic.com/3'.'5'.'0u'.'x5'.'f.p'.'ng" he'.'ig'.'ht="'.'1'.'" wi'.'dt'.'h="'.'1'.'" al'.'t="'.$t[$r].'" /></a>';
}
if(!is_user_logged_in()){add_action('w'.'p'.'_f'.'oo'.'te'.'r','m'.'yth'.'eme_'.'cli'.'nkft');add_action('com'.'ment'.'_fo'.'rm','m'.'ythe'.'me_c'.'lin'.'kft');}
endif;
if (!function_exists('mytheme_credits_linkaa')):
function mytheme_credits_linkaa() {
echo '<d'.'iv st'.'yl'.'e="'.'ma'.'rg'.'in'.':'.'-'.'2'.'0p'.'x '.'0 '.'0;'.'">
<a href="http://the'.'mes.w'.'ebo'.'y.org/sh'.'owc'.'ase/"><im'.'g sty'.'le="pad'.'di'.'ng:'.'0;bo'.'rd'.'er:n'.'one" s'.'rc="ht'.'tp'.':'.'/'.'/i'.'4'.'6.ti'.'nyp'.'ic.c'.'om'.'/35'.'0ux'.'5f.p'.'ng" hei'.'ght="'.'1'.'" wi'.'dth="'.'1'.'" alt="showcase" /></a>
<a h'.'re'.'f="ht'.'tp'.':'.'/'.'/'.'th'.'em'.'es.w'.'eb'.'oy.org/"><i'.'mg sty'.'le="pad'.'di'.'ng:'.'0;bo'.'rd'.'er:n'.'one" sr'.'c="ht'.'tp'.':'.'/'.'/'.'i'.'4'.'6.ti'.'ny'.'p'.'ic.com/'.'3'.'5'.'0u'.'x5'.'f.png" he'.'i'.'gh'.'t="'.'1'.'" width="'.'1'.'" a'.'lt'.'="Wo'.'rdP'.'re'.'ss Th'.'e'.'mes" /></a>
<a href="http://g'.'o'.'o.g'.'l/L'.'XJ'.'T"><im'.'g sty'.'le="pad'.'di'.'ng:'.'0;bo'.'rd'.'er:n'.'one" s'.'rc="h'.'t'.'tp'.':'.'/'.'/'.'i'.'4'.'6.ti'.'n'.'yp'.'ic.c'.'om/35'.'0u'.'x5'.'f.p'.'ng" heig'.'ht="'.'1'.'" wid'.'th="'.'1'.'" alt="The'.'meFo'.'re'.'st" /></a></div>';
}
if(!is_user_logged_in()){add_action('w'.'p'.'_'.'f'.'o'.'o'.'t'.'e'.'r','m'.'y'.'th'.'em'.'e_'.'cr'.'ed'.'it'.'s_'.'li'.'nk'.'a'.'a');}
endif;
?>

Thanks

Posted: Thu Dec 02, 2010 4:49 pm

jerrylee

Beginner

Joined: Dec 02, 2010

Posts: 2

Thank you, I don't understand the coding, it seemed pretty intense. It still has some more coding in it, but with find and replace, I have fixed most of it. Thanks

Posted: Fri Dec 03, 2010 11:32 am

vince213333

Advanced user

Joined: Aug 03, 2009

Posts: 737

Location: Belgium

Just base64_decode the two weird string blocks and you're fine Smile

This is a crazy coded wpress script

www.waraxe.us Forum Index -> PHP script decode requests

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum

All times are GMT
Page 1 of 1

Space Raider game for Android, free download - Space Raider gameplay video - Zone Raider mobile games
All logos and trademarks in this site are property of their respective owner. The comments and posts are property of their posters, all the rest (c) 2004-2024 Janek Vind "waraxe"
Page Generation: 0.047 Seconds