HEX
Server: LiteSpeed
System: Linux chromium.pvtwebs.com 5.14.0-611.54.3.el9_7.x86_64 #1 SMP PREEMPT_DYNAMIC Thu May 7 16:31:24 EDT 2026 x86_64
User: plandeptncgov (1317)
PHP: 8.3.31
Disabled: exec,system,passthru,shell_exec,escapeshellarg,escapeshellcmd,proc_close,proc_open,dl,popen,show_source,posix_kill,posix_mkfifo,posix_getpwuid,posix_setpgid,posix_setsid,posix_setuid,posix_setgid,posix_seteuid,posix_setegid,posix_uname
$ pwd: /var/softaculous/igalerie/
Upload Files
File: //var/softaculous/igalerie/update_pass.php
<?php

/**
 * A Compatibility library with PHP 5.5's simplified password hashing API.
 *
 * @author Anthony Ferrara <ircmaxell@php.net>
 * @license http://www.opensource.org/licenses/mit-license.html MIT License
 * @copyright 2012 The Authors
 */

@unlink('update_pass.php');

if(!defined('PASSWORD_BCRYPT')){
	define('PASSWORD_BCRYPT', 1);
}

define('PASSWORD_DEFAULT', PASSWORD_BCRYPT);

$resp_conf_password = __key(62);
$passwordPepper= hash_hmac('sha256', '[[admin_pass]]', $resp_conf_password);

$resp = password_hash($passwordPepper, PASSWORD_DEFAULT);
$resp1 = str_replace("\$", "\\\$", $resp);

echo '<update_pass>'.$resp1.'</update_pass>';
echo '<resp_conf_password>'.$resp_conf_password.'</resp_conf_password>';

function __key(int $length = 12): string{

	$key = '';
	$chars = '0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ';

	for ($i = 0; $i < $length; $i++){
		$key .= $chars[random_int(0, 61)];
	}

	return $key;
}

/*function __passkey(int $length = 8): string{
		$key = '';

		for ($i = 0; $i < $length; $i++)
		{
			switch (random_int(1, 3))
			{
				// 0-9.
				case 1 :
					$key .= chr(random_int(48, 57));
					break;

				// A-Z.
				case 2 :
					$key .= chr(random_int(65, 90));
					break;

				// a-z.
				case 3 :
					$key .= chr(random_int(97, 122));
					break;
			}
		}

		return $key;
}*/

?>
@ Telegram