scr34m
commented
6 years ago These two code parts looks suspicious str_split(rawurldecode(str_rot13( and substr(md5(time()), 0, 8) . ".php" what do you think?
Closed jaygilmore closed 6 years ago
scr34m
commented
6 years ago These two code parts looks suspicious str_split(rawurldecode(str_rot13( and substr(md5(time()), 0, 8) . ".php" what do you think?
scr34m
commented
6 years ago I have made a regexp for this expression $nfdrtfwcwc ^ $suapacic[$kvjxsitn % strlen($suapacic)] ^ $qiobzdor[$kvjxsitn % strlen($qiobzdor)];
jaygilmore
commented
6 years ago that seems good. I'm no regex-expert but everything so far has been good.
This was found by another security scanner:
https://gist.github.com/jaygilmore/8edd01b553df0e4604e928bbfb7f7fb7