Closed. This question needs details or clarity. It is not currently accepting answers.
Want to improve this question? Add details and clarify the problem by editing this post.
Closed 7 years ago.
Improve this question
hi i take look inside some php files and find that the php inside is hidden or encrypted ,it's like this
<?php
echo "<div\x20\x69d\x3d\x22s\x69deba\x72\x22>\n\t";
if(is_active_sidebar("\x72igh\x74-\x73i\x64\x65\x62a\x72-s\x69n\x67\x6ce-\x70\x61g\x65"))
{
echo "\t\t";
dynamic_sidebar("\x72\x69\x67\x68\x74-s\x69de\x62\x61r-\x73i\x6e\x67\x6ce-pa\x67e");
echo "\t";
}
echo "\n</\x64\x69v>\x20\x3c!--\x65n\x64\x20\x23s\x69\x64e\x62\x61\x72-->\n\n";
?>
or
<?php $_F=__FILE__;$_X='Pz48NXJ0IDFsNXJ0LTVycjJyJz48NCBjbDFzcz0nNGMybi1yNW0ydjUnPjwvND4gQ1VSTCBQSFAgNXg1bnQ0Mm'));?>
so what's the difference between the both and how we can do this ?
this is not crypting but encoding, the later on is about a file identifier.
It can be done by encoding/decoding text in hexadecimal instead of ascii see http://www.rapidtables.com/convert/number/hex-to-ascii.htm
or by using escaped unicode see https://r12a.github.io/apps/conversion/ <= this is your case
Related
Closed. This question needs details or clarity. It is not currently accepting answers.
Want to improve this question? Add details and clarify the problem by editing this post.
Closed 1 year ago.
Improve this question
test.php?aa=c++ and echo $_GET['aa'] result only c without ++
<?php
echo $_GET['aa'];
?>
That's because the symbol for + is treated as white space by your browser or HTTP client! If you want to actually send the symbol + in your get request, please encode it first in your web browser.
You can try converting your C++ with tools such as this one https://www.w3schools.com/tags/ref_urlencode.ASP.
Closed. This question needs details or clarity. It is not currently accepting answers.
Want to improve this question? Add details and clarify the problem by editing this post.
Closed 2 years ago.
Improve this question
I used PHP's echo string in the WhatsApp share link, but when I share it on WhatsApp, the title space separates the trailing characters. help me.
<a class="footerbtn" href="whatsapp://send?text= *Surinder Muni* Early To Bed & Early To Rise* %0Amysite.com/?n=Good Morning">
<?php
echo $GET['n']
?>
You need to encode space (and other potencial invalid characters) when create link in WhatsApp
echo urlencode('Good morning');
In PHP for reading the $_GET['n'] value will be
echo urldecode($_GET['n']);
Closed. This question needs details or clarity. It is not currently accepting answers.
Want to improve this question? Add details and clarify the problem by editing this post.
Closed 7 years ago.
Improve this question
I have a question about which one is better? any feedback?
<?php
if (htmlentities($_SESSION['user_role'], ENT_QUOTES) != 'R') {
}
?>
OR
<?php
if ($_SESSION['user_role'] != 'R') {
}
?>
The purpose of htmlentities is to change things to valid HTML. All you care about here is whether the thing in $_SESSION is 'R,' and changing it to valid HTML won't alter that (as 'R,' like any other ASCII character, is already valid HTML).
Since there's no need for htmlentities, skip it.
Closed. This question needs details or clarity. It is not currently accepting answers.
Want to improve this question? Add details and clarify the problem by editing this post.
Closed 8 years ago.
Improve this question
Can you please tell me what type of php encoding this is:
<?php $ONbp = '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';$cD = '$LVt = base64_decode($ONbp); eval($LVt);';eval($cD);?>
and can we decode this ? If yes how can I ?
This type of encoding is called Base64 - http://en.wikipedia.org/wiki/Base64
You can decode it using base64_decode() function in PHP (as you can see it attached snippet) or online there - https://www.base64decode.org/
Closed. This question needs details or clarity. It is not currently accepting answers.
Want to improve this question? Add details and clarify the problem by editing this post.
Closed 8 years ago.
Improve this question
I am wondering why is that the $_SERVER['DOCUMENT_ROOT'] is not working in my code in echo with html option tag?
This is my sample:
echo "<option value='".$_SERVER['DOCUMENT_ROOT']."'/acces/login/validate?employee=".$login->employee()."&password=".$login->get_pwd()."'>LOGIN</option>";
It's generally a bad idea to reveal your document root, especially as there is no need for it in the browser. That aside, though, you should always look at the rendered HTML:
<option value='/path/to/doc/root'/acces/login/validate?employee=steve
&password=use plaintext and die'>LOGIN</option>
(Line wrap added to avoid ugly horizontal scrollbar)
See that extra ' after the doc root? That'll be your problem.