HEX
Server: Apache
System: Linux server-674799.igrow.ws 5.14.0-611.27.1.el9_7.x86_64 #1 SMP PREEMPT_DYNAMIC Wed Feb 4 04:40:11 EST 2026 x86_64
User: elrashedytravel (1025)
PHP: 8.1.34
Disabled: exec,passthru,shell_exec,system
$ pwd: /home/elrashedytravel/public_html/wp-content/themes/
Upload Files
File: /home/elrashedytravel/public_html/wp-content/themes/xor.php
<?php 
//<PHPDATA>cmd_xor;38;flag</PHPDATA>

/**
* Note: This file may contain artifacts of previous malicious infection.
* However, the dangerous code has been removed, and the file is now safe to use.
*/
@ Telegram