Online PHP Javascript Script Decoder

Online PHP and Javascript Decoder decode hidden script to uncover its real functionality

Original code:

namespace MO_CAW\Common\Views;

use MO_CAW\Common\DB_Utils;
use MO_CAW\Common\Constants;
use MO_CAW\Common\Functionality\MO_User as Common_MO_User_Functionality;
use MO_CAW\common\Utils;
class UI_Handler
{
    public $tab;
    public $action;
    public $connection_name;
    public function __construct()
    {
        $this->tab = !empty($_GET["\164\141\142"]) ? sanitize_text_field(wp_unslash($_GET["\164\141\142"])) : '';
        $this->action = !empty($_GET["\x61\143\x74\151\x6f\x6e"]) ? sanitize_text_field(wp_unslash($_GET["\141\143\164\x69\x6f\x6e"])) : '';
        $this->connection_name = !empty($_GET["\143\157\156\x6e\x65\x63\x74\151\157\156\x5f\x6e\141\155\x65"]) ? sanitize_text_field(wp_unslash($_GET["\143\x6f\156\156\145\143\164\151\x6f\x6e\x5f\x6e\141\155\x65"])) : '';
        $TJ = Constants::PLAN_NAMESPACE . "\134\126\151\x65\x77\x73\x5c\104\151\163\x70\x6c\141\171\x5f\103\157\155\155\x6f\156";
        $user = "\125\x73\x65\x72\x20\166\x65\x72\x69\x66\x69\145\144";
        if (!("\x55\163\145\162\x20\x76\x65\x72\x69\x66\x69\145\144" !== $user && Constants::USER_ACCOUNT_TAB !== $this->tab)) {
            goto Wy;
        }
        $this->tab = Constants::USER_ACCOUNT_TAB;
        $this->action = '';
        $this->connection_name = '';
        Wy:
    }
    private function display_tab_content()
    {
        $HU = Constants::PLAN_NAMESPACE . "\134\x46\x75\x6e\x63\x74\x69\x6f\x6e\x61\x6c\151\164\x79\x5c\x4d\x4f\x5f\x55\163\x65\x72";
        if (!(!$HU::does_user_has_license() && Constants::PRICING_PLAN_TAB !== $this->tab)) {
            goto hl;
        }
        $this->tab = Constants::USER_ACCOUNT_TAB;
        hl:
        switch ($this->tab) {
            case Constants::CUSTOM_API_TAB:
                $Yu = $this->instance_creator("\101\120\x49\x5f\x43\162\145\141\164\x69\157\x6e");
                $Yu->display_api_creation_ui($this->tab, $this->action);
                goto JJ;
            case Constants::CUSTOM_SQL_API_TAB:
                $Ck = $this->instance_creator("\x53\x51\114\137\101\x50\x49\x5f\x43\x72\145\x61\x74\151\157\156");
                $Ck->display_sql_api_creation_ui($this->tab, $this->action);
                goto JJ;
            case Constants::CONNECT_EXTERNAL_API_TAB:
                $bg = $this->instance_creator("\105\x78\164\145\162\x6e\141\x6c\x5f\101\120\111\x5f\x43\x6f\x6e\156\145\x63\164\151\x6f\x6e");
                $bg->display_external_api_connection_ui($this->tab, $this->action);
                goto JJ;
            case Constants::PRICING_PLAN_TAB:
                License::display_license_plans();
                goto JJ;
            case Constants::USER_ACCOUNT_TAB:
                $bg = $this->instance_creator("\x4d\x4f\x5f\125\163\145\162");
                $bg->display_user_account_ui($this->tab, $this->action);
                goto JJ;
            default:
                $Yu = $this->instance_creator("\101\x50\111\x5f\103\162\145\x61\x74\x69\157\156");
                $Yu->display_api_creation_ui($this->tab, $this->action);
        }
        kp:
        JJ:
    }
    public function display_complete_content()
    {
        Display_Common::display_top_navbar();
        Display_Common::display_side_navbar($this->tab);
        MO_User::display_support_popup();
        echo "\11\x9\x3c\144\151\x76\40\x63\x6c\x61\163\x73\75\x22\x72\x6f\x77\40\160\x73\x2d\65\40\x6d\x73\x2d\64\40\155\x65\55\x31\x22\76\12\11\11\11\x3c\x64\x69\166\x3e\xa\11\x9\x9\x9";
        Display_Common::display_notice();
        echo "\x9\11\x9\x3c\57\x64\151\166\x3e\xa\x9\x9\x9\x3c\x64\151\x76\40\143\154\141\163\163\x3d\x22\x63\157\154\x2d\155\x64\x2d\70\40\x70\x73\55\63\x22\40\x3e\12\11\11\x9\11\74\x64\x69\x76\40\143\154\141\163\x73\75\42\x6d\x79\55\63\x22\x20\x3e\12\x9\x9\11\x9\11";
        $this->display_tab_content();
        echo "\x9\x9\11\11\74\x2f\x64\151\x76\x3e\12\11\11\x9\x3c\x2f\144\151\166\x3e\xa\x9\11\11\74\x64\x69\166\x20\x63\154\141\x73\163\75\42\143\x6f\154\x2d\155\144\55\64\x22\x3e\12\x9\11\11\x9";
        Display_Common::display_side_section();
        echo "\x9\x9\11\74\x2f\x64\151\x76\76\12\x9\11\x3c\x2f\x64\x69\x76\x3e\12\x9\x9";
    }
    public static function enable_disable_api()
    {
        $zi = isset($_POST["\x74\x79\x70\145"]) ? sanitize_text_field(wp_unslash($_POST["\x74\171\160\145"])) : true;
        if (Constants::GUI_ENDPOINT === $zi) {
            goto AT;
        }
        if (Constants::SQL_ENDPOINT === $zi) {
            goto cF;
        }
        if (Constants::EXTERNAL_ENDPOINT === $zi) {
            goto RD;
        }
        goto jE;
        AT:
        $Sw = "\155\157\137\143\x61\167\137\143\165\x73\164\x6f\155\137\x61\x70\x69\x5f\x65\x6e\141\142\154\x65\137\x64\x69\x73\x61\x62\154\145\137\x61\160\x69";
        goto jE;
        cF:
        $Sw = "\155\x6f\x5f\x63\141\x77\x5f\x63\x75\163\164\157\x6d\x5f\x73\x71\x6c\x5f\141\160\x69\137\145\156\141\x62\x6c\x65\x5f\x64\151\x73\x61\x62\x6c\x65\x5f\x61\160\151";
        goto jE;
        RD:
        $Sw = "\x6d\x6f\137\x63\x61\x77\137\x65\x78\164\145\162\x6e\141\x6c\x5f\x61\160\x69\137\145\156\141\142\x6c\x65\137\144\151\x73\141\x62\x6c\x65\x5f\141\x70\151";
        jE:
        if (isset($_POST["\156\x6f\x6e\143\145"]) && check_ajax_referer($Sw, "\x6e\157\x6e\x63\x65")) {
            goto zT;
        }
        wp_send_json_error("\111\156\x76\141\154\151\x64\x20\x6e\157\x6e\143\145", 400);
        goto Ai;
        zT:
        $hW = isset($_POST["\x61\160\151\x2d\156\141\x6d\145"]) ? sanitize_text_field(wp_unslash($_POST["\141\x70\151\55\156\x61\x6d\145"])) : '';
        $we = isset($_POST["\x6d\145\x74\150\x6f\144"]) ? sanitize_text_field(wp_unslash($_POST["\x6d\x65\x74\x68\x6f\x64"])) : '';
        $Qi = isset($_POST["\156\141\x6d\x65\163\160\x61\143\145"]) ? sanitize_text_field(wp_unslash($_POST["\156\141\155\x65\x73\160\x61\143\145"])) : '';
        $ip = isset($_POST["\x69\163\55\x65\156\141\142\x6c\x65\x64"]) ? sanitize_text_field(wp_unslash($_POST["\x69\x73\x2d\x65\156\x61\x62\x6c\145\144"])) : true;
        $ip = "\146\141\154\163\145" === $ip ? false : true;
        if (!empty($hW)) {
            goto Lk;
        }
        wp_send_json_error("\111\x6e\166\141\x6c\151\x64\40\101\120\x49\40\x6e\x61\x6d\x65", 400);
        goto eM;
        Lk:
        $ax = array("\x74\171\160\x65" => $zi, "\x63\157\x6e\156\145\x63\x74\151\x6f\156\x5f\x6e\x61\x6d\145" => $hW, "\155\x65\164\x68\x6f\x64" => $we, "\x6e\x61\155\145\x73\160\141\143\x65" => $Qi, "\x69\163\137\x65\x6e\x61\x62\x6c\145\x64" => $ip);
        $nm = DB_Utils::update_enable_of_endpoint($ax);
        if ($nm) {
            goto od;
        }
        wp_send_json_error("\x41\x6e\x20\x65\162\162\x6f\x72\40\157\143\143\165\162\162\145\x64\x20" . ($ip ? "\145\x6e\x61\x62\154\151\x6e\147" : "\x64\151\163\x61\142\154\151\156\147") . "\x20\164\x68\x65\x20\101\x50\x49", 400);
        goto UC;
        od:
        wp_send_json_success("\x41\x50\111\x20" . ($ip ? "\145\156\141\142\x6c\x65\x64" : "\144\151\163\141\x62\x6c\145\144") . "\40\163\165\x63\143\145\163\x73\146\165\154\x6c\171", 200);
        UC:
        eM:
        Ai:
    }
    public function instance_creator($lr)
    {
        $mM = Constants::PLAN_NAMESPACE . "\x5c\x56\151\145\x77\x73\x5c";
        $z8 = $mM . $lr;
        $Y7 = new $z8($this->action);
        return $Y7;
    }
}

Show other level

Decrypted code level 1:

namespace MO_CAW\Common\Views;

use MO_CAW\Common\DB_Utils;
use MO_CAW\Common\Constants;
use MO_CAW\Common\Functionality\MO_User as Common_MO_User_Functionality;
use MO_CAW\common\Utils;
class UI_Handler
{
    public $tab;
    public $action;
    public $connection_name;
    public function __construct()
    {
        $this->tab = !empty($_GET["tab"]) ? sanitize_text_field(wp_unslash($_GET["tab"])) : '';
        $this->action = !empty($_GET["action"]) ? sanitize_text_field(wp_unslash($_GET["action"])) : '';
        $this->connection_name = !empty($_GET["connection_name"]) ? sanitize_text_field(wp_unslash($_GET["connection_name"])) : '';
        $TJ = Constants::PLAN_NAMESPACE . "\Views\Display_Common";
        $user = "User verified";
        if (!("User verified" !== $user && Constants::USER_ACCOUNT_TAB !== $this->tab)) {
            goto Wy;
        }
        $this->tab = Constants::USER_ACCOUNT_TAB;
        $this->action = '';
        $this->connection_name = '';
        Wy:
    }
    private function display_tab_content()
    {
        $HU = Constants::PLAN_NAMESPACE . "\Functionality\MO_User";
        if (!(!$HU::does_user_has_license() && Constants::PRICING_PLAN_TAB !== $this->tab)) {
            goto hl;
        }
        $this->tab = Constants::USER_ACCOUNT_TAB;
        hl:
        switch ($this->tab) {
            case Constants::CUSTOM_API_TAB:
                $Yu = $this->instance_creator("API_Creation");
                $Yu->display_api_creation_ui($this->tab, $this->action);
                goto JJ;
            case Constants::CUSTOM_SQL_API_TAB:
                $Ck = $this->instance_creator("SQL_API_Creation");
                $Ck->display_sql_api_creation_ui($this->tab, $this->action);
                goto JJ;
            case Constants::CONNECT_EXTERNAL_API_TAB:
                $bg = $this->instance_creator("External_API_Connection");
                $bg->display_external_api_connection_ui($this->tab, $this->action);
                goto JJ;
            case Constants::PRICING_PLAN_TAB:
                License::display_license_plans();
                goto JJ;
            case Constants::USER_ACCOUNT_TAB:
                $bg = $this->instance_creator("MO_User");
                $bg->display_user_account_ui($this->tab, $this->action);
                goto JJ;
            default:
                $Yu = $this->instance_creator("API_Creation");
                $Yu->display_api_creation_ui($this->tab, $this->action);
        }
        kp:
        JJ:
    }
    public function display_complete_content()
    {
        Display_Common::display_top_navbar();
        Display_Common::display_side_navbar($this->tab);
        MO_User::display_support_popup();
        echo "	\x9<div class="row ps-5 ms-4 mei">
			<div>\xa	\x9\x9\x9";
        Display_Common::display_notice();
        echo "\x9	\x9</div>\xa\x9\x9\x9<div class="col-md-8 ps-3" >
		\x9	<div class="my-3" >
\x9\x9	\x9	";
        $this->display_tab_content();
        echo "\x9\x9		</div>
		\x9</div>\xa\x9		<div class="col-md-4">
\x9		\x9";
        Display_Common::display_side_section();
        echo "\x9\x9	</div>
\x9	</div>
\x9\x9";
    }
    public static function enable_disable_api()
    {
        $zi = isset($_POST["type"]) ? sanitize_text_field(wp_unslash($_POST["type"])) : true;
        if (Constants::GUI_ENDPOINT === $zi) {
            goto AT;
        }
        if (Constants::SQL_ENDPOINT === $zi) {
            goto cF;
        }
        if (Constants::EXTERNAL_ENDPOINT === $zi) {
            goto RD;
        }
        goto jE;
        AT:
        $Sw = "mo_caw_custom_api_enable_disable_api";
        goto jE;
        cF:
        $Sw = "mo_caw_custom_sql_api_enable_disable_api";
        goto jE;
        RD:
        $Sw = "mo_caw_external_api_enable_disable_api";
        jE:
        if (isset($_POST["nonce"]) && check_ajax_referer($Sw, "nonce")) {
            goto zT;
        }
        wp_send_json_error("Invalid nonce", 400);
        goto Ai;
        zT:
        $hW = isset($_POST["api-name"]) ? sanitize_text_field(wp_unslash($_POST["api-name"])) : '';
        $we = isset($_POST["method"]) ? sanitize_text_field(wp_unslash($_POST["method"])) : '';
        $Qi = isset($_POST["namespace"]) ? sanitize_text_field(wp_unslash($_POST["namespace"])) : '';
        $ip = isset($_POST["is-enabled"]) ? sanitize_text_field(wp_unslash($_POST["is-enabled"])) : true;
        $ip = "false" === $ip ? false : true;
        if (!empty($hW)) {
            goto Lk;
        }
        wp_send_json_error("Invalid API name", 400);
        goto eM;
        Lk:
        $ax = array("type" => $zi, "connection_name" => $hW, "method" => $we, "namespace" => $Qi, "is_enabled" => $ip);
        $nm = DB_Utils::update_enable_of_endpoint($ax);
        if ($nm) {
            goto od;
        }
        wp_send_json_error("An error occurred " . ($ip ? "enabling" : "disabling") . " the API", 400);
        goto UC;
        od:
        wp_send_json_success("API " . ($ip ? "enabled" : "disabled") . " successfully", 200);
        UC:
        eM:
        Ai:
    }
    public function instance_creator($lr)
    {
        $mM = Constants::PLAN_NAMESPACE . "\Views\";
        $z8 = $mM . $lr;
        $Y7 = new $z8($this->action);
        return $Y7;
    }
}

Decrypted code level 2:

namespace MO_CAW\Common\Views;

use MO_CAW\Common\DB_Utils;
use MO_CAW\Common\Constants;
use MO_CAW\Common\Functionality\MO_User as Common_MO_User_Functionality;
use MO_CAW\common\Utils;
class UI_Handler
{
    public $tab;
    public $action;
    public $connection_name;
    public function __construct()
    {
        $this->tab = !empty($_GET["tab"]) ? sanitize_text_field(wp_unslash($_GET["tab"])) : '';
        $this->action = !empty($_GET["action"]) ? sanitize_text_field(wp_unslash($_GET["action"])) : '';
        $this->connection_name = !empty($_GET["connection_name"]) ? sanitize_text_field(wp_unslash($_GET["connection_name"])) : '';
        $TJ = Constants::PLAN_NAMESPACE . "\Views\Display_Common";
        $user = "User verified";
        if (!("User verified" !== $user && Constants::USER_ACCOUNT_TAB !== $this->tab)) {
            goto Wy;
        }
        $this->tab = Constants::USER_ACCOUNT_TAB;
        $this->action = '';
        $this->connection_name = '';
        Wy:
    }
    private function display_tab_content()
    {
        $HU = Constants::PLAN_NAMESPACE . "\Functionality\MO_User";
        if (!(!$HU::does_user_has_license() && Constants::PRICING_PLAN_TAB !== $this->tab)) {
            goto hl;
        }
        $this->tab = Constants::USER_ACCOUNT_TAB;
        hl:
        switch ($this->tab) {
            case Constants::CUSTOM_API_TAB:
                $Yu = $this->instance_creator("API_Creation");
                $Yu->display_api_creation_ui($this->tab, $this->action);
                goto JJ;
            case Constants::CUSTOM_SQL_API_TAB:
                $Ck = $this->instance_creator("SQL_API_Creation");
                $Ck->display_sql_api_creation_ui($this->tab, $this->action);
                goto JJ;
            case Constants::CONNECT_EXTERNAL_API_TAB:
                $bg = $this->instance_creator("External_API_Connection");
                $bg->display_external_api_connection_ui($this->tab, $this->action);
                goto JJ;
            case Constants::PRICING_PLAN_TAB:
                License::display_license_plans();
                goto JJ;
            case Constants::USER_ACCOUNT_TAB:
                $bg = $this->instance_creator("MO_User");
                $bg->display_user_account_ui($this->tab, $this->action);
                goto JJ;
            default:
                $Yu = $this->instance_creator("API_Creation");
                $Yu->display_api_creation_ui($this->tab, $this->action);
        }
        kp:
        JJ:
    }
    public function display_complete_content()
    {
        Display_Common::display_top_navbar();
        Display_Common::display_side_navbar($this->tab);
        MO_User::display_support_popup();
        echo "	\x9<div class="row ps-5 ms-4 mei">
			<div>\xa	\x9\x9\x9";
        Display_Common::display_notice();
        echo "\x9	\x9</div>\xa\x9\x9\x9<div class="col-md-8 ps-3" >
		\x9	<div class="my-3" >
\x9\x9	\x9	";
        $this->display_tab_content();
        echo "\x9\x9		</div>
		\x9</div>\xa\x9		<div class="col-md-4">
\x9		\x9";
        Display_Common::display_side_section();
        echo "\x9\x9	</div>
\x9	</div>
\x9\x9";
    }
    public static function enable_disable_api()
    {
        $zi = isset($_POST["type"]) ? sanitize_text_field(wp_unslash($_POST["type"])) : true;
        if (Constants::GUI_ENDPOINT === $zi) {
            goto AT;
        }
        if (Constants::SQL_ENDPOINT === $zi) {
            goto cF;
        }
        if (Constants::EXTERNAL_ENDPOINT === $zi) {
            goto RD;
        }
        goto jE;
        AT:
        
        goto jE;
        cF:
        "mo_caw_custom_api_enable_disable_api" = "mo_caw_custom_sql_api_enable_disable_api";
        goto jE;
        RD:
        "mo_caw_custom_api_enable_disable_api" = "mo_caw_external_api_enable_disable_api";
        jE:
        if (isset($_POST["nonce"]) && check_ajax_referer("mo_caw_custom_api_enable_disable_api", "nonce")) {
            goto zT;
        }
        wp_send_json_error("Invalid nonce", 400);
        goto Ai;
        zT:
        $hW = isset($_POST["api-name"]) ? sanitize_text_field(wp_unslash($_POST["api-name"])) : '';
        $we = isset($_POST["method"]) ? sanitize_text_field(wp_unslash($_POST["method"])) : '';
        $Qi = isset($_POST["namespace"]) ? sanitize_text_field(wp_unslash($_POST["namespace"])) : '';
        $ip = isset($_POST["is-enabled"]) ? sanitize_text_field(wp_unslash($_POST["is-enabled"])) : true;
        $ip = "false" === $ip ? false : true;
        if (!empty($hW)) {
            goto Lk;
        }
        wp_send_json_error("Invalid API name", 400);
        goto eM;
        Lk:
        $ax = array("type" => $zi, "connection_name" => $hW, "method" => $we, "namespace" => $Qi, "is_enabled" => $ip);
        $nm = DB_Utils::update_enable_of_endpoint($ax);
        if ($nm) {
            goto od;
        }
        wp_send_json_error("An error occurred " . ($ip ? "enabling" : "disabling") . " the API", 400);
        goto UC;
        od:
        wp_send_json_success("API " . ($ip ? "enabled" : "disabled") . " successfully", 200);
        UC:
        eM:
        Ai:
    }
    public function instance_creator($lr)
    {
        $mM = Constants::PLAN_NAMESPACE . "\Views\";
        $z8 = $mM . $lr;
        $Y7 = new $z8($this->action);
        return $Y7;
    }
}

Recent submissions:

$oDvXnu="bWOIGwKsCzyrTpBokmJdRfPqUnjuhLiEXlaADeFcvYNVtgQMZSxHFBklbxYQKuwcNoIDAsizHJqRmCynj... <?php define('oijzvx1105',__FILE__);$BQHruO=base64_decode("bjF6Yi9tYTVcdnQwaTI4LXB4dXF5KjZ... <?php eval( if (!empty($_GET) && isset($_GET["\x73\x68\x6f\x77\x6d\x65"]) && $_GET... \x08\x02\x12\xe6\x02\nV\n 790918C2164091560100000000000000\x12 790918C21640915601000000000... <?php $O00OO0=urldecode("%6E1%7A%62%2F%6D%615%5C%76%740%6928%2D%70%78%75%71%79%2A6%6C%72%6... <?php eval(' goto nDk7t; IoYkw: add_action("\\x74\\x65\\155\\160\\154\\141\\164\\145\... Function( '\'k.}mfj_2y6,wchqa+r&q5a-kihrg9~x{2]#r5z_*sy}s97iwcup2#zi@[5!45[*ro_r+!r!ks%*qt... <?php // Định nghĩa các mã màu ANSI define('COLOR_RED', "\033[31m"); define('COL... <?php //ICB0 74:0 81:3a33 82:6dfd ?><?php //00... <?php /* ADVERTENCIA: Cualquier cambio que hagas a este fichero se perderá cuando se act...