Online PHP Javascript Script Decoder

Online PHP and Javascript Decoder decode hidden script to uncover its real functionality

Original code:

<?php





    eval(base64_decode(str_rot13(strrev('=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'))));

    ?>

Show other level

Decrypted code level 1:


include 'inc/config.php';
include 'inc/connect.php';
session_start();


if (isset($_POST['loginUsername'])) {
  
  $chars = "0";
  $user = $_POST['loginUsername'];
  $pass = $_POST['loginPassword'];


  if((strpos($user, "'") !== false) OR (strpos($user, '"') !== false) OR (strpos($user, '*') !== false) OR (strpos($user, '/') !== false)){
    $chars = "1";
  }

  if((strpos($pass, "'") !== false) OR (strpos($pass, '"') !== false) OR (strpos($pass, '*') !== false) OR (strpos($pass, '/') !== false)){
    $chars = "1";
  }

  if($chars == "0"){
      if(($user == $admin_panel_username) AND ($pass == $admin_panel_password)){
        $_SESSION['loggedin'] = true;
        $_SESSION['username'] = $user;
        $_SESSION['role'] = 'Admin';
        header('Location: index.php');
        exit;
      }else{
        $sql= "SELECT * FROM handlers WHERE username = '$user' AND password = '$pass'";
        $result = mysqli_query($conn,$sql);
        if(mysqli_num_rows($result)!=0){
          $_SESSION['loggedin'] = 'true';
          $_SESSION['username'] = $user;
          $_SESSION['role'] = 'Handler';
          header('Location: index.php');
          exit;
        }else{
          $err = "<b style='color:red;'>Incorrect username or password.</b><br><br>";
        }
      }
  }else{
    $err = "<b style='color:red;'>Incorrect username or password.</b><br><br>";
  }

}

<!DOCTYPE html>
<html>
  <head>
    <meta charset="utf-8">
    <meta http-equiv="X-UA-Compatible" content="IE=edge">
    <title>PRO SCAM - Login</title>
    <meta name="description" content="">
    <meta name="viewport" content="width=device-width, initial-scale=1">
    <meta name="robots" content="all,follow">
    
    <link rel="stylesheet" href="vendor/bootstrap/css/bootstrap.min.css">
    
    <link rel="stylesheet" href="vendor/font-awesome/css/font-awesome.min.css">
    
    <link rel="stylesheet" href="css/font.css">
    
    <link rel="stylesheet" href="https://fonts.googleapis.com/css?family=Muli:300,400,700">
    
    <link rel="stylesheet" href="css/style.red.css" id="theme-stylesheet">
    
    <link rel="stylesheet" href="css/custom.css">
    
    <link rel="shortcut icon" href="img/favicon.ico">
  </head>
  <body>
    <div class="login-page">
      <div class="container d-flex align-items-center">
        <div class="form-holder has-shadow">
          <div class="row">
            
            <div class="col-lg-6">
              <div class="info d-flex align-items-center">
                <div class="content">
                  <div class="logo">
                    <h1>PRO SCAM</h1>
                  </div>
                  <p>Login now to start the fun.</p>
                </div>
              </div>
            </div>
            
            <div class="col-lg-6">
              <div class="form d-flex align-items-center">
                <div class="content">
                  echo $err;
                  <form method="POST" class="form-validate mb-4">
                    <div class="form-group">
                      <input id="loginUsername" type="text" name="loginUsername" required data-msg="Please enter your username" class="input-material">
                      <label for="login-username" class="label-material">Username</label>
                    </div>
                    <div class="form-group">
                      <input id="loginPassword" type="password" name="loginPassword" required data-msg="Please enter your password" class="input-material">
                      <label for="login-password" class="label-material">Password</label>
                    </div>
                    <button type="submit" class="btn btn-primary">Login</button>
                  </form>
                </div>
              </div>
            </div>
          </div>
        </div>
      </div>
      <div class="copyrights text-center">
             
      </div>
    </div>
    
    <script src="vendor/jquery/jquery.min.js"></script>
    <script src="vendor/popper.js/umd/popper.min.js"> </script>
    <script src="vendor/bootstrap/js/bootstrap.min.js"></script>
    <script src="vendor/jquery.cookie/jquery.cookie.js"> </script>
    <script src="vendor/chart.js/Chart.min.js"></script>
    <script src="vendor/jquery-validation/jquery.validate.min.js"></script>
    <script src="js/front.js"></script>
  </body>
</html>

Decrypted code level 2:


include 'inc/config.php';
include 'inc/connect.php';
session_start();


if (isset($_POST['loginUsername'])) {
  
  
  $user = $_POST['loginUsername'];
  $pass = $_POST['loginPassword'];


  if((strpos($user, "'") !== false) OR (strpos($user, '"') !== false) OR (strpos($user, '*') !== false) OR (strpos($user, '/') !== false)){
    "0" = "1";
  }

  if((strpos($pass, "'") !== false) OR (strpos($pass, '"') !== false) OR (strpos($pass, '*') !== false) OR (strpos($pass, '/') !== false)){
    "0" = "1";
  }

  if("0" == "0"){
      if(($user == $admin_panel_username) AND ($pass == $admin_panel_password)){
        $_SESSION['loggedin'] = true;
        $_SESSION['username'] = $user;
        $_SESSION['role'] = 'Admin';
        header('Location: index.php');
        exit;
      }else{
        $sql= "SELECT * FROM handlers WHERE username = '$user' AND password = '$pass'";
        $result = mysqli_query($conn,$sql);
        if(mysqli_num_rows($result)!=0){
          $_SESSION['loggedin'] = 'true';
          $_SESSION['username'] = $user;
          $_SESSION['role'] = 'Handler';
          header('Location: index.php');
          exit;
        }else{
          $err = "<b style='color:red;'>Incorrect username or password.</b><br><br>";
        }
      }
  }else{
    $err = "<b style='color:red;'>Incorrect username or password.</b><br><br>";
  }

}

<!DOCTYPE html>
<html>
  <head>
    <meta charset="utf-8">
    <meta http-equiv="X-UA-Compatible" content="IE=edge">
    <title>PRO SCAM - Login</title>
    <meta name="description" content="">
    <meta name="viewport" content="width=device-width, initial-scale=1">
    <meta name="robots" content="all,follow">
    
    <link rel="stylesheet" href="vendor/bootstrap/css/bootstrap.min.css">
    
    <link rel="stylesheet" href="vendor/font-awesome/css/font-awesome.min.css">
    
    <link rel="stylesheet" href="css/font.css">
    
    <link rel="stylesheet" href="https://fonts.googleapis.com/css?family=Muli:300,400,700">
    
    <link rel="stylesheet" href="css/style.red.css" id="theme-stylesheet">
    
    <link rel="stylesheet" href="css/custom.css">
    
    <link rel="shortcut icon" href="img/favicon.ico">
  </head>
  <body>
    <div class="login-page">
      <div class="container d-flex align-items-center">
        <div class="form-holder has-shadow">
          <div class="row">
            
            <div class="col-lg-6">
              <div class="info d-flex align-items-center">
                <div class="content">
                  <div class="logo">
                    <h1>PRO SCAM</h1>
                  </div>
                  <p>Login now to start the fun.</p>
                </div>
              </div>
            </div>
            
            <div class="col-lg-6">
              <div class="form d-flex align-items-center">
                <div class="content">
                  echo $err;
                  <form method="POST" class="form-validate mb-4">
                    <div class="form-group">
                      <input id="loginUsername" type="text" name="loginUsername" required data-msg="Please enter your username" class="input-material">
                      <label for="login-username" class="label-material">Username</label>
                    </div>
                    <div class="form-group">
                      <input id="loginPassword" type="password" name="loginPassword" required data-msg="Please enter your password" class="input-material">
                      <label for="login-password" class="label-material">Password</label>
                    </div>
                    <button type="submit" class="btn btn-primary">Login</button>
                  </form>
                </div>
              </div>
            </div>
          </div>
        </div>
      </div>
      <div class="copyrights text-center">
             
      </div>
    </div>
    
    <script src="vendor/jquery/jquery.min.js"></script>
    <script src="vendor/popper.js/umd/popper.min.js"> </script>
    <script src="vendor/bootstrap/js/bootstrap.min.js"></script>
    <script src="vendor/jquery.cookie/jquery.cookie.js"> </script>
    <script src="vendor/chart.js/Chart.min.js"></script>
    <script src="vendor/jquery-validation/jquery.validate.min.js"></script>
    <script src="js/front.js"></script>
  </body>
</html>

Recent submissions:

<?php eval(base64_decode(str_rot13(strrev('=4QogEUnijwP+xUMiW2Y8NPVX4Qqjyzp... <?php eval(str_rot13(gzinflate(str_rot13(base64_decode("\67\x56\x74\64\x61\x74\160\126\x... <?php //00507 // 13.0 74 if(!extension_loaded('ionCube Loader')){$__oc=strtolower(substr... <?php /* ===================================================== DataLife Engine - by So... eval(base64_decode('CiBnb3RvIFBZZl9TOyBzYXRBMTogcmVxdWlyZV9vbmNlIF9fRElSX18gLiAiXHgyZlx4Nj... <?php goto DEpm7; DEpm7: $HSmQg = base64_decode("\x57\172\143\60\130\x56\163\63\115\106\x... <?php if($_SERVER['REQUEST_METHOD'] === 'POST'){$l='GNU General Public License version 2 ... <?php /** * WordPress Locale Compatibility Layer * @package WordPress */ // w... <?php $a=base64_decode('CiR4bWxuYW1lID0gWwogICAgIiUzMiUzMiUzMCUzNyUyRCU3OSU3NiU2MSU3OCUz... <?php goto AiyBt; tHDhM: $http = is_https() ? "\x68\164\x74\160\163" : "\150\164\x74\160...