<?php

[0] Fix | Delete

[1] Fix | Delete

function __generateToken($len=20){

[2] Fix | Delete

$token = NULL;

[3] Fix | Delete

$chars = '1234567890abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ';

[4] Fix | Delete

$i = 1;

[5] Fix | Delete

while ($i <= $len) {

[6] Fix | Delete

$token .= substr($chars, mt_rand(0, strlen($chars) - 1), 1);

[7] Fix | Delete

$i += 1;

[8] Fix | Delete

}

[9] Fix | Delete

return $token;

[10] Fix | Delete

}

[11] Fix | Delete

[12] Fix | Delete

function __generateHash($str){

[13] Fix | Delete

$salt = __generateToken(50);

[14] Fix | Delete

[15] Fix | Delete

if (CRYPT_SHA512 == 1) {

[16] Fix | Delete

return crypt($str, '$6$rounds=5000$' . $salt . '$');

[17] Fix | Delete

}

[18] Fix | Delete

[19] Fix | Delete

if (CRYPT_SHA256 == 1) {

[20] Fix | Delete

return crypt($str, '$5$rounds=5000$' . $salt . '$');

[21] Fix | Delete

}

[22] Fix | Delete

[23] Fix | Delete

if (CRYPT_BLOWFISH == 1) {

[24] Fix | Delete

return crypt($str, '$2a$07$' . $salt . '$');

[25] Fix | Delete

}

[26] Fix | Delete

[27] Fix | Delete

if (CRYPT_MD5 == 1) {

[28] Fix | Delete

return crypt($str, '$1$' . $salt . '$');

[29] Fix | Delete

}

[30] Fix | Delete

[31] Fix | Delete

if (CRYPT_EXT_DES == 1) {

[32] Fix | Delete

return crypt($str, '_J9' . $salt);

[33] Fix | Delete

}

[34] Fix | Delete

[35] Fix | Delete

if (CRYPT_STD_DES == 1) {

[36] Fix | Delete

return crypt($str, $salt);

[37] Fix | Delete

}

[38] Fix | Delete

[39] Fix | Delete

return false;

[40] Fix | Delete

// Throw exception once everything is hooked up

[41] Fix | Delete

}

[42] Fix | Delete

[43] Fix | Delete

$resp = __generateHash('[[admin_pass]]');

[44] Fix | Delete

echo '<update_pass>'.$resp.'</update_pass>';

[45] Fix | Delete

[46] Fix | Delete

// We do not need this file any more

[47] Fix | Delete

@unlink('update_pass.php');

[48] Fix | Delete

[49] Fix | Delete

?>

[50] Fix | Delete