HEX
Server: Apache/2.4.52 (Ubuntu)
System: Linux ip-172-31-4-197 6.8.0-1036-aws #38~22.04.1-Ubuntu SMP Fri Aug 22 15:44:33 UTC 2025 x86_64
User: ubuntu (1000)
PHP: 7.4.33
Disabled: pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,pcntl_unshare,
$ pwd: /var/www/html/wordpress/wp-content/plugins/hide-my-wp/models/compatibility/
Upload Files
File: /var/www/html/wordpress/wp-content/plugins/hide-my-wp/models/compatibility/TwoFactor.php
<?php
/**
 * Compatibility Class
 *
 * @file The TwoFactor Model file
 * @package HMWP/Compatibility/TwoFactor
 */

defined('ABSPATH') || die('Cheatin\' uh?');

class HMWP_Models_Compatibility_TwoFactor extends HMWP_Models_Compatibility_Abstract
{

	public function hookFrontend() {

		add_filter('hmwp_files_handle_login', function($url){

            if(HMWP_Classes_Tools::getvalue('action') === 'validate_2fa'){

                if(isset($_SERVER['REQUEST_METHOD']) && $_SERVER['REQUEST_METHOD'] === 'POST' ) {
                    set_transient('hmwp_disable_hide_urls', 1, 60);
                    $response = HMWP_Classes_ObjController::getClass('HMWP_Models_Files')->postRequest($url);

                    if($response){
                        header("HTTP/1.1 200 OK");
                        if (!empty($response['headers']) ) {
                            foreach ( $response['headers'] as $header ) {
                                header($header);
                            }
                        }

                        //Echo the html file content
                        echo $response['body'];
                        exit();
                    }
                }
            }

        }, PHP_INT_MAX, 1);

	}


}
@ Telegram