[How to] Decode an Encoded PHP Script in Wordpress Themes

[rajupp]

Some wordpress theme developers encode some piece of code like footer so that the users do not change and take out the links. But as an end user I wont be feeling secure since this encoded stuff can be having some maicious script inside it. So I have written a mini tutorial which explains how to decode the encoded part.

Code:

techpp.com/2008/11/29/how-to-decode-encoded-php-script-in-wordpress-themes/

[Daniel0]

I wonder why people think they've protected their copyright like that. What's preventing you to remove the eval() compared to removing an HTML link?

[logic_earth]

I wonder why people think they've protected their copyright like that. What's preventing you to remove the eval() compared to removing an HTML link?

Its not that complicated to require eval. It is just a base64 encoded string.
Yeah super hard.

[rajupp]

yup its just a base64 encoding. My idea behind the post was not to tell people how to remove links, rather it was just to know if there is any malicious script embedded within.
For n00bs, removing eval or base64 encoding might be a bit tough since the footer part will have the closing tags as well, if they are missing that will break the theme.