Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- ini_set('display_errors', 'On');
- session_start();
- $_SESSION['server']='localhost';
- $_SESSION['dbuser']='leak';
- $_SESSION['pass']='dqlskd011221sdLLWXWX!QS523';
- $_SESSION['dbname']='db';
- if(empty($_SESSION['server'])&&
- empty($_SESSION['dbuser'])&&
- empty($_SESSION['pass'])&&
- empty($_SESSION['dbname'])
- )
- {
- if(!empty($_POST['server']) && !empty($_POST['dbuser']) && !empty($_POST['dbname']))
- {
- $_SESSION['server'] = $_POST['server'];
- $_SESSION['dbuser']= $_POST['dbuser'];
- $_SESSION['pass'] = $_POST['pass'];
- $_SESSION['dbname']= $_POST['dbname'];
- }
- else
- {
- html_header();
- if(!empty($_REQUEST['error_message']))
- ?>
- <?php
- }
- }
- else
- {
- $server = $_SESSION['server'];
- $dbuser = $_SESSION['dbuser'];
- $dbpass = $_SESSION['pass'];
- $dbname = $_SESSION['dbname'];
- $link = @mysql_connect($server, $dbuser, $dbpass);
- if (!$link) { session_destroy(); header("Refresh:0;url=http://".$_SERVER['HTTP_HOST'].$_SERVER['PHP_SELF'].'?error_message=Username OR password Missmatch');}
- if(!@mysql_select_db($dbname, $link)){ session_destroy(); header("Refresh:0;url=http://".$_SERVER['HTTP_HOST'].$_SERVER['PHP_SELF'].'?error_message=Database Not found');};
- html_header();
- ?>
- <div>
- <form action="<?php echo $_SERVER['PHP_SELF'];?>" method="POST">
- <input type="text" name="search_text" <?php if(!empty($_POST['search_text'])) echo 'value="'.$_POST['search_text'].'"'; ?> />
- <input type="submit" value="Search" />
- </form>
- </div>
- <?php
- if(strlen($_POST['search_text']) >= 5){
- $search_text = mysql_real_escape_string($_POST['search_text']);
- $result_in_tables = 0;
- echo '<a href="javascript:hide_all()">Tout réduire</a>
- <a href="javascript:show_all()">Tout montrer</a>';
- echo "<h4>Résultat pour: <i>". $search_text.'</i></h4>';
- $sql= 'show tables';
- $res = mysql_query($sql);
- $tables = fetch_array($res);
- for($i=0;$i<sizeof($tables);$i++)
- {
- $sql = 'select count(*) from '.$tables[$i]['Tables_in_'.$dbname];
- $res = mysql_query($sql);
- if($res === false ) {
- echo 'Erreur SQL : '.mysql_error();
- }
- if(mysql_num_rows($res)>0)
- {
- $sql = 'desc '.$tables[$i]['Tables_in_'.$dbname];
- $res = mysql_query($sql);
- $collum = fetch_array($res);
- $search_sql = 'select * from '.$tables[$i]['Tables_in_'.$dbname].' where ';
- $no_varchar_field = 0;
- for($j=0;$j<sizeof($collum);$j++)
- {
- if($no_varchar_field!=0){$search_sql .= ' or ' ;}
- $search_sql .= '`'.$collum[$j]['Field'] .'` like \'%'.$search_text.'%\' ';
- $no_varchar_field++;
- }
- if($no_varchar_field>0)
- {
- $res = mysql_query($search_sql);
- $search_result = fetch_array($res);
- if(sizeof($search_result))
- {
- $result_in_tables++;
- echo '<h4>Table : '. $tables[$i]['Tables_in_'.$dbname].' </div>
- '.
- '<span class="number_result">Nombre de résultats pour <i>"'.$search_text .'"</i>: '.mysql_affected_rows().'</span>
- <br/>
- <div class="link_wrapper"><a href="javascript:toggle(\''.$tables[$i]['Tables_in_'.$dbname].'_wrapper'.'\')">Résultats</a></div>
- <script language="JavaScript">
- table_id.push("'.$tables[$i]['Tables_in_'.$dbname].'_wrapper");
- </script>
- ';
- table_arrange($search_result);
- echo '</div><br/><br/>';
- }
- }
- }
- }
- if(!$result_in_tables)
- {
- echo '<p style="color:red;">Désolez, Aucun résultat pour <i>'.
- $search_text.
- '</i>';
- }
- mysql_close($link);
- }
- }
- ?>
- <?php
- function fetch_array($res)
- {
- $data = array();
- while ($row = mysql_fetch_assoc($res))
- {
- $data[] = $row;
- }
- return $data;
- }
- function table_arrange($array)
- {
- $table_data = '';
- $max =0;
- $max_i =0;
- $search_text = $_POST["search_text"];
- for($i=0;$i<sizeof($array);$i++)
- {
- $table_data .= '<tr class='.(($i&1)?'"odd_row"':'"even_row"') .' >';
- $j=0;
- foreach($array[$i] as $key => $data)
- {
- $data = preg_replace("|($search_text)|Ui" , "<pre class=\"search_text\"><b>$1</b></pre>" , htmlspecialchars($data));
- $table_data .= '<td>'. $data .' </td>';
- $j++;
- }
- if($max<$j)
- {
- $max = $j;
- $max_i = $i;
- }
- $table_data .= '</tr>'."\n";
- }
- $table_data .= '</table></div>';
- unset($data);
- $data_a = $array[$max_i];
- $table_head = '<tr>';
- foreach($data_a as $key => $value)
- {
- $table_head .= '<td class="keys">'. $key.'</td>';
- }
- $table_head .= '</tr>'."\n";
- echo '<div class="table_bor">
- <table cellspacing="0" cellpadding="3" border="0" class="data_table">'.$table_head.$table_data;
- }
- function html_header()
- {
- ?>
- <html>
- <head>
- <script language="JavaScript">
- var table_id =new Array();
- function hide_all()
- {
- for(i=0;i<table_id.length;i++){
- document.getElementById(table_id[i]).style.display = 'none';
- }
- }
- function show_all()
- {
- for(i=0;i<table_id.length;i++){
- document.getElementById(table_id[i]).style.display = 'block';
- }
- }
- function toggle(id)
- {
- if(get_style(id,'display') =='block')
- {
- document.getElementById(id).style.display = 'none';
- }else {
- document.getElementById(id).style.display = 'block';
- }
- }
- function get_style(el,styleProp)
- {
- var x = document.getElementById(el);
- if (x.currentStyle)
- var y = x.currentStyle[styleProp];
- else if (window.getComputedStyle)
- var y = document.defaultView.getComputedStyle(x,null).getPropertyValue(styleProp);
- return y;
- }
- </script>
- <style>
- h1{color: #233E99;}
- td{ font-size:11px; font-family:arial;vertical-align:top;border:1px solid #fff;}
- a{font-size:11px; font-family:arial;}
- .table_name{background: #233E99 none repeat scroll 0% 0%;display:inline;font-size: 18px;color: rgb(255, 255, 255);border-bottom: 4px solid rgb(35, 62, 153);margin-top: 20px;}
- .wrapper{width:90%; overflow:scroll;overflow-y:hidden; margin-bottom:50px; padding:10px}
- .number_result{font-size:13px;color: #002db3;}
- .search_text{background: #00cc00;}
- .table_bor{margin: 0pt auto;}
- .data_table{text-align: center;width:680px;cellspacing:0;cellpadding:10px;border:0;}
- .keys{background-color:#cccccc;font-size:11px; font-family:arial;}
- .odd_row{background-color:#E5E5E5 ;}
- .even_row{background-color:#f5f5f5;}
- .sql{display:none;width:680px;padding:10px;border:0;}
- .link_wrapper{margin-top:10px;}
- .me{font-size:11px; font-family:arial;color:#333;}
- </style>
- </head>
- <body>
- <?php
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement