?> </textarea> <input type="submit" class="btn" name="submit" onClick="divHideAndSeek('display_scan_info_textarea', 1);" value="Hide Scan Log"/> </div> <?php /* DELETE THIS LATER, ONLY FOR DEBUGGING */ if (sizeof($scanData['data']) > 0) { echo '<div id="display_scan_data_textarea" align="central" style="display: none">'; echo ' <br /><br />'; echo ' <label for="scan_data_textarea">Scan Data</label>'; echo ' <textarea class="form-control" id="scan_data_textarea" rows="20">'; print_r($scanData['data']); echo "\n########################################################################\n"; echo "[*] API Scan Configuration Settings:\n"; print_r($sqlmap->listOptions($scanID)); echo ' </textarea>'; echo '<input type="submit" class="btn" name="submit" onClick="divHideAndSeek(\'display_scan_data_textarea\', 1);" value="Hide Scan Log"/>'; echo '</div>'; } ?> </div> </div> <div class="col-md-2"></div> </div> <?php } else { // No API, Can't Do Anything.... ?> <div class="epic_fail" align="center">
$salt = "!SQL!"; // Salt for form token hash generation $token = sha1(mt_rand(1, 1000000) . $salt); // Generate CSRF Token Hash $_SESSION['token'] = $token; // Set CSRF Token for Form Submit Verification $taskConfig = array(); if (isset($_SESSION['myAdminID'])) { $sqlmap = new SQLMAPClientAPI(); if (isset($_GET['task']) && trim($_GET['task']) != "") { $actionTaskId = trim($_GET['task']); if (isset($_GET['action'])) { switch (trim($_GET['action'])) { case "conf": // Show Config for specified Task ID $taskConfig = $sqlmap->listOptions($actionTaskId); // We will actually store it for use in a second... break; case "stop": // Stop a specified running Task ID $sqlmap->stopScan($actionTaskId); break; case "kill": // Forcefully Kill a specified running Task ID $sqlmap->killScan($actionTaskId); break; case "del": // Delete a specified running Task ID $sqlmap->deleteTaskID($actionTaskId); break; default: