پاسخ : درخواست دیکد فایل php
یارو همچین کلاس میذاشت ، انگار دبیر اعظم شورای دیکد سرور اصلی گوگل بوده
میدونم خیلی ساله از اون سالها گذشته... ولی این نتیجه دیکد شده :
کد PHP:
<html dir="rtl"> <head><meta http-equiv="Content-Type" content="text/html; charset=utf-8"><meta http-equiv="Content-Language" content="fa"> <style>@font-face { font-family: 'B Yekan'; src:url('/fonts/47.eot?#') format('eot'), url('/fonts/47.woff') format('woff'), url('/fonts/47.ttf') format('truetype'); } </style><title>پنل مديريت هزار طرح</title>?<html dir="rtl"> <head><?php session_start(); ?><?php require_once("fns.php"); require_once("db.php"); ?><?php @ $abcadmin=$_SESSION["valid_admin"]; if($abcadmin) { check_valid_admin(); } else { $number = rand(1,10000); $hash = substr(sha1(md5($number)),15,6); $captcha = $hash; @session_start(); $_SESSION["secret"] = $captcha ; $im = imagecreatetruecolor(60, 20); $text_color = imagecolorallocate($im, 255, 255, 255); imagestring($im, 20,2, 2, $captcha, $text_color); imagejpeg($im, "capta.jpg"); imagedestroy($im); @$password = md5($_POST["password"]); @$username = $_POST["username"]; @$password2 = $_POST["password2"]; @$cap = $_POST["cap"]; if ($username and $password and $password2 == "panel-1000tarh"){ $conn = db_connect(); $result = $conn->query("select * from db1_etchat_user where etchat_username = '$username' and etchat_userpw = '$password' and etchat_userprivilegien = 'admin' "); $num_results = $result->num_rows; if ($num_results == 1) { $_SESSION["valid_admin"] = $username; check_valid_admin(); } else echo "<style>html { height:100%; width:100%;}body {-moz-background-size:cover;-webkit-background-size:cover;background-size:cover;height:100%;width:100%;overflow:hidden;}body,td,th { font-family: B Yekan; font-size: 8.5pt; color: #FFF;}.login {
height: 230px; padding: 2px; padding: 2px; background-color: #F9F9F9; padding: 5px; height: 165px; width: 300px; margin-top: 80px; margin-right: auto; margin-left: auto; -moz-background-clip: padding; /* Firefox 3.6 */ -webkit-background-clip: padding; /* Safari 4? Chrome 6? */ background-clip: padding-box; /* Firefox 4, Safari 5, Opera 10, IE 9 */ border: 10px solid rgba(0,0,0,0.1); -webkit-border-radius: 20px; -moz-border-radius: 20px; border-radius: 20px; color:#48445B; text-align: center;}.txt { border: 1px solid #E5E5E5; font-family: B Yekan; font-size: 10pt; text-align: center; width: 160px;}.btn { font-family: B Yekan; font-size: 8.5pt; padding-top: 2px; padding-bottom: 3px;}.content {
height: 230px; padding: 2px; padding: 2px;}</style><body background=\"bg-login.jpg\"><div class=\"body\"><div class=\"login\"><div class=\"content\"><br /><p align=\"center\"><font size=\"2\" face=\"B Yekan\" color=\"#000000\">نام کاربري يا رمزعبور و يا رمز دوم وارد شده اشتباه مي باشد</font></p><br><p align=\"center\"><span lang=\"fa\"><font size=\"2\" face=\"B Yekan\"><a href=\"index.php\">برگشت</a></font></span></p><br><br><br>"; } else { ?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><meta http-equiv="Content-Type" content="text/html;charset=UTF-8"><head><meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><link href="login_styles.css" rel="stylesheet" type="text/css"></head><body background="bg.png"><div class="login"><form method="post" action="index.php"> <table align="center"> <tr> <td><img src="pic/user.png" alt="" width="16" height="16" /></td> <td><span style="color:#666"> نـام کـاربري </span></td> <td><input type="username" type="text" class="txt" id="username" name="username" /></td> </tr> <tr> <td><img src="pic/key.png" alt="" width="16" height="16" /></td> <td><span style="color:#666"> رمـــز ورود </span></td> <td><input type="password" type="password" class="txt" id="pw" name="password"/></td> </tr><tr> <td><img src="pic/computer_key.png" alt="" width="16" height="16" /></td> <td><span style="color:#666"> رمــــز دوم </span></td> <td><input type="password" type="password" class="txt" id="pw2" name="password2"/></td> </tr> <tr> <td><img src="pic/monitor.png" alt="" width="16" height="16" /></td> <td><span style="color:#666"> کــد امنيتي </span></td> <td><input type="text" value="" class="txt" id="cap" name"cap"/></td> </tr> </tr> </table> <div align="center"> <input name="submit" type="submit" class="btn" id="submit" value="ورود به سيسـتم" /> </form> </div></div></body> <p> <?php } } ?></p><p align="center"><a href="http://1000tarh.ir/" target="_blank"><img border="0" src="http://1000tarh.ir/tarah3.png"></a></p></html>
دیکد فایل roommanager.php
کد PHP:
<?php session_start(); require_once("db.php"); if (isset($_SESSION["valid_admin"])) { } else { $myurl = $_SERVER["SERVER_NAME"]."/cp/"; echo $myurl; header( "Location: http://".$myurl ) ; exit; } @ $myid = $_GET["id"]; if ($myid){ $connec = mysql_connect("localhost",$dbusername,$dbpassword); if (!$connec) { die("Could not connect: " . mysql_error()); } mysql_select_db($dbname, $connec); mysql_query("DELETE FROM db1_etchat_rooms WHERE etchat_id_room='$myid'"); mysql_close($connec); header("Location: roommanger.php"); } @ $cchk = $_GET["cname"]; if ($cchk){ $Nname = $_GET["cname"]; $Nmod = $_GET["cmod"]; $Npw = $_GET["cpw"]; $Nmsg = $_GET["cmsg"]; $cons = mysql_connect("localhost",$dbusername,$dbpassword); if (!$cons) { die("Could not connect: " . mysql_error()); } mysql_select_db($dbname, $cons); mysql_query("INSERT INTO db1_etchat_rooms (etchat_id_room, etchat_roomname, etchat_room_goup, etchat_room_pw, etchat_room_message) VALUES ('','$Nname','$Nmod' ,'$Npw','$Nmsg')"); mysql_close($cons); header("Location: roommanger.php"); } ?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><title>مديــريت روم ها</title><style type="text/css">body,td,th {font-family: tahoma;font-size: 8.5pt;color: #666;}.mtns {height: 50px;width: 250px;text-align: center;}.main {background-color: #FFF;padding: 2px;margin-top: 5px;margin-right: auto;margin-left: auto;width: 510px;overflow: visible;text-align: center;}body {background-image: url(bg.png);background-repeat: repeat;}.tbl {background-color: #F8F8F8;text-align: center;border: 1px solid #E2E2E2;font-family: tahoma;font-size: 10pt;color: #000;margin-right: auto;margin-left: auto;}.top {background-color: #FFF;border: 1px solid #CCC;padding: 3px;width: 200px;text-align: center;margin-right: auto;margin-left: auto;margin-top: 0pt;font-weight: bold;color: #00C;}.insrt {background-color: #FAF9EB;text-align: center;border: 1px solid #DFDFDF;font-family: tahoma;font-size: 8.5pt;color: #666;padding: 3px;}</style></head><body><div class="top">بخش مديريت روم ها</div><div class="main"><br /><div class="tbl" style="width:500px; height:250px; overflow:auto;"> <table border="0" width="480" align="center" ><tr><th width="235" height="26" bgcolor="#0D5E84" style="color:#FFF">نـــــــــــام روم ها</th><th width="235" height="26" bgcolor="#0D5E84" style="color:#FFF">مديــــــريــــــت</th></tr><?php $con = mysql_connect("localhost",$dbusername,$dbpassword); if (!$con) { die("Could not connect: " . mysql_error()); } mysql_select_db($dbname, $con); $result = mysql_query("SELECT * FROM db1_etchat_rooms"); $x; while($row = mysql_fetch_array($result)){ if ($x==0){ echo "<tr><td align=\"center\" bgcolor=\"#FEFCEB\">".$row["etchat_roomname"]."</td>\".\"<td align=\"center\" bgcolor=\"#FEFCEB\">\".\"<input type=\"submit\" name=\"delbtn\" id=\"".$row["etchat_id_room"]."\"value=\"حــــــذف\" style=\"font-family:tahoma\" onclick=\"deleteRoom(\".\"id\".\")\" />\".\"<input type=\"submit\" name=\"edit\" id=\"".$row["etchat_id_room"]."\"value=\"ويــرايش\" style=\"font-family:tahoma\" onclick=\"EditRoom(\".\"id\".\")\" />" ; $x=1; } else { echo "<tr><td align=\"center\" bgcolor=\"#FFFFFF\">".$row["etchat_roomname"]."</td>\".\"<td align=\"center\" bgcolor=\"#FFFFFF\">\".\"<input type=\"submit\" name=\"delbtn\" id=\"".$row["etchat_id_room"]."\"value=\"حــــــذف\" style=\"font-family:tahoma\" onclick=\"deleteRoom(\".\"id\".\")\" />\".\"<input type=\"submit\" name=\"edit\" id=\"".$row["etchat_id_room"]."\"value=\"ويــرايش\" style=\"font-family:tahoma\" onclick=\"EditRoom(\".\"id\".\")\" />" ; $x=0; } } mysql_close($con); ?></table></div> <p><b>ايجــــــاد روم جديد</b></p> <div class="insrt"> <input name="roomname" type="text" id="roomname" maxlength="30" /> حالت دسترسي <select name="mode" id="mode" style="font-family:Tahoma" onchange="chk(id)"> <option value="0">قابل دسترس براي همه کاربران</option> <option value="1">قابل دسترس براي مديران و اعضا</option> <option value="2">قابل دسترس فقط براي مديران</option> <option value="3">رمز گزاري روي روم</option> </select> نـام روم <br /> <div id="pwpanel" style="display:none"> <label> <input type="text" name="roompass" id="roompass" /> رمــز ورود به روم </label> </div><p> <textarea name="mtn" class="mtns" id="mtn" >wellcome</textarea> </p> <p> <input type="submit" name="button" id="button" value="ايـــــــــجاد روم" style="font-family:tahoma" onclick="addroom()" /> <br /> </p></div><br /><p><font size="2" face="Tahoma"><a target="_self" href="index.php">برگشت به منوي مديريت</a></font></p></div></body></html><p align="center"><a href="http://1000tarh.ir"><img border="0" src="http://1000tarh.ir/tarah3.png"></a></p><script>function deleteRoom(id){ window.location = "roommanger.php?id=" + id ;}function EditRoom(id){window.location = "roomeditor.php?id=" + id ;}function addroom(){var rname = document.getElementById("roomname").value var rmod = document.getElementById("mode").value var rpw = document.getElementById("roompass").value var rmsg = document.getElementById("mtn").value window.location = "roommanger.php?cname=" + rname + "&cmod=" + rmod + "&cpw=" + rpw + "&cmsg=" + rmsg ;}</script><script>function chk(myid){var ids = document.getElementById(myid).value ;if (ids == 3 ){document.getElementById("pwpanel").style.display="block";}else{document.getElementById("pwpanel").style.display="none";}}</script>
