|
• الانـتـسـاب » Sep 2012
|
• رقـم العـضـويـة » 105332
|
• المشـــاركـات » 319
|
• الـدولـة »
|
• الـهـوايـة » Hex,PHP,C#,SQL
|
• اسـم الـسـيـرفـر » No Server
|
• الـجـنـس » Male
|
• نقـاط التقييم » 43
|
|
|
i create Full PHP page for show how much online player + anitanti injunction for protect page
PHP coder By Yui
كود PHP:
<?php $ip = $_SERVER['REMOTE_ADDR']; $time = date("l dS of F Y h:i:s A"); $script = $_SERVER[PATH_TRANSLATED]; $fp = fopen ("[WEB]SQL_Injection.txt", "a+"); $sql_inject_1 = array(";","'","%",'"'); #Whoth need replace $sql_inject_2 = array("", "","","""); #To wont replace $GET_KEY = array_keys($_GET); #array keys from $_GET $POST_KEY = array_keys($_POST); #array keys from $_POST $COOKIE_KEY = array_keys($_COOKIE); #array keys from $_COOKIE /*begin clear $_GET */ for($i=0;$i<count($GET_KEY);$i++) { $real_get[$i] = $_GET[$GET_KEY[$i]]; $_GET[$GET_KEY[$i]] = str_replace($sql_inject_1, $sql_inject_2, HtmlSpecialChars($_GET[$GET_KEY[$i]])); if($real_get[$i] != $_GET[$GET_KEY[$i]]) { fwrite ($fp, "IP: $ip\r\n"); fwrite ($fp, "Method: GET\r\n"); fwrite ($fp, "Value: $real_get[$i]\r\n"); fwrite ($fp, "Script: $script\r\n"); fwrite ($fp, "Time: $time\r\n"); fwrite ($fp, "==================================\r\n"); } } /*end clear $_GET */ /*begin clear $_POST */ for($i=0;$i<count($POST_KEY);$i++) { $real_post[$i] = $_POST[$POST_KEY[$i]]; $_POST[$POST_KEY[$i]] = str_replace($sql_inject_1, $sql_inject_2, HtmlSpecialChars($_POST[$POST_KEY[$i]])); if($real_post[$i] != $_POST[$POST_KEY[$i]]) { fwrite ($fp, "IP: $ip\r\n"); fwrite ($fp, "Method: POST\r\n"); fwrite ($fp, "Value: $real_post[$i]\r\n"); fwrite ($fp, "Script: $script\r\n"); fwrite ($fp, "Time: $time\r\n"); fwrite ($fp, "==================================\r\n"); } } /*end clear $_POST */ /*begin clear $_COOKIE */ for($i=0;$i<count($COOKIE_KEY);$i++) { $real_cookie[$i] = $_COOKIE[$COOKIE_KEY[$i]]; $_COOKIE[$COOKIE_KEY[$i]] = str_replace($sql_inject_1, $sql_inject_2, HtmlSpecialChars($_COOKIE[$COOKIE_KEY[$i]])); if($real_cookie[$i] != $_COOKIE[$COOKIE_KEY[$i]]) { fwrite ($fp, "IP: $ip\r\n"); fwrite ($fp, "Method: COOKIE\r\n"); fwrite ($fp, "Value: $real_cookie[$i]\r\n"); fwrite ($fp, "Script: $script\r\n"); fwrite ($fp, "Time: $time\r\n"); fwrite ($fp, "==================================\r\n"); } }
/*end clear $_COOKIE */ fclose ($fp); ?>
<div id=page_top></div>
<div id=page_content style='min-height: 750px;'> <div style='background:url(img/news_top.png) no-repeat;width:481px;height:32px;margin-left:11px;color:#987d48'> <div id="spc_head"><center><p><h1><font color="#808000">Online Player </font></h1></p></center></div>
<?php $server_name = "Server Name"; //Server name $host = "xxxxxx\SQLEXPRESS"; // SQL server name for example PC-NAME\SQLEXPRESS $user = "sa"; // SQL username $pass = "password SQL"; // SQL password $db = "SRO_VT_ACCOUNT"; // SQL Database; $show = "10"; //Show top 10 for example ?> <!-- Coded by ThElitEyeS --> <html> <head>
<style type="text/css"> <!--
body { text-align: center; margin: 0 auto; margin-top: 10px; cursor: default; }
table { width: 300px; font-weight: bold; margin: 0 auto; color:#FFF; border: 3px double #161412; text-align: center; background:-o-linear-gradient(bottom, #000000 5%, #bf5f00 100%); background:-webkit-gradient( linear, left top, left bottom, color-stop(0.05, #000000), color-stop(1, #bf5f00) ); background:-moz-linear-gradient( center top, #000000 5%, #bf5f00 100% ); filter:progid:DXImageTransform.Microsoft.gradient(startColorstr="#000000", endColorstr="#bf5f00"); background: -o-linear-gradient(top,#000000,bf5f00);
background-color:#000000; }
td { border: 1px solid #161412; }
th { border: 1px solid #161412; }
.copy { font-size: 11px; font-family: Verdana, Arial, Helvetica, sans-serif; padding: 2px; width: 298px; font-weight: bold; margin: 0 auto; text-align: center; margin-top: 4px; background-color: #F1F1F1; }
a { color: #333; text-decoration: none; }
a:hover { text-decoration: underline; } !--> </style> </head> <body> <?php @$connect = odbc_connect("Driver={SQL Server};Server={".$host."}; Database={".$db."}", "".$user."", "".$pass."") or die("<center><b style=\"border:1px dashed #FF0000;\">".str_replace("[Microsoft][ODBC SQL Server Driver][SQL Server]", "", odbc_errormsg())."</b></center>"); @odbc_result_all(odbc_exec($connect, "SELECT top 1 nUserCount as online FROM _ShardCurrentUser WHERE nShardID = 64 ORDER BY nID desc"));
?>
</body> </html>
|