08.01.2012, 23:41
|
|
Новичок
Регистрация: 01.10.2009
Сообщений: 27
С нами:
8742028
Репутация:
-2
|
|
недавно лазил по коду LogicBoard (DLE Edition) 2.1 наткнулся на:
Сообщение от None
\upload_forum\components\global\functions.php
PHP код:
[COLOR="#000000"][COLOR="#0000BB"][/COLOR][COLOR="#007700"]eval([/COLOR][COLOR="#0000BB"]base64_decode[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'JHByYXZBdnRvdGE9IjxhIGhyZWY9XCJodHRwOi8vbG9naWNib2FyZC5ydS9cIiB0YXJnZXQ9XCJibGFua1wiPkxvZ2ljQm9hcmQ8L2E+Ijs='[/COLOR][COLOR="#007700"]));[/COLOR][/COLOR]
Расшифрованый:
PHP код:
[COLOR="#000000"][COLOR="#0000BB"]$pravAvtota[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#DD0000"]"LogicBoard"[/COLOR][COLOR="#007700"];[/COLOR][/COLOR]
Сообщение от None
\upload_forum\components\class\templates.php
PHP код:
[COLOR="#000000"][COLOR="#0000BB"][/COLOR][COLOR="#007700"]eval([/COLOR][COLOR="#0000BB"]base64_decode[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'DQogICAgICAgICR0aGlzLT5jb3B5X3 RlbXBsYXRlID0gc3RyX3JlcGxhY2UoICRmaW5kLCAkcmVwbGFj ZSwgJHRoaXMtPmNvcHlfdGVtcGxhdGUgKTsNCiAgICAgICAgDQ ogICAgICAgIGlmICgkdHBsID09ICJnbG9iYWxfdGVtcGxhdGUi IEFORCAoKCRjYWNoZV9jb25maWdbJ2dlbmVyYWxfY2xvc2UnXV snY29uZl92YWx1ZSddIEFORCAkY2FjaGVfZ3JvdXBbJG1lbWJl cl9pZFsndXNlcl9ncm91cCddXVsnZ19zaG93X2Nsb3NlX2YnXS A9PSAxKSBPUiAhJGNhY2hlX2NvbmZpZ1snZ2VuZXJhbF9jbG9z ZSddWydjb25mX3ZhbHVlJ10pKQ0KICAgICAgICB7DQogICAgIC AgICAgICBpZiAoJHByYXZBdnRvdGEgIT0gIjxhIGhyZWY9XCJo dHRwOi8vbG9naWNib2FyZC5ydS9cIiB0YXJnZXQ9XCJibGFua1 wiPkxvZ2ljQm9hcmQ8L2E+IikNCiAgICAgICAgICAgICAgICBl eGl0ICgiUmV0dXJuIHRoZSBjb3B5cmlnaHQgTG9naWNCb2FyZD IhIik7DQogICAgICAgICAgICANCiAgICAgICAgICAgIGlmICgh cHJlZ19tYXRjaCgiI3tjb3B5cmlnaHR9IyIsICR0aGlzLT5jb3 B5X3RlbXBsYXRlKSkNCiAgICAgICAgICAgICAgICBleGl0ICgi UmV0dXJuIHRoZSBjb3B5cmlnaHQgTG9naWNCb2FyZDMhIik7DQ ogICAgICAgICAgICBlbHNlDQogICAgICAgICAgICAgICAgJHRo aXMtPmNvcHlfdGVtcGxhdGUgPSBzdHJfcmVwbGFjZSggIntjb3 B5cmlnaHR9IiwgJHByYXZBdnRvdGEsICR0aGlzLT5jb3B5X3Rl bXBsYXRlICk7DQoJCX0NCiAgICAgICAgDQogICAgICAgIGlmKC Bpc3NldCggJHRoaXMtPnJlc3VsdFskdHBsXSApICkNCgkJCSR0 aGlzLT5yZXN1bHRbJHRwbF0gLj0gJHRoaXMtPmNvcHlfdGVtcG xhdGU7DQoJCWVsc2UNCgkJCSR0aGlzLT5yZXN1bHRbJHRwbF0g PSAkdGhpcy0+Y29weV90ZW1wbGF0ZTsNCiAgICAgICAg'[/COLOR][COLOR="#007700"]));[/COLOR][/COLOR]
Расшифрованый:
PHP код:
[COLOR="#000000"][COLOR="#0000BB"]$this[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]copy_template[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]str_replace[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$find[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]$replace[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]$this[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]copy_template[/COLOR][COLOR="#007700"]);
if ([/COLOR][COLOR="#0000BB"]$tpl[/COLOR][COLOR="#007700"]==[/COLOR][COLOR="#DD0000"]"global_template"[/COLOR][COLOR="#007700"]AND (([/COLOR][COLOR="#0000BB"]$cache_config[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'general_close'[/COLOR][COLOR="#007700"]][[/COLOR][COLOR="#DD0000"]'conf_value'[/COLOR][COLOR="#007700"]] AND[/COLOR][COLOR="#0000BB"]$cache_group[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]$member_id[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'user_group'[/COLOR][COLOR="#007700"]]][[/COLOR][COLOR="#DD0000"]'g_show_close_f'[/COLOR][COLOR="#007700"]] ==[/COLOR][COLOR="#0000BB"]1[/COLOR][COLOR="#007700"]) OR ![/COLOR][COLOR="#0000BB"]$cache_config[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'general_close'[/COLOR][COLOR="#007700"]][[/COLOR][COLOR="#DD0000"]'conf_value'[/COLOR][COLOR="#007700"]]))
{
if ([/COLOR][COLOR="#0000BB"]$pravAvtota[/COLOR][COLOR="#007700"]!=[/COLOR][COLOR="#DD0000"]"LogicBoard"[/COLOR][COLOR="#007700"])
exit ([/COLOR][COLOR="#DD0000"]"Return the copyright LogicBoard2!"[/COLOR][COLOR="#007700"]);
if (![/COLOR][COLOR="#0000BB"]preg_match[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]"#{copyright}#"[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]$this[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]copy_template[/COLOR][COLOR="#007700"]))
exit ([/COLOR][COLOR="#DD0000"]"Return the copyright LogicBoard3!"[/COLOR][COLOR="#007700"]);
else
[/COLOR][COLOR="#0000BB"]$this[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]copy_template[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]str_replace[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]"{copyright}"[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]$pravAvtota[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]$this[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]copy_template[/COLOR][COLOR="#007700"]);
}
if( isset([/COLOR][COLOR="#0000BB"]$this[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]result[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]$tpl[/COLOR][COLOR="#007700"]] ) )
[/COLOR][COLOR="#0000BB"]$this[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]result[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]$tpl[/COLOR][COLOR="#007700"]] .=[/COLOR][COLOR="#0000BB"]$this[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]copy_template[/COLOR][COLOR="#007700"];
else
[/COLOR][COLOR="#0000BB"]$this[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]result[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]$tpl[/COLOR][COLOR="#007700"]] =[/COLOR][COLOR="#0000BB"]$this[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]copy_template[/COLOR][COLOR="#007700"];[/COLOR][/COLOR]
Как-нибуть заюзать можно?
А еще смущяет запрос:
Код:
$db->query( "INSERT INTO " . LB_DB_PREFIX . "_members_online SET mo_id = '{$onl_session}', mo_member_id = '{$member_id['user_id']}', mo_member_name = '{$member_id['name']}', mo_member_group = '{$member_id['user_group']}', mo_ip = '{$_IP}', mo_date = '{$_TIME}', mo_browser = '{$onl_browser}', mo_location = '{$onl_location}', mo_loc_do = '', mo_loc_op = '', mo_loc_id = '', mo_hide = '{$mo_hide}'" );
|
|
|