Saved last ran command to mysql database for future use

nerdofcode · nerdofcode · commit 1dda24035ba6 · 2017-10-20T23:51:01.000Z
diff --git a/index.php b/index.php
@@ -40,6 +40,7 @@
 <?php
 include('user.php');
 $user_name = $_POST['UID'];
+$_SESSION['user']="$user_name";
 $user_password = $_POST['passwd'];
 $db = mysqli_connect('localhost',$user,$pass,$database) or die("Error connecting to MYSQL");
 $query = "SELECT password FROM $table WHERE name = '$user_name'";
diff --git a/mysql.php b/mysql.php
@@ -1,15 +1,9 @@
 <?php
 include "user.php";
+$user_logged=$_SESSION['user'];
 $query=$_SESSION['run_seperate'];
 $db = mysqli_connect('localhost',$user,$pass,$database) or die("<p style=\"color:red;\"><b>Error: </b> connection to MySQL failed. Please re-enter information and try again.</p>");
-mysqli_query($db, $query) or die("Query failed");
-$result = mysqli_query($db, $query);
-$row = mysqli_fetch_all($result, MYSQLI_ASSOC);
-$stringArray = json_encode($row);
-$stringArray = str_replace(",", "<br>", $stringArray);
-$stringArray = str_replace(array('[', ']', '}', '"'), "", $stringArray);
-$stringArray = str_replace("{", "<br>", $stringArray);
-$stringArray = str_replace(":", ": ", $stringArray);
-echo $stringArray;
+$new_query="UPDATE $table SET commands='$query' WHERE name='$user_logged'";
+mysqli_query($db, $new_query);
 $mysqli_close($db);
 ?>
diff --git a/mysql_exec.php b/mysql_exec.php
@@ -8,6 +8,8 @@
 		$_SESSION['logged_in']="0";
 }}else if($status != "1"){
         header("Location: /404.php");}
+
+
 ?>
 <html>
 <head>
@@ -62,6 +64,9 @@
    		$stringArray = str_replace(":", ": ", $stringArray);
     		echo $stringArray;
 		$mysqli_close($db);
+		//Set session variable for mysql.php
+		$_SESSION['run_seperate']="$query";
+		include 'mysql.php';
 	}
 ?>
 </html>
diff --git a/options.php b/options.php
@@ -23,7 +23,9 @@
 
 <a href="shell.php"><p class="server">EXECUTE SHELL</p></a>
 <a href="mysql_exec.php"><p class="server">EXECUTE MYSQL</p></a>
-<a href="php_exec.php"><p class="server">EXECUTE PHP</p></a>
+<a href="php_exec.php"><p class="server">EXECUTE PHP</p></a><br><br>
+
+
 <p class="footer">Version: <?php echo $version; ?></p>
 </body>
 
diff --git a/php_exec.php b/php_exec.php
@@ -28,6 +28,8 @@
 	//Run the shell command
 	$run = eval($shell);
 	echo "<pre>$run</pre>";
+	$_SESSION['run_seperate']="$shell";
+        include 'mysql.php';
 }else{
 	echo "<b>Nothing has been run yet.</b>";	
 }
diff --git a/shell.php b/shell.php
@@ -35,6 +35,8 @@
 	$run = shell_exec("$shell");
 	echo "<br><b>Output: </b><br>";
 	echo "<pre>$run</pre>";
+	$_SESSION['run_seperate']="$shell";
+	include "mysql.php";
 }else{
 	echo "<b>Nothing has been run yet.</b>";	
 }

Original file line number	Diff line number	Diff line change
`@@ -28,6 +28,8 @@`
`28`	`28`	`//Run the shell command`
`29`	`29`	`$run = eval($shell);`
`30`	`30`	`echo "<pre>$run</pre>";`
	`31`	`+ $_SESSION['run_seperate']="$shell";`
	`32`	`+ include 'mysql.php';`
`31`	`33`	`}else{`
`32`	`34`	`echo "<b>Nothing has been run yet.</b>";`
`33`	`35`	`}`
Original file line number	Diff line number	Diff line change
`@@ -35,6 +35,8 @@`
`35`	`35`	`$run = shell_exec("$shell");`
`36`	`36`	`echo "<br><b>Output: </b><br>";`
`37`	`37`	`echo "<pre>$run</pre>";`
	`38`	`+ $_SESSION['run_seperate']="$shell";`
	`39`	`+ include "mysql.php";`
`38`	`40`	`}else{`
`39`	`41`	`echo "<b>Nothing has been run yet.</b>";`
`40`	`42`	`}`