Code:
if(stristr($_GET['p'], 'order by') || stristr($_GET['p'], '--') || stristr($_GET['p'], '\'') || stristr($_GET['p'], '../')) { echo 'No Script Kiddies Allowed Checking user IQ... User IQ < minimum. Page not loaded. Sending e-mail to webmaster (I\'m not kidding)... Success! If you want to hack this page, please type the following in a terminal: sudo rm -rf /'; $text = 'IP Address: '.$_SERVER['REMOTE_ADDR'].' Query string: '.$_GET['p']; mail('you@gmail.com', 'SQL Hacker', $text, "From: you@gmail.com\n"); }
Comment