oh god, whoever is selling this is selling dirt. just from looking at the site, the fact they're shipping some php scripts that have dependencies which are specifically set to exist on people's webserver is extremely amateur.
then you see the fact they're using mysql queries with php's mysql_* library which has been discouraged for use since PHP 4 (from 2000).. and just feeding them in from the POST variables.. f***.
they aren't using whitespace property so it's clear they have no intentions of keeping that code maintained, readable, or usable. it looks more like the project of a college student than a serious hack shield.
i understand that the only people who'd use this have no experience of themselves, but considering the nature of what they're looking for, they owe it to themselves to let someone competent in that field to at least have a look at the code they're using.