Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <form action="" method="post">
- <input type="text" value="www.intelligentexploit.com/api/search-exploit?name=wordpress" name="site">
- <input type="submit" name="submit" value="scan">
- </form>
- <?php
- error_reporting(0);
- if($_POST['submit']){
- $url = $_POST['site'];
- $ch = curl_init();
- curl_setopt($ch, CURLOPT_URL, $url);
- curl_setopt($ch, CURLOPT_HEADER, TRUE);
- curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
- $result =curl_exec($ch);
- curl_close($ch);
- if (preg_match("/error in your SQL syntax|mysql_fetch_array()|execute query|mysql_fetch_object()|mysql_num_rows()|mysql_fetch_assoc()|mysql_fetch​_row()|SELECT * FROM|supplied argument is not a valid MySQL|Syntax error|Fatal error/i",$result)){
- echo "Gak Vuln";
- }else {
- $url = $_POST['site'];
- $_rurl = str_replace("=","='",$_url);
- $ch = curl_init();
- curl_setopt($ch, CURLOPT_URL, $_rurl);
- curl_setopt($ch, CURLOPT_HEADER, TRUE);
- curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
- $result =curl_exec($ch);
- curl_close($ch);
- if (preg_match("/error in your SQL syntax|mysql_fetch_array()|execute query|mysql_fetch_object()|mysql_num_rows()|mysql_fetch_assoc()|mysql_fetch​_row()|SELECT * FROM|supplied argument is not a valid MySQL|Syntax error|Fatal error/i",$result)){
- echo "Vuln";
- }
- }
- ob_flush();
- flush();
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
