|
| Wordpress Timthumb Scanner | |
| | Pengirim | Message |
---|
Voldemort BC Security
Jumlah posting : 331 Points : 725 Reputation : 16 Join date : 04.07.11
| Subyek: Wordpress Timthumb Scanner Tue Feb 21, 2012 9:26 pm | |
| Bicara soal wordpress sapa sih yang gak kenal ini cms.. tapi disini saya bahas tentang bugnya pada timthumb.. hmmm.. apa sih itu timthumb... ? Timthumb menurut saya sebuah kode php untuk me-resize ukuran gambar seperti gambar. Tapi di balik fungsi itu terdapat bug untuk upload file secara remote. cara exploitnya laen kali aja dibahas ya ?? Atau mungkin agan-agan disini udah tau cara exploitnya. Disini saya masih menggunakan perl. ini scriptnya : - Code:
-
#!/usr/bin/perl -X system ('clear'); print q( ___________.__ ___________.__ ___. \__ ___/|__| ____\__ ___/| |__ __ __ _____\_ |__ | | | |/ \| | | | \| | \/ \| __ \ | | | | Y Y \ | | Y \ | / Y Y \ \_\ \ |____| |__|__|_| /____| |___| /____/|__|_| /___ / \/ \/ \/ \/ Wordpress http://black-c0de.org <<----------------------------------------------------------------->> Coded By Voldemort <<----------------------------------------------------------------->>
); my $target=""; if ($#ARGV >= 0 ) { $target = $ARGV[0];chomp($target) } else { print "URL Target (Wordpress Path) ex: http://site.com\/blog/ => "; $target = <STDIN>;chomp($target); } use HTTP::Request; use HTTP::Request::Common; use HTTP::Request::Common qw(POST); use LWP::Simple; use LWP 5.53; use LWP::UserAgent; use MIME::Base64; my $dftr = 'tim.txt'; if (-e $dftr){ print "Database Exist..\n"; sleep(2); print "Launch Now\n\n"; } else { print "Database Not Exist..\n"; sleep(1); print "Downloading database...\n"; system(decode_base64("d2dldCAtbyBsb2cgaHR0cDovL21hdHVyenlzY2kuY29tLnBsL19fbWF0dXJhMjAxMi90aW0gLU8gdGltLnR4dDtybSAtcmYgbG9n")); print "Downloading Success...\nLaunch Now\n\n"; } print "Waiting a few minute for searching vulnerable your target ($target)....!!!\n"; my $uagent = "Mozilla/5.0 (X11; Linux i686; rv:9.0.1) Gecko/20100101 Firefox/9.0.1";
my $jml=0; open (data, "tim.txt"); @wordlist=<data>; close data; my $byk = scalar(@wordlist); foreach (@wordlist) { my $hsl= &get_content($target.$_); if ($hsl =~ /TimThumb version/i) { print "Your Can Exploit --> $target$_"; $jml=$jml+1; } }
if ($jml == 0){ print "Not Found TimThum\nThanks For Use My Script\nHappy Hacking\n"; } else { print "Found $jml TimThumb Exploit is --> http://www.exploit-db.com\/exploits\/17602/\n"; print "Thanks For Use My Script\nHappy Hacking\n"; }
sub get_content() { my $url = $_[0]; my $ua = LWP::UserAgent->new(agent => $uagent); $ua->timeout(7); my $req = HTTP::Request->new(GET => $url); my $res = $ua->request($req); return $res->content; } Cara gunakannya : root@voldemort:~# chmod +x <nama file> ex : root@voldemort:~# chmod +x timthumb.pl root@voldemort:~# ./<namafile> ex : root@voldemort:~# ./timthumb.pl [*]Input target. ex : [You must be registered and logged in to see this link.] (sesuaikan path blognya dan diakhiri tanda "/") silakan di coba om, semoga bermanfaat. | |
| | | bl4ck4ng3l NuuBiiTooL
Jumlah posting : 2 Points : 2 Reputation : 0 Join date : 13.09.11
| Subyek: Re: Wordpress Timthumb Scanner Wed Feb 22, 2012 9:40 am | |
| manteb script ny om,, om,, ad subdomain bwt exploit ny ga??? | |
| | | bl4ck4ng3l NuuBiiTooL
Jumlah posting : 2 Points : 2 Reputation : 0 Join date : 13.09.11
| Subyek: Re: Wordpress Timthumb Scanner Wed Feb 22, 2012 9:41 am | |
| manteb script ny om,, om,, ad subdomain bwt exploit ny ga??? | |
| | | Sponsored content
| Subyek: Re: Wordpress Timthumb Scanner | |
| |
| | | | Wordpress Timthumb Scanner | |
|
Similar topics | |
|
| Permissions in this forum: | Anda tidak dapat menjawab topik
| |
| |
| Latest topics | » Baktrack TutorialSun Jul 28, 2019 2:26 am by kenta » aplikasi gambas pada linuxTue Apr 30, 2019 10:28 am by kenta » beli linux ubuntu terbaru di surabayaSun Mar 31, 2019 10:08 am by kenta » desain robotFri Jan 19, 2018 1:25 pm by kenta » membuat robot tidak susahFri Jan 19, 2018 1:15 pm by kenta » Salam.. Salam.. Salam..Thu Nov 30, 2017 7:42 am by BumiayuKita» teknologi penyaring udara dan airWed Oct 04, 2017 8:41 am by kenta » [CloudMILD] VPS SSD IIX 2X RAM + Xtra SSD SpaceMon Jul 24, 2017 10:46 am by BumiayuKita» cara menutup akses dari situs negatifTue Apr 04, 2017 1:04 pm by kenta » Aplikasi Google TalkMon Mar 20, 2017 3:00 am by BumiayuKita» Driver buat Webcam PC ?? merknya M-Tech,, Fri Jan 30, 2015 8:51 pm by aelgrim » Portal Blog,,,,,Sun Dec 14, 2014 12:38 am by robofics» Appteknodroid - Seputar Dunia AndroidMon Nov 10, 2014 11:32 pm by Pr0phecy » Software animasi yang agan2 pakeTue Sep 30, 2014 1:11 pm by X_campus » INDO BILLING 6.70 + KEYSun Sep 21, 2014 2:17 pm by abdul halim |
Statistics | Total 12294 user terdaftar User terdaftar terakhir adalah Adlygans
Total 31710 kiriman artikel dari user in 5734 subjects
|
Banner Forum | Dukung forum Blackc0de dengan memasang bannernya.
|
Social Networking |
|
|