Kalo yg nk sngt belajar CSS/HTML/jQuery/ , designing blog bolehlah layari site tertera.
queness
Webdesignerwall
Sohtanaka
Tympanus
15 Website Untuk Belajar Designing
Comments :
0
Find some wordpress site and add ~/wp-plugins/ to find the vuln
Code :-
- <?php
- /*
- http://127.0.0.1/wp.php?url=
- Beach Please ~fts
- Paan Hensem tpi danial lagi hensem ~fap
- Credit To : Ahlspiess
- Original Code : http://rempah-proj.googlecode.com/svn/trunk/PHP/wpdetect.php
- */
- $url = $_GET['url'];
- $jMe = new WordpressScanner($url);
- class WordpressScanner {
- public $url;
- function __construct($url){
- $this->url = $url;
- $this->init();
- }
- function init() {
- $content = $this->cURL($this->url);
- if(!preg_match("/200 OK/", $content)) {
- $this->msg("[-] Error! 404 Not Found");
- exit;
- } else {
- print $this->wpscan($content);
- }
- }
- function wpscan($content) {
- $dupe = array();
- $nstack = array();
- preg_match_all("/wp-content\/themes\/(.*?)\/style\.css/", $content, $ret_1);
- preg_match_all("/Theme URI: (.+)/", $this->cURL($this->argv[1]."/".$ret_1[0][0]), $ret_2);
- preg_match_all("/\<meta name=\"generator\" content=\"WordPress (.*?)\" \/\>/", $content, $ret_3);
- $this->msg("[+] Using Wordpress Version: ".trim($ret_3[1][0]));
- $this->msg("[+] Using ".trim($ret_1[1][0])." Theme. Url --> ".trim($ret_2[1][0]));
- preg_match_all("/wp-content\/plugins\/(.*?)\//", $content, $stack);
- foreach($stack[1] as $unstack) {
- if(!isset($dupe[$unstack]) and !is_null($unstack) and !empty($unstack)) {
- if(preg_match("/200 OK/", $this->cURL("http://svn.wp-plugins.org/".trim($unstack)."/"))) {
- $this->msg("[+] Founded {$unstack} Plugins");
- $this->msg(" --> Plugin URL --> http://svn.wp-plugins.org/".trim($unstack)."/");
- } else {
- $this->msg("[+] Founded {$unstack} Plugins.");
- }
- $nstack[] = $unstack;
- $dupe[$unstack] = true;
- }
- }
- //echo "[Debug]".__fVULN__."\n";
- $this->fVuln($nstack);
- }
- function fVuln($c = array()) {
- $content = "";
- foreach($c as $com) {
- $content .= $this->cURL("http://www.exploit-db.com/search/?action=search&filter_page=1&filter_description={$com}&filter_exploit_text=&filter_author=&filter_platform=31&filter_type=6&filter_lang_id=0&filter_port=&filter_osvdb=&filter_cve=");
- }
- preg_match_all("/\<a href=\"http\:\/\/www\.exploit\-db\.com\/exploits\/(.*?)\"\>(.*?)\n/", $content,$me);
- for($i=0;$i<count($me[1]);$i++) {
- $this->msg("[+] ".trim(str_replace("</a>", "", $me[2][$i]))."\n --> http://www.exploit-db.com/exploits/".trim($me[1][$i]));
- }
- }
- function cURL($url) {
- $ch = curl_init();
- curl_setopt($ch, CURLOPT_HEADER, 1);
- curl_setopt($ch, CURLOPT_TIMEOUT, 15);
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
- curl_setopt($ch, CURLOPT_URL, $url);
- curl_setopt($ch, CURLOPT_USERAGENT, "~fap~fap");
- curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
- $data = curl_exec($ch);
- if($data) {
- return $data;
- } else {
- return 0;
- }
- }
- function msg($x) {
- printf("%s<br />", $x);
- }
- }
- ?>
save as wp.php or etc
run the file at localhost/website , example abgdanial.com/wp.php?url=1malaysia.com.my
search the vuln plugins at google.com/exploit-db.com/1337day.org
credits to 0b0xed for the tut.
Wordpress Vulnerability Scanner by Ahlspiess
Comments :
0
Popular Posts
-
Kalo yg nk sngt belajar CSS/HTML/jQuery/ , designing blog bolehlah layari site tertera. queness Webdesignerwall Sohtanaka ... -
Find some wordpress site and add ~/wp-plugins/ to find the vuln Code :- <?php /* http://127.0.0.1/wp.php?url= ...