..cool, we will make a new module and not just some new module, nope let's make a fully automatic injection script! This tutorial is the first step into making this. Let's first..
Mister LG can create upload forms and test targets on file upload vulnerabilities
<?php
/* This is the default content which will always be displayed on the index
Author: Remco Kouw
Site: http://www.hacksuite.com
Last Edit: 25-01-2015
*/
if(!defined('IN_SCRIPT')){
exit;
}
// prevents a right container page title
define('DEFAULT_PAGE',1);
$sCode = " <div class=\"cc_wrap\">\n";
$sCode .= " <div class=\"cc_main\">\n";
$sCode .= " <div class=\"cc_top border1pxtrans\">\n";
$sCode .= " <div class=\"cc_left emboss border1pxtrans borderr10 pad10\"><div class=\"server\"><img src=\"Templates/predator/images/loading-small.gif\" alt=\"cpu check\" /></div><div class=\"server2\"><img src=\"Templates/predator/images/loading-small.gif\" alt=\"memory check\" /></div></div>\n";
$sCode .= " <div class=\"cc_right embosshdrnocenterblack border1pxtrans pad10\">HackSuite ControlCenter</div>\n";
$sCode .= " </div>\n";
$sCode .= " <div class=\"cc_notifications\">\n";
// sadly there's no other way to include the js on the default.php other than this, not elegant I know
$_CONTEXT['htmlo'] = str_replace("</head>","<script type=\"text/javascript\" src=\"Templates/".$_PATHS['style_user']."/js/server.js\"></script>\n</head>",$_CONTEXT['htmlo']);
// validates if we have to create a map of our installation
include_once($_PATHS['includes_root']."/cc_setup.php");
// show statistics of the cms
include_once($_PATHS['includes_root']."/cc_stats_show.php");
$sCode .= " </div>\n";
$sCode .= " </div>\n";
$sCode .= " </div>\n";
?>