File: exec.php

package info (click to toggle)
graudit 4.0-1
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid
  • size: 1,256 kB
  • sloc: sh: 1,134; makefile: 82; php: 62; jsp: 24
file content (19 lines) | stat: -rw-r--r-- 341 bytes parent folder | download | duplicates (2) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
 
<?php
//1 vuln, 1 safe call
exec( $_GET[cmd] );
exec( "echo 123" );
system ("$_POST['cmd']");
system ("pwd");
popen ("$_REQUEST[cmd]");
popen ('which php');
//backdoor style
passthru ($_COOKIE['cmd']);
passthru ('nosuch --cmd');
`ls -la $_GET[fname]`
`ls -la`
shell_exec("touch $_POST[fname]");
shell_exec("id");
exec $_GET['cmd'];
exec

?>