Any ideas about executing phpinfo() in this code snippet
Audit this code snippet, control the input $_GET['search'], try to execute phpinfo()
I have googled a reference: http://www.xfocus.net/articles/200605/866.html I think preg_replace with /e and %00 should be useful... but do not know how Any ideas will be appreciate. Code:
<form action="" method="GET"> |
All times are GMT +8. The time now is 08:11. |
Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2024, vBulletin Solutions, Inc.
Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX