We all know that PHP is a server-side scripting language. It runs on the server.
SSI (dynamic html executed by the server, rather than the browser), allows us to manipulate php scripts with a little bit on SSI injection.
Once again for the sake of education, i'm only going to teach you how to snoop around the contents of that directory.
Suppose you have a unsecured PHP script running on a page.
Now with some SSI injection you'll be able to initiate commands done by the dynamic html executed by the server.
Simply type <!--#exec cmd="ls ../"-->
This exec command take the value of cmd which states which command to execute.
By simply providing the command of ls (listing the directory), this input will be executed listing the contents of the directory.
As I explained in the previous blog, if suppose you found a hidden php page, simply copy paste the name.php at the end of the url to view its contents.
If you liked this post, please share and rate.
SSI (dynamic html executed by the server, rather than the browser), allows us to manipulate php scripts with a little bit on SSI injection.
Once again for the sake of education, i'm only going to teach you how to snoop around the contents of that directory.
Suppose you have a unsecured PHP script running on a page.
Now with some SSI injection you'll be able to initiate commands done by the dynamic html executed by the server.
Simply type <!--#exec cmd="ls ../"-->
This exec command take the value of cmd which states which command to execute.
By simply providing the command of ls (listing the directory), this input will be executed listing the contents of the directory.
As I explained in the previous blog, if suppose you found a hidden php page, simply copy paste the name.php at the end of the url to view its contents.
If you liked this post, please share and rate.
No comments:
Post a Comment