YAPS – Yet Another PHP Shell. Reverse Shell
As the name reveals, this is yet another PHP reverse shell, one more among hundreds available out there. It is a single PHP file containing all its functions and you can control it via a […]
Tag: php
AMWSCAN – PHP Antimalware Scanner
PHP Malware Scanner Free Tool A tool to scan PHP files and analyze your project to find any malicious code inside it. It provides a text terminal console interface to scan files in a given […]
BlackNET – Modern Windows Botnet with Web Based C&C
BlackNET Free advanced and modern Windows botnet with a nice and secure PHP panel developed using VB.NET. About BlackNET Free advanced and modern Windows botnet with a nice and secure PHP panel built using VB.NET. […]
CookieDoor PHP Shell Execute Remote Shell Command Via Cookies
Introduction Cookie door is a php backdoor that allows you to execute remote shell command on the webserver. Commands are sent via cookie. How to use You can place the payload.php script code inside another […]
Daily Expenses Management System 1.0 SQL Injection
# Exploit Title: Daily Expenses Management System 1.0 – Multiple SQL Injection Vulnerabilty # Date: 2020-8-5 # Exploit Author: Edo Maland # Vendor Homepage: https://www.sourcecodester.com/php/14372/daily-tracker-system-phpmysql.html # Software Link: https://www.sourcecodester.com/php/14372/daily-tracker-system-phpmysql.html # Version: 1.0 # Tested on: […]
pfSense 2.4.4-p3 – Cross-Site Request Forgery
# Exploit Title: pfSense 2.4.4-p3 – Cross-Site Request Forgery # Date: 2019-09-27 # Exploit Author: ghost_fh # Vendor Homepage: https://www.pfsense.org/ # Software Link: https://www.pfsense.org/download/index.html?section=downloads # Version: Till 2.4.4-p3 # Tested on: freebsd # CVE : […]
PHP 7.4 FFI – ‘disable_functions’ Bypass
<?php /* FFI Exploit – uses 3 potential BUGS. PHP was contacted and said nothing in FFI is a security issue. Able to call system($cmd) without using FFI::load() or FFI::cdefs() * BUG #1 (maybe intended, […]
