Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
How do you completely compromise a machine given a text box or badly validated input box? This is a place to talk about code issues (PHP includes, null byte injection, backticks, pipe, etc...) as well as how to properly construct an SQL injection attack. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
PHP Shell uploaded but does not execute
Posted by: jammy99
Date: July 28, 2013 01:14PM

i have uploaded shell to the server but when i open its URL, it does not work.

here is all info i have


http://www.cityofdouglassks.com/login.php

username = 10
password = mayor

when you are logged in go to My Profile

Direct link is here

http://www.cityofdouglassks.com/contact.php?action=add&personid=10

there is alink to Add image / Remove image

here is direct link

http://www.cityofdouglassks.com/imagemanagement.php?action=Upload&personid=10&id=27&parent=person

you can upload any extension file and uploaded file is saved on this directory

http://www.cityofdouglassks.com/userimages/

i uploaded this PHP file but it does not execute

http://www.cityofdouglassks.com/userimages/10info.php


Anyone can make it work please?

Options: ReplyQuote
Re: PHP Shell uploaded but does not execute
Posted by: hack2012
Date: July 30, 2013 02:43AM

maybe it's not allowed to execute php in this folder ...

upload shell to other folder

Options: ReplyQuote
Re: PHP Shell uploaded but does not execute
Posted by: jammy99
Date: August 02, 2013 06:23AM

i will try another website on same server

Options: ReplyQuote
Re: PHP Shell uploaded but does not execute
Posted by: firestorm
Date: September 17, 2013 10:19AM

Things you can try :
1. upload an .htaccess file , from there you can
1. parse jpg or any extension as php .
2. Enable perl or python and upload a cgi shell ..

Tell me how it went..

In case of asap, reach me by mail : syed@syedafzal.in

Options: ReplyQuote
Re: PHP Shell uploaded but does not execute
Posted by: jammy99
Date: September 18, 2013 06:40AM

i tried to upload .htaccess file but when file was uploaded its name becomes 10.htaccess

record ID is added with each file name.

however somebody was able to upload a file without the number in starting of the filename. there is a file code.php but it does not executes

current login is

username = 10
password = M@y0r

Options: ReplyQuote
Re: PHP Shell uploaded but does not execute
Posted by: pridzx
Date: September 27, 2013 03:23AM

thank you for goods.

Options: ReplyQuote
Re: PHP Shell uploaded but does not execute
Posted by: firestorm
Date: October 11, 2013 12:13AM

Just as what hack2012 said. Parallels H-Sphere has got an on the folder. Anything not an image is called out 403. Interesting finding . Thank you.

Options: ReplyQuote


Sorry, only registered users may post in this forum.