Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Where you should disclose your vulnerabilities. Go read RFPolicy if you want to do responsible disclosure, and go here for when all else fails. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
download php in remote
Posted by: sleekMak
Date: April 12, 2010 12:47AM

Could i test whether php source can be downloaded from our server ?
What are the most effective tools and techniques to download php source code ?

thanking in credit.

Options: ReplyQuote
Re: download php in remote
Posted by: Reiners
Date: April 12, 2010 03:06AM

its not possible unless your webserver does not parse the PHP code for any reason or you have a file disclosure vulnerability in your application.

Options: ReplyQuote
Re: download php in remote
Posted by: alexfoo
Date: April 12, 2010 04:06AM

I usually try to find temporary files that editors leave behind, like foo.php~ and stuff like that. Or try to find a LFI.

Options: ReplyQuote
Re: download php in remote
Posted by: sleekMak
Date: April 12, 2010 04:32AM

Reiners Wrote:
-------------------------------------------------------
> its not possible unless your webserver does not
> parse the PHP code for any reason or you have a
> file disclosure vulnerability in your application.


how's the concept of backdoor browser formed ? they download php files, don't they ?

Options: ReplyQuote
Re: download php in remote
Posted by: sleekMak
Date: April 12, 2010 04:38AM

let's look at the site,

hxxxp://removed

This f**king embassay is increasing corruption in nepal exploiting political leaders allocating the quota for leaders people, though they display the formal process on public allotment, i want to push

"F** king assholes, just don't exploit politics in nepal" to their site.

pdf_preview.php?id=***, i would like to exploit it, but couldnot download the file pdf_preview.php

Thanks



Edited 1 time(s). Last edit at 04/12/2010 06:06AM by .mario.

Options: ReplyQuote
Re: download php in remote
Posted by: Anonymous User
Date: April 12, 2010 06:04AM

Srsly sleekMak - this is the wrong place for inquiries "of the third kind"

Options: ReplyQuote


Sorry, only registered users may post in this forum.