I recently found a web site vuln to php injection. but there are somethings that make no sense. I have the password hashes, i can read all the php sources i can see the files and directories. but...
the first thing is, lets say i have this code in http://myserver/cmd.php:
<? passthru($cmd); ?>
when i inject it like this:
it doesn't work, but when i change the source to:
<? passthru("ls"); ?>
it works and shows the list of files.
i'm wondering why?? is there any problem with that php script??
secondly, it seems like i can access files and even etc/shadow but i can't edit/remove/make new files and directories.
can you explain why is it like this??
EDIT: never mind :)
Edited by on 06-02-06 01:37
Hellbound Hackers is the collective work of the staff and the community and is therefore licensed under the CC BY-NC-SA license.