Skip to content

x86-69/lfi2rce_phpinfo

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
go.mod
go.mod
 
 
lfi2rce_phpinfo.go
lfi2rce_phpinfo.go
 
 
readme.md
readme.md
 
 
shell.php
shell.php
 
 

Repository files navigation

lfi2rce_phpinfo.go

This program is used to exploit a Remote Code Execution vulnerability by uploading a file to the server, retrieving it's random name by using phpinfo and executing it through a Local File Inclusion (LFI) vulnerability.

Usage

go run lfi2rce_phpinfo.go -phpinfo http://10.10.176.70/dashboard/phpinfo.php -lfi http://10.10.176.70/dev/index.html?view=%s

To-Do:

  • TLS/SSL support

About

a go tool to explore RCE through LFI + phpinfo()

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages