Skip to content

Instantly share code, notes, and snippets.

@jonmaim

jonmaim/unsecure_php_image_proxy.php

Created September 16, 2011 03:19
Show Gist options
  • Save jonmaim/1221124 to your computer and use it in GitHub Desktop.
Save jonmaim/1221124 to your computer and use it in GitHub Desktop.
Download ZIP
Really unsecure php image proxy.
Raw
unsecure_php_image_proxy.php
<?php
$filename = $_GET['url'];
$ext = pathinfo($filename, PATHINFO_EXTENSION);
switch ($ext) {
case "gif":
header('Content-Type: image/gif');
readfile($filename);
break;
case "png":
header('Content-Type: image/png');
readfile($filename);
break;
case "jpg":
default:
header('Content-Type: image/jpeg');
readfile($filename);
break;
}
?>
@jonmaim
Copy link
Author

jonmaim commented Sep 16, 2011

curl http://localhost/unsecure_php_image_proxy.php?url=/etc/passwd

@hackerpro536
Copy link

how to fix ?

@reneManqueros
Copy link

by changing:
readfile($filename);
to:
readfile('./images/' . $filename);

@rchrd2
Copy link

rchrd2 commented Jan 24, 2018

Very insecure, my friend.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment