npu thistehneisen

🚩

www.offseq.com

Cybersecurity, CISA, OSCP. Developing since 2004.

56 followers · 457 following

@offseq
127.0.0.1
https://www.offseq.com/
@putninsnils
in/nilsputnins

View GitHub Profile

Recently created

Least recently created

Recently updated

Least recently updated

1 file
0 forks
0 comments
0 stars

thistehneisen / phpdangerousfuncs.md

Created May 19, 2022 06:18 — forked from mccabe615/phpdangerousfuncs.md

Dangerous PHP Functions

Command Execution

exec           - Returns last line of commands output
passthru       - Passes commands output directly to the browser
system         - Passes commands output directly to the browser and returns last line
shell_exec     - Returns commands output
\`\` (backticks) - Same as shell_exec()
popen          - Opens read or write pipe to process of a command
proc_open      - Similar to popen() but greater degree of control
pcntl_exec - Executes a program