PHP 5.3.3-5.3.6 Exploit + Bind Shell

Dear Readers, 5.3.3-5.3.6 is still used and its very easy to exploit.

All you need to do is find a way to upload a PHP file to the server, then call it.

The Payload is a bind tcp shell opening a port on the server between 4000 – 4500 to find the open one just use Nmap

nmap -sS -p 4000-4500 IP




you’re welcome



Schreibe einen Kommentar

Deine E-Mail-Adresse wird nicht veröffentlicht. Erforderliche Felder sind mit * markiert.

This site uses Akismet to reduce spam. Learn how your comment data is processed.