Home  >  Article  >  Backend Development  >  Analysis of a backdoor method in pw_PHP tutorial

Analysis of a backdoor method in pw_PHP tutorial

WBOY
WBOYOriginal
2016-07-21 15:55:011093browse

A way to put a backdoor in pw

databbscacheadmin_record.php records background login and operations. Let’s see how to operate this file:

adminadmincp.php:

$bbsrecordfile=D_P."data/bbscache/admin_record.php";
if(!file_exists($bbsrecordfile)){
writeover($bbsrecordfile,"n");
}//This if just says that if admin_record.php does not exist, use code to generate one

What if we just edit admin_record.php and delete :)

Let’s take a look at our code written into admin_record.php

You log in to http://localhost/PHPVind_GBK_6.0RC/upload/admin.php in the background
Use whatever you like Wrong user login will have the following record:

|admin|s|Logging Failed|127.0.0.1|1191667510|

Haha So we can write our code through this, but here It is filtered and cannot be used<

So our backdoor should be left like this: instead of

www.bkjia.comtruehttp: //www.bkjia.com/PHPjc/318403.htmlTechArticlepw’s way of putting a backdoor databbscacheadmin_record.php records background login and operations. Let’s see how it works. This file: adminadmincp.php: $bbsrecordfile=D_P."data...
Statement:
The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn