# PHP Command Injection
Injecting commands to execute code on the server side via php.

* [Hacktricks](https://book.hackstricks.xyz/pentesting-web/file-upload)

## Blind Command Injection
Attacker does not register a direct response.

### Detect Blind Command Injection
Try to save output to URI resource like `output.php`

## Active Command Injection