13 lines
352 B
Markdown
13 lines
352 B
Markdown
# PHP Command Injection
|
|
Injecting commands to execute code on the server side via php.
|
|
|
|
* [Hacktricks](https://book.hackstricks.xyz/pentesting-web/file-upload)
|
|
|
|
## Blind Command Injection
|
|
Attacker does not register a direct response.
|
|
|
|
### Detect Blind Command Injection
|
|
Try to save output to URI resource like `output.php`
|
|
|
|
## Active Command Injection
|