Welcome to HBH! If you had an account on hellboundhacker.org you will need to reset your password using the Lost Password system before you will be able to login.

Exploiting eval()

  1. Home
  2. Forum
  3. Lessons
  4. Exploiting eval()

SySTeM's Avatar

SySTeM

-=[TheOutlaw]=-
20 0

[edit]Nevermind, I watched the video. I thought you meant you actually exploited the php function eval, now I realize you just exploited it on someones site, my bad xD[/edit]


ghost's Avatar

ghost

0 0

nice demo tho :D


ghost's Avatar

ghost

0 0

As far as I'm concerned, you should never use eval

"If eval() is the answer, then you're asking the wrong question"

  • Sara Goleman (afaik)

ghost's Avatar

ghost

0 0

nice vid :)


SySTeM's Avatar

SySTeM

-=[TheOutlaw]=-
20 0

mozzer wrote: As far as I'm concerned, you should never use eval

"If eval() is the answer, then you're asking the wrong question"

  • Sara Goleman (afaik)

Agreed, eval ftl


ghost's Avatar

ghost

0 0

V. True…

Also, use of backticks when not necessary!

eg

mkdir lal

rather than

mkdir ('lal');


ghost's Avatar

ghost

0 0

I dig this even more then the CSRF one, excellent work! Keep 'em coming.

:happy: