PHP - 'open_basedir' & 'disable_functions' bypass techniques
TL;DR: This blog post will cover some open_basedir bypass techniques and also some disable_functions as bonus. 0x01: Introduction Sometimes it is possible to place a PHP file on a web server during a pentest with the aim to achieve code execution. Unfortunately, or “lucky” for the client, PHP is configured to disabled most of the common techniques to execute system commands. The most common settings are open_basedir and disable_functions. The open_basedir option, that can define in the ‘php....