<?php
// User visits example.com/file_compressor.php?file=/etc/passwd
$_GET['file'] = '/etc/passwd';
// Below is directly copied from https://raw.githubusercontent.com/camoufl4g3/PHP/master/file_compressor.php
#https://twitter.com/ramal_h
#file compressor
header('Content-type: text/css');
ob_start("compress");
function compress( $minify )
{
$minify = preg_replace( '!/\*[^*]*\*+([^/][^*]*\*+)*/!', '', $minify );
$minify = str_replace( array("\r\n", "\r", "\n", "\t", ' ', ' ', ' '), '', $minify );
return $minify;
}
$file = $_GET['file'];
if( ($file == '') || (strpos($file, '../') !== false))
exit('Hacking attempt');
else
include $_GET['file'];
ob_end_flush();
preferences:
54.7 ms | 402 KiB | 5 Q