<?php
$_GET['file'] = '/etc/passwd';
#https://twitter.com/ramal_h
#file compressor
header('Content-type: text/css');
ob_start("compress");
function compress( $minify )
{
$minify = preg_replace( '!/\*[^*]*\*+([^/][^*]*\*+)*/!', '', $minify );
$minify = str_replace( array("\r\n", "\r", "\n", "\t", ' ', ' ', ' '), '', $minify );
return $minify;
}
$file = $_GET['file'];
if( ($file == '') || (strpos($file, '../') !== false))
exit('Hacking attempt');
else
include $_GET['file'];
ob_end_flush();
preferences:
60.51 ms | 402 KiB | 5 Q