Mgt Developer Toolbar

Request

GET Parameters

Chave	Valor
working_dir	/../../../../../../../../../../../../../../../../../../../etc
type	Files
file	passwd

Chave

Valor

working_dir

/../../../../../../../../../../../../../../../../../../../etc

type

Files

file

passwd

POST Parameters

No POST parameters

Request Attributes

Chave	Valor
Controller Module	Magento_Cms
Controller ClassName	Magento\Cms\Controller\Noroute\Index
Controller Full ActionName	cms_noroute_index
Controller ActionName	execute
Path Info	/download

Chave

Valor

Controller Module

Magento_Cms

Controller ClassName

Magento\Cms\Controller\Noroute\Index

Controller Full ActionName

cms_noroute_index

Controller ActionName

execute

Path Info

/download

Request Headers

Chave	Valor
Accept-Encoding	gzip
Accept-Language	en
Accept	/
Connection	close
User-Agent	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.3 Safari/605.1.15
Host	staging.skin.pt

Chave

Valor

Accept-Encoding

gzip

Accept-Language

*/*

Connection

User-Agent

Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.3 Safari/605.1.15

Host

staging.skin.pt

Server Parameters

Chave	Valor
USER	www-data
HOME	/var/www
HTTP_ACCEPT_ENCODING	gzip
HTTP_ACCEPT_LANGUAGE	en
HTTP_ACCEPT	/
HTTP_CONNECTION	close
HTTP_USER_AGENT	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.3 Safari/605.1.15
HTTP_HOST	staging.skin.pt
REDIRECT_STATUS	200
SERVER_NAME	staging.skin.pt
SERVER_PORT	443
SERVER_ADDR	23.88.71.233
REMOTE_USER
REMOTE_PORT	35560
REMOTE_ADDR	144.31.2.199
SERVER_SOFTWARE	nginx/1.18.0
GATEWAY_INTERFACE	CGI/1.1
HTTPS	on
REQUEST_SCHEME	https
SERVER_PROTOCOL	HTTP/1.1
DOCUMENT_ROOT	/home/www/skin.pt/httpdocs-staging/pub
DOCUMENT_URI	/index.php
REQUEST_URI	/download?working_dir=%2F../../../../../../../../../../../../../../../../../../../etc&type=Files&file=passwd
SCRIPT_NAME	/index.php
CONTENT_LENGTH
CONTENT_TYPE
REQUEST_METHOD	GET
QUERY_STRING	working_dir=%2F../../../../../../../../../../../../../../../../../../../etc&type=Files&file=passwd
SCRIPT_FILENAME	/home/www/skin.pt/httpdocs-staging/pub/index.php
MAGE_RUN_CODE	skinpt
MAGE_RUN_TYPE	website
PHP_VALUE	memory_limit=2024M max_execution_time=18000
PHP_FLAG	session.auto_start=off suhosin.session.cryptua=off
FCGI_ROLE	RESPONDER
PHP_SELF	/index.php

Chave

Valor

USER

www-data

HOME

/var/www

HTTP_ACCEPT_ENCODING

gzip

HTTP_ACCEPT_LANGUAGE

HTTP_ACCEPT

*/*

HTTP_CONNECTION

HTTP_USER_AGENT

Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.3 Safari/605.1.15

HTTP_HOST

staging.skin.pt

REDIRECT_STATUS

200

SERVER_NAME

staging.skin.pt

SERVER_PORT

443

SERVER_ADDR

23.88.71.233

REMOTE_USER

REMOTE_PORT

35560

REMOTE_ADDR

144.31.2.199

SERVER_SOFTWARE

nginx/1.18.0

GATEWAY_INTERFACE

CGI/1.1

HTTPS

REQUEST_SCHEME

https

SERVER_PROTOCOL

HTTP/1.1

DOCUMENT_ROOT

/home/www/skin.pt/httpdocs-staging/pub

DOCUMENT_URI

/index.php

REQUEST_URI

/download?working_dir=%2F../../../../../../../../../../../../../../../../../../../etc&type=Files&file=passwd

SCRIPT_NAME

/index.php

CONTENT_LENGTH

CONTENT_TYPE

REQUEST_METHOD

GET

QUERY_STRING

working_dir=%2F../../../../../../../../../../../../../../../../../../../etc&type=Files&file=passwd

SCRIPT_FILENAME

/home/www/skin.pt/httpdocs-staging/pub/index.php

MAGE_RUN_CODE

skinpt

MAGE_RUN_TYPE

website

PHP_VALUE

memory_limit=2024M max_execution_time=18000

PHP_FLAG

session.auto_start=off suhosin.session.cryptua=off

FCGI_ROLE

RESPONDER

PHP_SELF

/index.php

Chave

Valor

https://staging.skin.pt/download?working_dir=%2F../../../../../../../../../../../../../../../../../../../etc&type=Files&file=passwd

Request

GET Parameters

POST Parameters

Request Attributes

Request Headers

Server Parameters

Cookies