Retest with "killer" params
Raw display of $_GET:
dest | => epsomquakers.org.uk | |
$_REQUEST ($_GET, $_POST and possibly $_COOKIE): array (
'dest' => 'epsomquakers.org.uk',
)
$_GET: array (
'dest' => 'new value of $_GET["dest"]',
'newval' => 'added within a function',
)
$_GET has been changed but the same field in $_REQUEST is unchanged.
$_POST: array (
)
$_COOKIE: array (
)
$_SERVER: array (
'PATH' => '/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin',
'PP_CUSTOM_PHP_INI' => '/var/www/vhosts/system/epsomquakers.org.uk/etc/php.ini',
'PP_CUSTOM_PHP_CGI_INDEX' => 'fastcgi',
'SCRIPT_NAME' => '/test/showenv.php',
'REQUEST_URI' => '/test/showenv.php?dest=epsomquakers.org.uk',
'QUERY_STRING' => 'dest=epsomquakers.org.uk',
'REQUEST_METHOD' => 'GET',
'SERVER_PROTOCOL' => 'HTTP/1.1',
'GATEWAY_INTERFACE' => 'CGI/1.1',
'REMOTE_PORT' => '34356',
'SCRIPT_FILENAME' => '/var/www/vhosts/southlondonquakers.org.uk/epsom/test/showenv.php',
'SERVER_ADMIN' => 'root@localhost',
'CONTEXT_DOCUMENT_ROOT' => '/var/www/vhosts/southlondonquakers.org.uk/epsom',
'CONTEXT_PREFIX' => '',
'REQUEST_SCHEME' => 'https',
'DOCUMENT_ROOT' => '/var/www/vhosts/southlondonquakers.org.uk/epsom',
'REMOTE_ADDR' => '18.97.14.83',
'SERVER_PORT' => '443',
'SERVER_ADDR' => '195.224.99.182',
'SERVER_NAME' => 'epsomquakers.org.uk',
'SERVER_SOFTWARE' => 'Apache',
'SERVER_SIGNATURE' => '',
'HTTP_CONNECTION' => 'close',
'HTTP_HOST' => 'epsomquakers.org.uk',
'HTTP_ACCEPT_ENCODING' => 'br,gzip',
'HTTP_IF_MODIFIED_SINCE' => 'Fri, 21 Jun 2024 21:36:42 GMT',
'HTTP_ACCEPT_LANGUAGE' => 'en-US,en;q=0.5',
'HTTP_ACCEPT' => 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8',
'HTTP_USER_AGENT' => 'CCBot/2.0 (https://commoncrawl.org/faq/)',
'SSL_TLS_SNI' => 'epsomquakers.org.uk',
'HTTPS' => 'on',
'PASSENGER_DOWNLOAD_NATIVE_SUPPORT_BINARY' => '0',
'PASSENGER_COMPILE_NATIVE_SUPPORT_BINARY' => '0',
'PERL5LIB' => '/usr/share/awstats/lib:/usr/share/awstats/plugins',
'SCRIPT_URI' => 'https://epsomquakers.org.uk/test/showenv.php',
'SCRIPT_URL' => '/test/showenv.php',
'UNIQUE_ID' => 'Z1BWXGnA0@lK@W5num@AawAAAAM',
'FCGI_ROLE' => 'RESPONDER',
'PHP_SELF' => '/test/showenv.php',
'REQUEST_TIME_FLOAT' => 1733318236.3038,
'REQUEST_TIME' => 1733318236,
'SCRIPT_DIR' => 'https://epsomquakers.org.uk/test/',
'HTTP_WINVER' => false,
)
SCRIPT_DIR and HTTP_WINVER are non-standard and have been added by photinc.php
getcwd(): matches $_SERVER['SCRIPT_FILENAME']'/var/www/vhosts/southlondonquakers.org.uk/epsom/test'
$_SESSION: NULL
$_ENV: array (
)
$_FILES: array (
)
$argc:
$argv:NULL
apache_request_headers(): array (
'Connection' => 'close',
'Host' => 'epsomquakers.org.uk',
'Accept-Encoding' => 'br,gzip',
'If-Modified-Since' => 'Fri, 21 Jun 2024 21:36:42 GMT',
'Accept-Language' => 'en-US,en;q=0.5',
'Accept' => 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8',
'User-Agent' => 'CCBot/2.0 (https://commoncrawl.org/faq/)',
)
getdate(): Array
(
[seconds] => 16
[minutes] => 17
[hours] => 13
[mday] => 4
[wday] => 3
[mon] => 12
[year] => 2024
[yday] => 338
[weekday] => Wednesday
[month] => December
[0] => 1733318236
)
http_response_code(): 200
pathinfo(__FILE__): array (
'dirname' => '/var/www/vhosts/southlondonquakers.org.uk/httpdocs/test',
'basename' => 'shownvi.php',
'extension' => 'php',
'filename' => 'shownvi',
)
posix_getpwuid(): for /var/www/vhosts/southlondonquakers.org.uk/httpdocs/test/shownvi.phparray (
'name' => 'admin152494',
'passwd' => 'x',
'uid' => 10229,
'gid' => 1003,
'gecos' => '',
'dir' => '/var/www/vhosts/southlondonquakers.org.uk',
'shell' => '/bin/false',
)
stat(__FILE__):array (
0 => 2050,
1 => 700735675,
2 => 33188,
3 => 1,
4 => 10229,
5 => 1003,
6 => 0,
7 => 9074,
8 => 1733243292,
9 => 1692615546,
10 => 1692615768,
11 => 4096,
12 => 24,
'dev' => 2050,
'ino' => 700735675,
'mode' => 33188,
'nlink' => 1,
'uid' => 10229,
'gid' => 1003,
'rdev' => 0,
'size' => 9074,
'atime' => 1733243292,
'mtime' => 1692615546,
'ctime' => 1692615768,
'blksize' => 4096,
'blocks' => 24,
)
Window data:
get_headers(): add gh=1 to command line to use get_headers() or gh=2 to use http_get(). Warning may be very slow!
php.ini:; ATTENTION!
;
; DO NOT MODIFY THIS FILE BECAUSE IT WAS GENERATED AUTOMATICALLY,
; SO ALL YOUR CHANGES WILL BE LOST THE NEXT TIME THE FILE IS GENERATED.
[PHP]
SMTP = localhost
allow_url_fopen = On
allow_url_include = Off
asp_tags = Off
auto_append_file =
auto_globals_jit = On
auto_prepend_file =
bcmath.scale = 0
cli_server.color = On
default_mimetype = "text/html"
default_socket_timeout = 60
disable_classes =
disable_functions = exec,passthru,shell_exec,system,proc_open,popen,curl_multi_exec
display_errors = Off
display_startup_errors = Off
doc_root =
enable_dl = Off
engine = On
error_reporting = 22519
expose_php = off
file_uploads = on
html_errors = On
ibase.allow_persistent = 1
ibase.dateformat = "%Y-%m-%d"
ibase.max_links = -1
ibase.max_persistent = -1
ibase.timeformat = "%H:%M:%S"
ibase.timestampformat = "%Y-%m-%d %H:%M:%S"
ignore_repeated_errors = Off
ignore_repeated_source = Off
implicit_flush = Off
include_path = ".:"
ldap.max_links = -1
log_errors = off
log_errors_max_len = 1024
mail.add_x_header = On
max_execution_time = 60
max_file_uploads = 20
max_input_time = 60
memory_limit = 128M
mssql.allow_persistent = On
mssql.compatability_mode = Off
mssql.max_links = -1
mssql.max_persistent = -1
mssql.min_error_severity = 10
mssql.min_message_severity = 10
mssql.secure_connection = Off
mysql.allow_local_infile = On
mysql.allow_persistent = On
mysql.cache_size = 2000
mysql.connect_timeout = 60
mysql.default_host =
mysql.default_password =
mysql.default_port =
mysql.default_socket =
mysql.default_user =
mysql.max_links = -1
mysql.max_persistent = -1
mysql.trace_mode = Off
mysqli.allow_persistent = On
mysqli.cache_size = 2000
mysqli.default_host =
mysqli.default_port = 3306
mysqli.default_pw =
mysqli.default_socket =
mysqli.default_user =
mysqli.max_links = -1
mysqli.max_persistent = -1
mysqli.reconnect = Off
mysqlnd.collect_memory_statistics = Off
mysqlnd.collect_statistics = On
odbc.allow_persistent = On
odbc.check_persistent = On
odbc.defaultbinmode = 1
odbc.defaultlrl = 4096
odbc.max_links = -1
odbc.max_persistent = -1
open_basedir = none
output_buffering = 4096
pdo_mysql.cache_size = 2000
pdo_mysql.default_socket =
pgsql.allow_persistent = On
pgsql.auto_reset_persistent = Off
pgsql.ignore_notice = 0
pgsql.log_notice = 0
pgsql.max_links = -1
pgsql.max_persistent = -1
post_max_size = 8M
precision = 14
register_argc_argv = Off
report_memleaks = On
request_order = "GP"
sendmail_path = /usr/sbin/sendmail -t -i
serialize_precision = 17
session.auto_start = 0
session.bug_compat_42 = Off
session.bug_compat_warn = Off
session.cache_expire = 180
session.cache_limiter = nocache
session.cookie_domain =
session.cookie_httponly =
session.cookie_lifetime = 0
session.cookie_path = /
session.gc_divisor = 1000
session.gc_maxlifetime = 1440
session.gc_probability = 1
session.hash_bits_per_character = 5
session.hash_function = 0
session.name = PHPSESSID
session.referer_check =
session.save_handler = files
session.serialize_handler = php
session.use_cookies = 1
session.use_only_cookies = 1
session.use_trans_sid = 0
short_open_tag = on
smtp_port = 25
soap.wsdl_cache_dir = "/tmp"
soap.wsdl_cache_enabled = 1
soap.wsdl_cache_limit = 5
soap.wsdl_cache_ttl = 86400
sql.safe_mode = Off
sybct.allow_persistent = On
sybct.max_links = -1
sybct.max_persistent = -1
sybct.min_client_severity = 10
sybct.min_server_severity = 10
tidy.clean_output = Off
track_errors = Off
unserialize_callback_func =
upload_max_filesize = 128M
url_rewriter.tags = "a=href,area=href,frame=src,input=src,form=fakeentry"
user_dir =
variables_order = "GPCS"
zend.enable_gc = On
zlib.output_compression = Off
phpversion(): 5.4.16
This box is specified as 50 em wide
$_REQUEST[em2px]=16. So this box is specified as 50*16=800 pixels wide
2020 May 09 13:10:30 - /var/www/vhosts/southlondonquakers.org.uk/epsom/test/showenv.php = $_SERVER['SCRIPT_FILENAME']
2023 Aug 21 10:59:06 - /var/www/vhosts/southlondonquakers.org.uk/httpdocs/test/shownvi.php = __FILE__