apacheParsing vulnerability
Vulnerability principle
Parse the file suffix name from right to left. If If you find an unrecognized file suffix, continue to the left. For example, test.php.owf.rar ".owf" and ".rar" are two suffixes that apache cannot recognize and parse, and apache will parse wooyun.php.owf.rar into php.
Vulnerability form
www.xxxx.xxx.com/test.php.xxx
Other configuration issues lead to the vulnerability
(1) If there is such a line in Apache's conf to configure AddHandler php5-script .php, then as long as the file name contains .php, even if the file name is test2.php.jpg, it will be executed as php.
(2) If there is such a line configuration in Apache's conf AddType application/x-httpd-php .jpg, even if the extension is jpg, it can still be executed in php mode.
Experimental environment: Windows Server 2008 R2
Phpstudy2018
Add AddHandler php5-script .php in httpd.conf and restart after adding
Create a php sentence in the root directory with the suffix .php.xxx
Access and see if it can be parsed
Parse successfully, Ant Sword connection
The above is the detailed content of How to parse Apache vulnerability recurrence. For more information, please follow other related articles on the PHP Chinese website!