当前位置：网站首页>(RCE) Remote Code/Command Execution Vulnerability Vulnerability Exercise

(RCE) Remote Code/Command Execution Vulnerability Vulnerability Exercise

2022-07-30 04:45:00 【shatianyzg】

URL: https://www.ctfhub.com/#/skilltree, if there is no user, please register yourself
It is required to write down the following ways to bypass the file upload vulnerability, and take screenshots

1.eval executes
The PHP code shows that the command is required to be assigned to cmd and then executed,
First check the root directory file /?cmd=system(“ls”);
!Remember that the semicolon at the end cannot be omitted!
insert image description here