当前位置:网站首页>The "Baidu Cup" CTF competition was held in February 2017, Web: explosion-2
The "Baidu Cup" CTF competition was held in February 2017, Web: explosion-2
2022-07-05 13:19:00 【Part 02】
Topic content :
flag Not in variable .
<?php
include "flag.php";
$a = @$_REQUEST['hello'];
eval( "var_dump($a);");
show_source(__FILE__);?hello=file('flag.php')
file Commands can be read directly
file_get_contents It's OK , But in the source code
边栏推荐
- How to protect user privacy without password authentication?
- C# 对象存储
- [deep learning paper notes] hnf-netv2 for segmentation of brain tumors using multimodal MR imaging
- Apicloud studio3 API management and debugging tutorial
- UnicodeDecodeError: ‘utf-8‘ codec can‘t decode byte 0xe6 in position 76131: invalid continuation byt
- Rocky basics 1
- How to realize batch sending when fishing
- Realize the addition of all numbers between 1 and number
- Word document injection (tracking word documents) incomplete
- Natural language processing from Xiaobai to proficient (4): using machine learning to classify Chinese email content
猜你喜欢
go 数组与切片
Write API documents first or code first?
Laravel document reading notes -mews/captcha use (verification code function)
![[深度学习论文笔记]UCTransNet:从transformer的通道角度重新思考U-Net中的跳跃连接](/img/b6/f9da8a36167db10c9a92dabb166c81.png)
[深度学习论文笔记]UCTransNet:从transformer的通道角度重新思考U-Net中的跳跃连接
Can and can FD
山东大学暑期实训一20220620
Detailed explanation of navigation component of openharmony application development
Actual combat simulation │ JWT login authentication
RHCSA10
ASEMI整流桥HD06参数,HD06图片,HD06应用
随机推荐
量价虽降,商业银行结构性存款为何受上市公司所偏爱?
MATLAB论文图表标准格式输出(干货)
今年上半年,通信行业发生了哪些事?
FPGA 学习笔记:Vivado 2019.1 添加 IP MicroBlaze
SAE international strategic investment geometry partner
Pandora IOT development board learning (HAL Library) - Experiment 7 window watchdog experiment (learning notes)
#从源头解决# 自定义头文件在VS上出现“无法打开源文件“XX.h“的问题
山东大学暑期实训一20220620
Rocky basic command 3
[深度学习论文笔记]UCTransNet:从transformer的通道角度重新思考U-Net中的跳跃连接
Go string operation
个人组件 - 消息提示
leetcode 10. Regular Expression Matching 正则表达式匹配 (困难)
Rocky基础命令3
阿里云SLB负载均衡产品基本概念与购买流程
峰会回顾|保旺达-合规和安全双驱动的数据安全整体防护体系
jenkins安装
leetcode 10. Regular expression matching regular expression matching (difficult)
APICloud Studio3 API管理与调试使用教程
C# 对象存储