当前位置:网站首页>Bugku's file contains
Bugku's file contains
2022-07-01 16:32:00 【Golden silk】
Open the connection
Only this line appears , There is nothing to look at the source code
Click and try
The source code is still nothing
But you can see URL More file It's a kind of reference , Point to show file , Direct access to this file , It's the same as the one above
According to the topic tips ,flag It should be in index.php It's in the code , Exploit the vulnerability contained in the file
There are many file inclusion vulnerabilities , Here we try the simplest PHP flow filter
structure
url?file=php://filter/convert.base64-encode/resource=index.php
It means that the target file index.php Code to base64 Code in the form of , Then the output
Encode the obtained code base64 Decoding can see index.php The code of
Get flag
边栏推荐
- 【每日一题】1175. 质数排列
- Red team Chapter 10: ColdFusion the difficult process of deserializing WAF to exp to get the target
- Zabbix2.2 monitoring system and application log monitoring alarm
- Principes et applications du système de base de données (006) - - compilation et installation de MySQL 5.7 (environnement Linux)
- vscode 查找 替换 一个文件夹下所有文件的数据
- IM即时通讯开发万人群聊消息投递方案
- EndeavourOS移动硬盘安装
- The sharp drop in electricity consumption in Guangdong shows that the substitution of high-tech industries for high-energy consumption industries has achieved preliminary results
- Go 语言源码级调试器 Delve
- Why is the pkg/errors tripartite library more recommended for go language error handling?
猜你喜欢
C#/VB. Net merge PDF document
博睿数据一体化智能可观测平台入选中国信通院2022年“云原生产品名录”
Sqlserver query: when a.id is the same as b.id, and the A.P corresponding to a.id cannot be found in the B.P corresponding to b.id, the a.id and A.P will be displayed
Sweden announced its decision to exclude Huawei 5g equipment, but Huawei has successfully found a new way out
普通二本,去过阿里外包,到现在年薪40W+的高级测试工程师,我的两年转行心酸经历...
Tutorial on the principle and application of database system (002) -- MySQL installation and configuration: MySQL software uninstallation (Windows Environment)
How to use MySQL language for row and column devices?
IM即時通訊開發實現心跳保活遇到的問題
Is the programmer's career really short?
瑞典公布决定排除华为5G设备,但是华为已成功找到新出路
随机推荐
Microservice tracking SQL (support Gorm query tracking under isto control)
Example of vim user automatic command
德国iF多项大奖加冕,这副耳机有多强?音珀GTW 270 Hybrid深度评测
芯片供应转向过剩,中国芯片日产增加至10亿,国外芯片将更难受
【Hot100】20. Valid parentheses
C#/VB. Net merge PDF document
FPN network details
Use Tencent cloud to build a map bed service
Origin2018 installation and use (sorting)
Go 语言错误处理为什么更推荐使用 pkg/errors 三方库?
Which MySQL functions are currently supported by tablestore in table storage?
运动捕捉系统原理
The picgo shortcut is amazing. This person thinks exactly the same as me
Germany if was crowned with many awards. How strong is this pair of headphones? In depth evaluation of yinpo GTW 270 hybrid
Do280 management application deployment - pod scheduling control
使用腾讯云搭建图床服务
Vscode find and replace the data of all files in a folder
How does win11 set user permissions? Win11 method of setting user permissions
laravel的模型删除后动作
【直播预约】数据库OBCP认证全面升级公开课