当前位置:网站首页>Buuctf-[[gwctf 2019] I have a database (xiaoyute detailed explanation)
Buuctf-[[gwctf 2019] I have a database (xiaoyute detailed explanation)
2022-07-06 06:00:00 【Xiaoyute detailed explanation】
buuctf-[[GWCTF 2019] I have a database ( Xiaoyute detailed explanation )
Here I don't know why the display is garbled
Use it directly dirsearch Scan the website
Here we are phpmyadmin Catalog , Login without password succeeded .
The version number is given here MySQL database Version 4.8.1.
This version contains a file vulnerability
The principle of vulnerability is
utilize / send db_datadict.php? Become a nonexistent Directory , utilize include The directory of functions keeps jumping, trying to get flag Catalog .
payload
phpmyadmin/index.php?target=db_datadict.php?/../../../../../flag
边栏推荐
- Download, install and use NVM of node, and related use of node and NRM
- 初识数据库
- As3013 fire endurance test of cable distribution system
- Go language -- language constants
- Report on market depth analysis and future trend prediction of China's arsenic trioxide industry from 2022 to 2028
- Winter 2021 pat class B problem solution (C language)
- Report on the competition status and investment decision recommendations of Guangxi hospital industry in China from 2022 to 2028
- Mysql database master-slave cluster construction
- [untitled]
- 查询生产订单中某个(些)工作中心对应的标准文本码
猜你喜欢
Download, install and use NVM of node, and related use of node and NRM
B站刘二大人-Softmx分类器及MNIST实现-Lecture 9
![[experience] install Visio on win11](/img/f5/42bd597340d0aed9bfd13620bb0885.png)
[experience] install Visio on win11
Is it difficult for an information system project manager?
Memory and stack related concepts
Usage of test macro of GTEST
ContentType的作用
Station B, Master Liu Er - back propagation
Classes and objects (I) detailed explanation of this pointer
Web service connector: Servlet
随机推荐
[course notes] Compilation Principle
【论文代码】SML部分代码阅读
Station B Liu Erden softmx classifier and MNIST implementation -structure 9
C language bubble sort
ContentType的作用
Arrays and collections
Zoom through the mouse wheel
[experience] when ultralso makes a startup disk, there is an error: the disk / image capacity is too small
Usage of test macro of GTEST
J'ai un chaton.
GTSAM中李群的运用
类和对象(一)this指针详解
数学三大核心领域概述:几何
Download, install and use NVM of node, and related use of node and NRM
Web service connector: Servlet
Analysis report on development trends and investment planning of China's methanol industry from 2022 to 2028
Cognitive introspection
Database: ODBC remote access SQL Server2008 in oracel
华为路由器如何配置静态路由
Accélération de la lecture vidéo de l'entreprise