当前位置:网站首页>I spring web upload
I spring web upload
2022-07-05 15:10:00 【Golden silk】
According to the prompt , Visit directly first flag.php file
Looking at the source code, I didn't find anything , So it can only be accessed through file upload flag.php file
Upload the file
Click on the uploaded file , Find out <? and php Filtered , You can't use it directly
hold php Switch to PHP Continue to upload , Find out PHP Not filtered out ,
So it can be used strtolower Function Dodge php The filter , Change species PHP How to write the code
There is the following code
Upload again , Open the uploaded file and find flag
Try another method , In one sentence
Upload files
Open the Chinese ant sword , Right mouse button , Add data , Copy file location URL, Input password abc
Click Add
Then go in and check, and you'll find flag La
边栏推荐
- Anaconda uses China University of science and technology source
- P1451 calculate the number of cells / 1329: [example 8.2] cells
- [detailed explanation of Huawei machine test] happy weekend
- 社区团购撤城“后遗症”
- P6183 [USACO10MAR] The Rock Game S
- 超越PaLM!北大碩士提出DiVeRSe,全面刷新NLP推理排行榜
- Ten billion massage machine blue ocean, difficult to be a giant
- 计算中间件 Apache Linkis参数解读
- 我这边同时采集多个oracle表,采集一会以后,会报oracle的oga内存超出,大家有没有遇到的?
- Talk about your understanding of microservices (PHP interview theory question)
猜你喜欢
Huiyuan, 30, is going to have a new owner
超越PaLM!北大碩士提出DiVeRSe,全面刷新NLP推理排行榜
一键更改多个文件名字
Mysql---- function
华为哈勃化身硬科技IPO收割机
Ctfshow web entry explosion
Coding devsecops helps financial enterprises run out of digital acceleration
IPv6与IPv4的区别 网信办等三部推进IPv6规模部署
729. 我的日程安排表 I :「模拟」&「线段树(动态开点)」&「分块 + 位运算(分桶)」
爱可可AI前沿推介(7.5)
随机推荐
机器学习笔记 - 灰狼优化
R 熵权法计算权重及综合得分
NBA赛事直播超清画质背后:阿里云视频云「窄带高清2.0」技术深度解读
I want to inquire about how to ensure data consistency when a MySQL transaction updates multiple tables?
Garbage collection mechanism of PHP (theoretical questions of PHP interview)
Au - delà du PARM! La maîtrise de l'Université de Pékin propose diverse pour actualiser complètement le classement du raisonnement du NLP
做研究无人咨询、与学生不交心,UNC助理教授两年教职挣扎史
ICML 2022 | 探索语言模型的最佳架构和训练方法
市值蒸发超百亿美元,“全球IoT云平台第一股”赴港求生
Photoshop plug-in - action related concepts - actions in non loaded execution action files - PS plug-in development
Super wow fast row, you are worth learning!
Photoshop plug-in action related concepts actionlist actiondescriptor actionlist action execution load call delete PS plug-in development
webRTC SDP mslabel lable
[recruitment position] Software Engineer (full stack) - public safety direction
CPU design related notes
社区团购撤城“后遗症”
Crud of MySQL
PHP high concurrency and large traffic solution (PHP interview theory question)
CODING DevSecOps 助力金融企业跑出数字加速度
Detailed explanation of usememo, memo, useref and other relevant hooks