1. Write a sentence and upload it
It is found that the front end has verification
Directly click on F12
2. Modify front-end verification
You can upload successfully
3. Find flag on ant sword
1=system("ls /"); //Find root directory
1=system("ls ./"); //Find c ...
Posted by Juan Dela Cruz on Sat, 26 Feb 2022 15:55:08 +0100
$file = $_GET['file'];
See the include function in the source code. This means that the php file is imported from the outside and executed. If the execution is unsuccessful, the source code of the file is returned.The get parameter of the file ...
Posted by pineapple1 on Fri, 25 Feb 2022 15:16:21 +0100
Reference blogs are still Nanshen blog
$num = $_GET['num'];
die("no no no!");
Here is an intval function: get the integer value of the variab ...
Posted by Garcia on Thu, 03 Feb 2022 16:02:35 +0100
There may be a lot of nonsense. It mainly records the process of finding loopholes from so many files
https://blog.csdn.net/rfrder/article/details/113924013 https://blog.csdn.net/miuzzx/article/details/111352849 https://rainy-autumn.top/archives/913
Audit the loopholes written by the group leader three years ago
Posted by greekhand on Thu, 03 Feb 2022 07:00:52 +0100
preg_match : Match regular expression
After pattern separator"i"Tag this is a case insensitive search
In mode\b Mark a word boundary, so only independent words will be matched, such as:
if (preg_match("/\bweb\b/i", "PHP is the web scripting language of choice.")) : True
if (preg_matc ...
Posted by rodin on Wed, 02 Feb 2022 22:16:41 +0100
Posted by squimmy on Sat, 30 Oct 2021 17:44:41 +0200