Programmer Think

ekucms2.5 local file contains vulnerability - code audit 1, Foreword In order to learn the operation principle of Thinkphp framework and strengthen its own code audit ability, we specially looked for a CMS vulnerability article written by php on the Internet for reproduction and reverse code audit. Vulnerability reference articles are as foll ...

preface This article is only for security research and skill learning. It should not be used for unauthorized penetration attacks. Any consequences have nothing to do with the author of this article. 1, Vulnerability description However, the vulnerable Tomcat runs on the Windows/Linux host, and the HTTP PUT request method is enabl ...

Involving knowledge 1. The essence of handshake and wave In fact, I think waving and shaking hands are completely confusing concepts. The change of serial number and verification number completely depends on whether you are the data sender or receiver. The data here only refers to the data carried in the application layer http, excludin ...

Dark moon penetration actual shooting range - item 8 Environment construction Network card design What needs to be prepared are three network cards, the NAT mode network card provided by the virtual machine, and two self added 19 and 18 network cards in host mode only Topological graph Specific topologies of the two practical projects ...

preface This article uses PHP_SESSION_UPLOAD_PROGRESS summarizes file inclusion and deserialization. That is, the file inclusion and deserialization of PHP session Introduction to session Session is called "session control". The session object stores the attributes and configuration information required for a specific user ...

JWT overview Json Web Token (JWT) is a JSON based open standard implemented to transfer declarations between network application environments. The declaration of JWT is generally used to transfer the authenticated user identity information between identity providers and service providers, so as to obtain resources from the resource serv ...

preface I've met many test questions of prototype chain knowledge points, and I've been hammered every time. I don't want to think about it next time... JavaScript prototype Classes in javascript use classes in java and php to define classes, but methods defined by functions. JavaScript is often described as a prototype based language - each ob ...

1 ACL overview (1) Definition: Access Control List access control list is actually a packet filtering technology. Access Control List (ACL) is an access control technology based on packet filtering. It can filter the data packets on the interface according to the set conditions and allow them to pass or discard. (2) Function: 1) Access co ...

filemanager Inspection point: secondary injection + code audit capability Old rule – > scan directly The existing directory is found to be Find a www.tar GZ file Combined with the upload function in the web page The idea of guessing this question may be to use the leaked file to audit the code and upload it successfully Get getshell ...

There may be a lot of nonsense. It mainly records the process of finding loopholes from so many files Reference blog https://blog.csdn.net/rfrder/article/details/113924013 https://blog.csdn.net/miuzzx/article/details/111352849 https://rainy-autumn.top/archives/913 web301 Audit the loopholes written by the group leader three years ago se ...