上传漏洞
# U/ S% Y3 w* k8 H+ t
; _. [- L$ Y5 ^ G cURL: /admin/image_admin3.php?boardid=&iname=&iform=
& D' g+ x. Q+ b+ h* n3 g
4 E& N" `; X3 D i% q w/ S, h/admin/image_admin2.php?boardid=&iname=&iform=5 k' P; v* W4 ~# q/ O
, F2 m% H( x, I/ r h上传后路径: }! G9 Y3 |7 b; x1 A j
; g5 g" {# d: ~
/bis_web_page/images/t.php.en% C9 _! c! e L
( i/ ^* {; R; w( l0 M2 J1 }
编辑器:
4 ~, Y' t1 s4 ^# U5 b# Q
5 f' U- [* b {. T* z2 p) t3 i/admin/editor/SWE.php
4 U: w6 f9 ~6 D8 v+ T: B
1 y0 G; ^* j' c0 V/program/editor/SWE.php% L7 o1 o: f8 L+ a+ G; K
* V; y" h7 I( z8 Q7 ] M
数据配置文件路径:
' _6 Q9 Q {2 L6 t. G
4 R5 m$ r5 I9 w2 G' _" R/m_config/DATA/g_setting.php
( D$ S' g9 k; H* E 8 g6 ?+ A7 Z @& K3 o5 q- X
此程序通用后台账号 :3 ]: t* \" \5 a' G7 |
4 T8 m0 z1 {. ~, Y账号:gamsiw 密码php99 |