1.测试test.php info.php php_info.php phpinfo.php% C" O, D; E0 X I% G: g
4 s5 _5 k! U, {! X. y2.扫描看有没有fck编辑器,如果有就用fckeditor\editor\dialog\fck_spellerpages\spellerpages\server-scripts\spellchecker.php爆8 q' ?# T7 n% e/ D& k4 i
& i& A1 G/ T& L* N3.看看有没有phpmyadmin或者phpMyAdmin利用phpMyAdmin/libraries/select_lang.lib.php) }' U- C, P( j1 s, v3 Y0 d
phpMyAdmin/darkblue_orange/layout.inc.php
* d% t: e/ F) F$ k0 C- aphpMyAdmin/index.php?lang[]=1% G3 m1 A$ R9 F5 M S, z# q
phpmyadmin/themes/darkblue_orange/layout.inc.php
" b: c; a4 n! X2 J4.利用搜索引擎爆绝对路径
& R3 ` `2 C$ P) u* n. u1 Psite:www.huangse.com Warning
/ `$ r9 @; Y+ h0 H4 Y; Qsite:www.huangse.com inurl:Warning
5 T% g0 q: f; T/ _3 K$ d5 }2 l5 o3 v( [! ]
等以后慢慢往上补吧,利用单引号的方法俺就不说了。。。
- {* h+ F' r7 T' S |
发表于 2012-9-15 13:49:11
收藏
支持
反对