1.测试test.php info.php php_info.php phpinfo.php
5 l) h" @: a) T5 s# s Q
: _- N! s- n& U& g, n- i2.扫描看有没有fck编辑器,如果有就用fckeditor\editor\dialog\fck_spellerpages\spellerpages\server-scripts\spellchecker.php爆
1 y" x4 w6 l7 W) d& g: E, Y
' e+ n0 K% I8 V3.看看有没有phpmyadmin或者phpMyAdmin利用phpMyAdmin/libraries/select_lang.lib.php
* l6 T- O2 H8 {* j" ?phpMyAdmin/darkblue_orange/layout.inc.php+ x% m1 V+ H/ }- N9 B$ `( S R' K
phpMyAdmin/index.php?lang[]=1; j! p- f* F5 [/ [
phpmyadmin/themes/darkblue_orange/layout.inc.php% J4 W4 R2 y! p/ E6 `
4.利用搜索引擎爆绝对路径
8 l' ^% a* z: p- M- C# g5 u3 wsite:www.huangse.com Warning6 \- j, m% S& `% m
site:www.huangse.com inurl:Warning! Y; Q7 `+ Z9 E4 y* S
" u( _7 `& ^% }# B6 n y6 q
等以后慢慢往上补吧,利用单引号的方法俺就不说了。。。6 ?. n5 X {$ {) a2 b7 V0 e
|
发表于 2012-9-15 13:49:11
收藏
支持
反对