1.测试test.php info.php php_info.php phpinfo.php
; l! {, y: W" W! y" o9 H
. K( a2 g' J7 q) y" M$ |7 m1 {2.扫描看有没有fck编辑器,如果有就用fckeditor\editor\dialog\fck_spellerpages\spellerpages\server-scripts\spellchecker.php爆
+ e! Z1 s. _. P7 C% T5 u" S1 q& x# H$ v- T2 J; I
3.看看有没有phpmyadmin或者phpMyAdmin利用phpMyAdmin/libraries/select_lang.lib.php1 ]9 M" U- S/ t. s
phpMyAdmin/darkblue_orange/layout.inc.php
4 ^2 ` F4 T' N$ tphpMyAdmin/index.php?lang[]=16 \- z( r" \3 Z
phpmyadmin/themes/darkblue_orange/layout.inc.php/ }* `) ?7 @' M$ R
4.利用搜索引擎爆绝对路径. y) [, c9 p" [: U* z G
site:www.huangse.com Warning& g# w/ a' r. s( ^ ^
site:www.huangse.com inurl:Warning
8 J: @) I! ~& v- P$ p y) l, | s2 F, `. s2 ~
等以后慢慢往上补吧,利用单引号的方法俺就不说了。。。, U* j% l# l/ n/ I8 |& l1 y# h
|
发表于 2012-9-15 13:49:11
收藏
支持
反对