本文共 1517 字,大约阅读时间需要 5 分钟。
???????????
???????Web?????????????????????????????????????????????????????????????????????
?????????????????????????????????Web????????????????????????????????????????????????????????URL???
http://example.com/file.php?title=hello.txt
???????title?????????????????????????????title??????????????????????
http://example.com/file.php?title=../../etc/passwd
???????../../etc/passwd?????????????????/etc/passwd?????????????
???????????????????????????URL????????????????URL?
http://example.com/file.php?title=../
???????????????????????????????????????../../..??????????????????
????????????????????????????????????????????????
..?????????????????????????????????????
jarheads.php??????URL???http://192.168.34.193/pikachu//vul/dir/dir_list.php?title=jarheads.php
truman.php??????URL???http://192.168.34.193/pikachu//vul/dir/dir_list.php?title=truman.php
???????URL???????title??????????????????????????????????????title?????
http://192.168.34.193/pikachu//vul/dir/dir_list.php?title=../../
????????????????????????????????URL?
http://192.168.34.193/pikachu//vul/dir/../
???????????????????????????
??????????????????????
open_basedir?????PHP??????????????????mod_rewrite?????????????????????????Web????????????????????????????????????????????????????????????????????????????
转载地址:http://dvqh.baihongyu.com/