梧席
ACTF2020新生赛Upload1
Q7nl1s admin
  2022-01-18 19:35:16 2022-01-18 19:35   2023-09-20 18:13:25      65 Words  

[ACTF2020 新生赛]Upload1

进入靶机找到文件上传点

1

直接上传个php一句话代码文件测试,发现对文件后缀有检查

2

抓包后修改.php,发现仍然有检查

3

再尝试phtml

4

5

根目录下拿到flag

6

 Comments
Comment plugin failed to load
Loading comment plugin
  1. [ACTF2020 新生赛]Upload1
© 2020 - 2024    Q7nl1s
Powered by Hexo & Theme Keep
Unique Visitor Page View
  1. [ACTF2020 新生赛]Upload1