WeChall_PHP 0817 (PHP, Exploit)

最新推荐文章于 2019-10-17 20:43:22 发布
最新推荐文章于 2019-10-17 20:43:22 发布
阅读量222 收藏
点赞数
文章标签: php
原文链接:http://www.cnblogs.com/zhurb/p/5853493.html
版权

I have written another include system for my dynamic webpages, but it seems to be vulnerable to LFI.
Here is the code:

GeSHi`ed PHP code 
1
2
3
4
56
7
8
9
1011
12
13
14
1516
17

<?php
if (isset($_GET['which']))
{
        $which = $_GET['which'];
        switch ($which)        {
        case 0:
        case 1:
        case 2:
                require_once $which.'.php';                break;
        default:
                echo GWF_HTML::error('PHP-0817', 'Hacker NoNoNo!', false);
                break;
        }}
?>


Your mission is to include solution.php.
Here is the script in action: NewsForumGuestbook.

Good Luck!

 

解题:

  最近看了看PHP语法和web相关的知识,这道题要在网页提交前拦截,并把which数值改为solution,然后提交即可。

转载于:https://www.cnblogs.com/zhurb/p/5853493.html

diaotan0836
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
PHP 0817 (PHP, Exploit)
Howie‘s Blog
11-09 420
PHP 0817 (PHP, Exploit) 题目描述 I have written another include system for my dynamic webpages, but it seems to be vulnerable to LFI. Here is the code: GeSHi`ed PHP code <?php if (isset($_GET['which'...
[WeChall] PHP 0817 (PHP, Exploit) 解决和原理
滕青山博客
03-03 265
题目 I have written another include system for my dynamic webpages, but it seems to be vulnerable to LFI. Here is the code: <?php if (isset($_GET['which'])) { $which = $_GET['which']; switch ($which) { case 0: ca
Writeup For WeChall
segOt
03-09 1917
本文内容为WeChall网站中部分题目的解答,供学习、记录与分享。
WeChall Training: Get Sourced
blackcat
07-16 1067
TOOOOOO EASY 源代码一看就看见了。果然和我
Wechall刷题(二) Training: MySQL I 总结
leeham的博客
08-15 1392
Training: MySQL I 总结题目题目总结分为四个部分 解题思路及部分答案 个人疑惑以及疑惑解答 常见的SQL注入语句 收获:通过本地模拟环境测试
smb.zip_Exploit_SMB_smb__zip
07-14
source code for SMB exploit
SynapseX-master_Exploit_synapse_roblox_源码
10-04
Synapse X 2019 source
BungeeExploit_Exploit_minecraft源码_
10-02
eploit for old bungee
php-exploit:一些有趣PHP漏洞
05-28
我想成为php的大师:p,我将在这里与php分享我的日常活动。
x_php_for_php_4_1_2_c.rar_4 3 2 1_Exploit
09-23
This a proof of concept exploit for Apache/1.3.x(or IIS but not tested) + php_4.1.2. and below 4.1.2
wechall mysql题解
为之的博客
10-17 797
19.10.17 1.Training: MySQL I(MySQL,Exploit,Training) https://www.wechall.net/challenge/training/mysql/auth_bypass1/index.php 看了源代码,知道其sql语句为 SELECT * FROM users WHERE username='$username' AN...
Training: PHP LFI (Exploit, PHP, Training)
Howie‘s Blog
10-14 704
Training: PHP LFI (Exploit, PHP, Training) 题目描述 Your mission is to exploit this code, which has obviously an LFI vulnerability: 您的任务是利用此代码,它显然具有LFI漏洞: GeSHi`ed PHP code $filename = 'pages/'.(isset($...
wechall mysql关卡题解
weixin_34195142的博客
03-08 925
蓝蓝 · 2014/03/26 18:01特别鸣谢 Random Debug Slipper 对我的无私帮助PS:虽然是一份题解,但是其中某些题目的解法还有些不尽人意。如有更好的思路欢迎留言评论 :)QQ:915910623Training: MySQL I最简单的注入情况,参数没有经过任何过滤就带入查询漏洞代码:#!php function auth1_onLogin(WC_Challenge ...
[WeChall] Training: MySQL I (MySQL, Exploit, Training)
weixin_30898109的博客
12-13 259
Training: MySQL I (MySQL, Exploit, Training) MySQL Authentication Bypass - The classic This one is the classic mysql injection challenge. Your mission is easy: Login yourself as admin. Again you are g...
WeChall_Training: PHP LFI (Exploit, PHP, Training)
diaotan0836的博客
09-08 342
Your mission is to exploit this code, which has obviously anLFI vulnerability: GeSHi`ed PHP code 1 2 $filename = 'pages/'.(isset($_GET["file"])?$_GET["file"]:"welcome").'.htm...
WeChall Training: ASCII
Justesss的专栏
09-04 788
把ascll码转成字母……
WeChall mysql WriteUp
Bendawang's Blog
01-27 4446
WeChall mysql WriteUp
wechall-部分题解
river
09-11 1095
Training: Encodings I We intercepted this message from one challenger to another, maybe you can find out what they were talking about. To help you on your progress I coded a small java application,...
tp-link_exploit
最新发布
11-21
tp-link_exploit是指针对TP-Link路由器和网络设备存在的安全漏洞进行攻击的行为。在过去的一段时间里,有一些黑客和攻击者发现了TP-Link设备中的一些漏洞,并利用这些漏洞来获取未经授权的访问权限,或者进行其他...

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值