1.测试test.php info.php php_info.php phpinfo.php, U8 z, R; o% @. Y# q3 ^
& b0 k0 Q) _+ o- B- s2.扫描看有没有fck编辑器,如果有就用fckeditor\editor\dialog\fck_spellerpages\spellerpages\server-scripts\spellchecker.php爆3 G. r! _, k, u0 J1 u
) E, z% B7 m& @+ @2 Z- T4 d
3.看看有没有phpmyadmin或者phpMyAdmin利用phpMyAdmin/libraries/select_lang.lib.php& Y+ |; N! y' u
phpMyAdmin/darkblue_orange/layout.inc.php I/ R# S. a$ z6 d" j9 O# u, a
phpMyAdmin/index.php?lang[]=13 F9 Z! P7 f0 |% n: q. f5 d
phpmyadmin/themes/darkblue_orange/layout.inc.php2 s, D' r5 c6 b3 s7 l. j
4.利用搜索引擎爆绝对路径+ ~6 t0 c- q. k1 ?( h
site:www.huangse.com Warning
P/ M" s0 X% }3 gsite:www.huangse.com inurl:Warning# A$ k' Q3 U! z6 N
5 i# ~& O$ X1 L+ \5 r
等以后慢慢往上补吧,利用单引号的方法俺就不说了。。。* V4 i5 _- X3 w% {7 C" H' L* h& \
|
发表于 2012-9-15 13:49:11
收藏
支持
反对