1.测试test.php info.php php_info.php phpinfo.php
; N* L( `) p6 i% j
" d3 }8 R+ H6 E* E2.扫描看有没有fck编辑器,如果有就用fckeditor\editor\dialog\fck_spellerpages\spellerpages\server-scripts\spellchecker.php爆* S: ~& c# n, T9 T
0 k. r6 c7 w. [2 Y( l- O8 V
3.看看有没有phpmyadmin或者phpMyAdmin利用phpMyAdmin/libraries/select_lang.lib.php
- Q) j, x* s% NphpMyAdmin/darkblue_orange/layout.inc.php+ ]* X' e, Y$ w& }6 a2 j
phpMyAdmin/index.php?lang[]=1( G; n1 l4 m+ G2 @7 m" O w
phpmyadmin/themes/darkblue_orange/layout.inc.php
/ v, J/ K0 E! h& i, h2 H4.利用搜索引擎爆绝对路径
/ v- T- E) x& I' a, R: Ksite:www.huangse.com Warning
! J9 W4 o6 T5 ~$ [( r Asite:www.huangse.com inurl:Warning
, D$ X4 }6 G- E6 h# W0 j& ? \
$ K$ Z7 w% J \0 U/ R& s等以后慢慢往上补吧,利用单引号的方法俺就不说了。。。 a: u1 Z: _6 x: I- [
|