1.测试test.php info.php php_info.php phpinfo.php
7 s ^6 `( h# U
9 a: u% ?' A- O" `2.扫描看有没有fck编辑器,如果有就用fckeditor\editor\dialog\fck_spellerpages\spellerpages\server-scripts\spellchecker.php爆
6 H5 i" C, b; t( z. M& n
; o* K0 t) |2 J9 b3.看看有没有phpmyadmin或者phpMyAdmin利用phpMyAdmin/libraries/select_lang.lib.php0 W) G1 T* T0 c) J6 r: p
phpMyAdmin/darkblue_orange/layout.inc.php
. r5 @! l; O. ~* r% x. SphpMyAdmin/index.php?lang[]=13 a7 @( f' l3 p4 J
phpmyadmin/themes/darkblue_orange/layout.inc.php9 w5 i. ?7 G9 ]# o8 g6 U# u
4.利用搜索引擎爆绝对路径
6 s8 {0 j$ g5 M/ U1 P4 E0 Ssite:www.huangse.com Warning6 l9 p3 m h9 U; ~. H* C+ w
site:www.huangse.com inurl:Warning
% K7 t) r7 s0 w# D( T" Z1 a* L& W8 F- P. Q
等以后慢慢往上补吧,利用单引号的方法俺就不说了。。。
' S, n( ?: ^0 i0 f3 a3 v |