1.测试test.php info.php php_info.php phpinfo.php
; M$ D6 o" h7 S; M' v
C* s2 r9 {( K$ |/ X7 ?. R- ~2.扫描看有没有fck编辑器,如果有就用fckeditor\editor\dialog\fck_spellerpages\spellerpages\server-scripts\spellchecker.php爆
% |, t, x' ^$ Z# B- H. ?2 Y
( i0 M: t" d3 B. O7 \3.看看有没有phpmyadmin或者phpMyAdmin利用phpMyAdmin/libraries/select_lang.lib.php
, V0 [; F# h9 TphpMyAdmin/darkblue_orange/layout.inc.php
* n4 M# i; ]( ^+ mphpMyAdmin/index.php?lang[]=1" P# I* Z8 T* z
phpmyadmin/themes/darkblue_orange/layout.inc.php% c6 W7 y" I/ k+ A5 b
4.利用搜索引擎爆绝对路径
( M% m. q Z. w. psite:www.huangse.com Warning
3 B! C5 u' h1 t% W$ @4 v% n( ]1 Wsite:www.huangse.com inurl:Warning
\1 H* a) O2 ?+ F. x' p/ R9 n' z2 X0 b8 L
等以后慢慢往上补吧,利用单引号的方法俺就不说了。。。
. }# P5 a* V8 | |