1.测试test.php info.php php_info.php phpinfo.php
7 D- @8 V; a& W7 \
* V& l- [: Y- f1 W& W2.扫描看有没有fck编辑器,如果有就用fckeditor\editor\dialog\fck_spellerpages\spellerpages\server-scripts\spellchecker.php爆3 E" x( g2 v1 j! [, d3 E
6 g4 q+ r* S8 e _0 T; ]# n; H" `6 r
3.看看有没有phpmyadmin或者phpMyAdmin利用phpMyAdmin/libraries/select_lang.lib.php) |6 Q& C% l2 I# L. Z% A
phpMyAdmin/darkblue_orange/layout.inc.php+ M9 o& w" r8 a3 J- o
phpMyAdmin/index.php?lang[]=1
2 y, u; j' m, C0 ~/ Kphpmyadmin/themes/darkblue_orange/layout.inc.php
' u5 D! I r' P- L4.利用搜索引擎爆绝对路径0 |. m, N8 }+ i: B4 C W! n
site:www.huangse.com Warning# A- u2 U8 M. J! l) i
site:www.huangse.com inurl:Warning9 t: u5 E( i: R4 ~
/ c) L' h7 h6 y% z9 F/ L% K
等以后慢慢往上补吧,利用单引号的方法俺就不说了。。。
) h( m: C2 ?# g: V |