1.测试test.php info.php php_info.php phpinfo.php
# f# }6 M1 [7 [ A/ O6 Q- B6 t$ j. x% M2 B0 B* w
2.扫描看有没有fck编辑器,如果有就用fckeditor\editor\dialog\fck_spellerpages\spellerpages\server-scripts\spellchecker.php爆 K8 m8 j: l/ B5 {' ]3 D& @
/ K q' k. {* y) u7 V. L- }
3.看看有没有phpmyadmin或者phpMyAdmin利用phpMyAdmin/libraries/select_lang.lib.php
0 h0 R( x6 T3 J; R6 _) q. fphpMyAdmin/darkblue_orange/layout.inc.php
" u* @7 @4 V: f: `2 aphpMyAdmin/index.php?lang[]=1
& ~8 i2 N4 @" x) ?' G$ n3 \phpmyadmin/themes/darkblue_orange/layout.inc.php
6 R! s0 D% ^, J* y4.利用搜索引擎爆绝对路径
4 C2 ?7 [, U4 ^$ m# b2 Hsite:www.huangse.com Warning4 b8 b$ w1 T, U# Q! Q# e5 j, \! K/ ?
site:www.huangse.com inurl:Warning7 t' X, f& r- b E2 n8 p$ O5 ~
, D4 p; i. y5 y& E$ O% `
等以后慢慢往上补吧,利用单引号的方法俺就不说了。。。( I8 o& l! e( i; H/ P
|