1.测试test.php info.php php_info.php phpinfo.php) H3 X5 s2 c/ O5 O3 E9 o
$ X' B% q5 `# X2.扫描看有没有fck编辑器,如果有就用fckeditor\editor\dialog\fck_spellerpages\spellerpages\server-scripts\spellchecker.php爆
8 Q( T, G, ?4 h. o y0 ~
: `" C* W! J. _ T" s4 L% U3.看看有没有phpmyadmin或者phpMyAdmin利用phpMyAdmin/libraries/select_lang.lib.php
7 t, c0 ?1 U! b& W, ?- k5 F, a0 YphpMyAdmin/darkblue_orange/layout.inc.php
- ^/ l% p, F$ m) gphpMyAdmin/index.php?lang[]=1' F4 a1 X6 P5 h: y9 P
phpmyadmin/themes/darkblue_orange/layout.inc.php
1 M9 X4 t. p% T: u- V! m, {4.利用搜索引擎爆绝对路径
# F% @. U8 ~ a j* nsite:www.huangse.com Warning
/ j; b3 q9 q3 I/ ?# dsite:www.huangse.com inurl:Warning
/ d/ o3 e1 k4 [* E {6 Z
& X4 n9 s2 ]9 n等以后慢慢往上补吧,利用单引号的方法俺就不说了。。。, }, [5 H& e* v3 t
|
发表于 2012-9-15 13:49:11
收藏
支持
反对