1. <?php
    2.     error_reporting(0);
    3.     highlight_file(__FILE__);
    5.         include('waf.php');
    7.     $path = 'uploads/'.md5("hacker".$_SERVER['REMOTE_ADDR']);
    8.     @mkdir($path, 0755, True);
    10.     $action = @$_GET['action'];
    11.     if($action === 'upload') {
    12.         if ($_FILES["file"]["error"] > 0 && $_FILES["file"]["size"] > 204800){
    13.             die('upload error');
    14.         } else {
    15.             $filename = $_FILES["file"]["name"];
    16.             $uploadpath = $path.'/'.$filename;
    18.             $content = $_FILES["file"]["tmp_name"];
    19.             waf(file_get_contents($content));
    21.             move_uploaded_file($_FILES["file"]["tmp_name"], $uploadpath);
    22.             var_dump("文件已上传到".$uploadpath);
    23.         }
    24.     } elseif ($action === 'include') {
    25.         $filename = $_POST['filename'];
    26.         if(stristr($filename, "uploads") !== false) {
    27.             die("Oh, you can not include what you upload.");
    28.         }
    29.         $realpath = __DIR__.'/'.$filename;
    30.         // var_dump($realpath);
    32.         include_once($realpath);
    33.     }

    等个wp