https://blog.zeddyu.info/2022/01/08/2022-01-08-TheEndOfLFI/
iconv字符集绕过黑名单
https://blog.zeddyu.info/2021/12/27/2021-12-20-ANewNovelLFI/
- Nginx 在后端 Fastcgi 响应过大 或 请求正文 body 过大时会产生临时文件(护符)
两种本地文件包含,绕过require_once
https://www.anquanke.com/post/id/213235
https://www.leavesongs.com/PENETRATION/docker-php-include-getshell.html
裸文件包含pearcmd
若有收获,就点个赞吧
0 人点赞
