PHP 5.2.0对Remote include的影响

November 03, 2006

<a href="http://www.php.net/ChangeLog-5.php#5.2.0">http://www.php.net/ChangeLog-5.php#5.2.0</a>

<br />Added allow_url_include ini directive to complement allow_url_fopen. (Rasmus) <br /><br />也就是说,远程包含文件漏洞,或者是后门,变的很难奏效了。<br />不过同样有两种方式绕过。<br /><br />一个......

最近真忙

October 28, 2006

终于拿到完整的dezender.c,晚上有的研究了,log之。

n久没更新

October 27, 2006

转exp之

<?php

print_r('

---------------------------------------------------------------------------

Discuz! 5.0.0 GBK SQL injection / admin credentials disclosure exploit

by rgod rgod@autistici.org

site: http://retrogod.altervista.org

dorks: "powered by discuz! 5.0.0

       "powered b......

Recent
Search