ctfhub web information disclosure backup file download (website source code, back file) - Code World

ctfhub web information disclosure backup file download (website source code, back file)

Others 2021-03-19 09:11:26 views: null

Website source code

Insert picture description here

Enter the environment, first we use bp to grab the package
Insert picture description here

Add two payloads after the HTTP request method GET/, one for blasting the file name and one for blasting the suffix name

Insert picture description here

Learn that the backup form of the webpage source code is www.zip, download the webpage source code
Insert picture description here

Open notepad file
Insert picture description here

Found this thing
Insert picture description here

You can get the flag by accessing the url

Bak file

Insert picture description here

Open the environment, we check the source code and find that the backup file is bak, and we know that the flag is in index.php, try index.php.bak
Insert picture description here

Download and open the file and we get the flag

Guess you like

Origin blog.csdn.net/weixin_52268949/article/details/113482786

ctfhub web information disclosure backup file download (website source code, back file)

ctfhub web information disclosure backup file download (vim cache Ds-Store)

CTFHub skill tree backup file download - website source code

Information disclosure backup file download

ctfhub skill tree - leaked information - backup file download -.DS_Store

Information disclosure svn source code disclosure

CTFHub skill tree backup file download - vim cache

CTFHub skill tree backup file download——.DS_Store

CTFHUB - web - file upload

web common source code disclosure

File Disclosure

CTFhub-phpinfo (information disclosure)

[WEB security] source code disclosure summary

sourcemap file disclosure vulnerability

webuploader web large file upload source code

Web backup file suffix - common

WEB download the file

java web download file

CTFhub—File upload (no verification)

Maven download source file garbled

CTFHub skill tree -Web- file upload - no verification

CTFHub skill tree -Web- truncated file upload -00

CTFHub skill tree -Web- file upload -.htaccess

backup file

web file upload and download components

Java Web file download guide

Web application development file download

Website large file download ASP.NET

013 Information management - Web application & source code leakage & open source and closed source & fingerprint identification & GIT & SVN & DS & backup

Tensorflow.whl File Download (Download source)

Recommended

The sixth meeting of openKylin Community Ecology Committee was successfully held

Alibaba Cloud officially releases Tongyi Qianwen 2.5

Python 3.13 releases first Beta: experimental free-threading mode and JIT, improved interactive interpreter

Stack Overflow used my code to train large AI models and banned my account.

Pop!_OS’s COSMIC desktop completes App Store listing

Report: Django is still the first choice for 74% of developers

"Internet Investment and Financing Operation in the First Quarter of 2024" Research Report

15 years ago, he was on the "FFmpeg pillar of shame", and today he still has to thank us - Tencent QQPlayer avenges its shame?

Ranking

Python handwritten digit recognition, the corresponding mathematical formulas and Detailed procedures

Der M-Chip-Mac implementiert mehrere Android-Emulatoren

CentOS 명령줄 모드에서 화면이 항상 켜져 있도록 설정 ---- 예상한 효과를 얻지 못했습니다.

Teach you step by step how to use GDB to debug programs: a comprehensive guide from entry to mastery

python3 pip ipython installation

A lot of python crawler source code sharing -- talk about the little thing about python crawler

Agile Sprint in Alpha Stage (7)

Access URL in Unity

FunctoinDemo form

MS SQL common SQL statements (6): create, modify, delete triggers and other operations sq

Daily

More

2024-05-10(34)

2024-05-09(32)

2024-05-08(18)

2024-05-07(34)

2024-05-06(6)

2024-05-05(0)

2024-05-04(18)

2024-05-03(8)

2024-05-02(0)

2024-05-01(4)