upload-labs problem solving report- 05

Enterprise 2023-04-09 08:12:03 views: null

thought process

  1. Test, first look at the back end or the front end.

  2. can be seen

    The php3 file has reached the step of network transmission, indicating that it is verified by the backend and not based on MIME verification.

  3. At this time, it is judged which type of verification it is. After testing the types of .mp3 .txt .doc, we can know that it is based on blacklist verification.

  4. Check the source code of the page and find that the backend has renamed it, so the modification .htaccessmethod fails

  5. I tried .pHpbut was blocked, so I rejected this idea first. It turned out that I had tried too little.
  6. After some series of thinking to no avail, only Baidu, the result is that .Php can pass. This taught me a lesson, I still have to try more.
  7. It should be noted that this method can only be used in the Windows environment, because Linux is case-sensitive.

Guess you like

Origin blog.csdn.net/qq_40790680/article/details/128971603
Recommended
NetBSD bans submission of code generated by AI
Ranking
Talk dubbo of LRUCache
Chapter 1 Learning Summary
Introduction to Virtualization
pytorch 调用lstm
Six modules
[8086] The natural number of 1 to 36 into a 6x6 two-dimensional array of line-sequentially, and then print out the lower left half of the triangular array
mybatis mapper mapping file $ # {} {} understanding and
C language input and output buffer
c language floating-point input and output
andorid P version compatible, refer to Huawei
Daily
More
2024-05-18(31)
2024-05-17(6)
2024-05-16(23)
2024-05-15(5)
2024-05-14(9)
2024-05-13(8)
2024-05-12(28)
2024-05-11(32)
2024-05-10(34)
2024-05-09(32)

Code World

© 2018 codetd.com