The title is pretty simple, after all, I have experienced the baptism of uoload-lab people, and that made 20 off the first large, bypassing all kinds of really strong (Okay, I admit dish) today met an upload problem, he disk. . .
Let us clearly upload files, of course, the idea is to upload a Trojan file, and then connect to view Directory access flag by ants sword.
But when we want to upload php file will pop, and even the "Upload" button are disabled.
ext = name.replace (/^.+./, '' ) delete the name of the file.
if ([ 'jpg', ' png'] contains (ext).): check whether the suffix jpg, if not on the disabled buttons and pop error.
Delete this limit can be uploaded.
Will pop up after the upload path, directly connecting ant sword
View flag.php documents are flag
With what another does not use php code ants sword connection
