Ptt 大爆卦 | PHP include html - 前往 https://kb.hitcon.org/post/165429468072/%E9%80%8F%E9%81%8E-lfi-%E5%BC%95%E5%85%A5-php-session-%E6%AA%94%E6%A1%88%E8%A7%B8%E7%99%BC-rce

你即將離開本站

並前往https://kb.hitcon.org/post/165429468072/%E9%80%8F%E9%81%8E-lfi-%E5%BC%95%E5%85%A5-php-session-%E6%AA%94%E6%A1%88%E8%A7%B8%E7%99%BC-rce

透過LFI 引入PHP session 檔案觸發RCE

/file.php?file=index.html. 透過以下幾個測試確認存在LFI 漏洞： /file.php?file=./index.html. 但因為測試發現include 語句中路徑可能串接了額外的前綴，無法嘗試PHP ...

確定！回上一頁

查詢「PHP include html」的人也找了：

php include用法

PHP include once

php include路徑

PHP array include

PHP include PHP

PHP include require

PHP include dir