admin/Penetration_Testing_POC
1
0
Fork 0
mirror of https://github.com/Mr-xn/Penetration_Testing_POC.git synced 2025-06-21 02:10:38 +00:00
Code Issues Packages Projects Releases Wiki Activity

add 文件上传内容检测绕过

Browse Source
This commit is contained in:
Mrxn 2020-06-20 14:50:20 +08:00
parent 9e6cc77dbf
commit c4a74c7e8f
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
books/文件上传内容检测绕过.md
View File

@ -106,9 +106,10 @@ Content-Type: multipart/form-data; boundary =---------------------------47146314
``` ```
`boundary`后面加入空格。 `boundary`后面加入空格。
12.修改编码绕过 12.修改编码绕过
使用`UTF-16``Unicode``双URL编码`等等 使用`UTF-16``Unicode``双URL编码`等等
13.WTS-WAF 绕过上传 13.WTS-WAF 绕过上传
原内容: 原内容:
``` ```
Content-Disposition: form-data; name="up_picture"; filename="xss.php" Content-Disposition: form-data; name="up_picture"; filename="xss.php"
``` ```