XCTF-shrine
shrine 直接看题 进来给了个python代码 import flask import os app = flask.Flask(__name__) app.config['FLAG'] = os.environ.pop('FLAG') @app.route('/') ......![]()
攻防世界shrine
shrine import flask import os app = flask.Flask(__name__) app.config['FLAG'] = os.environ.pop('FLAG') @app.route('/') def index(): return open( ......![]()
WesternCTF2018_shrine
这个想了半天没啥思路,直接查别人的wp,贴地址:https://blog.csdn.net/qq_42812036/article/details/104324923 0x00 开始的页面猛一看乱七八糟,原来查源码会把它 ......[WesternCTF2018]shrine(SSTI+过滤)
记一道存在过滤的模板注入的题。直接给源代码 import flask import os app = flask.Flask(__name__) app.config['FLAG'] = os.environ.pop('FLAG') @app.route ......![]()
shrine
0x01 import flask import os app = flask.Flask(__name__) app.config['FLAG'] = os.environ.pop('FLAG') @app.route('/') def index(): return open(__ ......![]()
[WesternCTF2018]shrine
SSTI模板注入: 模板注入涉及的是服务端Web应用使用模板引擎渲染用户请求的过程 服务端把用户输入的内容渲染成模板就可能造成SSTI(Server-Side Template Injecti ......![]()
CET-6 分频周计划生词筛选(番外篇:百词斩)
点我阅读 2016.09.18 12:00pm transverse counterpart accessory cult gorgeous sediment assimilate stride vicinity suspension propagate divert shrine re ......![]()
Elegy written in a country church-yard
分享一首好诗:托马斯·格雷的《墓地哀歌》。 "ELEGY WRITTEN IN A COUNTRY CHURCH-YARD" The curfew tolls the knell of parting day,The lowing herd winds slowly ......buu学习记录(上)
前言:菜鸡误入buu,差点被打吐。不过学到了好多东西。 题目名称: (1)随便注 (2)高明的黑客 (3)CheckIn (4)Hack World (5)SSRF Me (6)piapiapia (7)Easy Java (8)Dro ......![]()
↓ 按住下拉
V2AS = Way To Ask
V2AS 一个技术分享与创造的静土
手机扫一扫
移动阅读更方便
近15日热搜文章