Closed azraelxuemo closed 1 year ago
There are a lot of file upload problems in the past,and you fix some
The exclude_ext is only php,so we can upload other ext to bypass Such as phar phtml.. There I test these exts
zip this folder, and upload
And then I modify the extension name
phtml,phar also the default suffix can be parsed by php,so we should also exclude it
There are a lot of file upload problems in the past,and you fix some
The exclude_ext is only php,so we can upload other ext to bypass Such as phar phtml.. There I test these exts
zip this folder, and upload
And then I modify the extension name
phtml,phar also the default suffix can be parsed by php,so we should also exclude it