VULHUB ™

##1. 漏洞分析 upload.php ```php if ( isset($_POST['pokreni'])){ $target_path = "files/"; $target_path = $target_path . basename( $_FILES['uploadedfile']['name']); if(move_uploaded_file($_FILES['uploadedfile']['tmp_name'], $target_path)) {echo "Datoteka ". basename( $_FILES['uploadedfile']['name']). " je snimljena na server";} else{ echo "Došlo je do greške pokušajte ponovno!";} } ``` ##2. 漏洞利用 http://[host]/upload.php 直接任意文件上传

##1. 漏洞分析 upload.php ```php if ( isset($_POST['pokreni'])){ $target_path = "files/"; $target_path = $target_path . basename( $_FILES['uploadedfile']['name']); if(move_uploaded_file($_FILES['uploadedfile']['tmp_name'], $target_path)) {echo "Datoteka ". basename( $_FILES['uploadedfile']['name']). " je snimljena na server";} else{ echo "Došlo je do greške pokušajte ponovno!";} } ``` ##2. 漏洞利用 http://[host]/upload.php 直接任意文件上传