实验室要求获取 `/etc/passwd` 文件内容,但输入中的遍历序列(如 `../../../etc/passwd`)会被移除,并对多余的 URL 编码进行处理。 2025-7-7 14:15:30 Author: infosecwriteups.com(查看原文) 阅读量:19 收藏
It’s an easy one. Trust me
First of all, this is the lab intro and requirement:
We need to fetch the contents of the /etc/passwd file.
As you are reading this, I believe that you have already solved previous labs and know that this is the traversal sequence we have been using so far:
../../../etc/passwdBut as the lab title says, “traversal sequences stripped with superfluous URL-decode”.
First, let’s see what that means.
Breakdown:
The word ‘superfluous’ means ‘unnecessary’.
‘Superfluous URL-decode’ means that if any URL encoding is present in the input, it will be decoded, unnecessarily, just as a security measure.
‘Traversal sequences stripped’ means that any traversal sequence in the input (if any), in our case, the input is the filename parameter, will be stripped away.
The whole “traversal sequences stripped with superfluous URL-decode” means that…
如有侵权请联系:admin#unsafe.sh