WP_Bugku_变量1

参考文章:https://blog.csdn.net/anjiaowangmenghan/article/details/76460872

题目地址:http://120.24.86.145:8004/index1.php

1
2
3
4
5
6
7
8
9
10
11
12
13
flag In the variable ! <?php  

error_reporting(0);
include "flag1.php";
highlight_file(__file__);
if(isset($_GET['args'])){
$args = $_GET['args'];
if(!preg_match("/^\w+$/",$args)){
die("args error!");
}
");
}
?>

注意最后的eval("var_dump($$args);参数args前有两个$$
参考下面:

所以只需要传一个全局变量就好
构url:
http://120.24.86.145:8004/index1.php?args=GLOBALS
得到flag{92853051ab894a64f7865cf3c2128b34}

AbelChe wechat
扫码加微信
Donate here!!!
0%