(PHP script self-research share)? General-Purpose Save website user password to CSS file

This article original LAIMOOC (formerly XOANHN)

Many times, after we get a shell, occasionally encounter a password can not solve the situation, using XSS to collect cookies, feel inconvenient; Use the XSS platform to hijack the form bar, feel trouble, also worry about the password they want others also copy a copy of the situation, This time we need to find a way to collect the desired pwd ...

The simplest, look at other people's Landing interface as follows:

I spring and autumn landing interface, we can see the user and password of the name attribute is: "Username and password", of course, for I spring and autumn such a CMS, if you coincidentally have such a similar site shell,

And then we'll find another one. thinkphp Login Interface:

In fact, also look at the account and password of the Name property: "User also has password", in fact, the name of the login is similar, then we can directly in the shell to find the landing file, and then modify the relevant content.

Then the question comes, many people will feel the log file is very cumbersome or is not good for what, then the best way is that we write a crawl landing time post data script, and then use the relevant files to include it, so that the completion of both the safe operation of the site, It also guarantees that you can get the password you want. The surprise is not surprise, the accident is not unexpected.

Look at my website backstage, very simple, direct admin directory, nothing to say, directly find my admin directory, include our script, get the administrator's password

Do I say more how to pull Duzi to the administrator password, I, ah, sin sin, I was deliberately, you did not listen to the wrong, I was deliberately, this is bypass, the is a gold key,when u wonna be get someone else ' s p Assword.

Haha, are you happy, boys?

In fact, for the kind of site that you start landing, you can from its index.php file to do the rules, see its require or include and other call files, as long as the landing has a relationship, Or directly can be said to be in the process of landing will be called to the file directly to the file we study included in it can get the password.

Long-winded, above this sentence is the focus, let you disappointed, Brother's language organization ability needs to contact, then summed up a sentence: the process of the landing has called to the file, we do that can include in, and then get the password!!

Last one of the pictures I used, don't be excited!

The last dry goods are here

Poke Me ~ ~

(PHP script self-research share)? General-Purpose Save website user password to CSS file