如何绕过网站的文件上传限制，最终上传webshell

作者：FancyPig | 发布时间：2023-01-03 11:11:39 | 更新时间：2023-02-05 17:53:14

相关阅读

data-postsbox="{"id":20195,"title":"【零基础学渗透】文件上传漏洞的常见方式汇总","author":"Sec-Labs","author_id":10015,"cover_image":"https://static.pigsec.cn/wp-content/uploads/2022/07/20220718083435408.png","cover_video":"","views":5220,"comment_count":298,"category":"cybersecurity","is_forum_post":false}">{"id":20195,"title":"【零基础学渗透】文件上传漏洞的常见方式汇总","author":"Sec-Labs","author_id":10015,"cover_image":"https://static.pigsec.cn/wp-content/uploads/2022/07/20220718083435408.png","cover_video":"","views":5220,"comment_count":298,"category":"cybersecurity","is_forum_post":false}

data-postsbox="{"id":25390,"title":"【漏洞赏金渗透课程】如何快速找到文件上传支持的扩展名？","author":"FancyPig","author_id":1,"cover_image":"https://static.pigsec.cn/wp-content/uploads/2022/10/20221025021832613.png","cover_video":"","views":2621,"comment_count":4,"category":"knowledge","is_forum_post":false}">{"id":25390,"title":"【漏洞赏金渗透课程】如何快速找到文件上传支持的扩展名？","author":"FancyPig","author_id":1,"cover_image":"https://static.pigsec.cn/wp-content/uploads/2022/10/20221025021832613.png","cover_video":"","views":2621,"comment_count":4,"category":"knowledge","is_forum_post":false}

视频讲解

本期视频将针对文件上传漏洞中，如果提供denylist去拒绝php后缀的文件，如何进行绕过？我们给出一个新的技巧，可以通过上传.htaccess文件来指定文件后缀解析php文件，最终上传webshell。当然，除了视频中作者给出的方式您也可以利用apache服务的一些特性，如evil.php%00.jpg上传webshell

备用播放线路