Recently, friends say that their forum is frequently being black, the server does not have any upload components, but fso has been closed. But it is black. It is also possible to be a DV72SQL version of its own problem. According to N long time, friends Get the so-called way of attack, in fact, there is no more than a DV72SQL bug using Guilin veterans. Submitted packet content -----------------
Get /bbs/showerr.asp?boardid=1&action=othererr http / 1.1Referr: http://www.target.com/bbs/showerr.asp?boardid=1&action=othererruser-agent: mozilla / 4.0 (compatible; m; M; m; ' To attack the data. In fact, this kind of thing. As long as we cut this detection user-agent process can be. As for how to write these code, I believe that everyone is in my heart? In the future, we must do it in the proof of the program. A bit. It is best to make strict control over the environmental parameters of the client submitted data.
