ZVulDrill
ZVulDrill copied to clipboard
Published
20 hours ago •
710leo
710leo
Web漏洞演练平台
Results
5
ZVulDrill issues
Sort by
recently updated
recently updated
newest added
感谢您开发了这么方便实用的工具。 我试着在php7.2部署,发现几个小问题,我的解决方法也一并附上,供您参考。 1、sys/lib.php 中,mysql_real_escape_string 改为 mysqli_real_escape_string; 2、mysqli_real_escape_string 需要传入DB Connection,此时要用到config.php的$dbc,我把config.php 导入lib.php的include_once改为include,然后在clean_input 函数里加入global $dbc; 3、config.php的$basedir = '/VulDrill' ,我直接把应用部署到根目录,所以改为$basedir = '',不然有些css的路径不一致。
SQL注入的实现注释 希望作者直接写成注释版本吧,自已慢慢试也比较麻烦,我比较懒,并且把攻击方法也写上,我感觉这种演示平台如果好好做的话会非常受大家欢迎的。
I would be willing to convert everything to English and you can have two versions English and Chinese. Seems like a fun project that maybe other people also would like...
