WeChall上的一道题目 链接 Addslashes (Exploit, PHP, MySQL) Your mission is to login as Admin. You are given the source of the login script also as highlighted version. Good Luck. 题目给出了源码 <?php function asvsmysql_login($username, $password) { $username = addslashes($username); $password = md5($password); if (false === ($db = gdo_db_instance('localhost', ADDSLASH_USERNAME, ADDSLASH_PASSWORD, ADDSLASH_DATABASE, GWF_DB_TYPE, 'GBK')))...

学校一个某网站,说是后台密码忘记了.然后把源码和数据库拿下来研究了一下(其实就是开源的帝国CMS) 登录的关键函数位于/e/class/adm...