[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fa0W_uIoHzYFBXT0-TMYLTXujRvu474n4z55cvQu8lHw":3},{"answer":4,"createTime":5,"id":6,"options":7,"origin":12,"question":16,"related":17,"source":28,"type":29},[],"2023-12-30 22:31:29",124646407,[8,9,10,11],"include()函数找不到被包含文件时会产生警告,并停止脚本","require()函数找不到被包含文件时会产生致命错误,并停止脚本","include_once()函数如果文件代码已经被包含则不会再次包含","require_once()函数如果文件代码已经被包含则不会再次包含",{"courseId":13,"courseImg":14,"courseName":15},"2bb54463126dcc203f1c6f847e2e1c60","https:\u002F\u002Ftihai-oss-cloud.itihey.com\u002Fimg\u002F74c7ed2253aab3d2be46307269c18ec2.jpg","Web应用安全与管理","关于 PHP 文件包含函数描述错误的是( )",[18,30,39,48,51,60,69,78,87,97],{"answer":19,"createTime":20,"id":21,"options":22,"question":27,"source":28,"type":29},[],"2023-12-30 22:31:28",124646388,[23,24,25,26],"test..asp","test.asp.jpg","test.asp;.jpg","test;asp;jpg","IIS6.0文件解析漏洞可以使用以下哪个payload","v1",0,{"answer":31,"createTime":20,"id":32,"options":33,"question":38,"source":28,"type":29},[],124646394,[34,35,36,37],"allw_url_fopen","allw_url_include","allw_path_fopen","allw_path_include","如果需要进行远程文件包含, 则PHP需要开启什么参数",{"answer":40,"createTime":20,"id":41,"options":42,"question":47,"source":28,"type":29},[],124646400,[43,44,45,46],"避免由外界制定文件名","文件名中要包含目录名","限制包含的文件范围","对于远程文件包含,设置php.ini配置文件中allow_url_include = off","如何防御包含漏洞,以下说法错误的是",{"answer":49,"createTime":5,"id":6,"options":50,"question":16,"source":28,"type":29},[],[8,9,10,11],{"answer":52,"createTime":5,"id":53,"options":54,"question":59,"source":28,"type":29},[],124646414,[55,56,57,58],"远程文件包含需服务器开启 allow_url_fopen 配置","利用 php:\u002F\u002Finput 伪协议需开启 allow_url_include 配置","利用文件包含漏洞需被包含文件为.php 格式","文件包含漏洞常可以配合文件上传漏洞共同利用","关于 PHP 文件包含利用方法,错误的是( )",{"answer":61,"createTime":5,"id":62,"options":63,"question":68,"source":28,"type":29},[],124646420,[64,65,66,67],"?page=a.php","?home=a.html","?file=content","?id=1'","文件包含漏洞的一般特征不包含",{"answer":70,"createTime":5,"id":71,"options":72,"question":77,"source":28,"type":29},[],124646422,[73,74,75,76],"文件包含漏洞在PHP Web Application中居多,而在JSP、ASP、ASP.NET程序中却非常少,这是因为有些语言设计的弊端","渗透网站时,若当找不到上传点,并且也没有url_allow_include功能时,可以考虑包含服务器的日志文件","文件包含漏洞只在PHP中经常出现,在其他语言不存在","文件包含漏洞,分为本地包含,和远程包含","关于文件包含漏洞,以下说法中不正确的是",{"answer":79,"createTime":5,"id":80,"options":81,"question":86,"source":28,"type":29},[],124646440,[82,83,84,85],"?download=db.rar","?download=..\u002Fdb\u002Fdb.rar","?download=db\u002Fdb.rar","?download=.\u002Fdb\u002Fdb.rar","已知上级目录下的db目录包含敏感文件db.rar, 以下哪个请求可以下载到该文件( )",{"answer":88,"createTime":89,"id":90,"options":91,"question":96,"source":28,"type":29},[],"2023-12-30 22:31:30",124646443,[92,93,94,95],"require():只要程序一运行就包含文件,找不到被包含的文件时会产生致命错误,并停止脚本","include():执行到include时才包含文件,找不到被包含文件时只会产生警告,脚本将继续执行","require_once():若文件中代码已被包含则不会再次包含","include_once():若文件中代码已被包含还会再次包含","PHP中常见文件包含的函数有include() , include_once() , require_once(),require ()等,以下说法错误的是",{"answer":98,"createTime":89,"id":99,"options":100,"question":105,"source":28,"type":29},[],124646448,[101,102,103,104],"文件来源过滤不严并用户可用","管理员管理不善","用户输入恶意代码","服务器漏洞","下列哪条是产生文件包含漏洞的原因"]