[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fQ5Cdwn0xm2ziZlOacmcmEfPUGeglqd6M2BJjm1Lhfk8":3},{"answer":4,"createTime":5,"id":6,"options":7,"origin":12,"question":16,"related":17,"source":28,"type":29},[],"2023-12-30 22:31:30",124646443,[8,9,10,11],"require():只要程序一运行就包含文件,找不到被包含的文件时会产生致命错误,并停止脚本","include():执行到include时才包含文件,找不到被包含文件时只会产生警告,脚本将继续执行","require_once():若文件中代码已被包含则不会再次包含","include_once():若文件中代码已被包含还会再次包含",{"courseId":13,"courseImg":14,"courseName":15},"2bb54463126dcc203f1c6f847e2e1c60","https:\u002F\u002Ftihai-oss-cloud.itihey.com\u002Fimg\u002F74c7ed2253aab3d2be46307269c18ec2.jpg","Web应用安全与管理","PHP中常见文件包含的函数有include() , include_once() , require_once(),require ()等,以下说法错误的是",[18,30,39,48,58,67,76,85,94,97],{"answer":19,"createTime":20,"id":21,"options":22,"question":27,"source":28,"type":29},[],"2023-12-30 22:31:28",124646388,[23,24,25,26],"test..asp","test.asp.jpg","test.asp;.jpg","test;asp;jpg","IIS6.0文件解析漏洞可以使用以下哪个payload","v1",0,{"answer":31,"createTime":20,"id":32,"options":33,"question":38,"source":28,"type":29},[],124646394,[34,35,36,37],"allw_url_fopen","allw_url_include","allw_path_fopen","allw_path_include","如果需要进行远程文件包含, 则PHP需要开启什么参数",{"answer":40,"createTime":20,"id":41,"options":42,"question":47,"source":28,"type":29},[],124646400,[43,44,45,46],"避免由外界制定文件名","文件名中要包含目录名","限制包含的文件范围","对于远程文件包含,设置php.ini配置文件中allow_url_include = off","如何防御包含漏洞,以下说法错误的是",{"answer":49,"createTime":50,"id":51,"options":52,"question":57,"source":28,"type":29},[],"2023-12-30 22:31:29",124646407,[53,54,55,56],"include()函数找不到被包含文件时会产生警告,并停止脚本","require()函数找不到被包含文件时会产生致命错误,并停止脚本","include_once()函数如果文件代码已经被包含则不会再次包含","require_once()函数如果文件代码已经被包含则不会再次包含","关于 PHP 文件包含函数描述错误的是( )",{"answer":59,"createTime":50,"id":60,"options":61,"question":66,"source":28,"type":29},[],124646414,[62,63,64,65],"远程文件包含需服务器开启 allow_url_fopen 配置","利用 php:\u002F\u002Finput 伪协议需开启 allow_url_include 配置","利用文件包含漏洞需被包含文件为.php 格式","文件包含漏洞常可以配合文件上传漏洞共同利用","关于 PHP 文件包含利用方法,错误的是( )",{"answer":68,"createTime":50,"id":69,"options":70,"question":75,"source":28,"type":29},[],124646420,[71,72,73,74],"?page=a.php","?home=a.html","?file=content","?id=1'","文件包含漏洞的一般特征不包含",{"answer":77,"createTime":50,"id":78,"options":79,"question":84,"source":28,"type":29},[],124646422,[80,81,82,83],"文件包含漏洞在PHP Web Application中居多,而在JSP、ASP、ASP.NET程序中却非常少,这是因为有些语言设计的弊端","渗透网站时,若当找不到上传点,并且也没有url_allow_include功能时,可以考虑包含服务器的日志文件","文件包含漏洞只在PHP中经常出现,在其他语言不存在","文件包含漏洞,分为本地包含,和远程包含","关于文件包含漏洞,以下说法中不正确的是",{"answer":86,"createTime":50,"id":87,"options":88,"question":93,"source":28,"type":29},[],124646440,[89,90,91,92],"?download=db.rar","?download=..\u002Fdb\u002Fdb.rar","?download=db\u002Fdb.rar","?download=.\u002Fdb\u002Fdb.rar","已知上级目录下的db目录包含敏感文件db.rar, 以下哪个请求可以下载到该文件( )",{"answer":95,"createTime":5,"id":6,"options":96,"question":16,"source":28,"type":29},[],[8,9,10,11],{"answer":98,"createTime":5,"id":99,"options":100,"question":105,"source":28,"type":29},[],124646448,[101,102,103,104],"文件来源过滤不严并用户可用","管理员管理不善","用户输入恶意代码","服务器漏洞","下列哪条是产生文件包含漏洞的原因"]