File tree Expand file tree Collapse file tree 1 file changed +1
-2
lines changed Open diff view settings
Expand file tree Collapse file tree 1 file changed +1
-2
lines changed Open diff view settings
Original file line number Diff line number Diff line change 429429- [ Tomcat URL解析差异性导致的安全问题(网上看到的主要关注HttpServletRequest中几个解析URL的函数这个问题)] ( https://xz.aliyun.com/t/7544 )
430430- [ Tomcat中url解析特性] ( https://github.com/Y4tacker/JavaSec/blob/main/8.%E5%85%B3%E4%BA%8ETomcat%E7%9A%84%E4%B8%80%E4%BA%9B%E5%88%86%E4%BA%AB/Tomcat%E4%B8%ADurl%E8%A7%A3%E6%9E%90%E7%89%B9%E6%80%A7/index.md )
431431- [ SpringBoot2.3.0以下路由%2e跨目录处理(可用于权限绕过)] ( https://github.com/Y4tacker/JavaSec/blob/main/11.Spring/SpringBoot2.3.0%E4%BB%A5%E4%B8%8B%E8%B7%AF%E7%94%B1%252e%E8%B7%A8%E7%9B%AE%E5%BD%95%E5%A4%84%E7%90%86(%E5%8F%AF%E7%94%A8%E4%BA%8E%E6%9D%83%E9%99%90%E7%BB%95%E8%BF%87)/index.md )
432-
433432- [ 网上看到的Jetty的部分解析特性(支持%uxxx)] ( https://www.wangan.com/p/7fyg8k2c7781675a )
434-
433+ - [ 浅谈JFinal的DenyAccessJsp绕过 ] ( https://forum.butian.net/share/1899 )
435434
436435## 19.ASM与JVM学习
437436
You can’t perform that action at this time.
0 commit comments